Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
3perry3
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 17 led 2020 00:33

Prosím o kontrolu logu

#1 Příspěvek od 3perry3 »

Zdravím, včera se mi někdo dostal na email a nějáký jiný účet na jedné webové stránce.Bojím se že mám stále něco v počítači.Chtěl bych poprosit o pomoc a zasílám oba logy níže.

Kód: Vybrat vše

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-01-2020
Ran by Rengo (17-01-2020 01:01:01)
Running from C:\Users\Rengo\Downloads
Windows 10 Home Version 1909 18363.535 (X64) (2019-12-11 02:55:42)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1071696947-3555639714-3556745851-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1071696947-3555639714-3556745851-503 - Limited - Disabled)
Guest (S-1-5-21-1071696947-3555639714-3556745851-501 - Limited - Disabled)
Rengo (S-1-5-21-1071696947-3555639714-3556745851-1001 - Administrator - Enabled) => C:\Users\Rengo
WDAGUtilityAccount (S-1-5-21-1071696947-3555639714-3556745851-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 3.1.3.26837 - emc, uTorrent.CZ)
Advanced SystemCare (HKLM-x32\...\Advanced SystemCare_is1) (Version: 13.0.2 - IObit)
Aktualizace NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
AMD Product Verification Tool version 1.0.4.8 (HKLM\...\{4242685A-EF3E-45FF-B4AE-758E49020936}}_is1) (Version: 1.0.4.8 - AMD)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.10.16 - Advanced Micro Devices, Inc.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.2.7 - Electronic Arts, Inc.)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{7999800f-411b-4d04-aadd-32b576d84592}) (Version: 21.20.1 - Intel Corporation)
Balanced (HKLM-x32\...\{0EA45DD4-A825-420C-AFED-C659EFE3B84F}) (Version: 4.00.0000 - Advanced Micro Devices, Inc.) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.150.8.1008 - BlueStack Systems, Inc.)
Dashlane (HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Dashlane) (Version: 6.2002.0.30909 - Dashlane, Inc.)
Discord (HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Driver Booster 5 (HKLM-x32\...\Driver Booster_is1) (Version: 5.3.0 - IObit)
Epic Games Launcher (HKLM-x32\...\{C69A2919-0662-4390-9418-67C931B44C18}) (Version: 1.1.236.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.117 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Cheat Engine 7.0 (HKLM\...\Cheat Engine 7.0_is1) (Version:  - Cheat Engine)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000020-0210-1029-84C8-B8D95FA3C8C3}) (Version: 21.20.0.4 - Intel Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Riot Game league_of_legends.live) (Version:  - Riot Games, Inc)
Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)
Microsoft OneDrive (HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Mozilla Firefox 72.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 72.0.1 (x64 cs)) (Version: 72.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 72.0.1 - Mozilla)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
MSIRegister (HKLM-x32\...\{80B995A4-3A86-4690-98A6-563F1A788835}_is1) (Version: 2.0.0.19 - MSI)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 441.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 441.87 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA USBC Driver 1.38.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.38.831.832 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{84AD2AF7-10C8-0395-66F9-FFAEB4C5DBF1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
PUBG LITE (HKLM-x32\...\PUBG LITE_is1) (Version: 1.0.1.0 - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.34.307.2019 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8720.1 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
Spotify (HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Spotify) (Version: 1.1.22.633.g1bab253a - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)

Packages:
=========
DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation)
DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x86__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation)
Herní služby -> C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_105.1.623.0_x64__v10z8vjag6ke6 [2020-01-15] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]
Neat Office -> C:\Program Files\WindowsApps\15191PeakPlayer.NeatOffice_3.2.2.0_x86__y5c4dfz5b21fm [2019-12-18] (Any DVD & Office App)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.95.602.0_x64__mcm4njqhnhss8 [2019-12-18] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.956.0_x64__56jybvy8sckqj [2019-12-18] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.181.0_x64__dt26b99r8h8gj [2019-12-18] (Realtek Semiconductor Corp)
Xbox (Beta) -> C:\Program Files\WindowsApps\Microsoft.GamingApp_2001.1001.4.0_x64__8wekyb3d8bbwe [2020-01-14] (Microsoft Corporation) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2019-09-19] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => A:\Games1\rar\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => A:\Games1\rar\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2019-09-19] (IObit Information Technology -> IObit)
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll [2019-09-19] (IObit Information Technology -> IObit)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\nvshext.dll [2019-12-28] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => A:\Games1\rar\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => A:\Games1\rar\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-01-01 00:01 - 2020-01-01 00:01 - 096131072 _____ () [File not signed] A:\Battle.net\Battle.net.11740\libcef.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000117760 _____ () [File not signed] A:\Battle.net\Battle.net.11740\libEGL.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 004342784 _____ () [File not signed] A:\Battle.net\Battle.net.11740\libGLESv2.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000015360 _____ () [File not signed] A:\Origin\libEGL.DLL
2020-01-16 07:47 - 2020-01-16 07:47 - 003090944 _____ () [File not signed] A:\Origin\libGLESv2.dll
2019-12-19 11:12 - 2019-12-19 11:12 - 098275328 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2019-12-19 11:12 - 2019-12-19 11:12 - 000092672 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2019-12-19 11:12 - 2019-12-19 11:12 - 003922432 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000762368 _____ (The Chromium Authors) [File not signed] A:\Battle.net\Battle.net.11740\chrome_elf.dll
2019-12-19 11:12 - 2019-12-19 11:12 - 000547840 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000002560 _____ (The ICU Project) [File not signed] A:\Origin\icudt58.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 001252864 _____ (The ICU Project) [File not signed] A:\Origin\icuuc58.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] A:\Origin\LIBEAY32.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] A:\Origin\ssleay32.dll
2020-01-17 00:48 - 2020-01-07 15:15 - 001240064 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\libeay32.dll
2020-01-17 00:48 - 2020-01-07 15:15 - 000281600 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\ssleay32.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000030208 _____ (The Qt Company Ltd) [File not signed] A:\Origin\imageformats\qgif.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000032768 _____ (The Qt Company Ltd) [File not signed] A:\Origin\imageformats\qico.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000256512 _____ (The Qt Company Ltd) [File not signed] A:\Origin\imageformats\qjpeg.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000026112 _____ (The Qt Company Ltd) [File not signed] A:\Origin\imageformats\qtga.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000305152 _____ (The Qt Company Ltd) [File not signed] A:\Origin\imageformats\qtiff.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000025600 _____ (The Qt Company Ltd) [File not signed] A:\Origin\imageformats\qwbmp.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000278016 _____ (The Qt Company Ltd) [File not signed] A:\Origin\mediaservice\dsengine.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 001611264 _____ (The Qt Company Ltd) [File not signed] A:\Origin\platforms\qwindows.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 005487104 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Core.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 005841920 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Gui.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000709120 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Multimedia.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 001179136 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Network.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000207360 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Positioning.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000310272 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5PrintSupport.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 003513344 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Qml.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 003390976 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Quick.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000068096 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5QuickWidgets.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000045568 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5TextToSpeech.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 054071296 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5WebEngineCore.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000211456 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5WebEngineWidgets.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000116224 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5WebChannel.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000146432 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5WebSockets.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 005089792 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Widgets.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000184832 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Xml.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000047104 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\audio\qtaudio_windows.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000026112 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\imageformats\qgif.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000027136 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\imageformats\qico.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000243712 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\imageformats\qjpeg.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000223744 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\imageformats\qmng.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000020992 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\imageformats\qsvg.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000332288 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\imageformats\qtiff.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 001140224 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\platforms\qwindows.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000041984 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000014848 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000014848 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQml\Models.2\modelsplugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000014848 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQuick.2\qtquick2plugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000084480 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000267776 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQuick\Controls\qtquickcontrolsplugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000071680 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000211456 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000014848 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQuick\Window.2\windowplugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 004943360 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Core.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 005022208 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Gui.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000626176 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Multimedia.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000877056 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Network.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 002908672 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Qml.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 003078656 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Quick.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000096256 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5QuickControls2.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000681472 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5QuickTemplates2.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000259072 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Svg.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 004718080 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Widgets.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000439296 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5WinExtras.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000159232 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Xml.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qgif.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000034816 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qicns.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000025600 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qico.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000298496 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qjpeg.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qsvg.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000019968 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qtga.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qtiff.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000019456 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qwbmp.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qwebp.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 001126400 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\platforms\qwindows.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 004994048 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Core.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 003637248 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Gui.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 001088512 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Network.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000280576 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Positioning.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000278016 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5PrintSupport.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 002966016 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Qml.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 002796032 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Quick.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000048640 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5QuickWidgets.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000163840 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Sql.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000268288 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Svg.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 055062528 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5WebEngineCore.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000190976 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5WebEngineWidgets.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000092160 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5WebChannel.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 004590592 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Widgets.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000874496 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\sqldrivers\qsqlite.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000122368 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\styles\qwindowsvistastyle.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Rengo\Data aplikací:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\Rengo\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Rengo\Desktop\apex-legends-wraith-uhdpaper.com-4K-97.jpg
DNS Servers: 187.133.210.150
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{8701B166-5040-4042-99CB-D80671159916}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe (IObit Information Technology -> IObit)
FirewallRules: [{6C3E8599-D8C3-4068-9EA7-840F049AA2A3}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe (IObit Information Technology -> IObit)
FirewallRules: [{ADC19C25-FFE2-4202-992A-F79672F44CF0}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DBDownloader.exe (IObit Information Technology -> IObit)
FirewallRules: [{4E2ADE8C-FD59-48A9-8550-DA17C7200363}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DBDownloader.exe (IObit Information Technology -> IObit)
FirewallRules: [{180DB4D5-1CEB-4759-9F9A-73E186C3B938}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\AutoUpdate.exe (IObit Information Technology -> IObit)
FirewallRules: [{99E46FF6-D0AC-4801-A9AB-6E1E471EB1C6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\AutoUpdate.exe (IObit Information Technology -> IObit)
FirewallRules: [TCP Query User{3CBD7CD5-DAB3-484C-BC79-0CB26E2CA0D5}C:\users\rengo\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\rengo\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{3189D38A-8AAF-463A-874E-3B1C57342BDA}C:\users\rengo\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\rengo\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{2AED1E60-9E93-4897-85EC-EC8BDCBA21DD}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [TCP Query User{A4C28FD3-BF6E-420E-9F47-EF1026C740CB}C:\users\rengo\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\rengo\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{5583CD99-F135-4F05-B65B-3FC197DB86A0}C:\users\rengo\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\rengo\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E9A41DDF-A856-4F1A-8A3A-F84E5D499B3B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2C875BBA-349D-4512-9FC1-072C07085BBF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D2EF06E8-BEE1-4EF6-A1D4-00168F2C4180}] => (Allow) A:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{97B3DB91-4213-48E5-A36E-9A8E7E69528C}] => (Allow) A:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{99C986B1-EA1E-4765-9635-10A84B8B8C67}] => (Allow) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{9FDFABAA-0A80-4C91-8A2F-EE5065D021A1}] => (Allow) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{653B8CC0-9CB5-4C58-B6F1-1A5CE2DC46BD}] => (Allow) A:\Steam\steamapps\common\GarrysMod\hl2.exe () [File not signed]
FirewallRules: [{DEE34FA2-075B-4804-BBE8-A8703715EBD8}] => (Allow) A:\Steam\steamapps\common\GarrysMod\hl2.exe () [File not signed]
FirewallRules: [{A1575803-B00B-4FA3-9B1B-5B5535C4A0AD}] => (Allow) A:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{39574607-079C-41F4-96E6-1371933D9BBF}] => (Allow) A:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{45913CF9-FB57-45D4-ADAD-5FE94ED8DC87}A:\origin games\apex\r5apex.exe] => (Allow) A:\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{1A152D79-D536-48D9-AC0A-CED4082F3022}A:\origin games\apex\r5apex.exe] => (Allow) A:\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{B60F85CD-AF90-4C7E-8E45-38B3B05B6771}] => (Allow) A:\Steam\steamapps\common\Monster Hunter World\MonsterHunterWorld.exe (CAPCOM CO., LTD. -> )
FirewallRules: [{2C759AFD-EEBA-4A62-B41E-4892BEF339D7}] => (Allow) A:\Steam\steamapps\common\Monster Hunter World\MonsterHunterWorld.exe (CAPCOM CO., LTD. -> )
FirewallRules: [{EEEF8872-29F1-4053-ABF1-BD09C1999F5A}] => (Allow) A:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{D80E8F32-E5E3-4A5F-978A-92469D3C36D3}] => (Allow) A:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{DBA05181-8834-4162-AC14-A583BCAEDD53}] => (Allow) A:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{E1BBA5C5-238B-4B6D-A4D2-1026F123B97B}] => (Allow) A:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{96905A38-2F33-47E5-B618-9122B27088D2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BC1D5686-129D-4206-A403-E619216C7D4F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{316F6BDD-1DAF-4A34-848C-64AEBE5194B8}A:\games\starcraft ii\versions\base77661\sc2_x64.exe] => (Allow) A:\games\starcraft ii\versions\base77661\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{6D050A2A-FDDC-4F38-BE1E-B90F96515B56}A:\games\starcraft ii\versions\base77661\sc2_x64.exe] => (Allow) A:\games\starcraft ii\versions\base77661\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [TCP Query User{8A942F14-4644-4EBA-8133-264628AB10F0}A:\riot games\league of legends\game\league of legends.exe] => (Allow) A:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{72ACDFD5-A931-4AB4-8B22-3828ACFDF9B1}A:\riot games\league of legends\game\league of legends.exe] => (Allow) A:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{8A36ECCD-82DB-4454-9E4A-5E31F2A6E22D}A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe] => (Block) A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe () [File not signed]
FirewallRules: [UDP Query User{4A9077F5-F333-4BBE-A395-B907645C594D}A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe] => (Block) A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe () [File not signed]
FirewallRules: [{92E387F3-1232-46A3-898F-B2563988496D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{85665E35-377E-48A9-BB40-76F1F45078EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EDF5CB3D-E501-4884-BA33-435CDD7F3781}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2EC02872-C11D-4824-B8B9-D75D173BA6CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{ECBBA676-B2AA-4E7B-B03C-FD578BEB7891}] => (Allow) A:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed]
FirewallRules: [{5AD96AB8-10DC-4802-93C6-AC2E388B7C89}] => (Allow) A:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed]
FirewallRules: [TCP Query User{97FDA102-E9E8-43BA-A349-144039B35CE6}A:\games\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) A:\games\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [UDP Query User{E0525460-9EC0-4052-A234-E7D35E67A89E}A:\games\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) A:\games\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [{E134715B-AAD1-49B4-A7BA-28BAE4702013}] => (Allow) A:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B365A9DA-E73A-4E1E-A8D2-74DD1F1EED0C}] => (Allow) A:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{4FB8EC21-A492-4F6D-85CD-6A66C06072B2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

27-12-2019 13:42:27 Nainstalováno rozhraní DirectX
05-01-2020 23:49:42 Naplánovaný kontrolní bod
07-01-2020 00:17:53 Nainstalováno rozhraní DirectX
13-01-2020 12:25:29 Instalační služba modulů systému Windows
14-01-2020 19:47:34 Nainstalováno rozhraní DirectX

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/16/2020 11:04:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.18362.449, časové razítko: 0xd42474b6
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.418, časové razítko: 0x99ca0526
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000009fbad
ID chybujícího procesu: 0x1f84
Čas spuštění chybující aplikace: 0x01d5cc8fffdb6896
Cesta k chybující aplikaci: C:\Windows\system32\AUDIODG.EXE
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: e888e3e0-3ec4-425c-b137-e51feebe53c6
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/16/2020 07:49:26 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: Velikost požadované vyrovnávací paměti je větší než velikost vyrovnávací paměti předané do funkce Collect knihovny DLL rozšiřitelných čítačů C:\Windows\System32\perfts.dll pro službu LSM. Velikost dané vyrovnávací paměti: 27192; požadovaná velikost: 42608.

Error: (01/16/2020 07:46:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MSIRegister.exe, verze: 2.0.0.19, časové razítko: 0x5c821aeb
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.18362.535, časové razítko: 0x5bd9df62
Kód výjimky: 0xe0434352
Posun chyby: 0x001135d2
ID chybujícího procesu: 0x1fe4
Čas spuštění chybující aplikace: 0x01d5cc38b45b9414
Cesta k chybující aplikaci: C:\MSI\MSIRegister\MSIRegister.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: c7aa2933-2bff-4fa6-8778-23729ce42522
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/16/2020 07:46:42 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: MSIRegister.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.IOException
   na System.IO.__Error.WinIOError(Int32, System.String)
   na System.IO.FileStream.Init(System.String, System.IO.FileMode, System.IO.FileAccess, Int32, Boolean, System.IO.FileShare, Int32, System.IO.FileOptions, SECURITY_ATTRIBUTES, System.String, Boolean, Boolean, Boolean)
   na System.IO.FileStream..ctor(System.String, System.IO.FileMode, System.IO.FileAccess, System.IO.FileShare, Int32, System.IO.FileOptions, System.String, Boolean, Boolean, Boolean)
   na System.IO.StreamReader..ctor(System.String, System.Text.Encoding, Boolean, Int32, Boolean)
   na System.IO.File.InternalReadAllText(System.String, System.Text.Encoding, Boolean)
   na System.IO.File.ReadAllText(System.String)
   na msi.Toast.Client.msiToastClient.FileWatcher_Changed(System.Object, System.IO.FileSystemEventArgs)
   na System.IO.FileSystemWatcher.OnChanged(System.IO.FileSystemEventArgs)
   na System.IO.FileSystemWatcher.NotifyFileSystemEventArgs(Int32, System.String)
   na System.IO.FileSystemWatcher.CompletionStatusChanged(UInt32, UInt32, System.Threading.NativeOverlapped*)
   na System.Threading._IOCompletionCallback.PerformIOCompletionCallback(UInt32, UInt32, System.Threading.NativeOverlapped*)

Error: (01/14/2020 07:57:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.18362.449, časové razítko: 0xd42474b6
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.418, časové razítko: 0x99ca0526
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000009fbad
ID chybujícího procesu: 0x4494
Čas spuštění chybující aplikace: 0x01d5ca5151dae24f
Cesta k chybující aplikaci: C:\Windows\system32\AUDIODG.EXE
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: a906fb81-cc56-4358-b1ef-c231489f3577
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/14/2020 07:31:59 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: Velikost požadované vyrovnávací paměti je větší než velikost vyrovnávací paměti předané do funkce Collect knihovny DLL rozšiřitelných čítačů C:\Windows\System32\perfts.dll pro službu LSM. Velikost dané vyrovnávací paměti: 27640; požadovaná velikost: 36904.

Error: (01/13/2020 09:37:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.18362.449, časové razítko: 0xd42474b6
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.418, časové razítko: 0x99ca0526
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000009fbad
ID chybujícího procesu: 0x3a78
Čas spuštění chybující aplikace: 0x01d5ca3c28a1ce78
Cesta k chybující aplikaci: C:\Windows\system32\AUDIODG.EXE
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: a5c042f0-2571-499e-a8c7-a39c4b9acde2
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/13/2020 07:41:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Launcher.exe_PUBG Launcher, verze: 1.0.1.0, časové razítko: 0x5df083c7
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.18362.387, časové razítko: 0x4361b720
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000006db8e
ID chybujícího procesu: 0x604
Čas spuštění chybující aplikace: 0x01d5ca4119d5e2f1
Cesta k chybující aplikaci: A:\Games\PUBGLite\Launcher.exe
Cesta k chybujícímu modulu: C:\Windows\System32\ucrtbase.dll
ID zprávy: 80cba496-9ef3-421c-9ac1-34291ea4b2d5
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (01/15/2020 12:09:02 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9MV0B5HZVK9Z-Microsoft.GamingApp.

Error: (01/14/2020 06:05:10 AM) (Source: DCOM) (EventID: 10010) (User: RENGOMACHINE)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/14/2020 06:05:06 AM) (Source: DCOM) (EventID: 10010) (User: RENGOMACHINE)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/14/2020 06:05:06 AM) (Source: DCOM) (EventID: 10010) (User: RENGOMACHINE)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/14/2020 06:05:06 AM) (Source: DCOM) (EventID: 10010) (User: RENGOMACHINE)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/14/2020 06:05:06 AM) (Source: DCOM) (EventID: 10010) (User: RENGOMACHINE)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/14/2020 06:05:06 AM) (Source: DCOM) (EventID: 10010) (User: RENGOMACHINE)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.

Error: (01/14/2020 06:05:06 AM) (Source: DCOM) (EventID: 10010) (User: RENGOMACHINE)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
===================================
Date: 2020-01-16 09:45:13.998
Description: 
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0
Název: Trojan:Win32/Tiggre!rfn
ID: 2147723625
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: containerfile:_C:\Users\Rengo\Downloads\KovaaKs.FPS.Aim.Trainer-SiMPLEX.rar; file:_C:\Users\Rengo\Downloads\KovaaKs.FPS.Aim.Trainer-SiMPLEX.rar->KovaaKs.FPS.Aim.Trainer-SiMPLEX\SIMPLEX.EXE; file:_C:\Users\Rengo\Downloads\KovaaKs.FPS.Aim.Trainer-SiMPLEX\KovaaKs.FPS.Aim.Trainer-SiMPLEX\SIMPLEX.EXE
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Uživatel
Uživatel: RENGOMACHINE\Rengo
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.307.2430.0, AS: 1.307.2430.0, NIS: 1.307.2430.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7

Date: 2020-01-15 11:07:11.503
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {BB6A853F-4DAE-46B0-B300-7A4EF6E55536}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-01-12 14:15:57.151
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {E1C87E18-3AAC-4C68-8193-24F9D0427B84}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-01-12 14:11:16.427
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {547B9B15-D322-4549-AED7-73611870D9D9}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-01-10 14:52:31.858
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {ABE8D4E9-9D7E-4A97-8A53-4BD63698E03E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===================================

Date: 2020-01-16 20:25:40.510
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-16 19:37:09.919
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-16 18:43:50.236
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-16 18:13:19.354
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-16 11:36:42.959
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-16 10:58:35.889
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-16 10:04:04.671
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-16 10:03:58.986
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. 1.20 06/28/2019
Motherboard: Micro-Star International Co., Ltd. MPG X570 GAMING EDGE WIFI (MS-7C37)
Processor: AMD Ryzen 7 3700X 8-Core Processor 
Percentage of memory in use: 29%
Total physical RAM: 32717.13 MB
Available physical RAM: 23045.35 MB
Total Virtual: 37581.13 MB
Available Virtual: 24922.35 MB

==================== Drives ================================

Drive a: (3TB HDD) (Fixed) (Total:2785.37 GB) (Free:1095.77 GB) NTFS
Drive c: (Windows SSD 480GB) (Fixed) (Total:446.5 GB) (Free:324.36 GB) NTFS
Drive e: (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive g: (2TB HDD) (Fixed) (Total:1862.92 GB) (Free:1862.76 GB) NTFS

\\?\Volume{dc775c56-2653-4acb-986c-220584128e68}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{eabe0697-ad8b-45bd-85fa-4bf75f418ff3}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 447.1 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 59ADF17D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1862.9 GB) - (Type=07 NTFS)
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 3.

==================== End of Addition.txt =======================

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2020
Ran by Rengo (administrator) on RENGOMACHINE (Micro-Star International Co., Ltd. MS-7C37) (17-01-2020 00:59:16)
Running from C:\Users\Rengo\Downloads
Loaded Profiles: Rengo (Available Profiles: Rengo)
Platform: Windows 10 Home Version 1909 18363.535 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(A-Volute -> Nahimic) C:\Windows\System32\NahimicService.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) A:\Battle.net\Battle.net.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) A:\Battle.net\Battle.net.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) A:\Battle.net\Battle.net.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) A:\Battle.net\Battle.net.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.6926\Agent.exe
(Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\Rengo\AppData\Roaming\Dashlane\Dashlane.exe
(Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\Rengo\AppData\Roaming\Dashlane\DashlanePlugin.exe
(Discord Inc. -> Discord Inc.) C:\Users\Rengo\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Rengo\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Rengo\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Rengo\AppData\Local\Discord\app-0.0.305\Discord.exe
(Electronic Arts, Inc. -> ) A:\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) A:\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> Electronic Arts) A:\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) A:\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2001.1001.4.0_x64__8wekyb3d8bbwe\app\Xbox.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2001.1001.4.0_x64__8wekyb3d8bbwe\app\Xbox.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2001.1001.4.0_x64__8wekyb3d8bbwe\app\Xbox.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2001.1001.4.0_x64__8wekyb3d8bbwe\app\XboxAppServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBarFT.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MusNotifyIcon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spaceman.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\usocoreworker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\MSI\MSIRegister\MSIRegisterService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Spotify AB -> Spotify Ltd) C:\Users\Rengo\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Rengo\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Rengo\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Rengo\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Rengo\AppData\Roaming\Spotify\Spotify.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\Steam.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [878368 2019-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [MSIRegister] => C:\MSI\MSIRegister\MSIRegister.exe [1266872 2019-03-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [Advanced SystemCare] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [3634448 2019-11-04] (IObit Information Technology -> IObit)
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [Discord] => C:\Users\Rengo\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [Steam] => "A:\Steam\steam.exe" -silent
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [Spotify] => C:\Users\Rengo\AppData\Roaming\Spotify\Spotify.exe [22151072 2019-12-18] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36074896 2020-01-15] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [Battle.net] => "A:\Battle.net\Battle.net.exe" --autostarted
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [EADM] => "A:\Origin\Origin.exe" -AutoStart
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [Dashlane] => C:\Users\Rengo\AppData\Roaming\Dashlane\Dashlane.exe [390144 2020-01-07] (Dashlane USA, Inc. -> Dashlane, Inc.)
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [DashlanePlugin] => C:\Users\Rengo\AppData\Roaming\Dashlane\DashlanePlugin.exe [412160 2020-01-07] (Dashlane USA, Inc. -> Dashlane, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-16] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0648F781-AEFA-4427-9A4E-56ABC3A865E1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {07167797-A7D3-431C-BB0C-094C3615975E} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {0B646A0A-C9B7-4C65-9848-E8E15DAF9DA7} - System32\Tasks\update-S-1-5-21-1071696947-3555639714-3556745851-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {15AE1E04-BD46-4B52-8CE6-5D2EFECFDC46} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1A4923D6-0243-4776-8D82-CDD2B302031F} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {280C89B4-6D8D-4222-B9B5-8DC10F470D00} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe [3166992 2019-10-14] (IObit Information Technology -> IObit)
Task: {43D395BB-426E-4CD6-87B2-366D21557FFE} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\5.3.0\Scheduler.exe [147232 2018-01-26] (IObit Information Technology -> IObit)
Task: {45A94388-B926-4100-BA68-F180DC5A2ACD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-12-11] (Google Inc -> Google Inc.)
Task: {46EB880A-08F8-4BCD-B4F9-DFD2F5934754} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4F621515-FDDA-452C-888D-46442B7360F5} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {58FFE033-C11C-48EE-82B8-047DC8C10E17} - System32\Tasks\MSI_Toast_Server => C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe [31904 2019-03-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {7BB21600-29E5-4195-A70E-AEE772EEE31B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {846A70DE-B4A3-49BE-8824-F48260B6D84D} - System32\Tasks\Driver Booster SkipUAC (Rengo) => C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe [6095120 2018-03-22] (IObit Information Technology -> IObit)
Task: {852F499D-0C64-4AD0-B1FB-5A3B11DFD4C4} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {98D70CC6-A5A1-40FE-B8AE-D1A6CE7BF1B9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9A182B2C-403D-496E-8C9F-BABEE3104A46} - System32\Tasks\ASC_SkipUac_Rengo => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe [8747280 2019-11-19] (IObit Information Technology -> IObit)
Task: {9C2CD8EB-C26B-4271-8944-D40460465E0D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A0E92724-1D16-4C2D-B284-0117A0EC13E0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A7B24FBF-B0F8-4F09-A205-8B72649BDA4A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C06EAC65-FD0D-48FE-9E04-1080FCF9AF15} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C893C75D-8CEC-4E1F-AE2D-E6EB56CACD2F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CB7C9008-F03E-4482-9459-A7FAACB7A144} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-12-11] (Google Inc -> Google Inc.)
Task: {EBCEA36E-836E-47F3-B6EB-73A634BA208B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F9CF9B9F-7C9A-43AB-910A-A57B02CBC1D0} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\update-S-1-5-21-1071696947-3555639714-3556745851-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 187.133.210.150
Tcpip\..\Interfaces\{0740e8fc-8084-44aa-87b6-8aa17a8f4198}: [DhcpNameServer] 187.133.210.150

Internet Explorer:
==================

FireFox:
========
FF DefaultProfile: cbmmnjaa.default
FF ProfilePath: C:\Users\Rengo\AppData\Roaming\Mozilla\Firefox\Profiles\cbmmnjaa.default [2019-12-28]
FF ProfilePath: C:\Users\Rengo\AppData\Roaming\Mozilla\Firefox\Profiles\s0e1lk61.default-release [2020-01-16]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)

Chrome: 
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://www.seznam.cz/
CHR StartupUrls: Profile 1 -> "hxxp://seznam.cz/"
CHR DefaultSearchKeyword: Profile 1 -> google.com_
CHR Session Restore: Profile 1 -> is enabled.
CHR Profile: C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-01-17]
CHR Profile: C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-01-17]
CHR Extension: (Prezentace) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-16]
CHR Extension: (Dokumenty) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-16]
CHR Extension: (Disk Google) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-16]
CHR Extension: (YouTube) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-16]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-01-16]
CHR Extension: (Tabulky) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-16]
CHR Extension: (Command & Conquer Tiberium Alliances) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jgaeopgjojikeoiidmfaejkifhgjoooe [2020-01-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-16]
CHR Extension: (Gmail) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-16]
CHR Extension: (Chrome Media Router) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-16]
CHR Profile: C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-17]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdvancedSystemCareService13; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [1291024 2019-10-14] (IObit Information Technology -> IObit)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 GamingServices; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServices.exe [21640 2019-12-14] (Microsoft Corporation -> Microsoft Corporation)
R2 GamingServicesNet; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [21640 2019-12-14] (Microsoft Corporation -> Microsoft Corporation)
R2 ibtsiva; C:\Windows\system32\ibtsiva.exe [529696 2019-12-18] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [2020024 2019-01-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 NahimicService; C:\Windows\system32\NahimicService.exe [1742072 2019-10-10] (A-Volute -> Nahimic)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; A:\Origin\OriginClientService.exe [2475312 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; A:\Origin\OriginWebHelperService.exe [3393848 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 RtkAudioUniversalService; C:\Windows\System32\RtkAudUService64.exe [878368 2019-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2020-01-13] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4110624 2019-05-14] (Intel Corporation -> Intel® Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [45832 2019-10-01] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc)
R3 AMDPCIDev; C:\Windows\System32\drivers\AMDPCIDev.sys [32760 2019-05-29] (Advanced Micro Devices INC. -> Advanced Micro Devices)
R3 AscFileControl; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileControl.sys [40496 2019-07-02] (IObit Information Technology -> IObit)
R3 AscFileFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [45432 2019-07-15] (IObit Information Technology -> IObit)
R3 AscRegistryFilter; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [46008 2019-07-15] (IObit Information Technology -> IObit)
S3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [111112 2017-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2019-11-30] (Bluestack Systems, Inc -> Bluestack System Inc. )
R3 cpuz145; C:\Windows\temp\cpuz145\cpuz145_x64.sys [49968 2020-01-16] (CPUID -> CPUID)
R3 gameflt; C:\Windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_1b1c9965dc1c6f0f\gameflt.sys [71000 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-12-11] (Martin Malik - REALiX -> REALiX(tm))
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [186144 2019-12-18] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 iobit_monitor_server; C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [32520 2018-07-04] (IObit Information Technology -> IObit)
R3 Netwtw04; C:\Windows\System32\drivers\Netwtw04.sys [8720672 2019-12-18] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\nvlddmkm.sys [23251968 2019-12-28] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-08-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [1167768 2019-12-18] (Realtek Semiconductor Corp. -> Realtek )
R3 UcmCxUcsiNvppc; C:\Windows\System32\drivers\UcmCxUcsiNvppc.sys [715680 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [45664 2019-12-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [355760 2019-12-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-11] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [74552 2020-01-13] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 Xvdd; C:\Windows\System32\DriverStore\FileRepository\xvdd.inf_amd64_4beca0218f643d77\xvdd.sys [478256 2019-12-14] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-17 00:59 - 2020-01-17 00:59 - 000029685 _____ C:\Users\Rengo\Downloads\FRST.txt
2020-01-17 00:58 - 2020-01-17 00:59 - 000000000 ____D C:\FRST
2020-01-17 00:50 - 2020-01-17 00:50 - 000001979 _____ C:\Users\Rengo\Desktop\Dashlane.lnk
2020-01-17 00:50 - 2020-01-17 00:50 - 000001793 _____ C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane.lnk
2020-01-17 00:48 - 2020-01-17 00:48 - 000000000 ____D C:\Users\Rengo\AppData\LocalLow\Dashlane
2020-01-17 00:48 - 2020-01-17 00:48 - 000000000 ____D C:\Program Files (x86)\Dashlane
2020-01-17 00:47 - 2020-01-17 00:50 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Dashlane
2020-01-17 00:47 - 2020-01-17 00:47 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2020-01-17 00:44 - 2020-01-17 00:45 - 000907744 _____ (Dashlane Inc.) C:\Users\Rengo\Downloads\DashlaneInst.exe
2020-01-17 00:41 - 2020-01-17 00:41 - 002573312 _____ (Farbar) C:\Users\Rengo\Downloads\FRST64.exe
2020-01-16 17:24 - 2020-01-16 17:24 - 000003032 _____ C:\Windows\system32\Tasks\Driver Booster SkipUAC (Rengo)
2020-01-16 09:51 - 2020-01-16 09:51 - 000002396 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-16 09:51 - 2020-01-16 09:51 - 000002355 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-01-16 09:50 - 2020-01-16 09:50 - 001397976 _____ (Google LLC) C:\Users\Rengo\Downloads\ChromeSetup.exe
2020-01-16 09:48 - 2020-01-16 09:48 - 000319824 _____ (Mozilla) C:\Users\Rengo\Downloads\Firefox Installer (2).exe
2020-01-16 09:48 - 2020-01-16 09:48 - 000001010 _____ C:\Users\Public\Desktop\Firefox.lnk
2020-01-15 10:45 - 2020-01-15 12:08 - 000000039 _____ C:\Users\Rengo\Desktop\Nový textový dokument.TXT
2020-01-15 02:01 - 2020-01-15 18:03 - 000016326 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-01-15 02:00 - 2020-01-16 12:05 - 000060051 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-01-15 02:00 - 2020-01-16 12:05 - 000024303 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-01-15 02:00 - 2020-01-15 02:00 - 000001209 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-01-14 23:56 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-01-14 23:56 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-01-14 19:39 - 2020-01-16 21:01 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-01-14 06:05 - 2020-01-14 06:05 - 000012201 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-01-13 20:22 - 2020-01-13 20:22 - 000074552 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys
2020-01-13 20:22 - 2020-01-13 20:22 - 000000000 ____D C:\Users\Rengo\AppData\Local\ShadowTrackerExtra
2020-01-13 20:22 - 2020-01-13 20:22 - 000000000 ____D C:\Program Files\Common Files\Uncheater
2020-01-13 19:41 - 2020-01-13 19:41 - 000000686 _____ C:\Users\Rengo\Desktop\PUBG LITE.lnk
2020-01-13 19:41 - 2020-01-13 19:41 - 000000686 _____ C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PUBG LITE.lnk
2020-01-13 19:41 - 2020-01-13 19:41 - 000000000 ____D C:\ProgramData\PUBG
2020-01-13 19:40 - 2020-01-13 19:40 - 067269568 _____ ( ) C:\Users\Rengo\Downloads\PUBG-Lite-Setup.exe
2020-01-13 19:29 - 2020-01-13 19:29 - 000000582 _____ C:\Users\Public\Desktop\Origin.lnk
2020-01-13 19:29 - 2020-01-13 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2020-01-13 19:28 - 2020-01-16 21:01 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Origin
2020-01-13 19:27 - 2020-01-16 17:19 - 000000000 ____D C:\Users\Rengo\AppData\Local\Origin
2020-01-13 19:27 - 2020-01-13 19:27 - 063815408 _____ (Electronic Arts) C:\Users\Rengo\Downloads\OriginThinSetup.exe
2020-01-13 12:58 - 2020-01-13 12:58 - 000273266 _____ C:\Users\Rengo\Desktop\ceZF9_dkoyoxM6nQyoSHDXjnmn6pHRFyWe4XA0EneWPMD2yjC3UYVemYkB8XPZW20.pdf
2020-01-13 12:57 - 2020-01-13 12:57 - 000549635 _____ C:\Users\Rengo\Desktop\hyxdwypvEPyBHOxi1aymKbni2PXY8mFVBo0diM5GKWI1.pdf
2020-01-12 18:02 - 2020-01-12 18:02 - 000005583 _____ C:\Users\Rengo\Downloads\AM-- Chapter 1.txt
2020-01-10 15:32 - 2020-01-10 15:32 - 000000000 ____D C:\Users\Rengo\Downloads\Monster.Hunter.World.v20200109.Plus.22.Trainer-FLiNG
2020-01-10 15:32 - 2020-01-10 15:32 - 000000000 ____D C:\Users\Rengo\AppData\Local\FLiNGTrainer
2020-01-10 15:31 - 2020-01-10 15:31 - 000771338 _____ C:\Users\Rengo\Downloads\Monster.Hunter.World.v20200109.Plus.22.Trainer-FLiNG.rar
2020-01-09 23:22 - 2020-01-09 23:22 - 008920092 _____ C:\Users\Rengo\Downloads\Video3.MOV
2020-01-08 23:30 - 2020-01-08 23:31 - 000000059 _____ C:\Users\Rengo\Desktop\Nový textový dokument (6).TXT
2020-01-07 00:33 - 2019-12-28 08:11 - 004963480 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2020-01-07 00:33 - 2019-12-28 08:11 - 004229240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2020-01-07 00:33 - 2019-12-28 04:14 - 001729440 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-01-07 00:33 - 2019-12-28 04:14 - 001729440 _____ C:\Windows\system32\vulkaninfo.exe
2020-01-07 00:33 - 2019-12-28 04:14 - 001329568 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-01-07 00:33 - 2019-12-28 04:14 - 001329568 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2020-01-07 00:33 - 2019-12-28 04:14 - 001079200 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-01-07 00:33 - 2019-12-28 04:14 - 001079200 _____ C:\Windows\system32\vulkan-1.dll
2020-01-07 00:33 - 2019-12-28 04:14 - 000937888 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-01-07 00:33 - 2019-12-28 04:14 - 000937888 _____ C:\Windows\SysWOW64\vulkan-1.dll
2020-01-07 00:33 - 2019-12-28 04:14 - 000450176 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2020-01-07 00:33 - 2019-12-28 04:14 - 000354520 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2020-01-07 00:33 - 2019-12-28 04:13 - 011843088 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2020-01-07 00:33 - 2019-12-28 04:13 - 010169208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2020-01-07 00:33 - 2019-12-28 04:13 - 000678264 _____ C:\Windows\system32\nvofapi64.dll
2020-01-07 00:33 - 2019-12-28 04:13 - 000544976 _____ C:\Windows\SysWOW64\nvofapi.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 017462352 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 015029504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 005383184 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 004718512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 002076080 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 001570168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 001485688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 001371512 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 001145280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 001064368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 001001816 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 000824064 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 000813984 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 000685256 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 000659288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 000573784 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2020-01-07 00:33 - 2019-12-28 04:12 - 000558080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 000451320 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2020-01-07 00:33 - 2019-12-28 04:11 - 040510200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2020-01-07 00:33 - 2019-12-28 04:11 - 035380240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2020-01-07 00:33 - 2019-12-28 04:11 - 000858032 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2020-01-07 00:33 - 2019-12-24 13:03 - 000076477 _____ C:\Windows\system32\nvinfo.pb
2020-01-07 00:28 - 2020-01-07 00:28 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000004106 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2019-12-08 15:47 - 002859872 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2020-01-07 00:28 - 2019-12-08 15:47 - 002221064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2020-01-05 21:15 - 2020-01-05 21:15 - 000000639 _____ C:\Users\Rengo\Desktop\KovaaK's FPS Aim Trainer.lnk
2020-01-05 21:15 - 2020-01-05 21:15 - 000000000 ____D C:\Users\Rengo\AppData\Local\FPSAimTrainer
2020-01-05 21:15 - 2020-01-05 21:15 - 000000000 ____D C:\Users\Public\Documents\Steam
2020-01-05 21:13 - 2020-01-05 21:14 - 000000048 _____ C:\Users\Rengo\AppData\Roaming\~SiMPLEX.ini
2020-01-05 21:11 - 2020-01-05 21:11 - 000000000 ____D C:\Users\Rengo\Downloads\KovaaKs.FPS.Aim.Trainer-SiMPLEX
2020-01-05 21:08 - 2020-01-05 21:08 - 000000066 _____ C:\Users\Rengo\Desktop\Nový textový dokument (5).TXT
2020-01-05 14:45 - 2020-01-05 14:45 - 000000000 ____D C:\Users\Rengo\Downloads\MHWResetCRC
2020-01-05 14:45 - 2020-01-05 14:45 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\WinRAR
2020-01-05 14:45 - 2020-01-05 14:45 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-01-05 14:45 - 2020-01-05 14:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-01-05 14:44 - 2020-01-05 14:44 - 003401208 _____ C:\Users\Rengo\Downloads\winrar-x64-580cz.exe
2020-01-05 14:44 - 2020-01-05 14:44 - 000071029 _____ C:\Users\Rengo\Downloads\MHWResetCRC.rar
2020-01-05 14:40 - 2020-01-05 14:40 - 001304448 _____ C:\Users\Rengo\Downloads\MonsterHunterWorld.CT
2020-01-05 14:25 - 2020-01-05 14:25 - 000000652 _____ C:\Users\Rengo\Desktop\Cheat Engine.lnk
2020-01-05 14:25 - 2020-01-05 14:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 7.0
2020-01-05 14:24 - 2020-01-05 14:24 - 018734680 _____ (Cheat Engine ) C:\Users\Rengo\Downloads\CheatEngine70.exe
2020-01-02 12:35 - 2020-01-02 12:36 - 000000000 ____D C:\Users\Rengo\Desktop\Nová složka (3)
2020-01-01 03:25 - 2020-01-01 03:25 - 000001583 _____ C:\Users\Public\Desktop\League of Legends.lnk
2020-01-01 03:24 - 2020-01-01 03:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-01-01 03:24 - 2020-01-01 03:24 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-01-01 03:23 - 2020-01-01 03:25 - 000000000 ____D C:\Users\Rengo\AppData\Local\Riot Games
2020-01-01 03:23 - 2020-01-01 03:23 - 068584616 _____ C:\Users\Rengo\Downloads\Install League of Legends eune.exe
2020-01-01 03:22 - 2020-01-01 03:23 - 000000000 ____D C:\ProgramData\Riot Games
2020-01-01 00:12 - 2020-01-01 00:12 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Blizzard Entertainment
2020-01-01 00:11 - 2020-01-01 00:11 - 000000505 _____ C:\Users\Public\Desktop\StarCraft II.lnk
2020-01-01 00:11 - 2020-01-01 00:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2020-01-01 00:02 - 2020-01-01 00:12 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2020-01-01 00:01 - 2020-01-17 01:00 - 000000000 ____D C:\Users\Rengo\AppData\Local\Battle.net
2020-01-01 00:01 - 2020-01-01 00:02 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Battle.net
2020-01-01 00:01 - 2020-01-01 00:01 - 000000453 _____ C:\Users\Public\Desktop\Battle.net.lnk
2020-01-01 00:01 - 2020-01-01 00:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2019-12-31 23:55 - 2019-12-31 23:55 - 005229552 _____ (Blizzard Entertainment) C:\Users\Rengo\Downloads\StarCraft-II-Setup.exe
2019-12-31 23:55 - 2019-12-31 23:55 - 004902896 _____ (Blizzard Entertainment) C:\Users\Rengo\Downloads\Battle.net-Setup.exe
2019-12-29 01:53 - 2019-12-29 01:53 - 004934061 _____ C:\Users\Rengo\Downloads\Jak-jsem-šel-do-důchodu-mladý.pdf
2019-12-28 02:44 - 2019-12-28 02:44 - 000319848 _____ (Mozilla) C:\Users\Rengo\Downloads\Firefox Installer (1).exe
2019-12-28 01:08 - 2020-01-16 17:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-12-28 01:08 - 2020-01-16 09:52 - 000000000 ____D C:\Users\Rengo\AppData\LocalLow\Mozilla
2019-12-28 01:08 - 2020-01-16 09:48 - 000001022 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-12-28 01:08 - 2020-01-16 09:48 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-12-28 01:08 - 2019-12-28 01:08 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Mozilla
2019-12-28 01:08 - 2019-12-28 01:08 - 000000000 ____D C:\Users\Rengo\AppData\Local\Mozilla
2019-12-28 01:08 - 2019-12-28 01:08 - 000000000 ____D C:\ProgramData\Mozilla
2019-12-28 01:07 - 2019-12-28 01:07 - 000319848 _____ (Mozilla) C:\Users\Rengo\Downloads\Firefox Installer.exe
2019-12-27 13:43 - 2019-12-27 13:43 - 000000697 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2019-12-27 13:43 - 2019-12-27 13:43 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-12-27 13:43 - 2019-12-27 13:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apex Legends
2019-12-23 19:15 - 2019-12-23 19:15 - 000000000 ____D C:\Users\Rengo\AppData\Local\ElevatedDiagnostics
2019-12-23 07:48 - 2019-12-23 07:48 - 000000017 _____ C:\Users\Rengo\AppData\Local\resmon.resmoncfg
2019-12-20 19:26 - 2019-12-20 19:26 - 001573568 _____ C:\Users\Rengo\Downloads\SteamSetup.exe
2019-12-20 10:28 - 2019-12-20 10:28 - 000000000 ____D C:\Windows\SysWOW64\directx
2019-12-20 10:28 - 2019-12-20 10:28 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2019-12-20 10:27 - 2019-12-20 17:54 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2019-12-20 10:27 - 2019-12-20 10:28 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2019-12-20 10:27 - 2019-12-20 10:27 - 000000000 ____D C:\Users\Rengo\Downloads\MSIAfterburnerSetup
2019-12-20 10:27 - 2019-12-20 10:27 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2019-12-20 10:26 - 2019-12-20 10:26 - 050449037 _____ C:\Users\Rengo\Downloads\MSIAfterburnerSetup.zip
2019-12-20 03:24 - 2019-12-24 03:47 - 000015836 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2019-12-19 13:04 - 2019-12-19 13:04 - 000000273 _____ C:\Users\Rengo\Desktop\The Outer Worlds.url
2019-12-19 12:15 - 2019-12-19 13:44 - 000000000 ____D C:\ESD
2019-12-19 12:15 - 2019-12-19 12:15 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2019-12-19 12:15 - 2019-12-19 12:15 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-12-19 12:15 - 2019-12-19 12:15 - 000000000 ____D C:\Program Files\MSBuild
2019-12-19 12:15 - 2019-12-19 12:15 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-12-19 12:14 - 2019-12-19 12:14 - 001166488 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2019-12-19 12:14 - 2019-12-19 12:14 - 000778912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2019-12-19 12:14 - 2019-12-19 12:14 - 000124568 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2019-12-19 12:14 - 2019-12-19 12:14 - 000103072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-12-19 12:14 - 2019-12-19 12:14 - 000035592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2019-12-19 12:14 - 2019-12-19 12:14 - 000035592 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2019-12-19 12:13 - 2019-12-19 12:13 - 000000000 ___HD C:\$Windows.~WS
2019-12-19 12:13 - 2019-12-19 12:13 - 000000000 ____D C:\$WINDOWS.~BT
2019-12-19 12:11 - 2019-12-19 12:13 - 019255000 _____ (Microsoft Corporation) C:\Users\Rengo\Downloads\MediaCreationTool1909.exe
2019-12-19 11:11 - 2020-01-13 20:22 - 000000000 ____D C:\Users\Rengo\AppData\Local\UnrealEngine
2019-12-19 11:11 - 2019-12-19 11:13 - 000000000 ____D C:\ProgramData\Epic
2019-12-19 11:11 - 2019-12-19 11:11 - 043749376 _____ C:\Users\Rengo\Downloads\EpicInstaller-10.7.0.msi
2019-12-19 11:11 - 2019-12-19 11:11 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2019-12-19 11:11 - 2019-12-19 11:11 - 000001258 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2019-12-19 11:11 - 2019-12-19 11:11 - 000000000 ____D C:\Users\Rengo\AppData\Local\UnrealEngineLauncher
2019-12-19 11:11 - 2019-12-19 11:11 - 000000000 ____D C:\Users\Rengo\AppData\Local\EpicGamesLauncher
2019-12-19 11:11 - 2019-12-19 11:11 - 000000000 ____D C:\Program Files (x86)\Epic Games
2019-12-19 11:08 - 2019-12-19 11:08 - 003310912 _____ (AMD ) C:\Users\Rengo\Downloads\AMD PVT Setup eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6MTU1MjkzOSwiaWF0IjoxNTc2NzUwMTMzLCJleHAiOjE1NzY3NTE5MzN9.guxGqbnP7-3I0WjwkBuD_HG5EXpACLyG48Q9-Vm2TyY.exe
2019-12-18 23:41 - 2019-12-18 23:41 - 000438560 _____ (Intel Corporation) C:\Windows\system32\ibtproppage.dll
2019-12-18 23:40 - 2019-12-18 23:40 - 002074588 _____ C:\Windows\system32\Drivers\Netwfw04.dat
2019-12-18 23:40 - 2019-12-18 23:40 - 001086240 _____ (Intel Corporation) C:\Windows\system32\IntelIHVRouter04.dll
2019-12-18 18:28 - 2019-12-18 18:29 - 000000000 ____D C:\Users\Rengo\Downloads\Nová složka
2019-12-18 17:42 - 2019-12-19 00:19 - 000000414 _____ C:\Windows\Tasks\update-sys.job
2019-12-18 17:42 - 2019-12-19 00:19 - 000000414 _____ C:\Windows\Tasks\update-S-1-5-21-1071696947-3555639714-3556745851-1001.job
2019-12-18 17:42 - 2019-12-18 17:42 - 000003404 _____ C:\Windows\system32\Tasks\update-S-1-5-21-1071696947-3555639714-3556745851-1001
2019-12-18 17:42 - 2019-12-18 17:42 - 000003340 _____ C:\Windows\system32\Tasks\update-sys
2019-12-18 17:42 - 2019-12-18 17:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2019-12-18 17:36 - 2020-01-16 07:46 - 000000000 ____D C:\Users\Rengo\AppData\Local\CrashDumps
2019-12-18 17:35 - 2019-12-18 20:37 - 000000029 _____ C:\Users\Rengo\Desktop\Windows 10.TXT
2019-12-18 17:27 - 2019-12-18 17:27 - 000000000 ___HD C:\$SysReset
2019-12-18 10:47 - 2019-12-18 17:42 - 000000424 _____ C:\Users\Rengo\AppData\Local\UserProducts.xml
2019-12-18 10:47 - 2019-12-18 10:47 - 000000000 ____D C:\Program Files (x86)\Skillbrains
2019-12-18 08:16 - 2019-12-07 05:31 - 000715680 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\UcmCxUcsiNvppc.sys
2019-12-18 08:16 - 2019-12-07 05:31 - 000047032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2019-12-18 08:15 - 2019-12-07 05:31 - 000081581 _____ C:\Windows\system32\nvidia-smi.1.pdf
2019-12-18 08:02 - 2019-12-18 08:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-12-18 08:02 - 2019-12-08 15:47 - 001321496 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2019-12-18 08:02 - 2019-12-07 15:21 - 000174560 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2019-12-18 08:02 - 2019-12-07 15:21 - 000149472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2019-12-18 08:02 - 2019-12-05 22:24 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2019-12-18 08:02 - 2019-08-23 04:08 - 000075600 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2019-12-18 08:02 - 2019-04-17 08:42 - 000069840 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-17 00:49 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-17 00:23 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp
2020-01-16 22:21 - 2019-12-16 19:58 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Spotify
2020-01-16 21:01 - 2019-12-11 14:33 - 000000000 ____D C:\ProgramData\Origin
2020-01-16 20:03 - 2019-12-11 03:53 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-01-16 18:16 - 2019-12-16 19:59 - 000000000 ____D C:\Users\Rengo\AppData\Local\Spotify
2020-01-16 17:25 - 2019-12-11 03:59 - 001694640 _____ C:\Windows\system32\PerfStringBackup.INI
2020-01-16 17:25 - 2019-03-19 12:55 - 000717182 _____ C:\Windows\system32\perfh005.dat
2020-01-16 17:25 - 2019-03-19 12:55 - 000145262 _____ C:\Windows\system32\perfc005.dat
2020-01-16 17:25 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF
2020-01-16 17:24 - 2019-12-11 05:10 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-16 17:19 - 2019-12-11 03:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-01-16 12:05 - 2019-03-19 05:37 - 000524288 _____ C:\Windows\system32\config\BBI
2020-01-16 09:51 - 2019-12-11 04:13 - 000000000 ____D C:\Program Files (x86)\Google
2020-01-15 12:23 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness
2020-01-15 12:16 - 2019-12-11 04:12 - 000000000 ____D C:\ProgramData\Packages
2020-01-15 12:16 - 2019-12-11 04:02 - 000000000 ____D C:\Users\Rengo\AppData\Local\PlaceholderTileLogoFolder
2020-01-15 12:16 - 2019-12-11 03:59 - 000000000 ____D C:\Users\Rengo\AppData\Local\Packages
2020-01-15 12:16 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-14 23:58 - 2019-12-11 06:11 - 000000000 ____D C:\Windows\system32\MRT
2020-01-14 23:57 - 2019-12-11 06:11 - 120202352 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-01-14 21:57 - 2019-12-11 14:28 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Discord
2020-01-13 22:43 - 2019-12-11 14:36 - 000000000 ____D C:\Users\Rengo\AppData\Local\D3DSCache
2020-01-12 01:45 - 2019-12-11 22:24 - 000000759 _____ C:\Users\Rengo\Desktop\ACOdyssey – zástupce.lnk
2020-01-09 19:51 - 2019-12-11 04:54 - 000000000 ____D C:\ProgramData\ProductData
2020-01-07 00:28 - 2019-12-11 05:10 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-01-07 00:28 - 2019-12-11 04:04 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-01-07 00:28 - 2019-12-11 04:04 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-01-02 12:35 - 2019-12-11 04:39 - 000000000 ____D C:\Users\Rengo\Desktop\screeny-hry
2020-01-02 12:34 - 2019-12-11 04:38 - 000000000 ____D C:\Users\Rengo\Desktop\obr
2020-01-02 12:34 - 2019-12-11 04:38 - 000000000 ____D C:\Users\Rengo\Desktop\meme
2020-01-01 00:12 - 2019-12-11 15:04 - 000000000 ____D C:\Users\Rengo\AppData\Local\Blizzard Entertainment
2019-12-28 01:05 - 2019-12-11 04:06 - 000000000 ____D C:\ProgramData\Package Cache
2019-12-21 22:48 - 2019-12-11 15:01 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\uTorrent
2019-12-20 21:14 - 2019-12-11 03:58 - 000000000 ____D C:\Users\Rengo
2019-12-20 20:16 - 2019-12-15 23:11 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-12-20 20:14 - 2019-12-11 03:53 - 000258176 _____ C:\Windows\system32\FNTCACHE.DAT
2019-12-20 20:00 - 2019-12-11 14:38 - 000000556 _____ C:\Users\Public\Desktop\Steam.lnk
2019-12-19 20:37 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\LiveKernelReports
2019-12-19 13:44 - 2019-12-11 03:53 - 000000000 ____D C:\Windows\Panther
2019-12-19 12:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\MUI
2019-12-19 12:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\MUI
2019-12-19 11:09 - 2019-12-14 00:59 - 000001110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Product Verification Tool.lnk
2019-12-19 11:09 - 2019-12-14 00:59 - 000000000 ____D C:\Program Files\AMDProduct Verification Tool
2019-12-18 23:41 - 2019-05-15 20:14 - 000529696 _____ (Intel Corporation) C:\Windows\system32\ibtsiva.exe
2019-12-18 23:41 - 2019-05-15 20:14 - 000186144 _____ (Intel Corporation) C:\Windows\system32\Drivers\ibtusb.sys
2019-12-18 23:40 - 2019-12-11 05:47 - 001167768 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2019-12-18 23:40 - 2019-05-17 11:54 - 008720672 _____ (Intel Corporation) C:\Windows\system32\Drivers\Netwtw04.sys
2019-12-18 18:21 - 2019-12-16 19:59 - 000001836 _____ C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2019-12-18 17:32 - 2019-12-11 05:49 - 000000000 ___HD C:\Windows\system32\WLANProfiles
2019-12-18 17:32 - 2019-12-11 04:54 - 000000000 ____D C:\Users\Rengo\AppData\LocalLow\IObit
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\PrintDialog
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Sysprep
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Keywords
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\DDFs
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\appraiser
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellExperiences
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellComponents
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\DiagTrack
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\Containers
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr
2019-12-18 17:31 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\registration
2019-12-18 08:17 - 2019-12-11 05:11 - 000000000 ____D C:\Users\Rengo\AppData\Local\NVIDIA
2019-12-18 08:04 - 2019-12-11 05:11 - 000000000 ____D C:\Users\Rengo\AppData\Local\NVIDIA Corporation

==================== Files in the root of some directories ========

2019-12-12 04:15 - 2019-12-14 00:37 - 000000275 _____ () C:\ProgramData\fontcacheev1.dat
2020-01-05 21:13 - 2020-01-05 21:14 - 000000048 _____ () C:\Users\Rengo\AppData\Roaming\~SiMPLEX.ini
2019-12-23 07:48 - 2019-12-23 07:48 - 000000017 _____ () C:\Users\Rengo\AppData\Local\resmon.resmoncfg
2019-12-18 10:47 - 2019-12-18 10:47 - 000000003 _____ () C:\Users\Rengo\AppData\Local\updater.log
2019-12-18 10:47 - 2019-12-18 17:42 - 000000424 _____ () C:\Users\Rengo\AppData\Local\UserProducts.xml

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118191
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

3perry3
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 17 led 2020 00:33

Re: Prosím o kontrolu logu

#3 Příspěvek od 3perry3 »

To je to co mi vyplivl adwcleaner.

Kód: Vybrat vše

# -------------------------------
# Malwarebytes AdwCleaner 8.0.1.0
# -------------------------------
# Build:    12-17-2019
# Database: 2020-01-15.2 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    01-17-2020
# Duration: 00:00:00
# OS:       Windows 10 Home
# Cleaned:  1
# Failed:   1


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

Deleted       MyStart
Not Deleted   MyStart

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4860 octets] - [17/01/2020 01:29:13]
AdwCleaner[C00].txt - [4390 octets] - [17/01/2020 01:30:02]
AdwCleaner[S01].txt - [1495 octets] - [17/01/2020 20:51:41]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118191
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu

#4 Příspěvek od Rudy »

Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

3perry3
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 17 led 2020 00:33

Re: Prosím o kontrolu logu

#5 Příspěvek od 3perry3 »

Zde jsou nové logy.

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2020
Ran by Rengo (administrator) on RENGOMACHINE (Micro-Star International Co., Ltd. MS-7C37) (17-01-2020 22:33:40)
Running from C:\Users\Rengo\Downloads
Loaded Profiles: Rengo (Available Profiles: Rengo)
Platform: Windows 10 Home Version 1909 18363.592 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(A-Volute -> Nahimic) C:\Windows\System32\NahimicService.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) A:\Battle.net\Battle.net.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) A:\Battle.net\Battle.net.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) A:\Battle.net\Battle.net.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) A:\Battle.net\Battle.net.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.6926\Agent.exe
(Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\Rengo\AppData\Roaming\Dashlane\Dashlane.exe
(Dashlane USA, Inc. -> Dashlane, Inc.) C:\Users\Rengo\AppData\Roaming\Dashlane\DashlanePlugin.exe
(Discord Inc. -> Discord Inc.) C:\Users\Rengo\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Rengo\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Rengo\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Rengo\AppData\Local\Discord\app-0.0.305\Discord.exe
(EasyAntiCheat Oy -> EasyAntiCheat Ltd) C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
(Electronic Arts, Inc. -> ) A:\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) A:\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> Electronic Arts) A:\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) A:\Origin\OriginWebHelperService.exe
(Electronic Arts, Inc. -> Respawn Entertainment) A:\Origin Games\Apex\r5apex.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Kilonova LLC -> Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.5.0.4\Lightshot.exe
(Malwarebytes Inc -> Malwarebytes) C:\Users\Rengo\Downloads\adwcleaner_8.0.1.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2001.1001.4.0_x64__8wekyb3d8bbwe\app\Xbox.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2001.1001.4.0_x64__8wekyb3d8bbwe\app\Xbox.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2001.1001.4.0_x64__8wekyb3d8bbwe\app\Xbox.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingApp_2001.1001.4.0_x64__8wekyb3d8bbwe\app\XboxAppServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServices.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBarFT.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\spaceman.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\MSI\MSIRegister\MSIRegisterService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Spotify AB -> Spotify Ltd) C:\Users\Rengo\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Rengo\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Rengo\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Rengo\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Rengo\AppData\Roaming\Spotify\Spotify.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) A:\Steam\Steam.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [878368 2019-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [MSIRegister] => C:\MSI\MSIRegister\MSIRegister.exe [1266872 2019-03-08] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226728 2019-07-21] (Kilonova LLC -> )
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [Advanced SystemCare] => "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [Discord] => C:\Users\Rengo\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [Steam] => "A:\Steam\steam.exe" -silent
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [Spotify] => C:\Users\Rengo\AppData\Roaming\Spotify\Spotify.exe [22202272 2020-01-17] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36074896 2020-01-15] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [Battle.net] => "A:\Battle.net\Battle.net.exe" --autostarted
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [EADM] => "A:\Origin\Origin.exe" -AutoStart
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [Dashlane] => C:\Users\Rengo\AppData\Roaming\Dashlane\Dashlane.exe [390144 2020-01-07] (Dashlane USA, Inc. -> Dashlane, Inc.)
HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Run: [DashlanePlugin] => C:\Users\Rengo\AppData\Roaming\Dashlane\DashlanePlugin.exe [412160 2020-01-07] (Dashlane USA, Inc. -> Dashlane, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-16] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0648F781-AEFA-4427-9A4E-56ABC3A865E1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {07167797-A7D3-431C-BB0C-094C3615975E} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {0B646A0A-C9B7-4C65-9848-E8E15DAF9DA7} - System32\Tasks\update-S-1-5-21-1071696947-3555639714-3556745851-1001 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [414872 2017-04-12] (OOO Lightshot -> TODO: <Company name>)
Task: {15AE1E04-BD46-4B52-8CE6-5D2EFECFDC46} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1A4923D6-0243-4776-8D82-CDD2B302031F} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {280C89B4-6D8D-4222-B9B5-8DC10F470D00} - System32\Tasks\ASC_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {45A94388-B926-4100-BA68-F180DC5A2ACD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-12-11] (Google Inc -> Google Inc.)
Task: {46EB880A-08F8-4BCD-B4F9-DFD2F5934754} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4F621515-FDDA-452C-888D-46442B7360F5} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {58FFE033-C11C-48EE-82B8-047DC8C10E17} - System32\Tasks\MSI_Toast_Server => C:\Program Files (x86)\MSI\MSI Toast Server\MSIToastServer.exe [31904 2019-03-05] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
Task: {7BB21600-29E5-4195-A70E-AEE772EEE31B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {852F499D-0C64-4AD0-B1FB-5A3B11DFD4C4} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {98D70CC6-A5A1-40FE-B8AE-D1A6CE7BF1B9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9A182B2C-403D-496E-8C9F-BABEE3104A46} - System32\Tasks\ASC_SkipUac_Rengo => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {9C2CD8EB-C26B-4271-8944-D40460465E0D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A0E92724-1D16-4C2D-B284-0117A0EC13E0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A7B24FBF-B0F8-4F09-A205-8B72649BDA4A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C06EAC65-FD0D-48FE-9E04-1080FCF9AF15} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C893C75D-8CEC-4E1F-AE2D-E6EB56CACD2F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CB7C9008-F03E-4482-9459-A7FAACB7A144} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-12-11] (Google Inc -> Google Inc.)
Task: {EBCEA36E-836E-47F3-B6EB-73A634BA208B} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F9CF9B9F-7C9A-43AB-910A-A57B02CBC1D0} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\update-S-1-5-21-1071696947-3555639714-3556745851-1001.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 187.133.210.150
Tcpip\..\Interfaces\{0740e8fc-8084-44aa-87b6-8aa17a8f4198}: [DhcpNameServer] 187.133.210.150

Internet Explorer:
==================

FireFox:
========
FF DefaultProfile: cbmmnjaa.default
FF ProfilePath: C:\Users\Rengo\AppData\Roaming\Mozilla\Firefox\Profiles\cbmmnjaa.default [2019-12-28]
FF ProfilePath: C:\Users\Rengo\AppData\Roaming\Mozilla\Firefox\Profiles\s0e1lk61.default-release [2020-01-16]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)

Chrome: 
=======
CHR DefaultProfile: Profile 1
CHR HomePage: Profile 1 -> hxxp://www.seznam.cz/
CHR StartupUrls: Profile 1 -> "hxxp://seznam.cz/"
CHR DefaultSearchKeyword: Profile 1 -> google.com_
CHR Session Restore: Profile 1 -> is enabled.
CHR Profile: C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-01-17]
CHR Profile: C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-01-17]
CHR Extension: (Prezentace) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-16]
CHR Extension: (Dokumenty) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-16]
CHR Extension: (Disk Google) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-16]
CHR Extension: (YouTube) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-16]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-01-16]
CHR Extension: (Dashlane - Password Manager) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2020-01-17]
CHR Extension: (Tabulky) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-16]
CHR Extension: (Command & Conquer Tiberium Alliances) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jgaeopgjojikeoiidmfaejkifhgjoooe [2020-01-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-16]
CHR Extension: (Gmail) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-16]
CHR Extension: (Chrome Media Router) - C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-16]
CHR Profile: C:\Users\Rengo\AppData\Local\Google\Chrome\User Data\System Profile [2020-01-17]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-11-12] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 GamingServices; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServices.exe [21640 2019-12-14] (Microsoft Corporation -> Microsoft Corporation)
R2 GamingServicesNet; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [21640 2019-12-14] (Microsoft Corporation -> Microsoft Corporation)
R2 ibtsiva; C:\Windows\system32\ibtsiva.exe [529696 2019-12-18] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 MSIREGISTER_MR; C:\MSI\MSIRegister\MSIRegisterService.exe [2020024 2019-01-03] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 NahimicService; C:\Windows\system32\NahimicService.exe [1742072 2019-10-10] (A-Volute -> Nahimic)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; A:\Origin\OriginClientService.exe [2475312 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; A:\Origin\OriginWebHelperService.exe [3393848 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 RtkAudioUniversalService; C:\Windows\System32\RtkAudUService64.exe [878368 2019-06-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 uncheater_bgl; C:\Program Files\Common Files\Uncheater\uncheater_bgl.exe [2097008 2020-01-13] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4110624 2019-05-14] (Intel Corporation -> Intel® Corporation)
S2 AdvancedSystemCareService13; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [X]
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [45832 2019-10-01] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc)
R3 AMDPCIDev; C:\Windows\System32\drivers\AMDPCIDev.sys [32760 2019-05-29] (Advanced Micro Devices INC. -> Advanced Micro Devices)
S3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [111112 2017-11-17] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2019-11-30] (Bluestack Systems, Inc -> Bluestack System Inc. )
S3 cpuz145; C:\Windows\temp\cpuz145\cpuz145_x64.sys [49968 2020-01-16] (CPUID -> CPUID)
R3 EasyAntiCheatSys; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.sys [1291072 2020-01-17] (EasyAntiCheat Oy -> EasyAntiCheat Oy)
R3 gameflt; C:\Windows\System32\DriverStore\FileRepository\gameflt.inf_amd64_1b1c9965dc1c6f0f\gameflt.sys [71000 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-12-11] (Martin Malik - REALiX -> REALiX(tm))
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [186144 2019-12-18] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 Netwtw04; C:\Windows\System32\drivers\Netwtw04.sys [8720672 2019-12-18] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\nvlddmkm.sys [23251968 2019-12-28] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [75600 2019-08-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [1167768 2019-12-18] (Realtek Semiconductor Corp. -> Realtek )
R3 UcmCxUcsiNvppc; C:\Windows\System32\drivers\UcmCxUcsiNvppc.sys [715680 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [45664 2019-12-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [355760 2019-12-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-11] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\Windows\xhunter1.sys [74552 2020-01-13] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 Xvdd; C:\Windows\System32\DriverStore\FileRepository\xvdd.inf_amd64_4beca0218f643d77\xvdd.sys [478256 2019-12-14] (Microsoft Windows -> Microsoft Corporation)
S3 AscFileControl; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileControl.sys [X]
S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X]
S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X]
S3 iobit_monitor_server; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-17 22:33 - 2020-01-17 22:34 - 000028010 _____ C:\Users\Rengo\Downloads\FRST.txt
2020-01-17 21:51 - 2020-01-17 21:51 - 000022240 _____ (EasyAntiCheat Oy) C:\Windows\system32\eac_usermode_12901990093577.dll
2020-01-17 21:05 - 2020-01-17 21:05 - 000615434 _____ C:\Users\Rengo\Downloads\Automaticke_Vypnuti_PC (2).zip
2020-01-17 20:51 - 2020-01-17 20:51 - 000000385 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-01-17 20:50 - 2020-01-17 20:50 - 000615434 _____ C:\Users\Rengo\Downloads\Automaticke_Vypnuti_PC (1).zip
2020-01-17 20:46 - 2020-01-17 20:48 - 000013983 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-01-17 20:46 - 2020-01-17 20:46 - 000011067 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-01-17 20:46 - 2020-01-17 20:46 - 000001209 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-01-17 01:49 - 2020-01-17 01:49 - 000615434 _____ C:\Users\Rengo\Downloads\Automaticke_Vypnuti_PC.zip
2020-01-17 01:49 - 2020-01-17 01:49 - 000000000 ____D C:\Users\Rengo\Downloads\Automaticke_Vypnuti_PC
2020-01-17 01:28 - 2020-01-17 01:30 - 000000000 ____D C:\AdwCleaner
2020-01-17 01:28 - 2020-01-17 01:28 - 008237744 _____ (Malwarebytes) C:\Users\Rengo\Downloads\adwcleaner_8.0.1.exe
2020-01-17 01:01 - 2020-01-17 01:01 - 000051786 _____ C:\Users\Rengo\Desktop\Addition.txt
2020-01-17 00:59 - 2020-01-17 01:01 - 000058337 _____ C:\Users\Rengo\Desktop\FRST.txt
2020-01-17 00:58 - 2020-01-17 22:33 - 000000000 ____D C:\FRST
2020-01-17 00:50 - 2020-01-17 00:50 - 000001979 _____ C:\Users\Rengo\Desktop\Dashlane.lnk
2020-01-17 00:50 - 2020-01-17 00:50 - 000001793 _____ C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane.lnk
2020-01-17 00:48 - 2020-01-17 00:48 - 000000000 ____D C:\Users\Rengo\AppData\LocalLow\Dashlane
2020-01-17 00:48 - 2020-01-17 00:48 - 000000000 ____D C:\Program Files (x86)\Dashlane
2020-01-17 00:47 - 2020-01-17 00:50 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Dashlane
2020-01-17 00:47 - 2020-01-17 00:47 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2020-01-17 00:44 - 2020-01-17 00:45 - 000907744 _____ (Dashlane Inc.) C:\Users\Rengo\Downloads\DashlaneInst.exe
2020-01-17 00:41 - 2020-01-17 00:41 - 002573312 _____ (Farbar) C:\Users\Rengo\Downloads\FRST64.exe
2020-01-17 00:21 - 2020-01-17 00:21 - 025900032 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 025444352 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 022627840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 019849216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 018020352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 008012800 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 007754752 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 007016448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 006520480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 005913600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 002494464 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 001610752 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 001399096 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-01-17 00:21 - 2020-01-17 00:21 - 001151816 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 001106944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 001098720 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 001072952 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-01-17 00:21 - 2020-01-17 00:21 - 001020032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000852480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000842752 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000689664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000673792 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000671232 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000571392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000432256 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000363840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\sti_ci.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2020-01-17 00:21 - 2020-01-17 00:21 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\wiadss.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000127520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadss.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enterpriseresourcemanager.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\wiatrace.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiatrace.dll
2020-01-17 00:21 - 2020-01-17 00:21 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 009928208 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-01-17 00:20 - 2020-01-17 00:20 - 007600448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 003729408 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-01-17 00:20 - 2020-01-17 00:20 - 003703296 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 003263488 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 002870784 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 002801152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-01-17 00:20 - 2020-01-17 00:20 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-01-17 00:20 - 2020-01-17 00:20 - 002561536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 002473976 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 002305536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 001985928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 001835008 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 001697280 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 001664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 001655880 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 001330952 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 001051664 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000921600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000896512 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000851456 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-01-17 00:20 - 2020-01-17 00:20 - 000678712 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000670720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2020-01-17 00:20 - 2020-01-17 00:20 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-01-17 00:20 - 2020-01-17 00:20 - 000542496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2020-01-17 00:20 - 2020-01-17 00:20 - 000400696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-01-17 00:20 - 2020-01-17 00:20 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000379392 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000368128 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2020-01-17 00:20 - 2020-01-17 00:20 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticLogCSP.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-01-17 00:20 - 2020-01-17 00:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\ConhostV1.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000271872 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2020-01-17 00:20 - 2020-01-17 00:20 - 000233472 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000211968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2020-01-17 00:20 - 2020-01-17 00:20 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000162696 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000127064 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000102400 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000097280 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000089536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\enterpriseresourcemanager.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2020-01-17 00:20 - 2020-01-17 00:20 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-17 00:20 - 2020-01-17 00:20 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WSDScan.sys
2020-01-17 00:20 - 2020-01-17 00:20 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-01-16 09:51 - 2020-01-16 09:51 - 000002396 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-16 09:51 - 2020-01-16 09:51 - 000002355 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-01-16 09:50 - 2020-01-16 09:50 - 001397976 _____ (Google LLC) C:\Users\Rengo\Downloads\ChromeSetup.exe
2020-01-16 09:48 - 2020-01-16 09:48 - 000319824 _____ (Mozilla) C:\Users\Rengo\Downloads\Firefox Installer (2).exe
2020-01-16 09:48 - 2020-01-16 09:48 - 000001010 _____ C:\Users\Public\Desktop\Firefox.lnk
2020-01-15 10:45 - 2020-01-15 12:08 - 000000039 _____ C:\Users\Rengo\Desktop\Nový textový dokument.TXT
2020-01-14 23:56 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-01-14 23:56 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2020-01-14 19:39 - 2020-01-17 21:05 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-01-14 06:05 - 2020-01-14 06:05 - 000012201 _____ C:\ProgramData\DisplaySessionContainer2.log_backup1
2020-01-13 20:22 - 2020-01-13 20:22 - 000074552 _____ (Wellbia.com Co., Ltd.) C:\Windows\xhunter1.sys
2020-01-13 20:22 - 2020-01-13 20:22 - 000000000 ____D C:\Users\Rengo\AppData\Local\ShadowTrackerExtra
2020-01-13 20:22 - 2020-01-13 20:22 - 000000000 ____D C:\Program Files\Common Files\Uncheater
2020-01-13 19:41 - 2020-01-13 19:41 - 000000686 _____ C:\Users\Rengo\Desktop\PUBG LITE.lnk
2020-01-13 19:41 - 2020-01-13 19:41 - 000000686 _____ C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PUBG LITE.lnk
2020-01-13 19:41 - 2020-01-13 19:41 - 000000000 ____D C:\ProgramData\PUBG
2020-01-13 19:40 - 2020-01-13 19:40 - 067269568 _____ ( ) C:\Users\Rengo\Downloads\PUBG-Lite-Setup.exe
2020-01-13 19:29 - 2020-01-13 19:29 - 000000582 _____ C:\Users\Public\Desktop\Origin.lnk
2020-01-13 19:29 - 2020-01-13 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2020-01-13 19:28 - 2020-01-17 21:05 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Origin
2020-01-13 19:27 - 2020-01-17 21:04 - 000000000 ____D C:\Users\Rengo\AppData\Local\Origin
2020-01-13 19:27 - 2020-01-13 19:27 - 063815408 _____ (Electronic Arts) C:\Users\Rengo\Downloads\OriginThinSetup.exe
2020-01-13 12:58 - 2020-01-13 12:58 - 000273266 _____ C:\Users\Rengo\Desktop\ceZF9_dkoyoxM6nQyoSHDXjnmn6pHRFyWe4XA0EneWPMD2yjC3UYVemYkB8XPZW20.pdf
2020-01-13 12:57 - 2020-01-13 12:57 - 000549635 _____ C:\Users\Rengo\Desktop\hyxdwypvEPyBHOxi1aymKbni2PXY8mFVBo0diM5GKWI1.pdf
2020-01-10 15:32 - 2020-01-10 15:32 - 000000000 ____D C:\Users\Rengo\AppData\Local\FLiNGTrainer
2020-01-08 23:30 - 2020-01-08 23:31 - 000000059 _____ C:\Users\Rengo\Desktop\Nový textový dokument (6).TXT
2020-01-07 00:33 - 2019-12-28 08:11 - 004963480 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2020-01-07 00:33 - 2019-12-28 08:11 - 004229240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2020-01-07 00:33 - 2019-12-28 04:14 - 001729440 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-01-07 00:33 - 2019-12-28 04:14 - 001729440 _____ C:\Windows\system32\vulkaninfo.exe
2020-01-07 00:33 - 2019-12-28 04:14 - 001329568 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-01-07 00:33 - 2019-12-28 04:14 - 001329568 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2020-01-07 00:33 - 2019-12-28 04:14 - 001079200 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-01-07 00:33 - 2019-12-28 04:14 - 001079200 _____ C:\Windows\system32\vulkan-1.dll
2020-01-07 00:33 - 2019-12-28 04:14 - 000937888 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-01-07 00:33 - 2019-12-28 04:14 - 000937888 _____ C:\Windows\SysWOW64\vulkan-1.dll
2020-01-07 00:33 - 2019-12-28 04:14 - 000450176 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2020-01-07 00:33 - 2019-12-28 04:14 - 000354520 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2020-01-07 00:33 - 2019-12-28 04:13 - 011843088 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2020-01-07 00:33 - 2019-12-28 04:13 - 010169208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2020-01-07 00:33 - 2019-12-28 04:13 - 000678264 _____ C:\Windows\system32\nvofapi64.dll
2020-01-07 00:33 - 2019-12-28 04:13 - 000544976 _____ C:\Windows\SysWOW64\nvofapi.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 017462352 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 015029504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 005383184 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 004718512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 002076080 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 001570168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 001485688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 001371512 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 001145280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 001064368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 001001816 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 000824064 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 000813984 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 000685256 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 000659288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 000573784 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2020-01-07 00:33 - 2019-12-28 04:12 - 000558080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2020-01-07 00:33 - 2019-12-28 04:12 - 000451320 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2020-01-07 00:33 - 2019-12-28 04:11 - 040510200 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2020-01-07 00:33 - 2019-12-28 04:11 - 035380240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2020-01-07 00:33 - 2019-12-28 04:11 - 000858032 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2020-01-07 00:33 - 2019-12-24 13:03 - 000076477 _____ C:\Windows\system32\nvinfo.pb
2020-01-07 00:28 - 2020-01-07 00:28 - 000004308 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000004106 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003976 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003940 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003894 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003858 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2020-01-07 00:28 - 000003654 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-01-07 00:28 - 2019-12-08 15:47 - 002859872 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2020-01-07 00:28 - 2019-12-08 15:47 - 002221064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2020-01-05 21:15 - 2020-01-05 21:15 - 000000000 ____D C:\Users\Rengo\AppData\Local\FPSAimTrainer
2020-01-05 21:15 - 2020-01-05 21:15 - 000000000 ____D C:\Users\Public\Documents\Steam
2020-01-05 21:13 - 2020-01-05 21:14 - 000000048 _____ C:\Users\Rengo\AppData\Roaming\~SiMPLEX.ini
2020-01-05 21:08 - 2020-01-05 21:08 - 000000066 _____ C:\Users\Rengo\Desktop\Nový textový dokument (5).TXT
2020-01-05 14:45 - 2020-01-05 14:45 - 000000000 ____D C:\Users\Rengo\Downloads\MHWResetCRC
2020-01-05 14:45 - 2020-01-05 14:45 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\WinRAR
2020-01-05 14:45 - 2020-01-05 14:45 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-01-05 14:45 - 2020-01-05 14:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2020-01-05 14:44 - 2020-01-05 14:44 - 003401208 _____ C:\Users\Rengo\Downloads\winrar-x64-580cz.exe
2020-01-05 14:44 - 2020-01-05 14:44 - 000071029 _____ C:\Users\Rengo\Downloads\MHWResetCRC.rar
2020-01-05 14:40 - 2020-01-05 14:40 - 001304448 _____ C:\Users\Rengo\Downloads\MonsterHunterWorld.CT
2020-01-05 14:25 - 2020-01-05 14:25 - 000000652 _____ C:\Users\Rengo\Desktop\Cheat Engine.lnk
2020-01-05 14:25 - 2020-01-05 14:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 7.0
2020-01-05 14:24 - 2020-01-05 14:24 - 018734680 _____ (Cheat Engine ) C:\Users\Rengo\Downloads\CheatEngine70.exe
2020-01-02 12:35 - 2020-01-02 12:36 - 000000000 ____D C:\Users\Rengo\Desktop\Nová složka (3)
2020-01-01 03:25 - 2020-01-01 03:25 - 000001583 _____ C:\Users\Public\Desktop\League of Legends.lnk
2020-01-01 03:24 - 2020-01-01 03:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-01-01 03:24 - 2020-01-01 03:24 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-01-01 03:23 - 2020-01-01 03:25 - 000000000 ____D C:\Users\Rengo\AppData\Local\Riot Games
2020-01-01 03:23 - 2020-01-01 03:23 - 068584616 _____ C:\Users\Rengo\Downloads\Install League of Legends eune.exe
2020-01-01 03:22 - 2020-01-01 03:23 - 000000000 ____D C:\ProgramData\Riot Games
2020-01-01 00:12 - 2020-01-01 00:12 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Blizzard Entertainment
2020-01-01 00:11 - 2020-01-01 00:11 - 000000505 _____ C:\Users\Public\Desktop\StarCraft II.lnk
2020-01-01 00:11 - 2020-01-01 00:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StarCraft II
2020-01-01 00:02 - 2020-01-01 00:12 - 000000000 ____D C:\ProgramData\Blizzard Entertainment
2020-01-01 00:01 - 2020-01-17 22:25 - 000000000 ____D C:\Users\Rengo\AppData\Local\Battle.net
2020-01-01 00:01 - 2020-01-01 00:02 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Battle.net
2020-01-01 00:01 - 2020-01-01 00:01 - 000000453 _____ C:\Users\Public\Desktop\Battle.net.lnk
2020-01-01 00:01 - 2020-01-01 00:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2019-12-31 23:55 - 2019-12-31 23:55 - 005229552 _____ (Blizzard Entertainment) C:\Users\Rengo\Downloads\StarCraft-II-Setup.exe
2019-12-31 23:55 - 2019-12-31 23:55 - 004902896 _____ (Blizzard Entertainment) C:\Users\Rengo\Downloads\Battle.net-Setup.exe
2019-12-29 01:53 - 2019-12-29 01:53 - 004934061 _____ C:\Users\Rengo\Downloads\Jak-jsem-šel-do-důchodu-mladý.pdf
2019-12-28 02:44 - 2019-12-28 02:44 - 000319848 _____ (Mozilla) C:\Users\Rengo\Downloads\Firefox Installer (1).exe
2019-12-28 01:08 - 2020-01-16 17:18 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-12-28 01:08 - 2020-01-16 09:52 - 000000000 ____D C:\Users\Rengo\AppData\LocalLow\Mozilla
2019-12-28 01:08 - 2020-01-16 09:48 - 000001022 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-12-28 01:08 - 2020-01-16 09:48 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-12-28 01:08 - 2019-12-28 01:08 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Mozilla
2019-12-28 01:08 - 2019-12-28 01:08 - 000000000 ____D C:\Users\Rengo\AppData\Local\Mozilla
2019-12-28 01:08 - 2019-12-28 01:08 - 000000000 ____D C:\ProgramData\Mozilla
2019-12-28 01:07 - 2019-12-28 01:07 - 000319848 _____ (Mozilla) C:\Users\Rengo\Downloads\Firefox Installer.exe
2019-12-27 13:43 - 2019-12-27 13:43 - 000000697 _____ C:\Users\Public\Desktop\Apex Legends.lnk
2019-12-27 13:43 - 2019-12-27 13:43 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-12-27 13:43 - 2019-12-27 13:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apex Legends
2019-12-23 19:15 - 2019-12-23 19:15 - 000000000 ____D C:\Users\Rengo\AppData\Local\ElevatedDiagnostics
2019-12-23 07:48 - 2019-12-23 07:48 - 000000017 _____ C:\Users\Rengo\AppData\Local\resmon.resmoncfg
2019-12-20 19:26 - 2019-12-20 19:26 - 001573568 _____ C:\Users\Rengo\Downloads\SteamSetup.exe
2019-12-20 10:28 - 2019-12-20 10:28 - 000000000 ____D C:\Windows\SysWOW64\directx
2019-12-20 10:28 - 2019-12-20 10:28 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2019-12-20 10:27 - 2019-12-20 17:54 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2019-12-20 10:27 - 2019-12-20 10:28 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2019-12-20 10:27 - 2019-12-20 10:27 - 000000000 ____D C:\Users\Rengo\Downloads\MSIAfterburnerSetup
2019-12-20 10:27 - 2019-12-20 10:27 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2019-12-20 10:26 - 2019-12-20 10:26 - 050449037 _____ C:\Users\Rengo\Downloads\MSIAfterburnerSetup.zip
2019-12-20 03:24 - 2019-12-24 03:47 - 000015836 _____ C:\ProgramData\DisplaySessionContainer3.log_backup1
2019-12-19 13:04 - 2019-12-19 13:04 - 000000273 _____ C:\Users\Rengo\Desktop\The Outer Worlds.url
2019-12-19 12:15 - 2019-12-19 13:44 - 000000000 ____D C:\ESD
2019-12-19 12:15 - 2019-12-19 12:15 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2019-12-19 12:15 - 2019-12-19 12:15 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-12-19 12:15 - 2019-12-19 12:15 - 000000000 ____D C:\Program Files\MSBuild
2019-12-19 12:15 - 2019-12-19 12:15 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-12-19 12:14 - 2019-12-19 12:14 - 001166488 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2019-12-19 12:14 - 2019-12-19 12:14 - 000778912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2019-12-19 12:14 - 2019-12-19 12:14 - 000124568 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2019-12-19 12:14 - 2019-12-19 12:14 - 000103072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-12-19 12:14 - 2019-12-19 12:14 - 000035592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2019-12-19 12:14 - 2019-12-19 12:14 - 000035592 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2019-12-19 12:13 - 2019-12-19 12:13 - 000000000 ___HD C:\$Windows.~WS
2019-12-19 12:13 - 2019-12-19 12:13 - 000000000 ____D C:\$WINDOWS.~BT
2019-12-19 12:11 - 2019-12-19 12:13 - 019255000 _____ (Microsoft Corporation) C:\Users\Rengo\Downloads\MediaCreationTool1909.exe
2019-12-19 11:11 - 2020-01-13 20:22 - 000000000 ____D C:\Users\Rengo\AppData\Local\UnrealEngine
2019-12-19 11:11 - 2019-12-19 11:13 - 000000000 ____D C:\ProgramData\Epic
2019-12-19 11:11 - 2019-12-19 11:11 - 043749376 _____ C:\Users\Rengo\Downloads\EpicInstaller-10.7.0.msi
2019-12-19 11:11 - 2019-12-19 11:11 - 000001270 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2019-12-19 11:11 - 2019-12-19 11:11 - 000001258 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2019-12-19 11:11 - 2019-12-19 11:11 - 000000000 ____D C:\Users\Rengo\AppData\Local\UnrealEngineLauncher
2019-12-19 11:11 - 2019-12-19 11:11 - 000000000 ____D C:\Users\Rengo\AppData\Local\EpicGamesLauncher
2019-12-19 11:11 - 2019-12-19 11:11 - 000000000 ____D C:\Program Files (x86)\Epic Games
2019-12-19 11:08 - 2019-12-19 11:08 - 003310912 _____ (AMD ) C:\Users\Rengo\Downloads\AMD PVT Setup eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6MTU1MjkzOSwiaWF0IjoxNTc2NzUwMTMzLCJleHAiOjE1NzY3NTE5MzN9.guxGqbnP7-3I0WjwkBuD_HG5EXpACLyG48Q9-Vm2TyY.exe
2019-12-18 23:41 - 2019-12-18 23:41 - 000438560 _____ (Intel Corporation) C:\Windows\system32\ibtproppage.dll
2019-12-18 23:40 - 2019-12-18 23:40 - 002074588 _____ C:\Windows\system32\Drivers\Netwfw04.dat
2019-12-18 23:40 - 2019-12-18 23:40 - 001086240 _____ (Intel Corporation) C:\Windows\system32\IntelIHVRouter04.dll
2019-12-18 18:28 - 2019-12-18 18:29 - 000000000 ____D C:\Users\Rengo\Downloads\Nová složka
2019-12-18 17:42 - 2019-12-19 00:19 - 000000414 _____ C:\Windows\Tasks\update-sys.job
2019-12-18 17:42 - 2019-12-19 00:19 - 000000414 _____ C:\Windows\Tasks\update-S-1-5-21-1071696947-3555639714-3556745851-1001.job
2019-12-18 17:42 - 2019-12-18 17:42 - 000003404 _____ C:\Windows\system32\Tasks\update-S-1-5-21-1071696947-3555639714-3556745851-1001
2019-12-18 17:42 - 2019-12-18 17:42 - 000003340 _____ C:\Windows\system32\Tasks\update-sys
2019-12-18 17:42 - 2019-12-18 17:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot
2019-12-18 17:36 - 2020-01-16 07:46 - 000000000 ____D C:\Users\Rengo\AppData\Local\CrashDumps
2019-12-18 17:35 - 2019-12-18 20:37 - 000000029 _____ C:\Users\Rengo\Desktop\Windows 10.TXT
2019-12-18 17:27 - 2019-12-18 17:27 - 000000000 ___HD C:\$SysReset
2019-12-18 10:47 - 2019-12-18 17:42 - 000000424 _____ C:\Users\Rengo\AppData\Local\UserProducts.xml
2019-12-18 10:47 - 2019-12-18 10:47 - 000000000 ____D C:\Program Files (x86)\Skillbrains
2019-12-18 08:16 - 2019-12-07 05:31 - 000715680 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\UcmCxUcsiNvppc.sys
2019-12-18 08:16 - 2019-12-07 05:31 - 000047032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2019-12-18 08:15 - 2019-12-07 05:31 - 000081581 _____ C:\Windows\system32\nvidia-smi.1.pdf
2019-12-18 08:02 - 2019-12-18 08:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-12-18 08:02 - 2019-12-08 15:47 - 001321496 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2019-12-18 08:02 - 2019-12-07 15:21 - 000174560 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2019-12-18 08:02 - 2019-12-07 15:21 - 000149472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2019-12-18 08:02 - 2019-12-05 22:24 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2019-12-18 08:02 - 2019-08-23 04:08 - 000075600 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2019-12-18 08:02 - 2019-04-17 08:42 - 000069840 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-17 22:32 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-17 22:26 - 2019-12-16 19:58 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Spotify
2020-01-17 21:06 - 2019-12-11 05:10 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-17 21:05 - 2019-12-11 14:33 - 000000000 ____D C:\ProgramData\Origin
2020-01-17 20:58 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF
2020-01-17 20:56 - 2019-12-11 03:59 - 001694640 _____ C:\Windows\system32\PerfStringBackup.INI
2020-01-17 20:56 - 2019-03-19 12:55 - 000717182 _____ C:\Windows\system32\perfh005.dat
2020-01-17 20:56 - 2019-03-19 12:55 - 000145262 _____ C:\Windows\system32\perfc005.dat
2020-01-17 20:52 - 2019-12-11 03:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-01-17 20:52 - 2019-03-19 05:37 - 000524288 _____ C:\Windows\system32\config\BBI
2020-01-17 20:48 - 2019-12-16 19:59 - 000000000 ____D C:\Users\Rengo\AppData\Local\Spotify
2020-01-17 01:31 - 2019-12-11 03:53 - 000258176 _____ C:\Windows\system32\FNTCACHE.DAT
2020-01-17 01:30 - 2019-12-11 04:54 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\IObit
2020-01-17 01:30 - 2019-12-11 04:54 - 000000000 ____D C:\Users\Rengo\AppData\LocalLow\IObit
2020-01-17 01:30 - 2019-12-11 04:54 - 000000000 ____D C:\ProgramData\IObit
2020-01-17 01:30 - 2019-12-11 04:54 - 000000000 ____D C:\Program Files (x86)\IObit
2020-01-17 01:30 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\UNP
2020-01-17 01:30 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources
2020-01-17 01:30 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellExperiences
2020-01-17 01:30 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr
2020-01-17 00:23 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp
2020-01-16 20:03 - 2019-12-11 03:53 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-01-16 09:51 - 2019-12-11 04:13 - 000000000 ____D C:\Program Files (x86)\Google
2020-01-15 12:23 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness
2020-01-15 12:16 - 2019-12-11 04:12 - 000000000 ____D C:\ProgramData\Packages
2020-01-15 12:16 - 2019-12-11 04:02 - 000000000 ____D C:\Users\Rengo\AppData\Local\PlaceholderTileLogoFolder
2020-01-15 12:16 - 2019-12-11 03:59 - 000000000 ____D C:\Users\Rengo\AppData\Local\Packages
2020-01-15 12:16 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-14 23:58 - 2019-12-11 06:11 - 000000000 ____D C:\Windows\system32\MRT
2020-01-14 23:57 - 2019-12-11 06:11 - 120202352 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-01-14 21:57 - 2019-12-11 14:28 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Discord
2020-01-13 22:43 - 2019-12-11 14:36 - 000000000 ____D C:\Users\Rengo\AppData\Local\D3DSCache
2020-01-12 01:45 - 2019-12-11 22:24 - 000000759 _____ C:\Users\Rengo\Desktop\ACOdyssey – zástupce.lnk
2020-01-09 19:51 - 2019-12-11 04:54 - 000000000 ____D C:\ProgramData\ProductData
2020-01-07 00:28 - 2019-12-11 05:10 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-01-07 00:28 - 2019-12-11 04:04 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-01-07 00:28 - 2019-12-11 04:04 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-01-02 12:35 - 2019-12-11 04:39 - 000000000 ____D C:\Users\Rengo\Desktop\screeny-hry
2020-01-02 12:34 - 2019-12-11 04:38 - 000000000 ____D C:\Users\Rengo\Desktop\obr
2020-01-02 12:34 - 2019-12-11 04:38 - 000000000 ____D C:\Users\Rengo\Desktop\meme
2020-01-01 00:12 - 2019-12-11 15:04 - 000000000 ____D C:\Users\Rengo\AppData\Local\Blizzard Entertainment
2019-12-28 01:05 - 2019-12-11 04:06 - 000000000 ____D C:\ProgramData\Package Cache
2019-12-21 22:48 - 2019-12-11 15:01 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\uTorrent
2019-12-20 21:14 - 2019-12-11 03:58 - 000000000 ____D C:\Users\Rengo
2019-12-20 20:16 - 2019-12-15 23:11 - 000000000 ____D C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-12-20 20:00 - 2019-12-11 14:38 - 000000556 _____ C:\Users\Public\Desktop\Steam.lnk
2019-12-19 20:37 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\LiveKernelReports
2019-12-19 13:44 - 2019-12-11 03:53 - 000000000 ____D C:\Windows\Panther
2019-12-19 12:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SysWOW64\MUI
2019-12-19 12:15 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\MUI
2019-12-19 11:09 - 2019-12-14 00:59 - 000001110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Product Verification Tool.lnk
2019-12-19 11:09 - 2019-12-14 00:59 - 000000000 ____D C:\Program Files\AMDProduct Verification Tool
2019-12-18 23:41 - 2019-05-15 20:14 - 000529696 _____ (Intel Corporation) C:\Windows\system32\ibtsiva.exe
2019-12-18 23:41 - 2019-05-15 20:14 - 000186144 _____ (Intel Corporation) C:\Windows\system32\Drivers\ibtusb.sys
2019-12-18 23:40 - 2019-12-11 05:47 - 001167768 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2019-12-18 23:40 - 2019-05-17 11:54 - 008720672 _____ (Intel Corporation) C:\Windows\system32\Drivers\Netwtw04.sys
2019-12-18 18:21 - 2019-12-16 19:59 - 000001836 _____ C:\Users\Rengo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2019-12-18 17:32 - 2019-12-11 05:49 - 000000000 ___HD C:\Windows\system32\WLANProfiles
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\PrintDialog
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Sysprep
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\Keywords
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\DDFs
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\appraiser
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellComponents
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\DiagTrack
2019-12-18 17:32 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\Containers
2019-12-18 17:31 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\registration
2019-12-18 08:17 - 2019-12-11 05:11 - 000000000 ____D C:\Users\Rengo\AppData\Local\NVIDIA
2019-12-18 08:04 - 2019-12-11 05:11 - 000000000 ____D C:\Users\Rengo\AppData\Local\NVIDIA Corporation

==================== Files in the root of some directories ========

2019-12-12 04:15 - 2019-12-14 00:37 - 000000275 _____ () C:\ProgramData\fontcacheev1.dat
2020-01-05 21:13 - 2020-01-05 21:14 - 000000048 _____ () C:\Users\Rengo\AppData\Roaming\~SiMPLEX.ini
2019-12-23 07:48 - 2019-12-23 07:48 - 000000017 _____ () C:\Users\Rengo\AppData\Local\resmon.resmoncfg
2019-12-18 10:47 - 2019-12-18 10:47 - 000000003 _____ () C:\Users\Rengo\AppData\Local\updater.log
2019-12-18 10:47 - 2019-12-18 17:42 - 000000424 _____ () C:\Users\Rengo\AppData\Local\UserProducts.xml

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Kód: Vybrat vše

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-01-2020
Ran by Rengo (17-01-2020 22:34:23)
Running from C:\Users\Rengo\Downloads
Windows 10 Home Version 1909 18363.592 (X64) (2019-12-11 02:55:42)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1071696947-3555639714-3556745851-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1071696947-3555639714-3556745851-503 - Limited - Disabled)
Guest (S-1-5-21-1071696947-3555639714-3556745851-501 - Limited - Disabled)
Rengo (S-1-5-21-1071696947-3555639714-3556745851-1001 - Administrator - Enabled) => C:\Users\Rengo
WDAGUtilityAccount (S-1-5-21-1071696947-3555639714-3556745851-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 3.1.3.26837 - emc, uTorrent.CZ)
Aktualizace NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
AMD Product Verification Tool version 1.0.4.8 (HKLM\...\{4242685A-EF3E-45FF-B4AE-758E49020936}}_is1) (Version: 1.0.4.8 - AMD)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.10.16 - Advanced Micro Devices, Inc.)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.2.7 - Electronic Arts, Inc.)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{7999800f-411b-4d04-aadd-32b576d84592}) (Version: 21.20.1 - Intel Corporation)
Balanced (HKLM-x32\...\{0EA45DD4-A825-420C-AFED-C659EFE3B84F}) (Version: 4.00.0000 - Advanced Micro Devices, Inc.) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.150.8.1008 - BlueStack Systems, Inc.)
Dashlane (HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Dashlane) (Version: 6.2002.0.30909 - Dashlane, Inc.)
Discord (HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{C69A2919-0662-4390-9418-67C931B44C18}) (Version: 1.1.236.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.117 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Cheat Engine 7.0 (HKLM\...\Cheat Engine 7.0_is1) (Version:  - Cheat Engine)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000020-0210-1029-84C8-B8D95FA3C8C3}) (Version: 21.20.0.4 - Intel Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Riot Game league_of_legends.live) (Version:  - Riot Games, Inc)
Lightshot-5.5.0.4 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.5.0.4 - Skillbrains)
Microsoft OneDrive (HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation)
Mozilla Firefox 72.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 72.0.1 (x64 cs)) (Version: 72.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 72.0.1 - Mozilla)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
MSIRegister (HKLM-x32\...\{80B995A4-3A86-4690-98A6-563F1A788835}_is1) (Version: 2.0.0.19 - MSI)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 441.87 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 441.87 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA USBC Driver 1.38.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.38.831.832 - NVIDIA Corporation)
OEM Application Profile (HKLM-x32\...\{84AD2AF7-10C8-0395-66F9-FFAEB4C5DBF1}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
PUBG LITE (HKLM-x32\...\PUBG LITE_is1) (Version: 1.0.1.0 - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.34.307.2019 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8720.1 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
Spotify (HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\...\Spotify) (Version: 1.1.24.91.g4ca6d5eb - Spotify AB)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
WinRAR 5.80 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.80.0 - win.rar GmbH)

Packages:
=========
DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation)
DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x86__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation)
Herní služby -> C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_105.1.623.0_x64__v10z8vjag6ke6 [2020-01-15] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]
Neat Office -> C:\Program Files\WindowsApps\15191PeakPlayer.NeatOffice_3.2.2.0_x86__y5c4dfz5b21fm [2019-12-18] (Any DVD & Office App)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.95.602.0_x64__mcm4njqhnhss8 [2019-12-18] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.956.0_x64__56jybvy8sckqj [2019-12-18] (NVIDIA Corp.)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.181.0_x64__dt26b99r8h8gj [2019-12-18] (Realtek Semiconductor Corp)
Xbox (Beta) -> C:\Program Files\WindowsApps\Microsoft.GamingApp_2001.1001.4.0_x64__8wekyb3d8bbwe [2020-01-14] (Microsoft Corporation) [Startup Task]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => A:\Games1\rar\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => A:\Games1\rar\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d223212c0a2275b5\nvshext.dll [2019-12-28] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => A:\Games1\rar\rarext.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => A:\Games1\rar\rarext32.dll [2019-12-05] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-01-01 00:01 - 2020-01-01 00:01 - 096131072 _____ () [File not signed] A:\Battle.net\Battle.net.11740\libcef.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000117760 _____ () [File not signed] A:\Battle.net\Battle.net.11740\libEGL.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 004342784 _____ () [File not signed] A:\Battle.net\Battle.net.11740\libGLESv2.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000015360 _____ () [File not signed] A:\Origin\libEGL.DLL
2020-01-16 07:47 - 2020-01-16 07:47 - 003090944 _____ () [File not signed] A:\Origin\libGLESv2.dll
2019-12-19 11:12 - 2019-12-19 11:12 - 098275328 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2019-12-19 11:12 - 2019-12-19 11:12 - 000092672 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2019-12-19 11:12 - 2019-12-19 11:12 - 003922432 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000762368 _____ (The Chromium Authors) [File not signed] A:\Battle.net\Battle.net.11740\chrome_elf.dll
2019-12-19 11:12 - 2019-12-19 11:12 - 000547840 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000002560 _____ (The ICU Project) [File not signed] A:\Origin\icudt58.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 001252864 _____ (The ICU Project) [File not signed] A:\Origin\icuuc58.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] A:\Origin\LIBEAY32.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] A:\Origin\ssleay32.dll
2020-01-17 00:48 - 2020-01-07 15:15 - 001240064 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\libeay32.dll
2020-01-17 00:48 - 2020-01-07 15:15 - 000281600 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\ssleay32.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000030208 _____ (The Qt Company Ltd) [File not signed] A:\Origin\imageformats\qgif.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000032768 _____ (The Qt Company Ltd) [File not signed] A:\Origin\imageformats\qico.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000256512 _____ (The Qt Company Ltd) [File not signed] A:\Origin\imageformats\qjpeg.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000026112 _____ (The Qt Company Ltd) [File not signed] A:\Origin\imageformats\qtga.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000305152 _____ (The Qt Company Ltd) [File not signed] A:\Origin\imageformats\qtiff.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000025600 _____ (The Qt Company Ltd) [File not signed] A:\Origin\imageformats\qwbmp.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000278016 _____ (The Qt Company Ltd) [File not signed] A:\Origin\mediaservice\dsengine.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 001611264 _____ (The Qt Company Ltd) [File not signed] A:\Origin\platforms\qwindows.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 005487104 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Core.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 005841920 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Gui.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000709120 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Multimedia.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 001179136 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Network.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000207360 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Positioning.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000310272 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5PrintSupport.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 003513344 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Qml.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 003390976 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Quick.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000068096 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5QuickWidgets.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000045568 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5TextToSpeech.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 054071296 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5WebEngineCore.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000211456 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5WebEngineWidgets.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000116224 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5WebChannel.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000146432 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5WebSockets.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 005089792 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Widgets.dll
2020-01-16 07:47 - 2020-01-16 07:47 - 000184832 _____ (The Qt Company Ltd) [File not signed] A:\Origin\Qt5Xml.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000047104 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\audio\qtaudio_windows.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000026112 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\imageformats\qgif.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000027136 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\imageformats\qico.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000243712 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\imageformats\qjpeg.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000223744 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\imageformats\qmng.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000020992 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\imageformats\qsvg.dll
2020-01-01 00:00 - 2020-01-01 00:00 - 000332288 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\imageformats\qtiff.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 001140224 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\platforms\qwindows.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000041984 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000014848 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000014848 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQml\Models.2\modelsplugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000014848 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQuick.2\qtquick2plugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000084480 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000267776 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQuick\Controls\qtquickcontrolsplugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000071680 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000211456 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000014848 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\qml\QtQuick\Window.2\windowplugin.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 004943360 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Core.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 005022208 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Gui.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000626176 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Multimedia.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000877056 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Network.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 002908672 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Qml.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 003078656 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Quick.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000096256 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5QuickControls2.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000681472 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5QuickTemplates2.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000259072 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Svg.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 004718080 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Widgets.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000439296 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5WinExtras.dll
2020-01-01 00:01 - 2020-01-01 00:01 - 000159232 _____ (The Qt Company Ltd.) [File not signed] A:\Battle.net\Battle.net.11740\Qt5Xml.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qgif.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000034816 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qicns.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000025600 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qico.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000298496 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qjpeg.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qsvg.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000019968 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qtga.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qtiff.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000019456 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qwbmp.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000414720 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qwebp.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 001126400 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\platforms\qwindows.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 004994048 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Core.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 003637248 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Gui.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 001088512 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Network.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000280576 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Positioning.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000278016 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5PrintSupport.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 002966016 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Qml.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 002796032 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Quick.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000048640 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5QuickWidgets.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000163840 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Sql.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000268288 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Svg.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 055062528 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5WebEngineCore.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000190976 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5WebEngineWidgets.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000092160 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5WebChannel.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 004590592 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Widgets.dll
2020-01-17 00:49 - 2020-01-07 15:15 - 000122368 _____ (The Qt Company Ltd.) [File not signed] C:\Users\Rengo\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\styles\qwindowsvistastyle.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Rengo\Data aplikací:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\Rengo\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1071696947-3555639714-3556745851-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Rengo\Desktop\apex-legends-wraith-uhdpaper.com-4K-97.jpg
DNS Servers: 187.133.210.150
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{8701B166-5040-4042-99CB-D80671159916}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe No File
FirewallRules: [{6C3E8599-D8C3-4068-9EA7-840F049AA2A3}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe No File
FirewallRules: [{ADC19C25-FFE2-4202-992A-F79672F44CF0}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DBDownloader.exe No File
FirewallRules: [{4E2ADE8C-FD59-48A9-8550-DA17C7200363}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DBDownloader.exe No File
FirewallRules: [{180DB4D5-1CEB-4759-9F9A-73E186C3B938}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\AutoUpdate.exe No File
FirewallRules: [{99E46FF6-D0AC-4801-A9AB-6E1E471EB1C6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\AutoUpdate.exe No File
FirewallRules: [TCP Query User{3CBD7CD5-DAB3-484C-BC79-0CB26E2CA0D5}C:\users\rengo\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\rengo\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{3189D38A-8AAF-463A-874E-3B1C57342BDA}C:\users\rengo\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\rengo\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{2AED1E60-9E93-4897-85EC-EC8BDCBA21DD}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [TCP Query User{A4C28FD3-BF6E-420E-9F47-EF1026C740CB}C:\users\rengo\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\rengo\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{5583CD99-F135-4F05-B65B-3FC197DB86A0}C:\users\rengo\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\rengo\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E9A41DDF-A856-4F1A-8A3A-F84E5D499B3B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2C875BBA-349D-4512-9FC1-072C07085BBF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D2EF06E8-BEE1-4EF6-A1D4-00168F2C4180}] => (Allow) A:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{97B3DB91-4213-48E5-A36E-9A8E7E69528C}] => (Allow) A:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{99C986B1-EA1E-4765-9635-10A84B8B8C67}] => (Allow) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{9FDFABAA-0A80-4C91-8A2F-EE5065D021A1}] => (Allow) A:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{653B8CC0-9CB5-4C58-B6F1-1A5CE2DC46BD}] => (Allow) A:\Steam\steamapps\common\GarrysMod\hl2.exe () [File not signed]
FirewallRules: [{DEE34FA2-075B-4804-BBE8-A8703715EBD8}] => (Allow) A:\Steam\steamapps\common\GarrysMod\hl2.exe () [File not signed]
FirewallRules: [{A1575803-B00B-4FA3-9B1B-5B5535C4A0AD}] => (Allow) A:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{39574607-079C-41F4-96E6-1371933D9BBF}] => (Allow) A:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [TCP Query User{45913CF9-FB57-45D4-ADAD-5FE94ED8DC87}A:\origin games\apex\r5apex.exe] => (Allow) A:\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [UDP Query User{1A152D79-D536-48D9-AC0A-CED4082F3022}A:\origin games\apex\r5apex.exe] => (Allow) A:\origin games\apex\r5apex.exe (Electronic Arts, Inc. -> Respawn Entertainment)
FirewallRules: [{B60F85CD-AF90-4C7E-8E45-38B3B05B6771}] => (Allow) A:\Steam\steamapps\common\Monster Hunter World\MonsterHunterWorld.exe (CAPCOM CO., LTD. -> )
FirewallRules: [{2C759AFD-EEBA-4A62-B41E-4892BEF339D7}] => (Allow) A:\Steam\steamapps\common\Monster Hunter World\MonsterHunterWorld.exe (CAPCOM CO., LTD. -> )
FirewallRules: [{EEEF8872-29F1-4053-ABF1-BD09C1999F5A}] => (Allow) A:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{D80E8F32-E5E3-4A5F-978A-92469D3C36D3}] => (Allow) A:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{DBA05181-8834-4162-AC14-A583BCAEDD53}] => (Allow) A:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{E1BBA5C5-238B-4B6D-A4D2-1026F123B97B}] => (Allow) A:\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe (Wildcard Properties LLC -> Epic Games, Inc.)
FirewallRules: [{96905A38-2F33-47E5-B618-9122B27088D2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BC1D5686-129D-4206-A403-E619216C7D4F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{316F6BDD-1DAF-4A34-848C-64AEBE5194B8}A:\games\starcraft ii\versions\base77661\sc2_x64.exe] => (Allow) A:\games\starcraft ii\versions\base77661\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [UDP Query User{6D050A2A-FDDC-4F38-BE1E-B90F96515B56}A:\games\starcraft ii\versions\base77661\sc2_x64.exe] => (Allow) A:\games\starcraft ii\versions\base77661\sc2_x64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment, Inc.)
FirewallRules: [TCP Query User{8A942F14-4644-4EBA-8133-264628AB10F0}A:\riot games\league of legends\game\league of legends.exe] => (Allow) A:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{72ACDFD5-A931-4AB4-8B22-3828ACFDF9B1}A:\riot games\league of legends\game\league of legends.exe] => (Allow) A:\riot games\league of legends\game\league of legends.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{8A36ECCD-82DB-4454-9E4A-5E31F2A6E22D}A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe] => (Block) A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe No File
FirewallRules: [UDP Query User{4A9077F5-F333-4BBE-A395-B907645C594D}A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe] => (Block) A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe No File
FirewallRules: [{92E387F3-1232-46A3-898F-B2563988496D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{85665E35-377E-48A9-BB40-76F1F45078EB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EDF5CB3D-E501-4884-BA33-435CDD7F3781}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2EC02872-C11D-4824-B8B9-D75D173BA6CD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{ECBBA676-B2AA-4E7B-B03C-FD578BEB7891}] => (Allow) A:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed]
FirewallRules: [{5AD96AB8-10DC-4802-93C6-AC2E388B7C89}] => (Allow) A:\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [File not signed]
FirewallRules: [TCP Query User{97FDA102-E9E8-43BA-A349-144039B35CE6}A:\games\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) A:\games\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [UDP Query User{E0525460-9EC0-4052-A234-E7D35E67A89E}A:\games\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe] => (Allow) A:\games\pubglite\client\shadowtrackerextra\binaries\win64\pubglite-win64-shipping.exe (PUBG CORPORATION -> PUBG Works)
FirewallRules: [{E134715B-AAD1-49B4-A7BA-28BAE4702013}] => (Allow) A:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B365A9DA-E73A-4E1E-A8D2-74DD1F1EED0C}] => (Allow) A:\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{4FB8EC21-A492-4F6D-85CD-6A66C06072B2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

27-12-2019 13:42:27 Nainstalováno rozhraní DirectX
05-01-2020 23:49:42 Naplánovaný kontrolní bod
07-01-2020 00:17:53 Nainstalováno rozhraní DirectX
13-01-2020 12:25:29 Instalační služba modulů systému Windows
14-01-2020 19:47:34 Nainstalováno rozhraní DirectX

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/17/2020 01:30:20 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (01/17/2020 01:30:20 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (01/17/2020 01:10:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.18362.449, časové razítko: 0xd42474b6
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.418, časové razítko: 0x99ca0526
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000009fbad
ID chybujícího procesu: 0x414
Čas spuštění chybující aplikace: 0x01d5ccb8e74950e0
Cesta k chybující aplikaci: C:\Windows\system32\AUDIODG.EXE
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: 40fe1ca3-2cbe-4799-aa8a-ad3cdb1a05e0
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/16/2020 11:04:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.18362.449, časové razítko: 0xd42474b6
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.418, časové razítko: 0x99ca0526
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000009fbad
ID chybujícího procesu: 0x1f84
Čas spuštění chybující aplikace: 0x01d5cc8fffdb6896
Cesta k chybující aplikaci: C:\Windows\system32\AUDIODG.EXE
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: e888e3e0-3ec4-425c-b137-e51feebe53c6
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/16/2020 07:49:26 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: Velikost požadované vyrovnávací paměti je větší než velikost vyrovnávací paměti předané do funkce Collect knihovny DLL rozšiřitelných čítačů C:\Windows\System32\perfts.dll pro službu LSM. Velikost dané vyrovnávací paměti: 27192; požadovaná velikost: 42608.

Error: (01/16/2020 07:46:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: MSIRegister.exe, verze: 2.0.0.19, časové razítko: 0x5c821aeb
Název chybujícího modulu: KERNELBASE.dll, verze: 10.0.18362.535, časové razítko: 0x5bd9df62
Kód výjimky: 0xe0434352
Posun chyby: 0x001135d2
ID chybujícího procesu: 0x1fe4
Čas spuštění chybující aplikace: 0x01d5cc38b45b9414
Cesta k chybující aplikaci: C:\MSI\MSIRegister\MSIRegister.exe
Cesta k chybujícímu modulu: C:\Windows\System32\KERNELBASE.dll
ID zprávy: c7aa2933-2bff-4fa6-8778-23729ce42522
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (01/16/2020 07:46:42 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: MSIRegister.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: System.IO.IOException
   na System.IO.__Error.WinIOError(Int32, System.String)
   na System.IO.FileStream.Init(System.String, System.IO.FileMode, System.IO.FileAccess, Int32, Boolean, System.IO.FileShare, Int32, System.IO.FileOptions, SECURITY_ATTRIBUTES, System.String, Boolean, Boolean, Boolean)
   na System.IO.FileStream..ctor(System.String, System.IO.FileMode, System.IO.FileAccess, System.IO.FileShare, Int32, System.IO.FileOptions, System.String, Boolean, Boolean, Boolean)
   na System.IO.StreamReader..ctor(System.String, System.Text.Encoding, Boolean, Int32, Boolean)
   na System.IO.File.InternalReadAllText(System.String, System.Text.Encoding, Boolean)
   na System.IO.File.ReadAllText(System.String)
   na msi.Toast.Client.msiToastClient.FileWatcher_Changed(System.Object, System.IO.FileSystemEventArgs)
   na System.IO.FileSystemWatcher.OnChanged(System.IO.FileSystemEventArgs)
   na System.IO.FileSystemWatcher.NotifyFileSystemEventArgs(Int32, System.String)
   na System.IO.FileSystemWatcher.CompletionStatusChanged(UInt32, UInt32, System.Threading.NativeOverlapped*)
   na System.Threading._IOCompletionCallback.PerformIOCompletionCallback(UInt32, UInt32, System.Threading.NativeOverlapped*)

Error: (01/14/2020 07:57:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AUDIODG.EXE, verze: 10.0.18362.449, časové razítko: 0xd42474b6
Název chybujícího modulu: ntdll.dll, verze: 10.0.18362.418, časové razítko: 0x99ca0526
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000009fbad
ID chybujícího procesu: 0x4494
Čas spuštění chybující aplikace: 0x01d5ca5151dae24f
Cesta k chybující aplikaci: C:\Windows\system32\AUDIODG.EXE
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: a906fb81-cc56-4358-b1ef-c231489f3577
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (01/17/2020 08:52:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba AdvancedSystemCareService13 neuspěla při spuštění v důsledku následující chyby: 
Systém nemůže nalézt uvedený soubor.

Error: (01/17/2020 08:51:59 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\system32\IntelIHVRouter04.dll

Error: (01/17/2020 08:51:59 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\system32\IntelIHVRouter04.dll

Error: (01/17/2020 08:51:58 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\Windows\system32\IntelIHVRouter04.dll

Error: (01/17/2020 08:51:53 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (01/17/2020 08:51:53 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Adaptér výkonu rozhraní WMI byla ukončena s následující chybou: 
Nespecifikovaná chyba

Error: (01/17/2020 08:51:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Steam Client Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (01/17/2020 08:51:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Origin Web Helper Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
===================================
Date: 2020-01-16 09:45:13.998
Description: 
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0
Název: Trojan:Win32/Tiggre!rfn
ID: 2147723625
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: containerfile:_C:\Users\Rengo\Downloads\KovaaKs.FPS.Aim.Trainer-SiMPLEX.rar; file:_C:\Users\Rengo\Downloads\KovaaKs.FPS.Aim.Trainer-SiMPLEX.rar->KovaaKs.FPS.Aim.Trainer-SiMPLEX\SIMPLEX.EXE; file:_C:\Users\Rengo\Downloads\KovaaKs.FPS.Aim.Trainer-SiMPLEX\KovaaKs.FPS.Aim.Trainer-SiMPLEX\SIMPLEX.EXE
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Uživatel
Uživatel: RENGOMACHINE\Rengo
Název procesu: Unknown
Verze bezpečnostních informací: AV: 1.307.2430.0, AS: 1.307.2430.0, NIS: 1.307.2430.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7

Date: 2020-01-15 11:07:11.503
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {BB6A853F-4DAE-46B0-B300-7A4EF6E55536}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-01-12 14:15:57.151
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {E1C87E18-3AAC-4C68-8193-24F9D0427B84}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-01-12 14:11:16.427
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {547B9B15-D322-4549-AED7-73611870D9D9}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2020-01-10 14:52:31.858
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {ABE8D4E9-9D7E-4A97-8A53-4BD63698E03E}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

CodeIntegrity:
===================================

Date: 2020-01-17 02:16:41.240
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-17 02:16:08.249
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-17 02:04:02.666
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-17 01:35:11.703
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-16 20:25:40.510
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-16 19:37:09.919
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-16 18:43:50.236
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-01-16 18:13:19.354
Description: 
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info =========================== 

BIOS: American Megatrends Inc. 1.20 06/28/2019
Motherboard: Micro-Star International Co., Ltd. MPG X570 GAMING EDGE WIFI (MS-7C37)
Processor: AMD Ryzen 7 3700X 8-Core Processor 
Percentage of memory in use: 30%
Total physical RAM: 32717.13 MB
Available physical RAM: 22799.89 MB
Total Virtual: 37581.13 MB
Available Virtual: 22887.66 MB

==================== Drives ================================

Drive a: (3TB HDD) (Fixed) (Total:2785.37 GB) (Free:1096.84 GB) NTFS
Drive c: (Windows SSD 480GB) (Fixed) (Total:446.5 GB) (Free:324.04 GB) NTFS
Drive e: (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive g: (2TB HDD) (Fixed) (Total:1862.92 GB) (Free:1862.76 GB) NTFS

\\?\Volume{dc775c56-2653-4acb-986c-220584128e68}\ (Obnovení) (Fixed) (Total:0.52 GB) (Free:0.09 GB) NTFS
\\?\Volume{eabe0697-ad8b-45bd-85fa-4bf75f418ff3}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 447.1 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 59ADF17D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1862.9 GB) - (Type=07 NTFS)
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 3.

==================== End of Addition.txt =======================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118191
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
Task: {45A94388-B926-4100-BA68-F180DC5A2ACD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-12-11] (Google Inc -> Google Inc.)
Task: {CB7C9008-F03E-4482-9459-A7FAACB7A144} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-12-11] (Google Inc -> Google Inc.)
AlternateDataStreams: C:\Users\Rengo\Data aplikací:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\Rengo\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
FirewallRules: [{8701B166-5040-4042-99CB-D80671159916}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe No File
FirewallRules: [{6C3E8599-D8C3-4068-9EA7-840F049AA2A3}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe No File
FirewallRules: [{ADC19C25-FFE2-4202-992A-F79672F44CF0}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DBDownloader.exe No File
FirewallRules: [{4E2ADE8C-FD59-48A9-8550-DA17C7200363}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DBDownloader.exe No File
FirewallRules: [{180DB4D5-1CEB-4759-9F9A-73E186C3B938}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\AutoUpdate.exe No File
FirewallRules: [{99E46FF6-D0AC-4801-A9AB-6E1E471EB1C6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\AutoUpdate.exe No File
FirewallRules: [TCP Query User{8A36ECCD-82DB-4454-9E4A-5E31F2A6E22D}A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe] => (Block) A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe No File
FirewallRules: [UDP Query User{4A9077F5-F333-4BBE-A395-B907645C594D}A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe] => (Block) A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe No File
C:\Users\Rengo\Downloads\KovaaKs.FPS.Aim.Trainer-SiMPLEX.rar
C:\Users\Rengo\Downloads\KovaaKs.FPS.Aim.Trainer-SiMPLEX\KovaaKs.FPS.Aim.Trainer-SiMPLEX\SIMPLEX.EXE

EmptyTemp:
End
Uložte do C:\Users\Rengo\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

3perry3
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 17 led 2020 00:33

Re: Prosím o kontrolu logu

#7 Příspěvek od 3perry3 »

Přidávám fixlist a pouze pro info píšu že se mi po fixu restartoval počítač, předpokládám že je to asi normální.

Kód: Vybrat vše

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-01-2020
Ran by Rengo (18-01-2020 11:26:32) Run:1
Running from C:\Users\Rengo\Downloads
Loaded Profiles: Rengo (Available Profiles: Rengo)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
Task: {45A94388-B926-4100-BA68-F180DC5A2ACD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-12-11] (Google Inc -> Google Inc.)
Task: {CB7C9008-F03E-4482-9459-A7FAACB7A144} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-12-11] (Google Inc -> Google Inc.)
AlternateDataStreams: C:\Users\Rengo\Data aplikací:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
AlternateDataStreams: C:\Users\Rengo\AppData\Roaming:fbd50e2f7662a5c33287ddc6e65ab5a1 [394]
FirewallRules: [{8701B166-5040-4042-99CB-D80671159916}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe No File
FirewallRules: [{6C3E8599-D8C3-4068-9EA7-840F049AA2A3}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DriverBooster.exe No File
FirewallRules: [{ADC19C25-FFE2-4202-992A-F79672F44CF0}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DBDownloader.exe No File
FirewallRules: [{4E2ADE8C-FD59-48A9-8550-DA17C7200363}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\DBDownloader.exe No File
FirewallRules: [{180DB4D5-1CEB-4759-9F9A-73E186C3B938}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\AutoUpdate.exe No File
FirewallRules: [{99E46FF6-D0AC-4801-A9AB-6E1E471EB1C6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.3.0\AutoUpdate.exe No File
FirewallRules: [TCP Query User{8A36ECCD-82DB-4454-9E4A-5E31F2A6E22D}A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe] => (Block) A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe No File
FirewallRules: [UDP Query User{4A9077F5-F333-4BBE-A395-B907645C594D}A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe] => (Block) A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe No File
C:\Users\Rengo\Downloads\KovaaKs.FPS.Aim.Trainer-SiMPLEX.rar
C:\Users\Rengo\Downloads\KovaaKs.FPS.Aim.Trainer-SiMPLEX\KovaaKs.FPS.Aim.Trainer-SiMPLEX\SIMPLEX.EXE

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{45A94388-B926-4100-BA68-F180DC5A2ACD}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{45A94388-B926-4100-BA68-F180DC5A2ACD}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CB7C9008-F03E-4482-9459-A7FAACB7A144}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CB7C9008-F03E-4482-9459-A7FAACB7A144}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
C:\Users\Rengo\Data aplikací => ":fbd50e2f7662a5c33287ddc6e65ab5a1" ADS removed successfully
"C:\Users\Rengo\AppData\Roaming" => ":fbd50e2f7662a5c33287ddc6e65ab5a1" ADS not found.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8701B166-5040-4042-99CB-D80671159916}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{6C3E8599-D8C3-4068-9EA7-840F049AA2A3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ADC19C25-FFE2-4202-992A-F79672F44CF0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4E2ADE8C-FD59-48A9-8550-DA17C7200363}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{180DB4D5-1CEB-4759-9F9A-73E186C3B938}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{99E46FF6-D0AC-4801-A9AB-6E1E471EB1C6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{8A36ECCD-82DB-4454-9E4A-5E31F2A6E22D}A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{4A9077F5-F333-4BBE-A395-B907645C594D}A:\games1\kovaak\kovaak's fps aim trainer\fpsaimtrainer\binaries\win64\fpsaimtrainer-win64-shipping.exe" => removed successfully
"C:\Users\Rengo\Downloads\KovaaKs.FPS.Aim.Trainer-SiMPLEX.rar" => not found
"C:\Users\Rengo\Downloads\KovaaKs.FPS.Aim.Trainer-SiMPLEX\KovaaKs.FPS.Aim.Trainer-SiMPLEX\SIMPLEX.EXE" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 8151040 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 45577058 B
Java, Flash, Steam htmlcache => 368635117 B
Windows/system/drivers => 42950552 B
Edge => 215096 B
Chrome => 384947064 B
Firefox => 27304239 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 7381 B
LocalService => 7381 B
NetworkService => 120917 B
Rengo => 6913053 B

RecycleBin => 0 B
EmptyTemp: => 843.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 11:26:52 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118191
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu

#8 Příspěvek od Rudy »

Smazáno, log by již měl být OK. Doporučuji si změnit heslo na mail.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

3perry3
Návštěvník
Návštěvník
Příspěvky: 5
Registrován: 17 led 2020 00:33

Re: Prosím o kontrolu logu

#9 Příspěvek od 3perry3 »

Ok, děkuju moc za veškerou pomoc, heslo jsem samozřejmě už měnil.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118191
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Prosím o kontrolu logu

#10 Příspěvek od Rudy »

Rádo se stalo! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Zamčeno