Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Zpomalený internet sekaní počítače

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
cros
Návštěvník
Návštěvník
Příspěvky: 72
Registrován: 17 kvě 2009 10:28

Zpomalený internet sekaní počítače

#1 Příspěvek od cros »

Dobrý den mám problém s PC zpomalené načítání stránek , a zamrznutí počítače celkově je zpomalený.
děkuji

Logfile of random's system information tool 1.16 (written by random/random)
Run by 11 at 2019-03-29 20:34:33
Microsoft Windows 10 Pro
System drive C: has 210 GB (43%) free of 487 GB
Total RAM: 16312 MB (67% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:34:35, on 29. 3. 2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17134.0001)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe
C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe
C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Users\11\AppData\Local\Plarium\PlariumPlay\StandAloneApps\vikings\103\game.exe
C:\Users\11\AppData\Local\LINE\bin\current\LINE.exe
C:\Users\11\AppData\Local\LINE\Data\plugin\LineMediaPlayer\1.1.0.219\linemediaplayer.exe
C:\Program Files (x86)\Heroes & Generals\live\hngdesktoplauncher.exe
C:\Program Files (x86)\Heroes & Generals\live\HeroesAndGeneralsDesktop.exe
C:\Program Files (x86)\Heroes & Generals\live\hngsync.exe
C:\Program Files\trend micro\11_RSITx64.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O1 - Hosts: ::1 localhost
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll
O4 - HKLM\..\Run: [HPUsageTrackingLEDM] "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
O4 - HKLM\..\Run: [Corel Photo Downloader] "C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startup
O4 - HKLM\..\Run: [Corel File Shell Monitor] D:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
O4 - HKLM\..\Run: [Corsair Utility Engine] "C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe" --autorun
O4 - HKLM\..\Run: [Norton Ghost 15.0] "D:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [World of Tanks] "D:\Games\World_of_Tanks\WargamingGameUpdater.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Users\11\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [Lync] "C:\Program Files\Microsoft Office\root\Office16\lync.exe" /fromrunkey
O4 - HKCU\..\Run: [Ubisoft Game Launcher] "D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe" -uplay_silent
O4 - HKCU\..\Run: [Discord] C:\Users\11\AppData\Local\Discord\app-0.0.301\Discord.exe
O4 - HKCU\..\Run: [EpicGamesLauncher] "C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe" -silent
O4 - HKCU\..\Run: [TomTom MySports Connect.exe] C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe --hideSplashScreen
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\RunOnce: [Delete Cached Update Binary] C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\11\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
O4 - HKCU\..\RunOnce: [Delete Cached Standalone Update Binary] C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\11\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
O4 - HKCU\..\RunOnce: [Uninstall 19.043.0304.0004\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\11\AppData\Local\Microsoft\OneDrive\19.043.0304.0004\amd64"
O4 - HKCU\..\RunOnce: [Uninstall 19.043.0304.0004] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\11\AppData\Local\Microsoft\OneDrive\19.043.0304.0004"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade (User 'NETWORK SERVICE')
O4 - Global Startup: Mediatek Wireless Utility.lnk = C:\Program Files (x86)\MediatekWiFi\Common\RaUI.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Foxit Reader Service (FoxitReaderService) - Foxit Software Inc. - D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitConnectedPDFService.exe
O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe
O23 - Service: GenericMount Helper Service - Symantec - D:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelperx64.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Heroes & Generals Service (HnGService) - Reto-Moto ApS - C:\Program Files (x86)\Heroes & Generals\live\hngservice.exe
O23 - Service: Heroes & Generals Service_prototype (HnGService_prototype) - Reto-Moto ApS - d:\Program Files (x86)\Heroes & Generals prototype\prototype\hngservice.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\WINDOWS\system32\HPSIsvc.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_2.EXE
O23 - Service: MediatekRegistryWriter - Mediatek Inc. - C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe
O23 - Service: MediatekRegistryWriter64 - Mediatek Inc. - C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Norton Ghost - Symantec Corporation - D:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: Origin Web Helper Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginWebHelperService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\SysWOW64\PSIService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001 (Sense) - Unknown owner - C:\Program Files (x86)\Windows Defender Advanced Threat Protection\MsSense.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SymSnapService - Symantec - D:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TunnelBear Maintenance (TunnelBearMaintenance) - TunnelBear - D:\Program Files\tunrlbear\TunnelBear\TunnelBear.Maintenance.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\xbgmsvc.exe (file missing)

--
End of file - 16030 bytes

====== Enumerating Processes ======

C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
C:\WINDOWS\system32\fontdrvhost.exe
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s hidserv
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k LocalService -p
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\system32\HPSIsvc.exe
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
"C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe"
"C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe"
C:\WINDOWS\SysWOW64\PnkBstrA.exe
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
C:\WINDOWS\SysWOW64\PSIService.exe
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService
"C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe"
"C:\Program Files (x86)\Origin\OriginWebHelperService.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k networkservice -p -s TapiSrv
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
C:\WINDOWS\system32\dashost.exe
"D:\Program Files\tunrlbear\TunnelBear\TunnelBear.Maintenance.exe"
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
c:\windows\system32\svchost.exe -k netsvcs
"D:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe"
"D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitConnectedPDFService.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"D:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe"
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
c:\windows\system32\svchost.exe -k netsvcs -p
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files\rempl\sedsvc.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s wcncsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\System32\msdtc.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s AppMgmt
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppVShNotify.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k localservice -p -s BthAvctpSvc
"C:\Program Files\rempl\sedlauncher.exe"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\AUDIODG.EXE 0x9b0
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
C:\WINDOWS\System32\dwm.exe
C:\WINDOWS\System32\fontdrvhost.exe
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%dSPUser.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\SPUser" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
c:\windows\system32\sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
c:\windows\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\ctfmon.exe
"C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s NcdAutoSetup
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files\Windows Defender\MSASCuiL.exe"
"C:\Program Files\ESET\ESET Security\eguiproxy.exe" /hide
"C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startup
"C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe" --hideSplashScreen
"C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe" --autorun
C:\Program Files\CCleaner\CCleaner64.exe
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe"
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=gpu-process --disable-features=AsyncWheelEvents,SurfaceSynchronization --no-sandbox --log-file="C:\Users\11\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --gpu-preferences=KAAAAAAAAACAAwCAAQAAAAAAAAAAAGAAEAAAAAAAAAAAAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAKAAAAEAAAAAAAAAAAAAAACwAAABAAAAAAAAAAAQAAAAoAAAAQAAAAAAAAAAEAAAALAAAA --log-file="C:\Users\11\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --lang=en-US --service-request-channel-token=1AE6762A69814B55D2210447B56CDABB --mojo-platform-channel-handle=1500 /prefetch:2
"C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe" --type=renderer --no-sandbox --disable-features=AsyncWheelEvents,SurfaceSynchronization --service-pipe-token=B798E9D4A151165259DBAA6CFD2063E1 --lang=en-US --log-file="C:\Users\11\AppData\Local\NVIDIA Corporation\NVIDIA Share\debug.log" --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --service-request-channel-token=B798E9D4A151165259DBAA6CFD2063E1 --renderer-client-id=3 --mojo-platform-channel-handle=1948 /prefetch:1
"C:\Users\11\AppData\Local\Plarium\PlariumPlay\PlariumPlay.exe"
"C:\Users\11\AppData\Local\Plarium\PlariumPlay\PlariumPlay.exe" --type=gpu-process --no-sandbox --lang=en-US --log-file="C:\Users\11\AppData\Local\Plarium\PlariumPlay\debug.log" --log-severity=disable --gpu-vendor-id=0x10de --gpu-device-id=0x1401 --gpu-driver-vendor=NVIDIA --gpu-driver-version=25.21.14.1735 --gpu-driver-date=12-11-2018 --lang=en-US --log-file="C:\Users\11\AppData\Local\Plarium\PlariumPlay\debug.log" --log-severity=disable --service-request-channel-token=C174DC0D5C9D4C791829FDC31904244A --mojo-platform-channel-handle=1360 /prefetch:2
"C:\Users\11\AppData\Local\Plarium\PlariumPlay\PlariumPlay.exe" --type=renderer --no-sandbox --service-pipe-token=DF9A2782D59A7BF6A3FA3F45136C8A6B --lang=en-US --lang=en-US --log-file="C:\Users\11\AppData\Local\Plarium\PlariumPlay\debug.log" --log-severity=disable --ppapi-flash-path=PepperFlash/pepflashplayer64_23_0_0_207.dll --ppapi-flash-version=23.0.0.207 --enable-pinch --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --enable-gpu-async-worker-context --service-request-channel-token=DF9A2782D59A7BF6A3FA3F45136C8A6B --renderer-client-id=4 --mojo-platform-channel-handle=2484 /prefetch:1
"C:\Users\11\AppData\Local\Plarium\PlariumPlay\StandAloneApps\vikings\103\game.exe" -parentHWND 263348 -pipeName:vikings1553869219121 -locale:en
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19011.19410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19021.10411.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Mozilla Firefox\firefox.exe"
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="11828.0.687890995\1277666478" -parentBuildID 20190326175229 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 11828 "\\.\pipe\gecko-crash-server-pipe.11828" 1524 gpu
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="11828.6.1160851984\1668703258" -childID 1 -isForBrowser -prefsHandle 2392 -prefMapHandle 2388 -prefsLen 1 -prefMapSize 196437 -parentBuildID 20190326175229 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 11828 "\\.\pipe\gecko-crash-server-pipe.11828" 2240 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="11828.13.504651860\69920780" -childID 2 -isForBrowser -prefsHandle 3772 -prefMapHandle 3776 -prefsLen 5405 -prefMapSize 196437 -parentBuildID 20190326175229 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 11828 "\\.\pipe\gecko-crash-server-pipe.11828" 3760 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="11828.20.2087971315\36208287" -childID 3 -isForBrowser -prefsHandle 4720 -prefMapHandle 4724 -prefsLen 6221 -prefMapSize 196437 -parentBuildID 20190326175229 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 11828 "\\.\pipe\gecko-crash-server-pipe.11828" 4584 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="11828.69.2052933473\1505362294" -childID 10 -isForBrowser -prefsHandle 8992 -prefMapHandle 9424 -prefsLen 7106 -prefMapSize 196437 -parentBuildID 20190326175229 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 11828 "\\.\pipe\gecko-crash-server-pipe.11828" 1372 tab
"C:\Users\11\AppData\Local\LINE\bin\current\LINE.exe" run -t 551307515
C:\Users\11\AppData\Local\LINE\Data\plugin\LineMediaPlayer\1.1.0.219\linemediaplayer.exe
"C:\Program Files (x86)\Heroes & Generals\live\hngdesktoplauncher.exe"
C:\Program Files (x86)\Heroes & Generals\live\HeroesAndGeneralsDesktop.exe
"C:\Program Files (x86)\Heroes & Generals\live\hngsync.exe" /l en
"C:\Program Files (x86)\Heroes & Generals\live\hngservice.exe"
c:\windows\system32\taskhostw.exe
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="11828.202.2012419498\607744316" -childID 29 -isForBrowser -prefsHandle 10552 -prefMapHandle 4636 -prefsLen 7171 -prefMapSize 196437 -parentBuildID 20190326175229 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 11828 "\\.\pipe\gecko-crash-server-pipe.11828" 10772 tab
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="11828.209.121265843\331606192" -childID 30 -isForBrowser -prefsHandle 11144 -prefMapHandle 5068 -prefsLen 7171 -prefMapSize 196437 -parentBuildID 20190326175229 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 11828 "\\.\pipe\gecko-crash-server-pipe.11828" 4656 tab
C:\Windows\System32\smartscreen.exe -Embedding
"C:\WINDOWS\system32\NOTEPAD.EXE" C:\Users\11\Desktop\Č ůčtu.txt
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-1708006454-2605614449-3121516059-100153_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-1708006454-2605614449-3121516059-100153 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\NOTEPAD.EXE" C:\Users\11\Desktop\Adresa.txt
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="11828.216.844275133\383814997" -childID 31 -isForBrowser -prefsHandle 10768 -prefMapHandle 8796 -prefsLen 7171 -prefMapSize 196437 -parentBuildID 20190326175229 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" - 11828 "\\.\pipe\gecko-crash-server-pipe.11828" 10968 tab
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe54_ Global\UsGthrCtrlFltPipeMssGthrPipe54 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 768 772 780 8192 776
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\WINDOWS\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"D:\STAŽENÉ SOUBORY\RSITx64.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost

====== Scheduled tasks folder ======

C:\WINDOWS\tasks\CreateExplorerShellUnelevatedTask.job - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\system32\tasks\Adobe Flash Player NPAPI Notifier - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_156_Plugin.exe -check plugin
C:\WINDOWS\system32\tasks\Adobe Flash Player PPAPI Notifier - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_156_pepper.exe -check pepperplugin
C:\WINDOWS\system32\tasks\Adobe Flash Player Updater - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\system32\tasks\CCleaner Update - C:\Program Files\CCleaner\CCUpdate.exe
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\CreateExplorerShellUnelevatedTask - C:\WINDOWS\explorer.exe /NOUACCHECK
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
C:\WINDOWS\system32\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
C:\WINDOWS\system32\tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - "C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe"
C:\WINDOWS\system32\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
C:\WINDOWS\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
C:\WINDOWS\system32\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\WINDOWS\system32\tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe /noshim
C:\WINDOWS\system32\tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe /noshim
C:\WINDOWS\system32\tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe /noshim
C:\WINDOWS\system32\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task-S-1-5-21-1708006454-2605614449-3121516059-1001 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{29D69A76-2385-4784-BB6B-F475B82DB339} - C:\WINDOWS\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\{A6545FD2-2C4D-4C7C-A9E7-CD1BEBC08C57} - "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.26.0.101/cs/ ... rogressBar
C:\WINDOWS\system32\tasks\{A880FDB9-00D7-4F3E-8741-0B55E4093522} - "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.26.0.101/cs/ ... rogressBar
C:\WINDOWS\system32\tasks\{B969933F-6FC4-431F-BF1A-556A1DE103F6} - "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.26.0.101/cs/ ... rogressBar
C:\WINDOWS\system32\tasks\{D14DDC30-6158-4779-A6F5-C855AA9CD4EB} - "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.26.0.101/cs/ ... rogressBar
C:\WINDOWS\system32\tasks\{E7430F5C-54F9-4643-A9FD-1C9F0745BD28} - "c:\program files (x86)\mozilla firefox\firefox.exe" http://ui.skype.com/ui/0/7.26.0.101/cs/ ... rogressBar
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\WwanSvc\NotificationTask - %SystemRoot%\System32\WiFiTask.exe wwan
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join - %SystemRoot%\System32\AutoWorkplace.exe join
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Recovery-Check - %SystemRoot%\System32\dsregcmd.exe /checkrecovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network - %systemroot%\System32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Retry Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_Broker_Display - %systemroot%\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr - %windir%\System32\UNP\UpdateNotificationMgr.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\HeadsetButtonPress - %windir%\system32\speech_onecore\common\SpeechRuntime.exe StartedFromTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\rempl\shell - %ProgramFiles%\rempl\sedlauncher.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\LoginCheck - %windir%\system32\sc.exe start pushtoinstall login
C:\WINDOWS\system32\tasks\Microsoft\Windows\PushToInstall\Registration - %windir%\system32\sc.exe start pushtoinstall registration
C:\WINDOWS\system32\tasks\Microsoft\Windows\Printing\EduPrintProv - %windir%\system32\eduprintprov.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Cellular - %windir%\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5 /source LogonIdleTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\HelloFace\FODCleanupTask - %WinDir%\System32\WinBioPlugIns\FaceFodUninstaller.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\DirectX\DXGIAdapterCache - %windir%\system32\dxgiadaptercache.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Chkdsk\SyspartRepair - %windir%\system32\bcdboot.exe %windir% /sysrepair
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Automatic Updates 2.0 - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /frequentupdate SCHEDULEDTASK displaylevel=False
C:\WINDOWS\system32\tasks\Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe /WatchService
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Feature Updates - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Feature Updates Logon - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe /onlogon
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Subscription Maintenance - C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon - C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration - C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 - C:\Program Files\Microsoft Office\root\Office16\msoia.exe scan upload mininterval:2880
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 - C:\Program Files\Microsoft Office\root\Office16\msoia.exe scan upload
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /f
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /l

=========Mozilla firefox=========

ProfilePath - C:\Users\11\AppData\Roaming\Mozilla\Firefox\Profiles\n6mxn2ct.default-1521490154616

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.156 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_156.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.201.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.201.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.156 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_156.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL


C:\Users\11\AppData\Roaming\Mozilla\Firefox\Profiles\n6mxn2ct.default-1521490154616\addons.json

C:\Users\11\AppData\Roaming\Mozilla\Firefox\Profiles\n6mxn2ct.default-1521490154616\extensions.json
Ace Script - extension - acewebextension_unlisted@acestream.org -
Ace Script - extension - acewebextension_unlisted@acestream.org -
Form Autofill - extension - formautofill@mozilla.org -
Firefox Screenshots - extension - screenshots@mozilla.org -
Web Compat - extension - webcompat@mozilla.org -
WebCompat Reporter - extension - webcompat-reporter@mozilla.org -
Firefox Monitor - extension - fxmonitor@mozilla.org -

C:\Users\11\AppData\Roaming\Mozilla\Firefox\Profiles\n6mxn2ct.default-1521490154616\pluginreg.dat
Plugin - Shockwave Flash - 32.0.0.156 - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_156.dll

=========Google Chrome=========

C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace 0.10
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty 0.10
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky 1.2
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.7
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.74
Extension lifbcibllhkdhoafpjfnlhfpfgnpldfl 0 Skype 10.2.0.9950
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension mjbepbhonbojpoaenhckjocchgfiaofo 1 Ace Script 1.1.17
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.12
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.4
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 7319.128.0.1
Homepage:
default_search_provider.search_url:
C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl]
"Path"=


======Registry dump ======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-03-14 222088]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-03-14 166360]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-02-12 480120]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-12 194424]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2018-04-12 638872]
"AsioReg"=REGSVR32.EXE /S CTASIO.DLL []
"kX Mixer"=C:\Program Files\kX Project\kxmixer.exe [2013-12-27 522920]
"egui"=C:\Program Files\ESET\ESET Security\ecmdS.exe [2019-03-15 177928]
"Corel Photo Downloader"=C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [2007-12-14 531784]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"World of Tanks"=D:\Games\World_of_Tanks\WargamingGameUpdater.exe [2018-06-25 3139936]
"uTorrent"=C:\Users\11\AppData\Roaming\uTorrent\uTorrent.exe [2017-11-26 1981624]
"Lync"=C:\Program Files\Microsoft Office\root\Office16\lync.exe [2019-03-27 26858984]
"Ubisoft Game Launcher"=D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe [2019-03-28 470872]
"Discord"=C:\Users\11\AppData\Local\Discord\app-0.0.301\Discord.exe [2018-04-30 57816920]
"EpicGamesLauncher"=C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [2019-03-16 35258768]
"TomTom MySports Connect.exe"=C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe [2018-09-03 638464]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2019-03-11 22488952]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Delete Cached Update Binary"=C:\WINDOWS\system32\cmd.exe [2018-04-12 273920]
"Delete Cached Standalone Update Binary"=C:\WINDOWS\system32\cmd.exe [2018-04-12 273920]
"Uninstall 19.043.0304.0004\amd64"=C:\WINDOWS\system32\cmd.exe [2018-04-12 273920]
"Uninstall 19.043.0304.0004"=C:\WINDOWS\system32\cmd.exe [2018-04-12 273920]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HPUsageTrackingLEDM"=C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe [2009-08-04 30264]
"Corel Photo Downloader"=C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [2007-12-14 531784]
"Corel File Shell Monitor"=D:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [2008-01-15 16200]
"Corsair Utility Engine"=C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe [2016-03-23 14885552]
"Norton Ghost 15.0"=D:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe [2010-03-03 2598760]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-12-16 601424]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Mediatek Wireless Utility.lnk - C:\Program Files (x86)\MediatekWiFi\Common\RaUI.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders" = credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableFullTrustStartupTasks"=2
"EnableUIADesktopToggle"=0
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
"SynchronousMachineGroupPolicy"=1
"SynchronousUserGroupPolicy"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath" = "C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv

====== File associations ======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

====== List of files/folders created in the last 1 month ======

2019-03-29 20:34:33 ----D---- C:\rsit
2019-03-29 20:34:33 ----D---- C:\Program Files\trend micro
2019-03-19 20:18:30 ----D---- C:\Users\11\AppData\Roaming\.ACEStream
2019-03-19 20:18:02 ----D---- C:\Users\11\AppData\Roaming\ACEStream
2019-03-19 13:42:03 ----D---- C:\satelit soubory lonux
2019-03-19 11:37:55 ----D---- C:\Users\11\AppData\Roaming\LibreOffice
2019-03-19 11:36:03 ----D---- C:\Program Files\LibreOffice
2019-03-15 15:49:51 ----A---- C:\WINDOWS\game.ini
2019-03-14 12:56:57 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-03-14 12:56:57 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-03-14 12:56:55 ----A---- C:\WINDOWS\system32\edgehtml.dll
2019-03-14 12:56:54 ----A---- C:\WINDOWS\system32\mshtml.dll
2019-03-14 12:56:53 ----A---- C:\WINDOWS\system32\Hydrogen.dll
2019-03-14 12:56:51 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2019-03-14 12:56:50 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2019-03-14 12:56:50 ----A---- C:\WINDOWS\system32\wininet.dll
2019-03-14 12:56:49 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2019-03-14 12:56:49 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2019-03-14 12:56:49 ----A---- C:\WINDOWS\system32\HologramCompositor.dll
2019-03-14 12:56:48 ----A---- C:\WINDOWS\SYSWOW64\AppVEntSubsystems32.dll
2019-03-14 12:56:48 ----A---- C:\WINDOWS\system32\StartTileData.dll
2019-03-14 12:56:48 ----A---- C:\WINDOWS\system32\Chakra.dll
2019-03-14 12:56:48 ----A---- C:\WINDOWS\system32\cdp.dll
2019-03-14 12:56:47 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2019-03-14 12:56:47 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-03-14 12:56:47 ----A---- C:\WINDOWS\system32\sppobjs.dll
2019-03-14 12:56:47 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2019-03-14 12:56:47 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-03-14 12:56:46 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2019-03-14 12:56:46 ----A---- C:\WINDOWS\system32\mos.dll
2019-03-14 12:56:46 ----A---- C:\WINDOWS\system32\jscript9.dll
2019-03-14 12:56:46 ----A---- C:\WINDOWS\system32\ieframe.dll
2019-03-14 12:56:46 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2019-03-14 12:56:45 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2019-03-14 12:56:45 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2019-03-14 12:56:45 ----A---- C:\WINDOWS\system32\win32kfull.sys
2019-03-14 12:56:45 ----A---- C:\WINDOWS\system32\combase.dll
2019-03-14 12:56:45 ----A---- C:\WINDOWS\system32\appraiser.dll
2019-03-14 12:56:45 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-03-14 12:56:44 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2019-03-14 12:56:44 ----A---- C:\WINDOWS\SYSWOW64\mos.dll
2019-03-14 12:56:44 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2019-03-14 12:56:44 ----A---- C:\WINDOWS\system32\OpcServices.dll
2019-03-14 12:56:44 ----A---- C:\WINDOWS\system32\msxml6.dll
2019-03-14 12:56:44 ----A---- C:\WINDOWS\system32\hvix64.exe
2019-03-14 12:56:44 ----A---- C:\WINDOWS\system32\generaltel.dll
2019-03-14 12:56:44 ----A---- C:\WINDOWS\system32\fcon.dll
2019-03-14 12:56:44 ----A---- C:\WINDOWS\system32\dosvc.dll
2019-03-14 12:56:44 ----A---- C:\WINDOWS\system32\BingMaps.dll
2019-03-14 12:56:44 ----A---- C:\WINDOWS\system32\aepic.dll
2019-03-14 12:56:44 ----A---- C:\WINDOWS\system32\aeinv.dll
2019-03-14 12:56:43 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2019-03-14 12:56:43 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2019-03-14 12:56:43 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2019-03-14 12:56:43 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2019-03-14 12:56:43 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2019-03-14 12:56:43 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2019-03-14 12:56:43 ----A---- C:\WINDOWS\system32\urlmon.dll
2019-03-14 12:56:43 ----A---- C:\WINDOWS\system32\msctf.dll
2019-03-14 12:56:43 ----A---- C:\WINDOWS\system32\iertutil.dll
2019-03-14 12:56:43 ----A---- C:\WINDOWS\system32\hvax64.exe
2019-03-14 12:56:43 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2019-03-14 12:56:43 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2019-03-14 12:56:43 ----A---- C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-03-14 12:56:43 ----A---- C:\WINDOWS\system32\aitstatic.exe
2019-03-14 12:56:42 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\SYSWOW64\ucrtbase.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\win32kbase.sys
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\ucrtbase.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\lpasvc.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\invagent.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\gpsvc.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\devinv.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\dcntel.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\cdprt.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\BingOnlineServices.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\audiosrv.dll
2019-03-14 12:56:42 ----A---- C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\SYSWOW64\BingMaps.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\wsp_health.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\wlansvc.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\msxml3.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\MapRouter.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\MapGeocoder.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\localspl.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\dpx.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\bcastdvruserservice.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\AudioSes.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\AudioEng.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-03-14 12:56:41 ----A---- C:\WINDOWS\system32\acmigration.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\SYSWOW64\propsys.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\SYSWOW64\dpx.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\rasmans.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\propsys.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\policymanager.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\NMAA.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\msi.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\kernel32.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\jscript.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\edgeIso.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\audiodg.exe
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-03-14 12:56:40 ----A---- C:\WINDOWS\system32\AppVIntegration.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\SYSWOW64\wsp_health.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\SYSWOW64\wsp_fs.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\SYSWOW64\msrd2x40.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\SYSWOW64\BingOnlineServices.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\winresume.exe
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\winload.exe
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\wer.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\vbscript.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\resutils.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\msvproc.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\MapsStore.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\drivers\rdbss.sys
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\drivers\http.sys
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\clusapi.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\AppVPolicy.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\AppResolver.dll
2019-03-14 12:56:39 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\RTWorkQ.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\ReAgent.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\policymanager.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\msvcp_win.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\msv1_0.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\MapRouter.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\MapGeocoder.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\kernel32.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\AppResolver.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\WerFault.exe
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\TransportDSA.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\RTWorkQ.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\ReAgent.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\pcasvc.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\msvcp_win.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\msv1_0.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\mprddm.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\MapConfiguration.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\hal.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\drivers\vhdmp.sys
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\drivers\refsv1.sys
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\drivers\fastfat.sys
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\domgmt.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\AppVScripting.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\AppVReporting.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\AppVPublishing.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\AppVOrchestration.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\AppVManifest.dll
2019-03-14 12:56:38 ----A---- C:\WINDOWS\system32\AppVCatalog.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\wimgapi.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\WerFaultSecure.exe
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\resutils.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\NMAA.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\mf3216.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\mavinject.exe
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\MapControlCore.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore6.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\dhcpcore.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\clusapi.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\SYSWOW64\AcLayers.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\wimserv.exe
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\wimgapi.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\werui.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\weretw.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\taskhostw.exe
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\systemreset.exe
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\reseteng.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\moshostcore.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\mf3216.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\mavinject.exe
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\hvloader.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\Faultrep.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\drivers\npfs.sys
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\drivers\hvservice.sys
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\drivers\hidparse.sys
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\drivers\exfat.sys
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\drivers\bridge.sys
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\dhcpcore6.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\dhcpcore.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\AppVStreamMap.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\AppVStreamingUX.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\AppVShNotify.exe
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\AppVNice.exe
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\AppVDllSurrogate.exe
2019-03-14 12:56:37 ----A---- C:\WINDOWS\system32\AcLayers.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.MixedRealityCapture.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\SYSWOW64\werdiagcontroller.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\SYSWOW64\UserDataTimeUtil.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\SYSWOW64\mcbuilder.exe
2019-03-14 12:56:36 ----A---- C:\WINDOWS\SYSWOW64\MapConfiguration.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\SYSWOW64\CredentialMigrationHandler.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\SYSWOW64\AppLockerCSP.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\UevAppMonitor.exe
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\tzres.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\srpapi.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\ResetEngOnline.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\RecoveryDrive.exe
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\rascustom.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\Microsoft.Uev.Common.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\mcbuilder.exe
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\drivers\udfs.sys
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\drivers\msfs.sys
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\drivers\cdfs.sys
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\AppointmentActivation.dll
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-03-14 12:56:36 ----A---- C:\WINDOWS\system32\AppLockerCSP.dll
2019-03-10 08:50:27 ----A---- C:\WINDOWS\system32\drivers\ESETCleanersDriver.sys
2019-03-03 12:37:57 ----D---- C:\Program Files (x86)\Origin Games
2019-03-02 09:26:49 ----D---- C:\VProRecovery
2019-03-01 14:32:12 ----D---- C:\ProgramData\SystemAcCrux

====== List of files/folders modified in the last 1 month ======

2019-03-29 20:34:33 ----RD---- C:\Program Files
2019-03-29 20:25:00 ----D---- C:\WINDOWS\system32\sru
2019-03-29 20:21:58 ----D---- C:\WINDOWS\Temp
2019-03-29 18:00:00 ----D---- C:\WINDOWS\system32\LogFiles
2019-03-29 16:47:24 ----D---- C:\WINDOWS\system32\SleepStudy
2019-03-29 15:52:16 ----D---- C:\WINDOWS\Registration
2019-03-29 15:51:57 ----SHD---- C:\System Volume Information
2019-03-29 15:51:50 ----D---- C:\WINDOWS\Logs
2019-03-29 15:48:20 ----RD---- C:\WINDOWS\Microsoft.NET
2019-03-29 15:29:50 ----D---- C:\WINDOWS\Prefetch
2019-03-29 15:25:08 ----D---- C:\WINDOWS\system32\Tasks
2019-03-29 15:24:03 ----HD---- C:\Program Files\WindowsApps
2019-03-29 15:22:42 ----D---- C:\ProgramData\NVIDIA
2019-03-29 07:12:54 ----SHD---- C:\WINDOWS\Installer
2019-03-29 07:12:54 ----SHD---- C:\Config.Msi
2019-03-29 07:07:55 ----RD---- C:\Program Files (x86)
2019-03-28 13:59:36 ----D---- C:\Program Files\Mozilla Firefox
2019-03-28 13:59:36 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2019-03-28 13:58:54 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-03-27 15:08:44 ----D---- C:\Users\11\AppData\Roaming\vlc
2019-03-27 14:17:26 ----D---- C:\WINDOWS\AppReadiness
2019-03-27 07:09:45 ----D---- C:\Program Files\Common Files\microsoft shared
2019-03-27 07:08:25 ----AD---- C:\Program Files\Microsoft Office
2019-03-24 17:35:18 ----D---- C:\WINDOWS\System32
2019-03-24 17:35:18 ----D---- C:\WINDOWS\INF
2019-03-24 17:35:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2019-03-21 21:15:55 ----D---- C:\WINDOWS\system32\config
2019-03-21 15:31:56 ----D---- C:\WINDOWS\WinSxS
2019-03-21 15:31:26 ----D---- C:\WINDOWS\system32\catroot2
2019-03-20 08:29:08 ----D---- C:\Program Files\rempl
2019-03-19 11:36:56 ----RSD---- C:\WINDOWS\assembly
2019-03-19 11:36:04 ----RSD---- C:\WINDOWS\Fonts
2019-03-19 11:35:12 ----D---- C:\ProgramData\Packages
2019-03-18 10:42:14 ----D---- C:\Windows
2019-03-18 09:03:20 ----AD---- C:\Program Files\7-Zip
2019-03-17 08:47:40 ----D---- C:\WINDOWS\SoftwareDistribution
2019-03-16 09:50:45 ----A---- C:\WINDOWS\SYSWOW64\PnkBstrB.exe
2019-03-15 18:40:41 ----D---- C:\Users\11\AppData\Roaming\TS3Client
2019-03-15 18:40:35 ----D---- C:\WINDOWS\debug
2019-03-15 15:58:29 ----A---- C:\WINDOWS\SYSWOW64\PnkBstrA.exe
2019-03-15 15:55:04 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2019-03-15 14:36:52 ----D---- C:\WINDOWS\system32\DriverStore
2019-03-15 14:36:52 ----D---- C:\WINDOWS\system32\drivers
2019-03-15 13:39:09 ----D---- C:\WINDOWS\SysWOW64
2019-03-15 13:39:06 ----D---- C:\WINDOWS\system32\Macromed
2019-03-15 13:39:04 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2019-03-15 08:23:02 ----D---- C:\WINDOWS\TextInput
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\zu-ZA
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\yo-NG
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\xh-ZA
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\wo-SN
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\uz-Latn-UZ
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\tn-ZA
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\ti-ET
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\tg-Cyrl-TJ
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-RS
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\sr-Cyrl-BA
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\sd-Arab-PK
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\rw-RW
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\quc-Latn-GT
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\pa-Arab-PK
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\nso-ZA
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\migration
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\ku-Arab-IQ
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\ig-NG
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\chr-CHER-US
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\ha-Latn-NG
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\en-US
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\ca-ES-valencia
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\bs-Latn-BA
2019-03-15 08:23:02 ----D---- C:\WINDOWS\SYSWOW64\az-Latn-AZ
2019-03-15 08:23:01 ----SD---- C:\WINDOWS\system32\UNP
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\zu-ZA
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\yo-NG
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\xh-ZA
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\wo-SN
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\uz-Latn-UZ
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\tn-ZA
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\ti-ET
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\tg-Cyrl-TJ
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\sr-Cyrl-RS
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\sr-Cyrl-BA
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\sd-Arab-PK
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\rw-RW
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\quc-Latn-GT
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\pa-Arab-PK
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\oobe
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\nso-ZA
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\migration
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\ku-Arab-IQ
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\ig-NG
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\chr-CHER-US
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\ha-Latn-NG
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\en-US
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\cs-CZ
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\ca-ES-valencia
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\bs-Latn-BA
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\az-Latn-AZ
2019-03-15 08:23:01 ----D---- C:\WINDOWS\system32\appraiser
2019-03-15 08:23:01 ----D---- C:\WINDOWS\ShellExperiences
2019-03-15 08:23:00 ----RD---- C:\Program Files\Windows Defender
2019-03-15 08:23:00 ----D---- C:\WINDOWS\system32\Boot
2019-03-15 08:23:00 ----D---- C:\WINDOWS\bcastdvr
2019-03-15 08:23:00 ----D---- C:\WINDOWS\apppatch
2019-03-15 08:23:00 ----D---- C:\Program Files\Windows Defender Advanced Threat Protection
2019-03-15 08:23:00 ----D---- C:\Program Files (x86)\Windows Defender
2019-03-14 16:15:35 ----D---- C:\ProgramData\Origin
2019-03-14 16:15:33 ----D---- C:\Users\11\AppData\Roaming\Origin
2019-03-14 12:58:49 ----D---- C:\WINDOWS\CbsTemp
2019-03-14 12:56:25 ----D---- C:\WINDOWS\system32\MRT
2019-03-14 12:53:58 ----AC---- C:\WINDOWS\system32\MRT.exe
2019-03-14 12:41:42 ----AD---- C:\Program Files\CCleaner
2019-03-10 12:18:02 ----D---- C:\Program Files (x86)\Origin
2019-03-03 17:54:40 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2019-03-03 14:50:55 ----D---- C:\Program Files (x86)\Common Files
2019-03-03 14:50:35 ----A---- C:\WINDOWS\SYSWOW64\pbsvc.exe
2019-03-03 12:43:24 ----AD---- C:\Program Files\TeamSpeak 3 Client
2019-03-01 14:32:12 ----HD---- C:\ProgramData

File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed

====== List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2019-03-15 107744]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2018-12-08 58168]
R0 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2018-12-08 304144]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-04-12 39424]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-04-12 60320]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2019-03-15 145600]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2019-03-15 188240]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2019-03-15 82472]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2019-03-15 110000]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2018-07-14 414720]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2019-03-15 50280]
R3 CorsairGamingAudioService;@oem19.inf,%CorsairAudioFilterServiceDisplayName%;Corsair Gaming Audio Service; C:\WINDOWS\system32\DRIVERS\CorsairGamingAudioamd64.sys [2016-03-03 123384]
R3 CorsairVBusDriver;@oem1.inf,%dev.SVCDESC%;Corsair Bus; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [2016-01-20 47840]
R3 CorsairVHidDriver;@oem28.inf,%dev.SVCDESC%;Corsair virtual device; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [2016-01-20 21728]
R3 EZSocketGOT;EZSocketGOT; C:\WINDOWS\system32\drivers\EZSocketGOT.sys [2010-08-31 254976]
R3 GenericMount;@oem32.inf,%DiskServiceDesc%;Generic Mount Driver; C:\WINDOWS\System32\drivers\GenericMount.sys [2010-02-12 66608]
R3 ikbevent;Intel Upper keyboard Class Filter Driver; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [2014-05-27 22216]
R3 imsevent;Intel Upper Mouse Class Filter Driver; C:\WINDOWS\system32\DRIVERS\imsevent.sys [2014-05-27 22728]
R3 ISCT;@oem8.inf,%ISCT.DeviceDesc%;Intel(R) Smart Connect Technology Device Driver; C:\WINDOWS\System32\drivers\ISCTD.sys [2014-05-27 44744]
R3 kxwdmdrv;@oem44.inf,%EMU10KX_SERVICE.DeviceDesc%;kX WDM Driver Service; C:\WINDOWS\system32\drivers\kx.sys [2013-12-27 508072]
R3 Neo_VPN;@oem72.inf,%Neo.Service.DispName%;VPN Client Device Driver - VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [2018-12-20 37824]
R3 NVHDA;@oem41.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2018-12-11 227896]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_01c064f3d89f92be\nvlddmkm.sys [2018-12-12 20424640]
R3 nvvad_WaveExtensible;@oem23.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2018-10-01 70024]
R3 nvvhci;@oem62.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2018-10-01 74576]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2018-04-12 604160]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-04-12 38304]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2018-02-19 15872]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-04-12 321432]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-04-12 885144]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-04-12 145816]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-04-12 75160]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-04-12 82328]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-04-12 39840]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-04-12 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-04-12 18432]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2018-04-12 127384]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2018-04-12 162712]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2018-04-12 143768]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2019-01-09 92704]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-04-12 60320]
S3 COMMONFX.DLL;COMMONFX.DLL; C:\WINDOWS\System32\COMMONFX.DLL [2007-04-12 151296]
S3 COMMONFX.SYS;COMMONFX.SYS; C:\WINDOWS\System32\drivers\COMMONFX.SYS [2010-03-18 158808]
S3 COMMONFX;COMMONFX; C:\WINDOWS\system32\drivers\COMMONFX.SYS [2010-03-18 158808]
S3 cpuz135;cpuz135; \??\C:\WINDOWS\TEMP\cpuz135\cpuz135_x64.sys []
S3 CT20XUT.DLL;CT20XUT.DLL; C:\WINDOWS\System32\CT20XUT.DLL [2007-04-10 252712]
S3 ctac32k;Creative AC3 Software Decoder; C:\WINDOWS\system32\drivers\ctac32k.sys [2007-04-10 580904]
S3 ctaud2k;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys [2007-04-10 863016]
S3 CTAUDFX.DLL;CTAUDFX.DLL; C:\WINDOWS\System32\CTAUDFX.DLL [2007-04-10 700200]
S3 CTAUDFX.SYS;CTAUDFX.SYS; C:\WINDOWS\System32\drivers\CTAUDFX.SYS [2010-03-18 706648]
S3 CTAUDFX;CTAUDFX; C:\WINDOWS\system32\drivers\CTAUDFX.SYS [2010-03-18 706648]
S3 CTEAPSFX.DLL;CTEAPSFX.DLL; C:\WINDOWS\System32\CTEAPSFX.DLL [2007-04-10 219432]
S3 CTEDSPFX.DLL;CTEDSPFX.DLL; C:\WINDOWS\System32\CTEDSPFX.DLL [2007-04-10 321832]
S3 CTEDSPIO.DLL;CTEDSPIO.DLL; C:\WINDOWS\System32\CTEDSPIO.DLL [2007-04-10 190248]
S3 CTEDSPSY.DLL;CTEDSPSY.DLL; C:\WINDOWS\System32\CTEDSPSY.DLL [2007-04-10 363304]
S3 CTERFXFX.DLL;CTERFXFX.DLL; C:\WINDOWS\System32\CTERFXFX.DLL [2007-04-10 142120]
S3 CTEXFIFX.DLL;CTEXFIFX.DLL; C:\WINDOWS\System32\CTEXFIFX.DLL [2007-04-10 1571112]
S3 CTHWIUT.DLL;CTHWIUT.DLL; C:\WINDOWS\System32\CTHWIUT.DLL [2007-04-10 123688]
S3 ctprxy2k;Creative Proxy Driver; C:\WINDOWS\system32\drivers\ctprxy2k.sys [2007-04-10 17192]
S3 CTSBLFX.DLL;CTSBLFX.DLL; C:\WINDOWS\System32\CTSBLFX.DLL [2007-04-10 681256]
S3 CTSBLFX.SYS;CTSBLFX.SYS; C:\WINDOWS\System32\drivers\CTSBLFX.SYS [2010-03-18 681048]
S3 CTSBLFX;CTSBLFX; C:\WINDOWS\system32\drivers\CTSBLFX.SYS [2010-03-18 681048]
S3 ctsfm2k;Creative SoundFont Management Device Driver; C:\WINDOWS\system32\drivers\ctsfm2k.sys [2007-04-10 290600]
S3 dg_ssudbus;@oem30.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-07-22 130688]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2016-07-20 30264]
S3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2016-07-20 47672]
S3 dtproscsibus;DAEMON Tools Pro Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtproscsibus.sys [2018-03-03 30264]
S3 dtultrascsibus;@oem73.inf,%DTULTRASCSIBUS.DeviceDesc%;DAEMON Tools Ultra Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtultrascsibus.sys [2018-12-23 30264]
S3 emupia;E-mu Plug-in Architecture Driver; C:\WINDOWS\system32\drivers\emupia2k.sys [2007-04-10 147752]
S3 ESETCleanersDriver;ESET Cleaner Service; \??\C:\WINDOWS\system32\Drivers\ESETCleanersDriver.sys [2019-03-10 181160]
S3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 34152]
S3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\WINDOWS\system32\drivers\ha10kx2k.sys [2007-04-10 1359144]
S3 hap16v2k;Creative P16V HAL Driver; C:\WINDOWS\system32\drivers\hap16v2k.sys [2007-04-10 259880]
S3 hap17v2k;Creative P17V HAL Driver; C:\WINDOWS\system32\drivers\hap17v2k.sys [2007-04-10 295208]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2019-03-06 76088]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-04-12 27136]
S3 HyperVideo;HyperVideo; C:\WINDOWS\System32\drivers\HyperVideo.sys [2018-04-12 28672]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-04-12 1836952]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-04-12 36864]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-04-12 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-04-12 88576]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-04-12 174592]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-04-12 38912]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-04-12 32256]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-04-12 119808]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-04-12 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-04-12 56736]
S3 mvusbews;@oem12.inf,%mvusbews.SvcDesc%;USB EWS Device; C:\WINDOWS\System32\Drivers\mvusbews.sys [2012-09-26 20480]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-04-12 175104]
S3 netr28ux;@oem9.inf,%Generic.Service.DispName%;RT2870 USB Extensible Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\netr28ux.sys [2015-11-19 2244952]
S3 netvsc;netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [2018-04-12 197632]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-04-12 104448]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2018-10-25 30336]
S3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\drivers\ctoss2k.sys [2007-04-10 218408]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2018-04-12 105984]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-04-12 16896]
S3 ReFS;ReFS; C:\WINDOWS\system32\drivers\ReFS.sys [2019-03-06 1921848]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-04-12 104448]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-04-12 33184]

====== List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled) ======

R2 CDPUserSvc_7c27930;Uživatelská služba platformy připojených zařízení_7c27930; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2019-03-22 11082312]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\dusmsvc.dll
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2019-03-15 2359312]
R2 FoxitReaderService;Foxit Reader Service; D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitConnectedPDFService.exe [2017-12-11 1659456]
R2 HPSIService;HP SI Service; C:\WINDOWS\system32\HPSIsvc.exe [2012-09-27 126880]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2018-12-06 347512]
R2 MediatekRegistryWriter;MediatekRegistryWriter; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe [2014-12-04 405136]
R2 MediatekRegistryWriter64;MediatekRegistryWriter64; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe [2014-12-04 454288]
R2 Norton Ghost;Norton Ghost; D:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe [2010-03-03 4590432]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-12-06 786800]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2018-12-11 767016]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2018-12-11 649712]
R2 OneSyncSvc_7c27930;Hostitel synchronizace_7c27930; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
R2 Origin Web Helper Service;Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2019-02-19 3171144]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe []
R2 ProtexisLicensing;ProtexisLicensing; C:\WINDOWS\SysWOW64\PSIService.exe [2007-06-05 177704]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\System32\BthAvctpSvc.dll
R3 HnGService;Heroes & Generals Service; C:\Program Files (x86)\Heroes & Generals\live\hngservice.exe [2019-03-29 787240]
R3 PimIndexMaintenanceSvc_7c27930;Data kontaktů_7c27930; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" = %SystemRoot%\System32\CDPUserSvc.dll
S2 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2009-06-24 136704]
S3 AssignedAccessManagerSvc;@%SystemRoot%\system32\assignedaccessmanagersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k AssignedAccessManagerSvc;"ServiceDll" = %SystemRoot%\System32\assignedaccessmanagersvc.dll
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; %SystemRoot%\system32\svchost.exe -k BcastDVRUserService;"ServiceDll" = %SystemRoot%\System32\BcastDVRUserService.dll
S3 BcastDVRUserService_7c27930;Uživatelská služba pro GameDVR a vysílání her_7c27930; C:\WINDOWS\system32\svchost.exe -k BcastDVRUserService;"ServiceDll" =
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2018-07-01 6875688]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; %SystemRoot%\system32\svchost.exe -k BthAppGroup;"ServiceDll" = %SystemRoot%\System32\Microsoft.Bluetooth.UserService.dll
S3 BluetoothUserService_7c27930;Služba pro podporu uživatelů Bluetooth_7c27930; C:\WINDOWS\system32\svchost.exe -k BthAppGroup;"ServiceDll" =
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\BTAGService.dll
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; %SystemRoot%\system32\svchost.exe -k appmodel -p;"ServiceDll" = %SystemRoot%\system32\CapabilityAccessManager.dll
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalService -p;"ServiceDll" = %SystemRoot%\System32\CaptureService.dll
S3 CaptureService_7c27930;CaptureService_7c27930; C:\WINDOWS\system32\svchost.exe -k LocalService -p;"ServiceDll" =
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2016-04-17 79360]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\Windows.Devices.Picker.dll
S3 DevicePickerUserSvc_7c27930;DevicePicker_7c27930; C:\WINDOWS\system32\svchost.exe -k DevicesFlow;"ServiceDll" =
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll" = %SystemRoot%\System32\DevicesFlowBroker.dll
S3 DevicesFlowUserSvc_7c27930;Tok zařízení_7c27930; C:\WINDOWS\system32\svchost.exe -k DevicesFlow;"ServiceDll" =
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k diagnostics;"ServiceDll" = %systemroot%\system32\DiagSvc.dll
S3 EasyAntiCheat;EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [2018-08-04 781440]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2018-05-17 43648]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll" = %SystemRoot%\system32\FrameServer.dll
S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]
S3 GenericMount Helper Service;GenericMount Helper Service; D:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelperx64.exe [2010-02-12 2227216]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\elevation_service.exe [2019-03-20 1268720]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; %SystemRoot%\System32\svchost.exe -k GraphicsPerfSvcGroup;"ServiceDll" = %SystemRoot%\System32\GraphicsPerfSvc.dll
S3 HnGService_prototype;Heroes & Generals Service_prototype; d:\Program Files (x86)\Heroes & Generals prototype\prototype\hngservice.exe [2018-10-17 760104]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\hvhostsvc.dll
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\InstallService.dll
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\IpxlatCfg.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted -p;"ServiceDll" = %SystemRoot%\System32\irmon.dll
S3 LiveUpdate;LiveUpdate; C:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_2.EXE [2007-09-12 2999664]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll" = %SystemRoot%\System32\LanguageOverlayServer.dll
S3 MessagingService_7c27930;Služba zasílání zpráv_7c27930; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll" =
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2019-03-28 238544]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\System32\NaturalAuth.dll
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-12-06 786800]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2019-02-19 2298688]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2019-03-22 266736]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; %SystemRoot%\system32\svchost.exe -k PrintWorkflow;"ServiceDll" = %SystemRoot%\System32\PrintWorkflowService.dll
S3 PrintWorkflowUserSvc_7c27930;PrintWorkflow_7c27930; C:\WINDOWS\system32\svchost.exe -k PrintWorkflow;"ServiceDll" =
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; %SystemRoot%\System32\svchost.exe -k netsvcs -p;"ServiceDll" = %SystemRoot%\system32\PushToInstall.dll
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll" = %SystemRoot%\System32\RMapi.dll
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2018-05-17 826776]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118251
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zpomalený internet sekaní počítače

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
cros
Návštěvník
Návštěvník
Příspěvky: 72
Registrován: 17 kvě 2009 10:28

Re: Zpomalený internet sekaní počítače

#3 Příspěvek od cros »

# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-03-25.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-29-2019
# Duration: 00:00:04
# OS: Windows 10 Pro
# Cleaned: 6
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\11\AppData\LocalLow\.acestream
Deleted C:\Users\11\AppData\Roaming\.acestream
Deleted C:\Users\11\AppData\Roaming\acestream

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Classes\acestream
Deleted HKCU\Software\RegisteredApplications|AceStream

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

Deleted Ace Script

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1354 octets] - [30/08/2018 16:57:46]
AdwCleaner[C00].txt - [1502 octets] - [30/08/2018 16:58:05]
AdwCleaner[S01].txt - [1672 octets] - [29/03/2019 21:51:48]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118251
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zpomalený internet sekaní počítače

#4 Příspěvek od Rudy »

OK. Teď dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
cros
Návštěvník
Návštěvník
Příspěvky: 72
Registrován: 17 kvě 2009 10:28

Re: Zpomalený internet sekaní počítače

#5 Příspěvek od cros »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10.03.2018
Ran by 11 (30-03-2019 11:55:38)
Running from D:\STAŽENÉ SOUBORY
Windows 10 Pro Version 1803 17134.648 (X64) (2018-05-17 11:22:00)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

11 (S-1-5-21-1708006454-2605614449-3121516059-1001 - Administrator - Enabled) => C:\Users\11
Administrator (S-1-5-21-1708006454-2605614449-3121516059-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1708006454-2605614449-3121516059-503 - Limited - Disabled)
Guest (S-1-5-21-1708006454-2605614449-3121516059-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1708006454-2605614449-3121516059-1003 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-1708006454-2605614449-3121516059-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\uTorrent) (Version: 3.5.0.44294 - BitTorrent Inc.)
3DMark 11 (HKLM-x32\...\{46EDCFA5-7EDB-46A9-B093-1C6237470CEC}) (Version: 1.0.2 - Futuremark Corporation)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.156 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.156 - Adobe Systems Incorporated)
Aktualizace NVIDIA 34.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 34.0.0.0 - NVIDIA Corporation) Hidden
Audacity 2.1.3 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.3 - Audacity Team)
Battlefield 1 (HKLM-x32\...\Battlefield 1_is1) (Version: - )
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.1.0 - Electronic Arts)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.57.44284 - Electronic Arts)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.59.24655 - Electronic Arts)
Call of Duty - WWII (HKLM-x32\...\Call of Duty - WWII_is1) (Version: - )
Call of Duty(R) - World at War(TM) (HKLM-x32\...\{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Cenega) Hidden
Call of Duty(R) - World at War(TM) (HKLM-x32\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.7 - Cenega)
Call of Duty(R) - World at War(TM) 1.2 Patch (HKLM-x32\...\{2BF0AE92-C3BC-4112-9066-1546342B1FAE}) (Version: 1.2 - Activision) Hidden
Call of Duty(R) - World at War(TM) 1.2 Patch (HKLM-x32\...\InstallShield_{2BF0AE92-C3BC-4112-9066-1546342B1FAE}) (Version: - ) Hidden
Call of Duty(R) - World at War(TM) 1.4 Patch (HKLM-x32\...\{9F01A67B-7D67-482F-9D4F-D5980A440FD4}) (Version: 1.4 - Activision) Hidden
Call of Duty(R) - World at War(TM) 1.4 Patch (HKLM-x32\...\InstallShield_{9F01A67B-7D67-482F-9D4F-D5980A440FD4}) (Version: - ) Hidden
Call of Duty(R) - World at War(TM) 1.5 Patch (HKLM-x32\...\{C3DC2DF5-EFAC-4055-9010-31F7C545DD9E}) (Version: 1.5 - Activision) Hidden
Call of Duty(R) - World at War(TM) 1.5 Patch (HKLM-x32\...\InstallShield_{C3DC2DF5-EFAC-4055-9010-31F7C545DD9E}) (Version: - ) Hidden
Call of Duty(R) - World at War(TM) 1.6 Patch (HKLM-x32\...\{064DC64E-7A2F-4FDF-B598-E3C0747BBB9C}) (Version: 1.6 - Activision) Hidden
Call of Duty(R) - World at War(TM) 1.6 Patch (HKLM-x32\...\InstallShield_{064DC64E-7A2F-4FDF-B598-E3C0747BBB9C}) (Version: - ) Hidden
Call of Duty(R) - World at War(TM) 1.7 Patch (HKLM-x32\...\{750C87B8-AF19-4C3C-B791-50D9C83AE572}) (Version: 1.7 - Activision) Hidden
Call of Duty(R) - World at War(TM) 1.7 Patch (HKLM-x32\...\InstallShield_{750C87B8-AF19-4C3C-B791-50D9C83AE572}) (Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM-x32\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.7 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (HKLM-x32\...\{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}) (Version: 1.6 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (HKLM-x32\...\InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}) (Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (HKLM-x32\...\{931C37FC-594D-43A9-B10F-A2F2B1F03498}) (Version: 1.7 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (HKLM-x32\...\InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}) (Version: - ) Hidden
Call of Duty: Black Ops (HKLM-x32\...\Call of Duty: Black Ops_is1) (Version: - )
Call of Duty: Black Ops III Zombies Chronicles (HKLM\...\Y2FsbG9mZHV0eWJsYWNrb3BzaWlp_is1) (Version: 1 - )
CCleaner (HKLM\...\CCleaner) (Version: 5.55 - Piriform)
Corel Paint Shop Pro Photo X2 (HKLM-x32\...\{64E72FB1-2343-4977-B4A8-262CD53D0BD3}) (Version: 12.011.0000 - Corel Corporation)
Corsair Utility Engine (HKLM-x32\...\{46A3EEB3-8F6F-4BC4-9A53-CDE33D089D08}) (Version: 1.16.42 - Corsair)
Creative Speaker Settings (HKLM-x32\...\SPEAKER) (Version: - )
Discord (HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 417.35 - NVIDIA Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{5F95C9CC-2614-4C5E-B1FC-43029FD7FD6B}) (Version: 1.1.149.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESET Security (HKLM\...\{B489BC2D-0079-4631-97BF-CA2378299D43}) (Version: 11.0.159.9 - ESET, spol. s r.o.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.0.1.1049 - Foxit Software Inc.)
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 4.0.0.0 - Futuremark Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.86 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: "1.0.0.10" - Rockstar Games)
GX Developer (HKLM-x32\...\SWnD5-GPPW) (Version: - )
HD Tune Pro 5.60 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Heroes & Generals (HKLM-x32\...\Heroes & Generals) (Version: 1.1.0.0 - Reto-Moto)
Hitman (HKLM-x32\...\Hitman_is1) (Version: - )
HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version: - )
HP Support Solutions Framework (HKLM-x32\...\{3D6FF65E-EE93-4D90-B5D7-0DC856E2AFEB}) (Version: 12.10.49.21 - HP)
hppLaserJetService (HKLM-x32\...\{D371F551-0DB9-4CEC-844B-4C90CE91EA0B}) (Version: 001.001.0.0 - Hewlett-Packard) Hidden
hppP1100P1560P1600SeriesLaserJetService (HKLM-x32\...\{0E448256-D515-4C3E-A5BE-0A7B76CED5D4}) (Version: 001.001.0.0 - Hewlett-Packard) Hidden
hppusgP1100P1560P1600Series (HKLM-x32\...\{853F464A-B2B8-404E-BA3E-B98FF6862C41}) (Version: 1.0.0.1 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
Cheat Engine 6.7 (HKLM-x32\...\Cheat Engine 6.7_is1) (Version: - Cheat Engine)
Intel(R) Smart Connect Technology (HKLM\...\{F46EF80D-07F0-4E56-B9B3-8EDB759B52D8}) (Version: 5.0.10.2850 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.42 - Irfan Skiljan)
Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Kodi (HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\Kodi) (Version: - XBMC-Foundation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreCAD (HKLM-x32\...\LibreCAD) (Version: 2.1.1 - LibreCAD Team)
LibreOffice 6.2.1.2 (HKLM\...\{28B8E75D-44A5-4057-8369-5951A15BAF08}) (Version: 6.2.1.2 - The Document Foundation)
LINE (HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\LINE) (Version: 5.15.0.1909 - LINE Corporation)
LiveUpdate 3.2 (Symantec Corporation) (HKLM-x32\...\LiveUpdate) (Version: 3.2.0.68 - Symantec Corporation)
Mafia III (HKLM-x32\...\Mafia III_is1) (Version: - )
Malwarebytes verze 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
MarketResearch (HKLM-x32\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Mediatek RT2870 Wireless LAN Card (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.5.39.173 - MediatekWiFi)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.11425.20202 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\OneDriveSetup.exe) (Version: 19.043.0304.0005 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mitsubishi ProjX Studio (HKLM-x32\...\{52EEA390-CF7B-464F-BE1F-C2C96E03CC38}) (Version: 2.2 - Mitsubishi Electric Europe b.v.)
Moorhuhn Piraten (HKLM-x32\...\{EAA02F85-3DD4-4083-9AF6-7A2C13ACF1E5}) (Version: 1.00.0000 - )
Mozilla Firefox 66.0.2 (x64 cs) (HKLM\...\Mozilla Firefox 66.0.2 (x64 cs)) (Version: 66.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.1 - Mozilla)
Norton Ghost (HKLM-x32\...\{B0255743-165B-4BD5-8DA8-37DFB9930015}) (Version: 15.0.1.36526 - Symantec Corporation)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.12 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.16.0.140 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.16.0.140 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 417.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 417.35 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.4 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 417.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 417.35 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.35.22222 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 417.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 417.35 - NVIDIA Corporation) Hidden
Plarium Play (HKLM-x32\...\{45402460-525A-4663-8517-F29C644D56A2}) (Version: 2.2.0.0 - Plarium) Hidden
Plarium Play (HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\{b4501164-5e99-47d7-b23f-0b61efe8dfc3}) (Version: 2.2.0.0 - Plarium)
ProfiCAD 8.5.2 (HKLM-x32\...\ProfiCAD_is1) (Version: - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.988 - Even Balance, Inc.)
Qualcomm USB Drivers For Windows (HKLM-x32\...\{D9FB7F91-9687-4B09-894D-072903CADEA4}) (Version: 1.0.9 - QUALCOMM Incorporated)
Red Crucible: Reloaded version 1.0 (HKLM-x32\...\{0497EF07-F128-4BA7-810A-B42EDCF1A439}_is1) (Version: 1.0 - Rocketeer Games Studio, LLC)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM-x32\...\SLABCOMM&10C4&EA60) (Version: - Silicon Laboratories)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (HKLM-x32\...\{C839857D-4498-46E0-9253-F0E7D489C2B3}) (Version: 6.5.3 - Silicon Laboratories, Inc.)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype verze 8.34 (HKLM-x32\...\Skype_is1) (Version: 8.34 - Skype Technologies S.A.)
Sniper Elite 4 (HKLM\...\Sniper Elite 4_is1) (Version: 1.0 - )
SSDlife Pro (HKLM-x32\...\{6F104B6D-535A-4D27-9A11-8525368AEB1F}) (Version: 2.5.82 - BinarySense Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 7 (HKLM-x32\...\TeamViewer 7) (Version: 7.0.43148 - TeamViewer)
Tisk Obalek 3.2.2.9 (HKLM-x32\...\Tisk Obalek_is1) (Version: 3.2.2.9 - Mgr. Radovan Kraus)
TNod User & Password Finder (HKLM\...\TNod) (Version: 1.6.6.0 - Tukero[X]Team)
Tom Clancy's Ghost Recon Wildlands (HKLM-x32\...\Uplay Install 1771) (Version: - Ubisoft)
Tom Clancy's The Division (HKLM-x32\...\Uplay Install 568) (Version: - Ubisoft)
Tom Clancy's The Division 2 - Open Beta (HKLM-x32\...\Uplay Install 5159) (Version: - Ubisoft)
Tom Clancy's The Division PTS (HKLM-x32\...\Uplay Install 3502) (Version: - Ubisoft)
TomTom Sports Connect (HKLM-x32\...\TomTom Sports Connect) (Version: 3.3.9.0 - TomTom International B.V.)
TP-LINK TL-WN727N Driver (HKLM-x32\...\{52C7E8B3-A21E-460B-A9EC-5B6CBB8635CE}) (Version: 1.3.1 - TP-LINK)
TunnelBear (HKLM-x32\...\{58a01650-b45c-443b-a51e-90f586a63532}) (Version: 3.7.2.0 - TunnelBear)
TunnelBear (HKLM-x32\...\{C7E7F8CF-E23A-4FC1-8AAC-8710A70490E3}) (Version: 3.7.2.0 - TunnelBear) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{FBA3961B-D1DF-493C-BC1F-E67D3B832895}) (Version: 2.56.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 51.2 - Ubisoft)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-03-15] (ESET)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\ConvertToPDFShellExtension_x64.dll [2017-12-11] (Foxit Software Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-03-15] (ESET)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-12-11] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-03-15] (ESET)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\ConvertToPDFShellExtension_x64.dll [2017-12-11] (Foxit Software Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {08AB4225-8C64-4E0E-8600-29200D1BDFA9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2019-03-30] (Microsoft Corporation)
Task: {0A7AA876-862F-4F81-AA4B-B73950FA632C} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates
Task: {0EA2F51F-A8F0-42CD-A639-9CA30A8E2AD5} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-12-06] (NVIDIA Corporation)
Task: {179AFA94-3EF3-4D9B-AACB-7104C4276A49} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-29] (Google Inc.)
Task: {19AEAD9F-724A-4801-911E-4B2863E8DA48} - System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation
Task: {1C7B06B1-0C6B-4A36-8642-8E8C0BFCE985} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2019-02-27] (Piriform Software Ltd)
Task: {1FC07511-F93E-48B2-A06D-6C59B64720D0} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-12-06] (NVIDIA Corporation)
Task: {23F86A66-FE44-4316-B6D5-C7844B2570A0} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-03-15] (Adobe Systems Incorporated)
Task: {2A37A369-CA9B-44AF-AAF7-0812C74BC77F} - System32\Tasks\{B969933F-6FC4-431F-BF1A-556A1DE103F6} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.26.0.101/cs/abandoninstall?page=tsProgressBar
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {370BC62A-28DA-434E-816F-8C0A0B83A193} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {4284F68F-7FC0-4A95-9B71-0463FD53C74E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_156_Plugin.exe [2019-03-15] (Adobe Systems Incorporated)
Task: {430852CB-A87C-492E-A659-075C7BF1710C} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates
Task: {442FA4F5-8509-430C-9DF5-4E90A5CFAC6A} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {45A2ACED-13AC-44FA-BA9C-A8E51EC51F29} - System32\Tasks\{A880FDB9-00D7-4F3E-8741-0B55E4093522} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.26.0.101/cs/abandoninstall?page=tsProgressBar
Task: {4A5B0F95-72D9-4BE1-A796-4227BABD44E0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2019-03-28] (Microsoft Corporation)
Task: {4AF97AFB-EAD7-4FC1-B3B0-75C1B9DF23BA} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-12-06] (NVIDIA Corporation)
Task: {4B263188-1FF4-45A5-B004-410445C97426} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2019-03-30] (Microsoft Corporation)
Task: {4E9D972D-D678-4BFB-8176-200CEBF5DEA7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2019-03-28] (Microsoft Corporation)
Task: {541BA5BF-1736-4A3E-B1E5-CE1C9EE13043} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates
Task: {5C3C8B2C-9A5D-48D2-A203-DC04B5527D94} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2019-03-11] (Piriform Software Ltd)
Task: {5DF73CDF-D6C6-4DC8-BF7A-B60818DEC451} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2019-01-02] (HP Inc.)
Task: {5FBA59CA-83D7-4EE1-8AE2-ECE54F1D870C} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2019-03-30] (Microsoft Corporation)
Task: {617BC54D-53D3-459C-BCA0-039E3B75568A} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-12-06] (NVIDIA Corporation)
Task: {632ED99D-D79A-4A37-B015-5063025C9CA6} - System32\Tasks\{E7430F5C-54F9-4643-A9FD-1C9F0745BD28} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.26.0.101/cs/abandoninstall?page=tsProgressBar
Task: {633878D6-004A-4E58-91A2-270C67B160F6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_156_pepper.exe [2019-03-15] (Adobe Systems Incorporated)
Task: {65A34F07-723D-4150-B109-13BD1AE3DFAA} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {6E388A89-5CF3-4DA8-93B8-8EB0DDD64157} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2019-03-30] (Microsoft Corporation)
Task: {71585D82-2756-450D-8B5A-FC5C9BEC6678} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-29] (Google Inc.)
Task: {78BABCCD-20B8-49B7-B4F8-87490C41C875} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser
Task: {7D458894-1DA4-4FDE-A290-BE2212251D72} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-12-06] (NVIDIA Corporation)
Task: {7D9C2083-397B-45E3-8BC9-9027D85609E8} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-12-06] (NVIDIA Corporation)
Task: {871AE18B-7115-4125-B1AD-DC72E81D6EE6} - System32\Tasks\Microsoft\Windows\rempl\shell => C:\Program Files\rempl\sedlauncher.exe [2019-03-16] (Microsoft Corporation)
Task: {88AB5AD1-5BC4-4FDB-ABB5-2816635E6DE6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2019-01-31] (HP Inc.)
Task: {8DF8AEFB-D2A0-4EE1-A9FE-7B7B46A23411} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2019-03-30] (Microsoft Corporation)
Task: {8F255F88-A87A-495F-B828-A4AFEC70BDB0} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\WINDOWS\system32\dxgiadaptercache.exe [2018-04-12] (Microsoft Corporation)
Task: {945A4A9A-8231-4E1E-A016-854BB1296513} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-12-06] (NVIDIA Corporation)
Task: {95E4F877-3D5D-42A9-85D1-6A167DB4A2AB} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-12-06] (NVIDIA Corporation)
Task: {97805536-1BB7-4A11-BB6A-66A879B4E6A1} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-12-06] (NVIDIA Corporation)
Task: {9981745C-84C7-4252-9CE8-7E2245636BB2} - System32\Tasks\{A6545FD2-2C4D-4C7C-A9E7-CD1BEBC08C57} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.26.0.101/cs/abandoninstall?page=tsProgressBar
Task: {9DB7D639-D57D-4ACE-BA7F-D0F2F92E9B3D} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback
Task: {B48A5858-5008-43CC-807D-1E330F0278E1} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-12-06] (NVIDIA Corporation)
Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - System32\Tasks\Microsoft\Windows\Speech\HeadsetButtonPress => C:\WINDOWS\system32\speech_onecore\common\SpeechRuntime.exe [2018-05-20] (Microsoft Corporation)
Task: {CD5BE890-7727-44E4-B54D-3F2AED0CE8B1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-12-06] (NVIDIA Corporation)
Task: {D1CC320B-9A47-4DB4-AFE4-2BCE1A964E7A} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\ReconcileLanguageResources
Task: {D891F5A2-5691-449F-B6B4-AE3F8CADE91F} - System32\Tasks\{D14DDC30-6158-4779-A6F5-C855AA9CD4EB} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.26.0.101/cs/abandoninstall?page=tsProgressBar
Task: {F500C543-53B3-4FF7-911D-79705916A46E} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [2019-03-30] (Microsoft Corporation)
Task: {F721FBFA-37AA-451A-86F5-27B3D0A6B961} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [2019-03-30] (Microsoft Corporation)
Task: {FA1BABA5-908C-475B-8E2C-93024C0D99CB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater – Install HPSA => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2019-01-31] (HP Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2016-05-30 15:05 - 2012-08-31 14:03 - 000288768 _____ () C:\WINDOWS\System32\HP1100LM.DLL
2017-11-13 15:21 - 2012-08-31 14:02 - 000074240 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\HP1100PP.DLL
2016-10-07 16:41 - 2019-03-15 15:58 - 000066872 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2007-06-05 12:20 - 2007-06-05 12:20 - 000177704 _____ () C:\WINDOWS\SysWOW64\PSIService.exe
2018-12-15 16:52 - 2018-12-06 11:13 - 001314672 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-12 12:26 - 2018-11-09 03:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2019-03-14 12:56 - 2019-03-06 09:30 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2019-03-06 16:48 - 2019-03-06 16:48 - 000059376 _____ () C:\Program Files\CCleaner\branding.dll
2019-03-11 16:16 - 2019-03-11 16:16 - 000095248 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2018-12-15 16:52 - 2018-12-06 11:12 - 101251952 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-12-15 16:52 - 2018-12-06 11:12 - 004619632 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libglesv2.dll
2018-12-15 16:52 - 2018-12-06 11:12 - 000108400 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libegl.dll
2019-03-22 18:08 - 2019-02-26 11:10 - 097692760 _____ () C:\Users\11\AppData\Local\Plarium\PlariumPlay\libcef.dll
2019-03-22 18:08 - 2019-02-26 11:10 - 004316256 _____ () C:\Users\11\AppData\Local\Plarium\PlariumPlay\libglesv2.dll
2019-03-22 18:08 - 2019-02-26 11:10 - 000100952 _____ () C:\Users\11\AppData\Local\Plarium\PlariumPlay\libegl.dll
2019-03-28 14:58 - 2019-03-28 14:58 - 000640840 _____ () C:\Users\11\AppData\Local\Plarium\PlariumPlay\StandAloneApps\vikings\103\game.exe
2019-03-16 08:39 - 2019-03-16 08:41 - 000481280 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19011.19410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2019-03-16 08:39 - 2019-03-16 08:41 - 080792064 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19011.19410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-04 14:25 - 2017-10-04 14:26 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19011.19410.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2019-03-16 08:39 - 2019-03-16 08:41 - 003824640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19011.19410.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2019-03-16 08:39 - 2019-03-16 08:41 - 000012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19011.19410.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2019-03-16 08:39 - 2019-03-16 08:41 - 014212096 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19011.19410.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2019-03-16 08:39 - 2019-03-16 08:41 - 002872320 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19011.19410.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2019-03-16 08:39 - 2019-03-16 08:41 - 001016320 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19011.19410.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-12-07 07:19 - 2018-12-07 07:19 - 004380232 _____ () C:\Program Files\WindowsApps\Microsoft.UI.Xaml.2.0_2.1810.18004.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2019-03-16 08:39 - 2019-03-16 08:41 - 000145920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19011.19410.0_x64__8wekyb3d8bbwe\SKU.dll
2018-10-29 17:09 - 2018-10-29 17:09 - 000030720 _____ () D:\Program Files\tunrlbear\TunnelBear\TunnelBear.Maintenance.Wrapper.dll
2018-10-29 17:09 - 2018-10-29 17:09 - 000167424 _____ () D:\Program Files\tunrlbear\TunnelBear\TunnelBear.VigilantBear.Wrapper.dll
2018-12-15 16:52 - 2018-12-06 11:13 - 001032560 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-06-21 09:32 - 2018-06-21 09:32 - 000135680 _____ () C:\Program Files (x86)\TomTom\MySportsConnect\quazip5.dll
2016-03-23 11:04 - 2016-03-23 11:04 - 000091136 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\LuaQtWrapperLibrary.dll
2016-03-23 11:02 - 2016-03-23 11:02 - 000224256 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\quazip.dll
2016-03-23 11:02 - 2016-03-23 11:02 - 000200704 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\lua52.dll
2019-03-20 18:14 - 2019-03-20 18:14 - 002801760 _____ () C:\Users\11\AppData\Local\LINE\bin\current\skottie.dll
2019-03-20 18:14 - 2019-03-20 18:14 - 007406184 _____ () C:\Users\11\AppData\Local\LINE\bin\current\ampkit_windows.dll
2019-03-20 18:14 - 2019-03-20 18:14 - 015234136 _____ () C:\Users\11\AppData\Local\LINE\bin\current\opengl32sw.dll
2019-03-20 18:14 - 2019-03-20 18:14 - 000101464 _____ () C:\Users\11\AppData\Local\LINE\bin\current\WinService.dll
2019-03-21 12:35 - 2019-03-21 12:35 - 000858496 _____ () C:\Users\11\AppData\Local\LINE\Data\plugin\LineMediaPlayer\1.1.0.219\OpenAL32.dll
2019-03-21 12:35 - 2019-03-21 12:35 - 002801752 _____ () C:\Users\11\AppData\Local\LINE\Data\plugin\LineMediaPlayer\1.1.0.219\skottie.dll
2019-03-21 12:35 - 2019-03-21 12:35 - 000158344 _____ () C:\Users\11\AppData\Local\LINE\Data\plugin\LineMediaPlayer\1.1.0.219\swresample-2.dll
2019-03-21 12:35 - 2019-03-21 12:35 - 000561288 _____ () C:\Users\11\AppData\Local\LINE\Data\plugin\LineMediaPlayer\1.1.0.219\avutil-55.dll
2019-03-21 12:35 - 2019-03-21 12:35 - 002105480 _____ () C:\Users\11\AppData\Local\LINE\Data\plugin\LineMediaPlayer\1.1.0.219\avformat-57.dll
2019-03-21 12:35 - 2019-03-21 12:35 - 002272392 _____ () C:\Users\11\AppData\Local\LINE\Data\plugin\LineMediaPlayer\1.1.0.219\avfilter-6.dll
2019-03-21 12:35 - 2019-03-21 12:35 - 012684424 _____ () C:\Users\11\AppData\Local\LINE\Data\plugin\LineMediaPlayer\1.1.0.219\avcodec-57.dll
2019-03-21 12:35 - 2019-03-21 12:35 - 000560264 _____ () C:\Users\11\AppData\Local\LINE\Data\plugin\LineMediaPlayer\1.1.0.219\swscale-4.dll
2019-03-28 14:58 - 2019-03-28 14:58 - 017141704 _____ () C:\Users\11\AppData\Local\Plarium\PlariumPlay\StandAloneApps\vikings\103\UnityPlayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\11:Heroes & Generals [38]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioEndpointBuilder => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioSrv => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudAddService.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudBus.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\usbaudio.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2019-03-29 21:52 - 000000841 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img2.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\Services: lfsvc => 3
HKLM\...\StartupApproved\StartupFolder: => "Mediatek Wireless Utility.lnk"
HKLM\...\StartupApproved\Run: => "AsioReg"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "AsioThk32Reg"
HKLM\...\StartupApproved\Run: => "kX Mixer"
HKLM\...\StartupApproved\Run32: => "AsioThk32Reg"
HKLM\...\StartupApproved\Run32: => "CTHelper"
HKLM\...\StartupApproved\Run32: => "CTxfiHlp"
HKLM\...\StartupApproved\Run32: => "HPUsageTrackingLEDM"
HKLM\...\StartupApproved\Run32: => "NvBackend"
HKLM\...\StartupApproved\Run32: => "ISCT Tray"
HKLM\...\StartupApproved\Run32: => "AsioReg"
HKLM\...\StartupApproved\Run32: => "Corel File Shell Monitor"
HKLM\...\StartupApproved\Run32: => "Corel Photo Downloader"
HKLM\...\StartupApproved\Run32: => "Norton Ghost 15.0"
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\StartupApproved\Run: => "World of Tanks"
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\StartupApproved\Run: => "DevconDefaultDB"
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\StartupApproved\Run: => "World of Warships"
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\StartupApproved\Run: => "Lync"
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\StartupApproved\Run: => "DAEMON Tools Ultra Agent"
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\StartupApproved\Run: => "EpicGamesLauncher"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{FA1FB469-630B-4D04-ADD0-82E209541C78}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [TCP Query User{6724E914-20E1-42F8-B0D1-04080D355DB2}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe
FirewallRules: [UDP Query User{F6958401-1D98-4F9C-ABA4-424D9E47F794}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{04CD803A-51F0-4527-9DC0-00485F9F8F12}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{A00EC8B9-1020-4A49-B82C-3604189CAD35}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{57DA3EB8-3B19-4206-ACC3-77CC6E3D693F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{7FF4E34C-C7F4-4082-AD99-B6C0B36B0832}] => (Allow) d:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's The Division\TheDivision.exe
FirewallRules: [{CB96AC80-2FF1-4E42-A4F8-275DC617B7B7}] => (Allow) D:\Program Files\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{73207A9D-9B0B-4C55-96A4-026681D56B87}] => (Allow) D:\Program Files\BlackShot\BlackShot\System\blackshot.exe
FirewallRules: [{0D60CE56-27B7-4434-B84F-8EE07145F832}] => (Allow) LPort=161
FirewallRules: [{51885078-9D67-4C59-A95E-42AB200157D7}] => (Allow) LPort=427
FirewallRules: [{B6EB023B-F2B7-4B5F-BCB8-FC43EF015BDB}] => (Allow) LPort=9100
FirewallRules: [{FF1149A0-184A-4312-8DFD-0555BF78EA88}] => (Allow) C:\Program Files\HP\HP LaserJet P1100 Series\wificonfig.exe
FirewallRules: [{77D86D2D-BD5C-49B7-81D7-D4C4A60539C9}] => (Allow) C:\Program Files\HP\HP LaserJet P1100 Series\wificonfig.exe
FirewallRules: [{4255756A-0A72-4665-B4E8-ED6447E25312}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{99DD1404-6BC5-4C99-8FD4-ACFE9D0A0E13}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DB61F3B4-A785-49CE-992B-0F2D90CDDB54}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{8B49F919-D986-44E8-A232-3314552793C6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{A39643E1-CA9C-4D1D-9E71-E9D38B17D3FA}] => (Allow) D:\Program Files (x86)\steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{FC2AAA04-B15C-4795-8B51-017957B5FD01}] => (Allow) D:\Program Files (x86)\steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{1CDA9DEC-7339-48D7-95C0-12CF535DC31B}] => (Allow) D:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{C4DDD5AB-2A3B-492F-A748-C022FEBDFED3}] => (Allow) D:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{1C6BCF7C-06C4-42E5-9BFF-FFC691A3F7FE}] => (Allow) D:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{59CA1F92-D7A1-4EDB-ACBB-783AD8C474AB}] => (Allow) D:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{A49607EE-471C-4EBB-AE5B-9D001D5A1E64}] => (Allow) d:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{6A77C3EB-B207-4338-B25A-0035F0E38C84}] => (Allow) d:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{8CF442F8-8E57-4C9E-A682-A60B6212E7B6}] => (Allow) d:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{0CD2FC27-238B-4483-861A-F9820D0A7A36}] => (Allow) d:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{A755AB8D-1A31-4CFB-BA69-FEFADE8085BF}] => (Allow) D:\Program Files (x86)\steam\Steam.exe
FirewallRules: [{F99CDA82-8D20-4EBF-81D0-A980D72EAF55}] => (Allow) D:\Program Files (x86)\steam\Steam.exe
FirewallRules: [{56AAD1FA-CE27-483E-B0B2-AF7D5B23AE6B}] => (Allow) C:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{17DF3912-0F14-42D9-8C78-161E596147DD}] => (Allow) C:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaW.exe
FirewallRules: [{D4E20DEF-F55B-47BD-9E49-3649949AED26}] => (Allow) C:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{8F990BF3-72DA-45AF-91BB-2BF76B842426}] => (Allow) C:\Program Files (x86)\Activision\Call of Duty - World at War\CoDWaWmp.exe
FirewallRules: [{E703531E-CF0E-4A46-BC61-A027EDE29EB6}] => (Allow) C:\Users\11\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C76B3BD7-01A1-4E1E-828C-580C9D29E114}] => (Allow) C:\Users\11\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A9625AD8-ACDE-4F18-BC70-387D4E11ED71}] => (Allow) C:\Users\11\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F6082EB0-BBA3-4438-BD46-4A2A81A26EEA}] => (Allow) C:\Users\11\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D92AF37E-643B-4451-9E3D-39D73A8844D4}] => (Allow) C:\Users\11\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{482F2075-6B15-40EF-8A5E-CEE0B0EBC10D}] => (Allow) C:\Users\11\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4A5C39B2-18F3-4E7A-95BD-529B61AA75B5}] => (Allow) D:\Program Files (x86)\steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe
FirewallRules: [{1422CBCB-336C-4060-87C9-A10FC25EF235}] => (Allow) D:\Program Files (x86)\steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe
FirewallRules: [{85F39E4D-3EB4-4C6D-909E-F75A8E54B708}] => (Allow) C:\Program Files (x86)\MediatekWiFi\Common\RaUI.exe
FirewallRules: [{3B486B16-E782-45E6-95D3-1F1506403312}] => (Allow) D:\Program Files (x86)\steam\steamapps\common\Verdun\1914-1918 Series.exe
FirewallRules: [{F14EDD67-7E20-40BD-8324-FB24CF0CFE83}] => (Allow) D:\Program Files (x86)\steam\steamapps\common\Verdun\1914-1918 Series.exe
FirewallRules: [{E3F743F5-348A-4284-9453-076AE3892B52}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{3AF416F5-BAAA-4719-92BB-2EE9BAA94E03}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{396DDF08-15EB-4D50-8DBE-145B5F16D584}] => (Allow) d:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Ghost Recon Wildlands\GRW.exe
FirewallRules: [{E0BB49F2-CC44-4C9B-9CF3-72300624BAE4}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{4B56CBA0-78B1-4C14-B3AD-1F35D38E5E7F}] => (Allow) D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Watch_Dogs\bin\watch_dogs.exe
FirewallRules: [{232396BF-5301-4DE2-8975-0EE0320D3108}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{844277AE-70DE-4B63-9ABE-064CD2498D7A}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
FirewallRules: [{50522839-89E2-4950-ADFB-FF9FD32081A8}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
FirewallRules: [{821870E9-49B4-40E7-991C-57A1B0D93679}] => (Allow) D:\Program Files (x86)\steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{996E776C-6BAB-45E4-9B55-B19CE08DEA01}] => (Allow) D:\Program Files (x86)\steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{533CC497-B2CA-4D92-B047-94C841FC9E49}] => (Allow) D:\Program Files (x86)\Heroes & Generals prototype\prototype\hng.exe
FirewallRules: [{E4F9D81F-5D44-449D-9498-6FA8AB1BC3A9}] => (Allow) D:\Program Files (x86)\Heroes & Generals prototype\prototype\hng.exe
FirewallRules: [{2A76AE2F-6524-444F-A77E-1D1D76473790}] => (Allow) D:\Program Files (x86)\steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{2DC91047-EFC8-4B39-AD8A-C33BDE928FDE}] => (Allow) D:\Program Files (x86)\steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{277CF653-CD5E-42CC-B3D7-64BD478C5B8D}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{319FF5D8-5700-41DF-B931-19F6186B87D4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{12214C9B-D54D-45B4-A95F-F6263B010AB9}] => (Allow) D:\Program Files (x86)\steam\steamapps\common\SNOW\Bin64\playSNOW.exe
FirewallRules: [{D0075A06-581F-4728-8FFC-D542D7CDF206}] => (Allow) D:\Program Files (x86)\steam\steamapps\common\SNOW\Bin64\playSNOW.exe
FirewallRules: [{0348883A-C1DB-4102-9E71-76970531BD36}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{133B5068-B6F6-4135-A97D-96ED97310853}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{F2E6A621-1D37-4E0A-A826-02E1973965AD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{376C7946-75A4-46E1-84CF-100C6BB9607F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{CB1A2BBD-D269-435D-8ECE-CFC167626E3C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{735A0728-A6DC-470D-BA58-FDBFC78CBA59}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0DF0F7D2-F8E9-4CF4-941A-AB75E510F2B8}] => (Allow) C:\Users\11\AppData\Local\LINE\bin\5.12.0.1856\LINE.exe
FirewallRules: [{827286DA-81E5-49A6-9D65-7C02322DE1D0}] => (Allow) C:\Users\11\AppData\Local\LINE\bin\5.12.0.1856\LINE.exe
FirewallRules: [{F50E21EB-3C48-4581-A217-457E624EDDE1}] => (Allow) C:\Users\11\AppData\Local\LINE\bin\5.12.0.1856\LineUpdater.exe
FirewallRules: [{1D10D784-5223-4C73-866E-5433911D1502}] => (Allow) C:\Users\11\AppData\Local\LINE\bin\5.12.0.1856\LineUpdater.exe
FirewallRules: [{38084E27-F607-4A01-8CE1-5B74E0D83526}] => (Allow) d:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
FirewallRules: [{86025063-8A90-4F92-852F-36C1B0F325D8}] => (Allow) d:\Program Files\SoftEther VPN Client\vpncmd.exe
FirewallRules: [{6238E6A1-18C3-427D-B831-958966440E38}] => (Allow) d:\Program Files\SoftEther VPN Client\vpnclient.exe
FirewallRules: [{FA222E0E-80EB-4848-9953-5E24622B5F0A}] => (Allow) d:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe
FirewallRules: [{6B8DC7F8-C67D-4EB7-860F-10EA7ABD591A}] => (Allow) d:\Program Files\SoftEther VPN Client\vpncmd_x64.exe
FirewallRules: [{23A59AC7-E7CA-4109-8DF5-0C3A3FA58851}] => (Allow) d:\Program Files\SoftEther VPN Client\vpncmgr.exe
FirewallRules: [{BCDBEAA5-10B4-46CB-A50B-2E2CB7B0E7F2}] => (Allow) D:\Program Files (x86)\steam\steamapps\common\Verdun\WW1 Game Series.exe
FirewallRules: [{9A56ED96-4A97-4492-AAE9-F31938A73CF5}] => (Allow) D:\Program Files (x86)\steam\steamapps\common\Verdun\WW1 Game Series.exe
FirewallRules: [{0BFF630A-06EB-49D5-8463-A79C52C491C6}] => (Allow) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe
FirewallRules: [{E6243DF1-7E29-4F60-9C32-45CFC98AA5CA}] => (Allow) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer.exe
FirewallRules: [{9F549565-64E1-45A8-AB08-998EE88FA3CB}] => (Allow) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
FirewallRules: [{0238858C-E5D9-4D7E-8A8B-C2A8D281359E}] => (Allow) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
FirewallRules: [{7B67AD0C-3BA1-43C5-A790-C74010486DEE}] => (Allow) D:\Program Files (x86)\Battlefield V\bfvTrial.exe
FirewallRules: [{45C81F2E-AD26-4803-8D8D-6BCE7518CD56}] => (Allow) D:\Program Files (x86)\Battlefield V\bfvTrial.exe
FirewallRules: [{B7902A7D-74AD-4F25-A448-1754D84EE7ED}] => (Allow) D:\Program Files (x86)\Battlefield V\bfv.exe
FirewallRules: [{7B401FDB-D896-4FCA-9837-EAECAC56189B}] => (Allow) D:\Program Files (x86)\Battlefield V\bfv.exe
FirewallRules: [{A5AD7674-3D1C-4FBE-9E56-F4F59879F2F8}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{EFF617AC-2912-49C4-9CD4-3DE45F792308}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{EB491032-6529-4C81-917A-6D823D344794}] => (Allow) C:\Program Files (x86)\Heroes & Generals\live\hng.exe
FirewallRules: [{A202A078-6ED2-4BCF-8099-80A8D31959E1}] => (Allow) C:\Program Files (x86)\Heroes & Generals\live\hng.exe
FirewallRules: [{527B3230-C295-443C-8CD7-5D0D9099817A}] => (Allow) D:\Games\Battlefield 1\Battlefield 1\bf1Trial.exe
FirewallRules: [{0A94B4CD-B687-4D76-B20C-747EB3045FF8}] => (Allow) D:\Games\Battlefield 1\Battlefield 1\bf1Trial.exe
FirewallRules: [{C5AE1977-CB52-479B-9B20-DF73A19A9A78}] => (Allow) D:\Games\Battlefield 1\Battlefield 1\bf1.exe
FirewallRules: [{982DC7DF-207F-4DBD-A1E2-91E3126F885C}] => (Allow) D:\Games\Battlefield 1\Battlefield 1\bf1.exe
FirewallRules: [{423CCB9F-8667-4FD1-8630-B99A72E439EF}] => (Allow) D:\Hry\BF\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{CA22DB88-B5B3-46CB-BBF8-8F9D0ED725DE}] => (Allow) D:\Hry\BF\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{8BB69276-04DB-4AA9-BE72-5FD38842BEFC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{93121129-75EB-4493-A89C-6A27E28E3584}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{E5879EDC-6BC8-4243-BDD1-3DEE7D23B222}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{CDBFB895-A894-4A6D-B69C-27E46502D4B2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{9A2F9C12-7E4B-49F7-A596-3F5E2A1BA3D0}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{A5B596DF-F615-4028-8DC7-418E8DD3225F}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{D52DA635-8ED8-4D02-A5A3-F65D965AB190}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{068F9FB9-A60C-4C13-98AE-FF9702848A0E}] => (Allow) D:\Program Files (x86)\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{C79C6C32-1186-4E32-B43A-238B84C8009B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

15-03-2019 15:43:56 Installed Call of Duty(R) 4 - Modern Warfare(TM)
19-03-2019 11:34:58 Installed LibreOffice 6.2.1.2
29-03-2019 15:51:51 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============

Name: Standardní klávesnice PS/2
Description: Standardní klávesnice PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardní klávesnice)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/30/2019 08:00:07 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro D:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_fb45a0e93062a6d2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_42f2d7c044decfd8.manifest.

Error: (03/30/2019 08:00:07 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro D:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_fb45a0e93062a6d2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_42f2d7c044decfd8.manifest.

Error: (03/30/2019 07:56:23 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (03/30/2019 07:53:25 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro D:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_fb45a0e93062a6d2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_42f2d7c044decfd8.manifest.

Error: (03/30/2019 07:53:25 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro D:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_fb45a0e93062a6d2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_42f2d7c044decfd8.manifest.

Error: (03/29/2019 09:53:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro D:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_fb45a0e93062a6d2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_42f2d7c044decfd8.manifest.

Error: (03/29/2019 09:53:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro D:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_fb45a0e93062a6d2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_42f2d7c044decfd8.manifest.

Error: (03/29/2019 09:53:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro D:\Program Files (x86)\Audacity\audacity.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_fb45a0e93062a6d2.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.17134.648_none_42f2d7c044decfd8.manifest.


System errors:
=============
Error: (03/30/2019 10:34:21 AM) (Source: DCOM) (EventID: 10016) (User: T1)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
a APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
uživateli T1\11 (SID: S-1-5-21-1708006454-2605614449-3121516059-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy – SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/30/2019 07:53:23 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.

Cesta k modulu: C:\WINDOWS\system32\athExt.dll
Kód chyby: 126

Error: (03/29/2019 09:59:48 PM) (Source: DCOM) (EventID: 10016) (User: T1)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli T1\11 (SID: S-1-5-21-1708006454-2605614449-3121516059-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/29/2019 09:56:44 PM) (Source: DCOM) (EventID: 10016) (User: T1)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli T1\11 (SID: S-1-5-21-1708006454-2605614449-3121516059-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/29/2019 09:56:26 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN se nepodařilo spustit.

Cesta k modulu: C:\WINDOWS\system32\athExt.dll
Kód chyby: 126

Error: (03/29/2019 09:53:58 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/29/2019 09:53:58 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/29/2019 09:53:58 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


CodeIntegrity:
===================================

Date: 2019-03-29 21:48:37.009
Description:
Code Integrity determined that a process (\Device\HarddiskVolume8\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume8\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-03-29 21:48:34.471
Description:
Code Integrity determined that a process (\Device\HarddiskVolume8\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume8\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-03-29 21:48:34.453
Description:
Code Integrity determined that a process (\Device\HarddiskVolume8\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume8\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-03-29 21:48:32.283
Description:
Code Integrity determined that a process (\Device\HarddiskVolume8\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume8\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-03-29 21:48:32.221
Description:
Code Integrity determined that a process (\Device\HarddiskVolume8\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume8\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-03-29 21:48:32.215
Description:
Code Integrity determined that a process (\Device\HarddiskVolume8\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume8\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-03-29 21:48:32.210
Description:
Code Integrity determined that a process (\Device\HarddiskVolume8\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume8\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-03-29 21:48:28.643
Description:
Code Integrity determined that a process (\Device\HarddiskVolume8\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume8\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz
Percentage of memory in use: 32%
Total physical RAM: 16311.98 MB
Available physical RAM: 10985.25 MB
Total Virtual: 18743.98 MB
Available Virtual: 11306.67 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:475.98 GB) (Free:205.9 GB) NTFS
Drive d: () (Fixed) (Total:1862.5 GB) (Free:401.57 GB) NTFS
Drive e: () (Fixed) (Total:120.15 GB) (Free:64.83 GB) NTFS
Drive f: (Backup) (Fixed) (Total:30.04 GB) (Free:29.78 GB) NTFS
Drive g: () (Fixed) (Total:781.31 GB) (Free:84.43 GB) NTFS
Drive h: (Nový svazek) (Fixed) (Total:596.17 GB) (Free:220.56 GB) NTFS

\\?\Volume{b04828bd-d372-4c18-81f7-f482da7fae7f}\ (Obnovení) (Fixed) (Total:0.29 GB) (Free:0.28 GB) NTFS
\\?\Volume{b37351c7-6912-49b0-8197-36f3a81422ad}\ () (Fixed) (Total:0.29 GB) (Free:0.06 GB) NTFS
\\?\Volume{a03af0ff-56e9-47c6-be84-17aebe491b7e}\ () (Fixed) (Total:0.44 GB) (Free:0.06 GB) NTFS
\\?\Volume{5b609e9c-dafc-428d-9420-63dec910e5f2}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{941450e5-c447-41f7-8de1-fa56efc42b67}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: E79C25AC)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: D785D785)
Partition 1: (Not Active) - (Size=596.2 GB) - (Type=42)

========================================================
Disk: 2 (Size: 476.9 GB) (Disk ID: A93B6E99)

Partition: GPT.

========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: E0B0A93C)
Partition 1: (Active) - (Size=120.2 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=781.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=30 GB) - (Type=05)

==================== End of Addition.txt ============================
Nahoru
cros
Návštěvník
Návštěvník
Příspěvky: 72
Registrován: 17 kvě 2009 10:28

Re: Zpomalený internet sekaní počítače

#6 Příspěvek od cros »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10.03.2018
Ran by 11 (administrator) on T1 (30-03-2019 11:55:08)
Running from D:\STAŽENÉ SOUBORY
Loaded Profiles: 11 (Available Profiles: 11)
Platform: Windows 10 Pro Version 1803 17134.648 (X64) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

Failed to access process -> Registry
(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(HP) C:\Windows\System32\HPSIsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PSIService.exe
(Mediatek Inc.) C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe
(Mediatek Inc.) C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(TunnelBear) D:\Program Files\tunrlbear\TunnelBear\TunnelBear.Maintenance.exe
(Symantec Corporation) D:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe
(Foxit Software Inc.) D:\Program Files (x86)\FOXIT SOFTWARE\FOXIT READER\FoxitConnectedPDFService.exe
(Symantec) D:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Microsoft Corporation) C:\Windows\System32\SgrmBroker.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(Corel, Inc.) C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe
(TomTom) C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe
(Corsair Components, Inc.) C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(LINE Corporation) C:\Users\11\AppData\Local\LINE\bin\current\LINE.exe
(LINE Corporation) C:\Users\11\AppData\Local\LINE\Data\plugin\LineMediaPlayer\1.1.0.219\LineMediaPlayer.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Plarium) C:\Users\11\AppData\Local\Plarium\PlariumPlay\PlariumPlay.exe
(Plarium) C:\Users\11\AppData\Local\Plarium\PlariumPlay\PlariumPlay.exe
(Plarium) C:\Users\11\AppData\Local\Plarium\PlariumPlay\PlariumPlay.exe
() C:\Users\11\AppData\Local\Plarium\PlariumPlay\StandAloneApps\vikings\103\game.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19011.19410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [AsioReg] => REGSVR32.EXE /S CTASIO.DLL*
HKLM\...\Run: [kX Mixer] => C:\Program Files\kX Project\kxmixer.exe [522920 2013-12-27] (Eugene Gavrilov)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [177928 2019-03-15] (ESET)
HKLM\...\Run: [Corel Photo Downloader] => C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [531784 2007-12-14] (Corel, Inc.)
HKLM-x32\...\Run: [HPUsageTrackingLEDM] => "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
HKLM-x32\...\Run: [Corel Photo Downloader] => C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe [531784 2007-12-14] (Corel, Inc.)
HKLM-x32\...\Run: [Corel File Shell Monitor] => D:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe [16200 2008-01-15] ()
HKLM-x32\...\Run: [Corsair Utility Engine] => C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe [14885552 2016-03-23] (Corsair Components, Inc.)
HKLM-x32\...\Run: [Norton Ghost 15.0] => D:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe [2598760 2010-03-03] (Symantec Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\Run: [World of Tanks] => D:\Games\World_of_Tanks\WargamingGameUpdater.exe [3139936 2018-06-25] (Wargaming.net)
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\Run: [uTorrent] => C:\Users\11\AppData\Roaming\uTorrent\uTorrent.exe [1981624 2017-11-26] (BitTorrent Inc.)
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\root\Office16\lync.exe [26858984 2019-03-30] (Microsoft Corporation)
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\Run: [Ubisoft Game Launcher] => D:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe [470872 2019-03-28] (Ubisoft)
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\Run: [Discord] => C:\Users\11\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc.)
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35179920 2019-03-30] (Epic Games, Inc.)
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\Run: [TomTom MySports Connect.exe] => C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe [638464 2018-09-03] (TomTom)
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22488952 2019-03-11] (Piriform Software Ltd)
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\MountPoints2: {96cb2cc8-069a-11e9-8329-d8cb8a196e4c} - "J:\OriginSetup.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Mediatek Wireless Utility.lnk [2017-10-16]
ShortcutTarget: Mediatek Wireless Utility.lnk -> C:\Program Files (x86)\MediatekWiFi\Common\RaUI.exe (Mediatek Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{df7d7f99-15ba-4d08-829a-0433482e175f}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-1708006454-2605614449-3121516059-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-03-14] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-03-14] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-02-12] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-12] (Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-14] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-30] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-14] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-30] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-14] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-30] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-14] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-30] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: n6mxn2ct.default-1521490154616
FF ProfilePath: C:\Users\11\AppData\Roaming\Mozilla\Firefox\Profiles\n6mxn2ct.default-1521490154616 [2019-03-30]
FF Homepage: Mozilla\Firefox\Profiles\n6mxn2ct.default-1521490154616 -> hxxps://www.seznam.cz/
FF NewTab: Mozilla\Firefox\Profiles\n6mxn2ct.default-1521490154616 -> about:newtab
FF Extension: (Firefox Monitor) - C:\Users\11\AppData\Roaming\Mozilla\Firefox\Profiles\n6mxn2ct.default-1521490154616\features\{d73d6616-9bc5-4112-8556-9429390df85f}\fxmonitor@mozilla.org.xpi [2019-03-21]
FF Extension: (WebCompat Reporter) - C:\Program Files\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2019-03-21] [not signed]
FF HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\11\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_156.dll [2019-03-15] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-03-14] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_156.dll [2019-03-15] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-02-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-02-12] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-03-14] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-03-14] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-12-11] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-12-11] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin HKU\S-1-5-21-1708006454-2605614449-3121516059-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\11\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]

Chrome:
=======
CHR Profile: C:\Users\11\AppData\Local\Google\Chrome\User Data\Default [2019-03-29]
CHR Extension: (Prezentace) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-14]
CHR Extension: (Dokumenty) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-14]
CHR Extension: (Disk Google) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-09-14]
CHR Extension: (YouTube) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-14]
CHR Extension: (Tabulky) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-14]
CHR Extension: (Dokumenty Google offline) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-16]
CHR Extension: (Skype) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2018-09-14]
CHR Extension: (Ace Script) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbepbhonbojpoaenhckjocchgfiaofo [2019-03-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-14]
CHR Extension: (Gmail) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-09-14]
CHR Extension: (Chrome Media Router) - C:\Users\11\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-27]
CHR HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BcastDVRUserService; C:\WINDOWS\System32\BcastDVRUserService.dll [1364992 2019-03-06] (Microsoft Corporation)
S3 BcastDVRUserService_2f9049; C:\WINDOWS\system32\svchost.exe [85472 2019-01-09] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 BcastDVRUserService_2f9049; C:\WINDOWS\SysWOW64\svchost.exe [71456 2019-01-09] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [6875688 2018-07-01] ()
S3 BluetoothUserService; C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll [464384 2018-04-12] (Microsoft Corporation)
S3 BluetoothUserService_2f9049; C:\WINDOWS\system32\svchost.exe [85472 2019-01-09] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 BluetoothUserService_2f9049; C:\WINDOWS\SysWOW64\svchost.exe [71456 2019-01-09] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 BTAGService; C:\WINDOWS\System32\BTAGService.dll [514048 2018-11-09] (Microsoft Corporation)
S3 BthAvctpSvc; C:\WINDOWS\System32\BthAvctpSvc.dll [399872 2018-11-09] (Microsoft Corporation)
S3 CaptureService; C:\WINDOWS\System32\CaptureService.dll [125952 2018-04-12] (Microsoft Corporation)
S3 CaptureService_2f9049; C:\WINDOWS\system32\svchost.exe [85472 2019-01-09] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 CaptureService_2f9049; C:\WINDOWS\SysWOW64\svchost.exe [71456 2019-01-09] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11082312 2019-03-28] (Microsoft Corporation)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2016-04-17] (Creative Labs) [File not signed]
S3 DevicePickerUserSvc; C:\WINDOWS\System32\Windows.Devices.Picker.dll [400896 2018-04-12] (Microsoft Corporation)
S3 DevicePickerUserSvc; C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll [312832 2018-04-12] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [781440 2018-08-04] (EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2359312 2019-03-15] (ESET)
R2 FoxitReaderService; D:\PROGRAM FILES (X86)\FOXIT SOFTWARE\FOXIT READER\FoxitConnectedPDFService.exe [1659456 2017-12-11] (Foxit Software Inc.)
S3 GenericMount Helper Service; D:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelperx64.exe [2227216 2010-02-12] (Symantec)
S3 GoogleChromeElevationService; C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\elevation_service.exe [1268720 2019-03-20] (Google Inc.)
S3 HnGService; C:\Program Files (x86)\Heroes & Generals\live\hngservice.exe [787240 2019-03-29] (Reto-Moto ApS)
S3 HnGService_prototype; d:\Program Files (x86)\Heroes & Generals prototype\prototype\hngservice.exe [760104 2018-10-17] (Reto-Moto ApS) [File not signed]
S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [136704 2009-06-24] (HP) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [347512 2018-12-06] (HP Inc.)
S3 LiveUpdate; C:\Program Files (x86)\Symantec\LiveUpdate\LuComServer_3_2.EXE [2999664 2007-09-12] (Symantec Corporation)
S3 LxpSvc; C:\WINDOWS\System32\LanguageOverlayServer.dll [199680 2018-04-12] (Microsoft Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes)
R2 MediatekRegistryWriter; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe [405136 2014-12-04] (Mediatek Inc.)
R2 MediatekRegistryWriter64; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe [454288 2014-12-04] (Mediatek Inc.)
R2 Norton Ghost; D:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe [4590432 2010-03-03] (Symantec Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [786800 2018-12-06] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [786800 2018-12-06] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-02-19] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-02-19] (Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [66872 2019-03-15] ()
R2 ProtexisLicensing; C:\WINDOWS\SysWOW64\PSIService.exe [177704 2007-06-05] ()
R2 sedsvc; C:\Program Files\rempl\sedsvc.exe [325432 2019-03-16] (Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737560 2019-02-16] (Microsoft Corporation)
R2 SgrmBroker; C:\WINDOWS\system32\SgrmBroker.exe [163336 2018-04-12] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R3 SymSnapService; D:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe [2963960 2010-02-11] (Symantec)
R2 TunnelBearMaintenance; D:\Program Files\tunrlbear\TunnelBear\TunnelBear.Maintenance.exe [138872 2018-10-29] (TunnelBear)
S4 tzautoupdate; C:\WINDOWS\SysWOW64\tzautoupdate.dll [72192 2018-04-12] (Microsoft Corporation)
S3 VacSvc; C:\WINDOWS\System32\vac.dll [411256 2018-04-12] (Microsoft Corporation)
S3 WaaSMedicSvc; C:\WINDOWS\System32\WaaSMedicSvc.dll [392704 2019-01-09] (Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2018-12-21] (Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2018-12-21] (Microsoft Corporation)
S3 wisvc; C:\WINDOWS\SysWOW64\flightsettings.dll [729088 2018-06-08] (Microsoft Corporation)
S3 WpcMonSvc; C:\WINDOWS\System32\WpcDesktopMonSvc.dll [1456640 2018-05-20] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
S3 Symantec SymSnap VSS Provider; C:\WINDOWS\system32\dllhost.exe /Processid:{26D59D2A-C85F-474E-B5AC-1E9DE4AB43A6}

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 afunix; C:\WINDOWS\system32\drivers\afunix.sys [39424 2018-04-12] (Microsoft Corporation)
R1 afunix; C:\Windows\SysWOW64\drivers\afunix.sys [29696 2018-04-12] (Microsoft Corporation)
S3 bindflt; C:\WINDOWS\system32\drivers\bindflt.sys [92704 2019-01-09] (Microsoft Corporation)
S3 COMMONFX.DLL; C:\WINDOWS\System32\COMMONFX.DLL [151296 2007-04-12] (Creative Technology Ltd) [File not signed]
R3 CorsairGamingAudioService; C:\WINDOWS\system32\DRIVERS\CorsairGamingAudioamd64.sys [123384 2016-03-03] (Corsair Components, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [47840 2016-01-20] (Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21728 2016-01-20] (Corsair)
S3 CT20XUT.DLL; C:\WINDOWS\System32\CT20XUT.DLL [252712 2007-04-10] (Creative Technology Ltd.)
S3 CTAUDFX.DLL; C:\WINDOWS\System32\CTAUDFX.DLL [700200 2007-04-10] (Creative Technology Ltd)
S3 CTEAPSFX.DLL; C:\WINDOWS\System32\CTEAPSFX.DLL [219432 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPFX.DLL; C:\WINDOWS\System32\CTEDSPFX.DLL [321832 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPIO.DLL; C:\WINDOWS\System32\CTEDSPIO.DLL [190248 2007-04-10] (Creative Technology Ltd)
S3 CTEDSPSY.DLL; C:\WINDOWS\System32\CTEDSPSY.DLL [363304 2007-04-10] (Creative Technology Ltd)
S3 CTERFXFX.DLL; C:\WINDOWS\System32\CTERFXFX.DLL [142120 2007-04-10] (Creative Technology Ltd)
S3 CTEXFIFX.DLL; C:\WINDOWS\System32\CTEXFIFX.DLL [1571112 2007-04-10] (Creative Technology Ltd.)
S3 CTHWIUT.DLL; C:\WINDOWS\System32\CTHWIUT.DLL [123688 2007-04-10] (Creative Technology Ltd.)
S3 CTSBLFX.DLL; C:\WINDOWS\System32\CTSBLFX.DLL [681256 2007-04-10] (Creative Technology Ltd)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-07-20] (Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-07-20] (Disc Soft Ltd)
S3 dtproscsibus; C:\WINDOWS\System32\drivers\dtproscsibus.sys [30264 2018-03-03] (Disc Soft Ltd)
S3 dtultrascsibus; C:\WINDOWS\System32\drivers\dtultrascsibus.sys [30264 2018-12-23] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [145600 2019-03-15] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [107744 2019-03-15] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-02-19] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188240 2019-03-15] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50280 2019-03-15] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [82472 2019-03-15] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [110000 2019-03-15] (ESET)
S3 ESETCleanersDriver; C:\WINDOWS\system32\Drivers\ESETCleanersDriver.sys [181160 2019-03-10] (ESET)
R3 EZSocketGOT; C:\WINDOWS\system32\drivers\EZSocketGOT.sys [254976 2010-08-31] (Jungo)
R3 GenericMount; C:\WINDOWS\System32\drivers\GenericMount.sys [66608 2010-02-12] (Symantec Corporation)
S4 hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [33184 2018-04-12] (Microsoft Corporation)
S0 iaStorAVC; C:\WINDOWS\System32\drivers\iaStorAVC.sys [885144 2018-04-12] (Intel Corporation)
R3 ikbevent; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
R3 imsevent; C:\WINDOWS\system32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-05-27] ()
S0 ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [145816 2018-04-12] (Avago Technologies)
R3 kxwdmdrv; C:\WINDOWS\system32\drivers\kx.sys [508072 2013-12-27] (Eugene Gavrilov)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Malwarebytes)
S0 megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [82328 2018-04-12] (Avago Technologies)
S3 mvusbews; C:\WINDOWS\System32\Drivers\mvusbews.sys [20480 2012-09-26] (Marvell Semiconductor, Inc.)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [37824 2018-12-20] (SoftEther Corporation)
S3 netr28ux; C:\WINDOWS\system32\DRIVERS\netr28ux.sys [2244952 2015-11-19] (MediaTek Inc.)
S3 nvdimm; C:\WINDOWS\System32\drivers\nvdimm.sys [104448 2018-04-12] (Microsoft Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_01c064f3d89f92be\nvlddmkm.sys [20424640 2018-12-12] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2018-10-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [74576 2018-10-01] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Realtek )
R1 SeLow; C:\WINDOWS\system32\DRIVERS\SeLow_x64.sys [50624 2018-12-20] (SoftEther Corporation)
R0 SgrmAgent; C:\WINDOWS\System32\drivers\SgrmAgent.sys [63896 2018-04-12] (Microsoft Corporation)
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [203296 2018-03-03] (Duplex Secure Ltd)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.)
R0 symsnap; C:\WINDOWS\System32\DRIVERS\symsnap.sys [170032 2010-02-11] (StorageCraft)
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2018-07-31] (The OpenVPN Project)
S3 VProEventMonitor; C:\WINDOWS\system32\DRIVERS\vproeventmonitor.sys [20528 2009-09-21] (Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46680 2018-12-21] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [330936 2018-12-21] (Microsoft Corporation)
S3 WdmCompanionFilter; C:\WINDOWS\System32\drivers\WdmCompanionFilter.sys [21408 2018-04-12] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2018-12-21] (Microsoft Corporation)
S3 cpuz135; \??\C:\WINDOWS\TEMP\cpuz135\cpuz135_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: LxpSvc -> C:\Windows\System32\LanguageOverlayServer.dll (Microsoft Corporation)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-29 21:46 - 2019-03-29 21:46 - 000000000 ____D C:\Users\11\AppData\Local\mbam
2019-03-29 21:45 - 2019-03-29 21:45 - 000001912 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-03-29 21:45 - 2019-03-29 21:45 - 000000000 ____D C:\Users\11\AppData\Local\mbamtray
2019-03-29 21:45 - 2019-03-29 21:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-03-29 21:45 - 2019-03-29 21:45 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-03-29 21:45 - 2019-03-29 21:45 - 000000000 ____D C:\Program Files\Malwarebytes
2019-03-29 21:45 - 2019-02-01 12:20 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-03-29 21:45 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-03-29 20:34 - 2019-03-29 20:34 - 000000000 ____D C:\rsit
2019-03-29 20:34 - 2019-03-29 20:34 - 000000000 ____D C:\Program Files\trend micro
2019-03-27 07:09 - 2019-03-27 07:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-03-22 18:09 - 2019-03-22 18:09 - 000000000 ____D C:\Users\11\AppData\LocalLow\Unity
2019-03-22 18:09 - 2019-03-22 18:09 - 000000000 ____D C:\Users\11\AppData\LocalLow\Plarium
2019-03-22 18:08 - 2019-03-22 18:08 - 000002162 _____ C:\Users\11\AppData\Roaming\Microsoft\Windows\Start Menu\Plarium Play.lnk
2019-03-22 18:08 - 2019-03-22 18:08 - 000002160 _____ C:\Users\11\Desktop\Plarium Play.lnk
2019-03-22 18:08 - 2019-03-22 18:08 - 000000000 ____D C:\Users\11\AppData\Local\Package Cache
2019-03-22 18:06 - 2019-03-22 18:08 - 000000000 ____D C:\Users\11\AppData\Local\Plarium
2019-03-20 17:18 - 2019-03-26 20:50 - 000001021 _____ C:\Users\11\Desktop\moje servery +test.txt
2019-03-20 10:48 - 2019-03-20 10:48 - 000000000 ____D C:\Users\11\Desktop\Nová složka (2)
2019-03-19 20:15 - 2019-03-19 20:17 - 086412328 _____ C:\Users\11\Downloads\Ace_Stream_Media_3.1.32.exe
2019-03-19 13:42 - 2019-03-19 13:53 - 000000000 ____D C:\satelit soubory lonux
2019-03-19 11:38 - 2019-03-24 19:47 - 000000051 _____ C:\Users\11\Desktop\thcam_data.txt
2019-03-19 11:37 - 2019-03-19 11:37 - 000000000 ____D C:\Users\11\AppData\Roaming\LibreOffice
2019-03-19 11:36 - 2019-03-19 11:36 - 000001165 _____ C:\Users\Public\Desktop\LibreOffice 6.2.lnk
2019-03-19 11:36 - 2019-03-19 11:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 6.2
2019-03-19 11:36 - 2019-03-19 11:36 - 000000000 ____D C:\Program Files\LibreOffice
2019-03-19 11:33 - 2019-03-19 11:35 - 000000000 ____D C:\Users\11\AppData\Local\PlaceholderTileLogoFolder
2019-03-19 10:39 - 2019-03-20 16:25 - 000000458 _____ C:\Users\11\Desktop\cccam.cfg
2019-03-15 15:59 - 2019-03-15 16:00 - 000000000 ____D C:\Users\11\AppData\Local\CallofDuty4MW
2019-03-15 15:50 - 2019-03-15 15:50 - 000000881 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) Singleplayer.lnk
2019-03-15 15:50 - 2019-03-15 15:50 - 000000881 _____ C:\Users\Public\Desktop\Call of Duty(R) 4 - Modern Warfare(TM) Multiplayer.lnk
2019-03-15 15:49 - 2019-03-15 15:49 - 000000331 _____ C:\WINDOWS\game.ini
2019-03-14 12:56 - 2019-03-06 16:39 - 000720536 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-03-14 12:56 - 2019-03-06 16:37 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-03-14 12:56 - 2019-03-06 16:36 - 001047352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-03-14 12:56 - 2019-03-06 16:20 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-03-14 12:56 - 2019-03-06 16:19 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-03-14 12:56 - 2019-03-06 16:17 - 012730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-03-14 12:56 - 2019-03-06 16:17 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-03-14 12:56 - 2019-03-06 16:17 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2019-03-14 12:56 - 2019-03-06 16:14 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-03-14 12:56 - 2019-03-06 16:14 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-03-14 12:56 - 2019-03-06 16:14 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-03-14 12:56 - 2019-03-06 16:13 - 004053504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-03-14 12:56 - 2019-03-06 16:13 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-03-14 12:56 - 2019-03-06 16:13 - 001662976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-03-14 12:56 - 2019-03-06 16:13 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-03-14 12:56 - 2019-03-06 16:12 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-03-14 12:56 - 2019-03-06 13:18 - 000918032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-03-14 12:56 - 2019-03-06 13:18 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-03-14 12:56 - 2019-03-06 13:10 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-03-14 12:56 - 2019-03-06 13:09 - 011919360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-03-14 12:56 - 2019-03-06 13:06 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-03-14 12:56 - 2019-03-06 13:05 - 004054016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-03-14 12:56 - 2019-03-06 13:05 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-03-14 12:56 - 2019-03-06 13:04 - 001471488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-03-14 12:56 - 2019-03-06 13:04 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-03-14 12:56 - 2019-03-06 12:59 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-03-14 12:56 - 2019-03-06 10:29 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-03-14 12:56 - 2019-03-06 10:16 - 002822456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-03-14 12:56 - 2019-03-06 10:16 - 001457032 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-03-14 12:56 - 2019-03-06 10:16 - 001188000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-03-14 12:56 - 2019-03-06 10:16 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-03-14 12:56 - 2019-03-06 10:16 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-03-14 12:56 - 2019-03-06 10:16 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-03-14 12:56 - 2019-03-06 10:16 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-03-14 12:56 - 2019-03-06 10:11 - 000493880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-03-14 12:56 - 2019-03-06 10:10 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-03-14 12:56 - 2019-03-06 10:07 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-03-14 12:56 - 2019-03-06 10:07 - 001023800 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-03-14 12:56 - 2019-03-06 10:07 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-03-14 12:56 - 2019-03-06 10:06 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-03-14 12:56 - 2019-03-06 10:06 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-03-14 12:56 - 2019-03-06 10:06 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-03-14 12:56 - 2019-03-06 10:05 - 000439224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-03-14 12:56 - 2019-03-06 10:05 - 000436240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-03-14 12:56 - 2019-03-06 10:05 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-03-14 12:56 - 2019-03-06 10:04 - 002765856 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-03-14 12:56 - 2019-03-06 10:04 - 000945464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-03-14 12:56 - 2019-03-06 10:04 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2019-03-14 12:56 - 2019-03-06 10:03 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-03-14 12:56 - 2019-03-06 10:03 - 002719544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-03-14 12:56 - 2019-03-06 10:03 - 002465784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-03-14 12:56 - 2019-03-06 10:03 - 001921848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-03-14 12:56 - 2019-03-06 10:03 - 000793400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-03-14 12:56 - 2019-03-06 10:03 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-03-14 12:56 - 2019-03-06 10:03 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-03-14 12:56 - 2019-03-06 10:02 - 002421048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-03-14 12:56 - 2019-03-06 10:02 - 001257672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-03-14 12:56 - 2019-03-06 10:02 - 001140480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-03-14 12:56 - 2019-03-06 10:02 - 000982912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-03-14 12:56 - 2019-03-06 10:02 - 000626488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2019-03-14 12:56 - 2019-03-06 09:44 - 025856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-03-14 12:56 - 2019-03-06 09:36 - 022716928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-03-14 12:56 - 2019-03-06 09:36 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-03-14 12:56 - 2019-03-06 09:34 - 004866048 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-03-14 12:56 - 2019-03-06 09:33 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-03-14 12:56 - 2019-03-06 09:32 - 003399168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-03-14 12:56 - 2019-03-06 09:32 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-03-14 12:56 - 2019-03-06 09:32 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-03-14 12:56 - 2019-03-06 09:31 - 007598592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-03-14 12:56 - 2019-03-06 09:31 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-03-14 12:56 - 2019-03-06 09:31 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-03-14 12:56 - 2019-03-06 09:31 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-03-14 12:56 - 2019-03-06 09:31 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-03-14 12:56 - 2019-03-06 09:31 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-03-14 12:56 - 2019-03-06 09:31 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-03-14 12:56 - 2019-03-06 09:31 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-03-14 12:56 - 2019-03-06 09:31 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-03-14 12:56 - 2019-03-06 09:31 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-03-14 12:56 - 2019-03-06 09:31 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-03-14 12:56 - 2019-03-06 09:29 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2019-03-14 12:56 - 2019-03-06 09:29 - 002174976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-03-14 12:56 - 2019-03-06 09:29 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-03-14 12:56 - 2019-03-06 09:29 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-03-14 12:56 - 2019-03-06 09:28 - 004937728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-03-14 12:56 - 2019-03-06 09:28 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-03-14 12:56 - 2019-03-06 09:27 - 002224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-03-14 12:56 - 2019-03-06 09:27 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-03-14 12:56 - 2019-03-06 09:27 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-03-14 12:56 - 2019-03-06 09:27 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-03-14 12:56 - 2019-03-06 09:26 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-03-14 12:56 - 2019-03-06 09:26 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-03-14 12:56 - 2019-03-06 09:26 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-03-14 12:56 - 2019-03-06 09:25 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-03-14 12:56 - 2019-03-06 08:08 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-03-14 12:56 - 2019-03-06 07:17 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-03-14 12:56 - 2019-03-06 07:17 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-03-14 12:56 - 2019-03-06 07:15 - 002253488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-03-14 12:56 - 2019-03-06 07:15 - 000434488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-03-14 12:56 - 2019-03-06 07:14 - 006568528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-03-14 12:56 - 2019-03-06 07:14 - 000785568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-03-14 12:56 - 2019-03-06 07:14 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-03-14 12:56 - 2019-03-06 07:14 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2019-03-14 12:56 - 2019-03-06 07:14 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-03-14 12:56 - 2019-03-06 07:13 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-03-14 12:56 - 2019-03-06 07:05 - 022018048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-03-14 12:56 - 2019-03-06 06:56 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-03-14 12:56 - 2019-03-06 06:53 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-03-14 12:56 - 2019-03-06 06:53 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-03-14 12:56 - 2019-03-06 06:52 - 005790720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-03-14 12:56 - 2019-03-06 06:52 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-03-14 12:56 - 2019-03-06 06:52 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-03-14 12:56 - 2019-03-06 06:51 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-03-14 12:56 - 2019-03-06 06:51 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-03-14 12:56 - 2019-03-06 06:51 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-03-14 12:56 - 2019-03-06 06:50 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-03-14 12:56 - 2019-03-06 06:50 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2019-03-14 12:56 - 2019-03-06 06:50 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-03-14 12:56 - 2019-03-06 06:49 - 004516352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-03-14 12:56 - 2019-03-06 06:49 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-03-14 12:56 - 2019-03-06 06:49 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-03-14 12:56 - 2019-03-06 06:48 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-03-14 12:56 - 2019-03-06 06:48 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-03-14 12:56 - 2019-02-21 04:26 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-03-14 12:56 - 2019-02-16 14:02 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-03-14 12:56 - 2019-02-16 14:02 - 001644040 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-03-14 12:56 - 2019-02-16 14:02 - 000808456 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-03-14 12:56 - 2019-02-16 14:02 - 000735752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-03-14 12:56 - 2019-02-16 14:02 - 000620040 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-03-14 12:56 - 2019-02-16 14:02 - 000460296 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-03-14 12:56 - 2019-02-16 14:02 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-03-14 12:56 - 2019-02-16 14:02 - 000147464 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-03-14 12:56 - 2019-02-16 14:02 - 000071176 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 002266936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 001786672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 001627448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 001424696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 001048472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 001038136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 000954168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 000830264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 000825144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 000749880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 000670008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-03-14 12:56 - 2019-02-16 13:57 - 000495416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 000257848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2019-03-14 12:56 - 2019-02-16 13:57 - 000228152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2019-03-14 12:56 - 2019-02-16 13:57 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe
2019-03-14 12:56 - 2019-02-16 13:57 - 000180528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2019-03-14 12:56 - 2019-02-16 13:57 - 000172856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe
2019-03-14 12:56 - 2019-02-16 13:57 - 000034104 _____ C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2019-03-14 12:56 - 2019-02-16 13:56 - 000549520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-03-14 12:56 - 2019-02-16 13:56 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-03-14 12:56 - 2019-02-16 13:53 - 001516416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-03-14 12:56 - 2019-02-16 13:36 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-03-14 12:56 - 2019-02-16 13:34 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-03-14 12:56 - 2019-02-16 13:34 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-03-14 12:56 - 2019-02-16 13:34 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-03-14 12:56 - 2019-02-16 13:33 - 002194432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-03-14 12:56 - 2019-02-16 13:33 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-03-14 12:56 - 2019-02-16 13:32 - 003646976 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-03-14 12:56 - 2019-02-16 13:32 - 002051072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-03-14 12:56 - 2019-02-16 13:32 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-03-14 12:56 - 2019-02-16 13:31 - 001271808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2019-03-14 12:56 - 2019-02-16 13:31 - 001186816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-03-14 12:56 - 2019-02-16 13:31 - 001003520 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-03-14 12:56 - 2019-02-16 13:31 - 000861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-03-14 12:56 - 2019-02-16 13:31 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-03-14 12:56 - 2019-02-16 13:30 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-03-14 12:56 - 2019-02-16 13:30 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2019-03-14 12:56 - 2019-02-16 13:29 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-03-14 12:56 - 2019-02-16 13:29 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-03-14 12:56 - 2019-02-16 13:25 - 001539896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-03-14 12:56 - 2019-02-16 13:25 - 000148784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mavinject.exe
2019-03-14 12:56 - 2019-02-16 13:24 - 000444176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-03-14 12:56 - 2019-02-16 13:22 - 001322176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-03-14 12:56 - 2019-02-16 13:08 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-03-14 12:56 - 2019-02-16 13:07 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-03-14 12:56 - 2019-02-16 13:07 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-03-14 12:56 - 2019-02-16 13:06 - 002890752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-03-14 12:56 - 2019-02-16 13:06 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-03-14 12:56 - 2019-02-16 13:06 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-03-14 12:56 - 2019-02-16 13:06 - 000774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-03-14 12:56 - 2019-02-16 13:06 - 000765952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-03-14 12:56 - 2019-02-16 13:04 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-03-14 12:56 - 2019-02-16 13:02 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe
2019-03-14 12:56 - 2019-02-16 12:55 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.dll
2019-03-14 12:56 - 2019-02-16 11:24 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-03-14 12:56 - 2019-02-16 11:22 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-03-14 12:56 - 2019-02-16 09:16 - 000511800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-03-14 12:56 - 2019-02-16 09:15 - 000505656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-03-14 12:56 - 2019-02-16 09:15 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-03-14 12:56 - 2019-02-16 09:05 - 000087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-03-14 12:56 - 2019-02-16 09:04 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-03-14 12:56 - 2019-02-16 09:03 - 007901392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-03-14 12:56 - 2019-02-16 09:03 - 005625360 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-03-14 12:56 - 2019-02-16 09:03 - 000510288 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-03-14 12:56 - 2019-02-16 09:02 - 005821440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-03-14 12:56 - 2019-02-16 09:02 - 003291632 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-03-14 12:56 - 2019-02-16 09:02 - 001934800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-03-14 12:56 - 2019-02-16 09:02 - 001792712 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-03-14 12:56 - 2019-02-16 09:02 - 000705848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-03-14 12:56 - 2019-02-16 09:02 - 000432952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-03-14 12:56 - 2019-02-16 09:02 - 000413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-03-14 12:56 - 2019-02-16 09:01 - 001285424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-03-14 12:56 - 2019-02-16 09:01 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-03-14 12:56 - 2019-02-16 09:01 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-03-14 12:56 - 2019-02-16 09:01 - 001028920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-03-14 12:56 - 2019-02-16 09:01 - 001014344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-03-14 12:56 - 2019-02-16 09:01 - 000735464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-03-14 12:56 - 2019-02-16 09:01 - 000641984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-03-14 12:56 - 2019-02-16 09:01 - 000594024 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-03-14 12:56 - 2019-02-16 09:01 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-03-14 12:56 - 2019-02-16 09:01 - 000480840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-03-14 12:56 - 2019-02-16 09:01 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-03-14 12:56 - 2019-02-16 09:01 - 000161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2019-03-14 12:56 - 2019-02-16 08:57 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-03-14 12:56 - 2019-02-16 08:53 - 000443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-03-14 12:56 - 2019-02-16 08:51 - 002479168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-03-14 12:56 - 2019-02-16 08:51 - 001584536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-03-14 12:56 - 2019-02-16 08:51 - 000170952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2019-03-14 12:56 - 2019-02-16 08:50 - 001805648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-03-14 12:56 - 2019-02-16 08:50 - 001171336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-03-14 12:56 - 2019-02-16 08:50 - 001130568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-03-14 12:56 - 2019-02-16 08:50 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-03-14 12:56 - 2019-02-16 08:50 - 000560384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-03-14 12:56 - 2019-02-16 08:50 - 000504072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2019-03-14 12:56 - 2019-02-16 08:37 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-03-14 12:56 - 2019-02-16 08:36 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2019-03-14 12:56 - 2019-02-16 08:36 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-03-14 12:56 - 2019-02-16 08:35 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-03-14 12:56 - 2019-02-16 08:35 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-03-14 12:56 - 2019-02-16 08:34 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2019-03-14 12:56 - 2019-02-16 08:34 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-03-14 12:56 - 2019-02-16 08:34 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-03-14 12:56 - 2019-02-16 08:33 - 006646784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-03-14 12:56 - 2019-02-16 08:33 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-03-14 12:56 - 2019-02-16 08:33 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-03-14 12:56 - 2019-02-16 08:33 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-03-14 12:56 - 2019-02-16 08:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2019-03-14 12:56 - 2019-02-16 08:33 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-03-14 12:56 - 2019-02-16 08:32 - 002969088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-03-14 12:56 - 2019-02-16 08:32 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2019-03-14 12:56 - 2019-02-16 08:31 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-03-14 12:56 - 2019-02-16 08:31 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-03-14 12:56 - 2019-02-16 08:31 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2019-03-14 12:56 - 2019-02-16 08:31 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2019-03-14 12:56 - 2019-02-16 08:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-03-14 12:56 - 2019-02-16 08:30 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-03-14 12:56 - 2019-02-16 08:30 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2019-03-14 12:56 - 2019-02-16 08:30 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-03-14 12:56 - 2019-02-16 08:30 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2019-03-14 12:56 - 2019-02-16 08:30 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2019-03-14 12:56 - 2019-02-16 08:30 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-03-14 12:56 - 2019-02-16 08:29 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-03-14 12:56 - 2019-02-16 08:29 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-03-14 12:56 - 2019-02-16 08:28 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-03-14 12:56 - 2019-02-16 08:28 - 002585600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-03-14 12:56 - 2019-02-16 08:28 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2019-03-14 12:56 - 2019-02-16 08:28 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2019-03-14 12:56 - 2019-02-16 08:28 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2019-03-14 12:56 - 2019-02-16 08:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-03-14 12:56 - 2019-02-16 08:27 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2019-03-14 12:56 - 2019-02-16 08:27 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2019-03-14 12:56 - 2019-02-16 08:27 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-03-14 12:56 - 2019-02-16 08:26 - 001459712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-03-14 12:56 - 2019-02-16 08:26 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-03-14 12:56 - 2019-02-16 08:26 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2019-03-14 12:56 - 2019-02-16 08:26 - 000935424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-03-14 12:56 - 2019-02-16 08:26 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-03-14 12:56 - 2019-02-16 08:25 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2019-03-14 12:56 - 2019-02-16 08:25 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-03-10 08:50 - 2019-03-10 08:55 - 000181160 _____ (ESET) C:\WINDOWS\system32\Drivers\ESETCleanersDriver.sys
2019-03-10 08:37 - 2019-03-10 08:37 - 000146256 _____ C:\Users\11\Downloads\Vypis_ctvrtletni31.12.2018.pdf
2019-03-03 15:04 - 2019-03-03 20:30 - 000000000 ____D C:\Users\11\Documents\BFBC2
2019-03-03 14:50 - 2019-03-03 14:50 - 000000852 _____ C:\Users\Public\Desktop\Battlefield Bad Company 2.lnk
2019-03-03 14:50 - 2019-03-03 14:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield Bad Company 2
2019-03-03 12:37 - 2019-03-14 15:13 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-03-02 18:03 - 2019-03-02 18:06 - 000000000 ____D C:\Users\11\Documents\Taekwondo video
2019-03-02 17:45 - 2019-03-02 17:46 - 069292262 _____ C:\Users\11\Downloads\vlc-3.0.6-win32.zip
2019-03-02 17:45 - 2019-03-02 17:45 - 040477384 _____ C:\Users\11\Downloads\vlc-3.0.6-win32.exe
2019-03-02 09:26 - 2019-03-02 09:30 - 000000000 ____D C:\VProRecovery
2019-03-01 15:02 - 2019-03-01 15:23 - 000000000 ____D C:\Users\11\Desktop\HDD Tata
2019-03-01 14:32 - 2019-03-01 14:32 - 000000000 ____D C:\ProgramData\SystemAcCrux
2019-03-01 14:29 - 2019-03-01 14:30 - 043322608 _____ (EaseUS ) C:\Users\11\Downloads\drw_setup_201902.exe
2019-03-01 12:22 - 2019-03-01 12:22 - 000000234 _____ C:\Users\11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TheDivision2.url

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-30 11:55 - 2018-08-30 16:15 - 000000000 ____D C:\FRST
2019-03-30 11:46 - 2018-05-17 12:21 - 000004180 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{29D69A76-2385-4784-BB6B-F475B82DB339}
2019-03-30 11:15 - 2018-05-17 12:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-03-30 10:00 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-03-30 09:35 - 2016-04-17 09:04 - 000000000 ____D C:\Users\11\AppData\LocalLow\Heroes and Generals
2019-03-30 09:18 - 2018-05-17 12:18 - 000000000 ____D C:\Users\11
2019-03-30 08:45 - 2018-04-22 11:56 - 000000000 ____D C:\ProgramData\Epic
2019-03-30 08:00 - 2018-04-12 00:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-03-30 08:00 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2019-03-30 07:59 - 2016-12-02 22:45 - 000000000 ____D C:\Program Files\Microsoft Office
2019-03-30 07:55 - 2017-04-26 16:17 - 000000000 ____D C:\ProgramData\NVIDIA
2019-03-30 07:53 - 2018-03-20 18:47 - 000000000 ____D C:\Users\11\AppData\Local\Ubisoft Game Launcher
2019-03-30 07:53 - 2016-11-19 16:28 - 000000000 ____D C:\Users\11\AppData\LocalLow\Mozilla
2019-03-29 21:58 - 2018-05-17 12:25 - 001689050 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-03-29 21:58 - 2018-04-12 16:51 - 000715034 _____ C:\WINDOWS\system32\perfh005.dat
2019-03-29 21:58 - 2018-04-12 16:51 - 000144328 _____ C:\WINDOWS\system32\perfc005.dat
2019-03-29 21:53 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-03-29 21:52 - 2018-05-17 12:21 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-03-29 21:52 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\Registration
2019-03-29 21:52 - 2018-04-11 22:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-03-29 21:52 - 2018-03-20 16:16 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-03-29 21:52 - 2018-03-20 16:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-03-29 21:45 - 2018-04-12 00:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-03-29 21:20 - 2018-12-16 12:47 - 000000000 ____D C:\Users\11\AppData\Local\CrashDumps
2019-03-29 20:33 - 2016-11-03 16:15 - 000001278 _____ C:\Users\11\Desktop\Č ůčtu.txt
2019-03-29 15:25 - 2018-05-17 12:21 - 000003348 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1708006454-2605614449-3121516059-1001
2019-03-29 15:25 - 2018-05-17 12:18 - 000002388 _____ C:\Users\11\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-03-29 15:25 - 2016-04-16 18:35 - 000000000 ___RD C:\Users\11\OneDrive
2019-03-29 15:24 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-03-29 07:07 - 2018-08-29 20:29 - 000003470 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-29 07:07 - 2018-08-29 20:29 - 000003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-28 13:59 - 2018-03-20 16:16 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-03-27 15:13 - 2018-04-28 12:30 - 000000000 ____D C:\Users\11\Documents\Soubory aplikace Outlook
2019-03-27 15:08 - 2016-06-20 16:36 - 000000000 ____D C:\Users\11\AppData\Roaming\vlc
2019-03-27 07:09 - 2018-09-14 15:28 - 000002517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-03-27 07:09 - 2016-12-02 22:49 - 000002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-03-27 07:09 - 2016-12-02 22:49 - 000002488 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-03-27 07:09 - 2016-12-02 22:49 - 000002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-03-27 07:09 - 2016-12-02 22:49 - 000002476 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2019-03-27 07:09 - 2016-12-02 22:49 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-03-27 07:09 - 2016-12-02 22:49 - 000002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-03-27 07:09 - 2016-12-02 22:49 - 000002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-03-26 20:26 - 2018-11-02 13:02 - 000000000 ____D C:\Users\11\Desktop\Nová složka
2019-03-26 06:45 - 2018-08-29 20:37 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-26 06:45 - 2018-08-29 20:37 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-03-23 09:26 - 2018-05-17 12:16 - 000606800 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-03-21 21:02 - 2017-10-18 20:24 - 000000000 ____D C:\Users\11\AppData\Local\Packages
2019-03-20 16:27 - 2018-10-29 20:11 - 000000331 _____ C:\Users\11\Desktop\hsdata.cfg
2019-03-20 16:22 - 2018-01-06 08:42 - 000001405 _____ C:\Users\11\Desktop\cccam.txt
2019-03-20 08:29 - 2018-11-16 13:55 - 000000000 ____D C:\Program Files\rempl
2019-03-19 11:37 - 2016-04-16 18:34 - 000000000 ____D C:\Users\11\AppData\Local\NVIDIA
2019-03-19 11:35 - 2018-07-19 19:37 - 000000000 ____D C:\ProgramData\Packages
2019-03-18 10:42 - 2018-05-17 12:21 - 000002562 _____ C:\WINDOWS\diagwrn.xml
2019-03-18 10:42 - 2018-05-17 12:21 - 000001908 _____ C:\WINDOWS\diagerr.xml
2019-03-18 09:03 - 2016-04-17 08:33 - 000000000 ____D C:\Program Files\7-Zip
2019-03-17 16:19 - 2018-05-18 19:08 - 000000000 ____D C:\Users\11\AppData\Local\D3DSCache
2019-03-16 09:50 - 2016-10-07 16:41 - 000111928 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2019-03-15 18:40 - 2016-04-17 14:38 - 000000000 ____D C:\Users\11\AppData\Roaming\TS3Client
2019-03-15 15:58 - 2016-10-07 16:41 - 000066872 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2019-03-15 15:58 - 2016-07-20 12:31 - 000000000 ____D C:\Users\11\AppData\Local\PunkBuster
2019-03-15 15:55 - 2016-04-17 07:59 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-03-15 15:49 - 2017-11-25 00:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision
2019-03-15 14:36 - 2018-01-19 15:32 - 000110000 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2019-03-15 14:36 - 2018-01-19 15:31 - 000188240 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2019-03-15 14:36 - 2018-01-19 15:31 - 000082472 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2019-03-15 14:36 - 2018-01-19 15:31 - 000050280 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2019-03-15 14:36 - 2017-10-18 18:49 - 000145600 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2019-03-15 14:36 - 2017-10-18 18:49 - 000107744 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2019-03-15 13:39 - 2018-07-09 15:23 - 000004634 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-03-15 13:39 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-03-15 13:39 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-03-15 12:39 - 2018-05-17 12:21 - 000004622 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-03-15 08:23 - 2018-04-12 16:53 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2019-03-15 08:23 - 2018-04-12 16:52 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2019-03-15 08:23 - 2018-04-12 00:38 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-03-15 08:23 - 2018-04-12 00:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-03-15 08:23 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-03-15 08:23 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-03-15 08:23 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-03-15 08:23 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-03-15 08:23 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-03-15 08:23 - 2018-04-12 00:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-03-14 16:15 - 2018-03-24 13:35 - 000000000 ____D C:\Users\11\AppData\Roaming\Origin
2019-03-14 16:15 - 2016-10-26 16:17 - 000000000 ____D C:\ProgramData\Origin
2019-03-14 16:03 - 2016-10-02 14:58 - 000215128 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2019-03-14 15:44 - 2016-10-07 16:41 - 000282296 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2019-03-14 12:58 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-03-14 12:56 - 2016-04-17 07:44 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-03-14 12:53 - 2016-04-17 07:44 - 127411920 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-03-14 12:41 - 2016-06-07 20:12 - 000000000 ____D C:\Program Files\CCleaner
2019-03-10 12:18 - 2018-03-24 13:35 - 000000000 ____D C:\Program Files (x86)\Origin
2019-03-10 10:17 - 2018-12-21 16:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TNod User & Password Finder
2019-03-06 07:15 - 2018-05-17 12:21 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-03-03 17:54 - 2018-04-12 00:41 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-03-03 17:54 - 2018-04-12 00:41 - 000179608 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-03-03 14:50 - 2016-07-20 12:18 - 002434856 _____ C:\WINDOWS\SysWOW64\pbsvc.exe
2019-03-03 13:48 - 2017-02-17 22:39 - 000000833 _____ C:\Users\Public\Desktop\Battlefield 1.lnk
2019-03-03 12:43 - 2016-04-17 14:21 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2019-03-02 17:46 - 2016-06-20 16:36 - 000001143 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-03-02 10:38 - 2016-04-22 16:07 - 000000436 _____ C:\Users\11\Desktop\Tento počítač – zástupce.lnk

==================== Files in the root of some directories =======

2016-07-27 19:54 - 2016-07-27 19:54 - 000010161 _____ () C:\Program Files (x86)\pbgame.htm
2016-07-27 19:54 - 2014-05-09 23:20 - 000820224 _____ () C:\Program Files (x86)\pbsetup.exe
2016-07-27 19:54 - 2016-07-27 19:54 - 000000000 _____ () C:\Program Files (x86)\pbuser.htm

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-17 12:16

==================== End of FRST.txt ============================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118251
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zpomalený internet sekaní počítače

#7 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle Corporation)
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\MountPoints2: {96cb2cc8-069a-11e9-8329-d8cb8a196e4c} - "J:\OriginSetup.exe"
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TNod User & Password Finder
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
Task: {179AFA94-3EF3-4D9B-AACB-7104C4276A49} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-29] (Google Inc.)
Task: {71585D82-2756-450D-8B5A-FC5C9BEC6678} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-29] (Google Inc.)
AlternateDataStreams: C:\Users\11:Heroes & Generals [38]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480]

EmptyTemp:
End
Uložte do D:\STAŽENÉ SOUBORY jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Btw, co ten cracklý Eset? Buď si ho zaplaťte, nebo odinstalujte a přejděte na některý z free antivirů.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
cros
Návštěvník
Návštěvník
Příspěvky: 72
Registrován: 17 kvě 2009 10:28

Re: Zpomalený internet sekaní počítače

#8 Příspěvek od cros »

Fix result of Farbar Recovery Scan Tool (x64) Version: 10.03.2018
Ran by 11 (30-03-2019 13:15:26) Run:1
Running from D:\STAŽENÉ SOUBORY
Loaded Profiles: 11 (Available Profiles: 11)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle Corporation)
HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\...\MountPoints2: {96cb2cc8-069a-11e9-8329-d8cb8a196e4c} - "J:\OriginSetup.exe"
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TNod User & Password Finder
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
Task: {179AFA94-3EF3-4D9B-AACB-7104C4276A49} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-29] (Google Inc.)
Task: {71585D82-2756-450D-8B5A-FC5C9BEC6678} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-29] (Google Inc.)
AlternateDataStreams: C:\Users\11:Heroes & Generals [38]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480]

EmptyTemp:
End
*****************

Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
"HKU\S-1-5-21-1708006454-2605614449-3121516059-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{96cb2cc8-069a-11e9-8329-d8cb8a196e4c}" => removed successfully
HKLM\Software\Classes\CLSID\{96cb2cc8-069a-11e9-8329-d8cb8a196e4c} => not found
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TNod User & Password Finder => moved successfully
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64" => removed successfully
HKLM\Software\Classes\CLSID\{B298D29A-A6ED-11DE-BA8C-A68E55D89593} => not found
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu" => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C}" => removed successfully
HKLM\Software\Classes\CLSID\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu" => removed successfully
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{179AFA94-3EF3-4D9B-AACB-7104C4276A49}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{179AFA94-3EF3-4D9B-AACB-7104C4276A49}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{71585D82-2756-450D-8B5A-FC5C9BEC6678}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{71585D82-2756-450D-8B5A-FC5C9BEC6678}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
C:\Users\11 => ":Heroes & Generals" ADS removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 12083200 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 419684855 B
Java, Flash, Steam htmlcache => 357259314 B
Windows/system/drivers => 2469628 B
Edge => 9216 B
Chrome => 149575 B
Firefox => 16522445 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 1806 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
11 => 85903043 B

RecycleBin => 0 B
EmptyTemp: => 852.7 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 13:15:38 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118251
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zpomalený internet sekaní počítače

#9 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
cros
Návštěvník
Návštěvník
Příspěvky: 72
Registrován: 17 kvě 2009 10:28

Re: Zpomalený internet sekaní počítače

#10 Příspěvek od cros »

děkuji je to výrazně lepší
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118251
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Zpomalený internet sekaní počítače

#11 Příspěvek od Rudy »

Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“