Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Malwarebytes AdwCleaner

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
mulapa
Návštěvník
Návštěvník
Příspěvky: 25
Registrován: 13 bře 2019 18:54

Malwarebytes AdwCleaner

#1 Příspěvek od mulapa »

# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-04-03.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 07-09-2019
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 22
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\IOBIT\Driver Booster
Deleted C:\Program Files\My Web Shield
Deleted C:\ProgramData\IOBIT\Driver Booster
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
Deleted C:\Users\mulap\AppData\LocalLow\IObit\Advanced SystemCare
Deleted C:\Users\mulap\AppData\Local\DriverToolkit
Deleted C:\Users\mulap\AppData\Roaming\IOBIT\Driver Booster

***** [ Files ] *****

Deleted C:\Users\Public\Desktop\Driver Booster 6.lnk
Deleted C:\Users\mulap\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Driver Booster.lnk

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\DRIVER BOOSTER SCHEDULER

***** [ Registry ] *****

Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\banggood.com
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\banggood.com
Deleted HKCU\Software\SetupCompany
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{44588D3A-FB76-48B6-B153-464F6B8308EC}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Driver Booster Scheduler
Deleted HKLM\Software\Classes\AppID\{3E0DB45B-9FCC-4064-B48C-080BD03A99A4}
Deleted HKLM\Software\Classes\AppID\{C81BED3B-31BD-491F-813D-78EFC2638CE1}
Deleted HKLM\Software\Classes\CLSID\{35F4BB37-03C5-41DE-85AF-7C301390C7EC}
Deleted HKLM\Software\Wow6432Node\IObit\Driver Booster
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{3E0DB45B-9FCC-4064-B48C-080BD03A99A4}
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{C81BED3B-31BD-491F-813D-78EFC2638CE1}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Driver Booster_is1

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [3236 octets] - [14/03/2019 07:07:05]
AdwCleaner[C00].txt - [3000 octets] - [14/03/2019 07:07:26]
AdwCleaner[S01].txt - [3649 octets] - [09/07/2019 13:24:17]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Malwarebytes AdwCleaner

#2 Příspěvek od Rudy »

Zdravím!
Zkusíme ještě dočistit. Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

mulapa
Návštěvník
Návštěvník
Příspěvky: 25
Registrován: 13 bře 2019 18:54

Re: Malwarebytes AdwCleaner

#3 Příspěvek od mulapa »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 3-07-2019
Ran by mulap (administrator) on DESKTOP-7LFPRUN (09-07-2019 17:22:35)
Running from C:\Users\mulap\OneDrive\Desktop
Loaded Profiles: mulap (Available Profiles: mulap)
Platform: Windows 10 Home Version 1809 17763.557 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19041.16510.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19061.410.0_x64__8wekyb3d8bbwe\YourPhone.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11905.1001.4.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\NisSrv.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391120 2019-07-05] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [61370712 2019-03-14] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22515488 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\Run: [Discord] => C:\Users\mulap\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3148576 2019-06-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\Run: [BloodyToneMaker] => C:\Program Files (x86)\BloodyToneMaker\BloodyToneMaker\Bloody ToneMaker1.exe [8555008 2017-10-16] () [File not signed]
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\Run: [ASRockOCTuner] => [X]
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\MountPoints2: {a8eaa423-3f5a-11e9-9217-d05099916c94} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00F2095B-3897-40BA-8BD3-54C6AE0117CE} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1F6D2408-05CB-4EE9-86A2-F1E6CE0FF73D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [897008 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {224988EE-903C-49F9-8D68-D732EE681DE0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2D9A702F-8F90-49AE-B6AA-4E9A3F233CE6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2FA5D9DF-9B26-4D00-9CF0-B8FFB1ABD90D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3BC87B11-6480-4CBB-947A-3E291E37C0DA} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {447F9761-8EF5-4BC3-B3CB-BE7A14FF8B18} - System32\Tasks\Monitor => C:\Program Files (x86)\ASUS\GPU TweakII\Monitor.exe [4930664 2019-02-13] (ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.)
Task: {4C9FCBF5-CEDA-4D2B-8A36-FCFFA2704CFC} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {63AB38EC-904F-42AD-B03B-DDE912FE83E9} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6705543F-5F52-487A-A6EF-587549CB547A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648504 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6F5653F6-6C8F-4C89-B3F3-347E5F408531} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7606B30F-ED52-4E13-A242-1555E748D5D4} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {877CB80C-0C4F-4013-AC97-74782D47A291} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3788144 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {98EF0D25-AC3E-4060-8BBA-CA21BE79038E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A169666B-A4C5-470B-866E-587AA09B7C01} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A490698D-F47D-4409-92C1-DF77B06BD556} - System32\Tasks\ASUS Live Update Task Schedule => C:\Program Files (x86)\ASUS\GPU Tweak\ASUSLiveUpdate.exe
Task: {A5DB6CE7-27B8-4415-BE48-E88973EC767B} - System32\Tasks\Driver Booster SkipUAC (mulap) => C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DriverBooster.exe
Task: {B56426B3-42C0-458D-93FF-8F24B824F9DA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C6E4F659-2925-43A3-91A7-31E46E736FE1} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1130480 2019-06-18] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{2ddccd0a-e301-4d66-b6a6-b3450ad5678f}: [NameServer] 185.4.65.4,116.203.6.218,185.130.104.222,185.4.64.13
Tcpip\..\Interfaces\{2ddccd0a-e301-4d66-b6a6-b3450ad5678f}: [DhcpNameServer] 213.46.172.36 213.46.172.37

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-1281642634-151338527-2747475875-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL =

Edge:
======
Edge Extension: (Translator pro Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2019-07-06]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.01\atkexComSvc.exe [382424 2018-01-05] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [806352 2019-07-05] (ICEpower a/s -> ICEpower)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782136 2019-03-06] (NVIDIA Corporation -> NVIDIA Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\NisSrv.exe [2433136 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MsMpEng.exe [109896 2019-06-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2017-04-15] (ASUSTeK Computer Inc. -> )
S3 AsrOcDrv; C:\WINDOWS\SysWOW64\Drivers\AsrOcDrv.sys [22312 2019-07-08] (ASROCK Incorporation -> RW-Everything)
S0 AsrRamDisk; C:\WINDOWS\System32\drivers\AsrRamDisk.sys [40200 2013-05-09] (ASROCK Incorporation -> ASRock Inc.)
R3 CMUAC; C:\WINDOWS\system32\DRIVERS\Headset6400x1.SYS [387072 2013-10-03] (C-MEDIA ELECTRONICS INC. -> A4Tech Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO64A.SYS [66128 2019-07-08] (Martin Malik - REALiX -> REALiX(tm))
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-07-05] (Martin Malik - REALiX -> REALiX(tm))
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [34064 2017-05-08] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_b49751b9038af669\nvlddmkm.sys [21836032 2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-06-13] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-06-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [337632 2019-06-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-06-04] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-09 13:29 - 2019-07-09 13:44 - 076546048 _____ C:\WINDOWS\system32\config\SOFTWARE
2019-07-09 13:15 - 2019-07-09 13:28 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2019-07-08 11:25 - 2019-07-08 11:25 - 000022312 _____ (RW-Everything) C:\WINDOWS\SysWOW64\Drivers\AsrOcDrv.sys
2019-07-08 11:24 - 2019-07-08 11:24 - 000001225 _____ C:\Users\Public\Desktop\ASRock OC Tuner.lnk
2019-07-08 11:24 - 2019-07-08 11:24 - 000000000 ____D C:\Program Files (x86)\ASRock Utility
2019-07-08 11:20 - 2019-07-08 11:20 - 000066128 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO64A.SYS
2019-07-08 11:19 - 2019-07-08 11:19 - 000000000 ____D C:\Program Files\HWiNFO64
2019-07-08 11:17 - 2019-07-08 11:17 - 000000000 ____D C:\Users\mulap\AppData\Roaming\NVIDIA
2019-07-08 11:09 - 2019-07-08 11:09 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2019-07-08 11:09 - 2019-05-23 00:01 - 005432688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2019-07-08 11:09 - 2019-05-23 00:01 - 002637808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2019-07-08 11:09 - 2019-05-23 00:01 - 001767920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2019-07-08 11:09 - 2019-05-23 00:01 - 000650608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2019-07-08 11:09 - 2019-05-23 00:01 - 000450872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2019-07-08 11:09 - 2019-05-23 00:01 - 000125240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2019-07-08 11:09 - 2019-05-23 00:01 - 000083440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2019-07-08 11:09 - 2019-05-22 17:03 - 008579232 _____ C:\WINDOWS\system32\nvcoproc.bin
2019-07-08 11:09 - 2019-03-09 00:13 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2019-07-08 11:06 - 2019-05-23 18:25 - 000260512 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-07-08 11:06 - 2019-05-23 18:25 - 000260512 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-07-08 11:06 - 2019-05-23 18:24 - 001007008 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-07-08 11:06 - 2019-05-23 18:24 - 001007008 _____ C:\WINDOWS\system32\vulkan-1.dll
2019-07-08 11:06 - 2019-05-23 18:24 - 000870304 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2019-07-08 11:06 - 2019-05-23 18:24 - 000870304 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-07-08 11:06 - 2019-05-23 18:24 - 000552352 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-07-08 11:06 - 2019-05-23 18:24 - 000457304 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-07-08 11:06 - 2019-05-23 18:24 - 000286624 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-07-08 11:06 - 2019-05-23 18:24 - 000286624 _____ C:\WINDOWS\system32\vulkaninfo.exe
2019-07-08 11:06 - 2019-05-23 18:23 - 011051968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-07-08 11:06 - 2019-05-23 18:23 - 009487240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2019-07-08 11:06 - 2019-05-23 18:22 - 000821120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2019-07-08 11:06 - 2019-05-23 18:22 - 000675016 _____ C:\WINDOWS\system32\nvofapi64.dll
2019-07-08 11:06 - 2019-05-23 18:22 - 000631224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2019-07-08 11:06 - 2019-05-23 18:22 - 000541904 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2019-07-08 11:06 - 2019-05-23 18:22 - 000522120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2019-07-08 11:06 - 2019-05-23 18:21 - 005422040 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2019-07-08 11:06 - 2019-05-23 18:21 - 004759640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2019-07-08 11:06 - 2019-05-23 18:21 - 002039768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2019-07-08 11:06 - 2019-05-23 18:21 - 001722456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6443086.dll
2019-07-08 11:06 - 2019-05-23 18:21 - 001542232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2019-07-08 11:06 - 2019-05-23 18:21 - 001470856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2019-07-08 11:06 - 2019-05-23 18:21 - 001467864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6443086.dll
2019-07-08 11:06 - 2019-05-23 18:21 - 001162200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-07-08 11:06 - 2019-05-23 18:21 - 001133824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2019-07-08 11:06 - 2019-05-23 18:21 - 000912472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2019-07-08 11:06 - 2019-05-23 18:21 - 000808408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-07-08 11:06 - 2019-05-23 18:21 - 000654752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2019-07-08 11:06 - 2019-05-23 18:20 - 040412576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2019-07-08 11:06 - 2019-05-23 18:20 - 035269592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2019-07-08 11:06 - 2019-05-23 18:20 - 020190808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2019-07-08 11:06 - 2019-05-23 18:20 - 017467024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2019-07-08 11:06 - 2019-05-23 18:14 - 005085672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2019-07-08 11:06 - 2019-05-23 18:14 - 004340480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2019-07-08 11:06 - 2019-05-23 16:13 - 001682368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2019-07-08 11:06 - 2019-05-23 16:13 - 000228608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2019-07-08 11:06 - 2019-05-23 16:13 - 000046848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2019-07-08 11:06 - 2019-05-23 01:39 - 000052456 _____ C:\WINDOWS\system32\nvinfo.pb
2019-07-08 11:06 - 2019-04-17 06:44 - 000075600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2019-07-07 08:58 - 2019-07-07 08:58 - 000001008 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2019-07-07 08:58 - 2019-07-07 08:58 - 000000970 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2019-07-06 14:00 - 2019-07-06 14:00 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2019-07-06 14:00 - 2019-04-17 09:42 - 000069840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2019-07-05 11:04 - 2019-07-05 11:04 - 000000000 ____D C:\Users\mulap\AppData\Local\TeamSpeak 3
2019-07-05 11:03 - 2019-07-08 10:55 - 000000000 ____D C:\Users\mulap\AppData\Roaming\TS3Client
2019-07-05 11:03 - 2019-07-05 11:03 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2019-07-05 10:26 - 2019-07-05 10:26 - 000000000 ____H C:\ProgramData\DP45977C.lfl
2019-07-05 10:26 - 2019-07-05 10:26 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2019-07-05 10:26 - 2019-07-05 10:26 - 000000000 ____D C:\WINDOWS\system32\DAX3
2019-07-05 10:26 - 2019-07-05 10:26 - 000000000 ____D C:\WINDOWS\system32\DAX2
2019-07-05 10:26 - 2019-07-05 10:26 - 000000000 ____D C:\Program Files\Realtek
2019-07-05 10:25 - 2019-07-05 10:25 - 072520816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2019-07-05 10:25 - 2019-07-05 10:25 - 024335604 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2019-07-05 10:25 - 2019-07-05 10:25 - 007178576 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 007101832 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 006486608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2019-07-05 10:25 - 2019-07-05 10:25 - 006270280 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64AF3.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 005804772 _____ C:\WINDOWS\system32\Drivers\rtvienna.dat
2019-07-05 10:25 - 2019-07-05 10:25 - 005347096 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv211.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 003762704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 003677264 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2019-07-05 10:25 - 2019-07-05 10:25 - 003417904 _____ (DTS, Inc.) C:\WINDOWS\system32\slcnt64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 003319520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 003306904 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE2.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 003283864 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RltkAPO.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 003159512 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 003128704 _____ (DTS, Inc.) C:\WINDOWS\system32\sltech64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 002930256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 002444816 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOv201.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 002198064 _____ (Yamaha Corporation) C:\WINDOWS\system32\YamahaAE.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001971472 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001965256 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64AF3.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001788064 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001611064 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOv251gm.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001598504 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001544360 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOProp.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001516376 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001435232 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRRPTR64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001396064 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SECOMN64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001382320 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001372488 _____ (Dolby Laboratories) C:\WINDOWS\system32\DAX3APOv251.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001353424 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001337728 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaeapo64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001318744 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDHF64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001287728 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyAPOvlldpgm.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001282448 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEAPO64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001259840 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOvlldp.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001180416 _____ (Sound Research, Corp.) C:\WINDOWS\system32\SEHDRA64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001159272 _____ (Dolby Laboratories) C:\WINDOWS\system32\DolbyDAX2APOProp.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001073560 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SECOMN32.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 001027720 _____ (Sound Research, Corp.) C:\WINDOWS\SysWOW64\SEHDHF32.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000994576 _____ (DTS, Inc.) C:\WINDOWS\system32\sl3apo64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000964920 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000884576 _____ (ICEpower a/s) C:\WINDOWS\system32\ICEsoundAPO64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000873552 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000852224 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tosasfapo64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000806352 _____ (ICEpower) C:\WINDOWS\system32\ICEsoundService64.exe
2019-07-05 10:25 - 2019-07-05 10:25 - 000751408 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000734880 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000715752 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000692264 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000604888 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\tossaemaxapo64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000541208 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000511752 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000467248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRAPO64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000453384 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000452840 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000448712 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000447264 _____ (Toshiba Client Solutions Co., Ltd.) C:\WINDOWS\system32\toseaeapo64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000416592 _____ (Harman) C:\WINDOWS\system32\HMUI.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000406584 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2APIPCLL.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000392976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000381496 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000378472 _____ (Dolby Laboratories) C:\WINDOWS\system32\HiFiDAX2API.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000367720 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64AF3.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000366224 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\HMAPO.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000360448 _____ (Harman) C:\WINDOWS\system32\HMClariFi.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000343600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000341240 _____ (Synopsys, Inc.) C:\WINDOWS\SysWOW64\SRCOM.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000341240 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SRCOM.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000333112 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000327376 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000327376 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000316088 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64F3.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000278376 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000266656 _____ (TODO: <Company name>) C:\WINDOWS\system32\slprp64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000261344 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000261304 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000260312 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000231808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000230792 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000220496 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000218360 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000203944 _____ (Harman) C:\WINDOWS\system32\HMHVS.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000202187 _____ C:\WINDOWS\system32\ICEsoundService.bin
2019-07-05 10:25 - 2019-07-05 10:25 - 000193088 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000191040 _____ (Harman) C:\WINDOWS\system32\HMEQ_Voice.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000191040 _____ (Harman) C:\WINDOWS\system32\HMEQ.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000179704 _____ (Harman) C:\WINDOWS\system32\HMLimiter.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000175856 _____ (ASUSTeK COMPUTER INC.) C:\WINDOWS\system32\ATKWMI.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000175032 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000158784 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000157448 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000154448 _____ (Harman) C:\WINDOWS\system32\HarmanAudioInterface.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000139856 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000122408 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000118680 _____ C:\WINDOWS\system32\AcpiServiceVnA64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000116648 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000105392 _____ C:\WINDOWS\system32\audioLibVc.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000094008 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000090808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000090272 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000088216 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000083520 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000075624 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2019-07-05 10:25 - 2019-07-05 10:25 - 000023800 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2019-07-05 10:10 - 2019-07-05 10:10 - 000027552 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2019-07-05 10:10 - 2019-07-05 10:10 - 000002948 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (mulap)
2019-07-05 10:10 - 2019-07-05 10:10 - 000000000 ____D C:\WINDOWS\IObit
2019-07-05 10:10 - 2019-07-05 10:10 - 000000000 ____D C:\ProgramData\ProductData
2019-07-05 10:09 - 2019-07-09 13:24 - 000000000 ____D C:\ProgramData\IObit
2019-07-05 10:07 - 2019-07-05 10:07 - 000002322 _____ C:\Users\Public\Desktop\ToneMaker 1.lnk
2019-07-05 10:07 - 2019-07-05 10:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloody
2019-07-05 10:07 - 2019-07-05 10:07 - 000000000 ____D C:\Program Files (x86)\BloodyToneMaker
2019-07-05 09:51 - 2019-07-09 13:24 - 000000000 ____D C:\Users\mulap\AppData\Roaming\IObit
2019-07-05 09:51 - 2019-07-09 13:24 - 000000000 ____D C:\Program Files (x86)\IObit
2019-07-05 09:51 - 2019-07-05 10:10 - 000002462 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk
2019-07-05 09:38 - 2019-07-05 09:38 - 000000000 ____D C:\Program Files\Malwarebytes
2019-07-04 15:51 - 2019-07-04 15:51 - 000000000 ____D C:\Users\mulap\AppData\Roaming\prunld1844
2019-07-04 15:50 - 2019-07-04 15:55 - 000000000 ____D C:\Users\mulap\AppData\Local\Mail.Ru
2019-07-04 15:50 - 2019-07-04 15:50 - 000378512 _____ C:\Users\mulap\OneDrive\Documents\AccessChk.zip
2019-07-04 15:50 - 2019-07-04 15:50 - 000000000 ____D C:\ProgramData\Mail.Ru
2019-07-04 09:31 - 2019-07-04 09:31 - 000000000 ____D C:\Users\mulap\AppData\Local\Steam
2019-07-04 09:30 - 2019-07-05 10:32 - 000000000 ____D C:\Program Files (x86)\Steam
2019-07-04 09:30 - 2019-07-04 09:30 - 000001032 _____ C:\Users\Public\Desktop\Steam.lnk
2019-06-19 07:42 - 2019-06-19 07:42 - 000000000 ____D C:\Program Files\UNP
2019-06-13 08:01 - 2019-06-13 08:01 - 026808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 023438336 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 022114960 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 020816384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 018999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 017484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 015221248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 012869120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 012162048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 009682744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 007884288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 007875072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 007724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 006926336 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 006547144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 006441472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 006309256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 006068224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 005588184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 005297152 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 005210904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 005112792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 004883968 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 004661760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 004627456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 003983872 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 003906560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 003637248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-06-13 08:01 - 2019-06-13 08:01 - 003426816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 003385344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-06-13 08:01 - 2019-06-13 08:01 - 003344896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 003091968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 002999808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 002926096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-06-13 08:01 - 2019-06-13 08:01 - 002777736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 002690048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 002638336 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 002627600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-06-13 08:01 - 2019-06-13 08:01 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 002422272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-06-13 08:01 - 2019-06-13 08:01 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 002276192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-06-13 08:01 - 2019-06-13 08:01 - 002085168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-06-13 08:01 - 2019-06-13 08:01 - 001929216 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001860608 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001761280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001750016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001700312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-06-13 08:01 - 2019-06-13 08:01 - 001670840 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001644544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001618944 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuin.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001483872 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 001466496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001342904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-06-13 08:01 - 2019-06-13 08:01 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001260048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-06-13 08:01 - 2019-06-13 08:01 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001180184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001072640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 001000448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000887808 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000863544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-06-13 08:01 - 2019-06-13 08:01 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-06-13 08:01 - 2019-06-13 08:01 - 000758688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000730592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-06-13 08:01 - 2019-06-13 08:01 - 000699392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000651576 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000586040 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000555232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000553664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-06-13 08:01 - 2019-06-13 08:01 - 000540720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000515152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000513904 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000506192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000478720 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000474936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-06-13 08:01 - 2019-06-13 08:01 - 000451104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-06-13 08:01 - 2019-06-13 08:01 - 000427688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000419368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000404792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-06-13 08:01 - 2019-06-13 08:01 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000398208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000389120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingASDS.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000375544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000351744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000287912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 000282424 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000262160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-06-13 08:01 - 2019-06-13 08:01 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000247608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000122680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000114648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingFilterDS.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000091424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000087864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-06-13 08:01 - 2019-06-13 08:01 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll
2019-06-13 08:01 - 2019-06-13 08:01 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-06-13 08:01 - 2019-06-13 08:01 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-06-13 08:01 - 2019-06-13 08:01 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-06-13 08:01 - 2019-06-13 08:01 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-06-13 08:01 - 2019-06-13 08:01 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-06-13 08:01 - 2019-06-13 08:01 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-06-13 08:01 - 2019-06-13 08:01 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-06-13 08:01 - 2019-06-13 08:01 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-06-13 08:00 - 2019-06-13 08:01 - 003270144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 004997096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 002928640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-06-13 08:00 - 2019-06-13 08:00 - 002653696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 001860096 ____R (The ICU Project) C:\WINDOWS\system32\icuin.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 001298952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-06-13 08:00 - 2019-06-13 08:00 - 001229824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-06-13 08:00 - 2019-06-13 08:00 - 001219424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 001048592 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-06-13 08:00 - 2019-06-13 08:00 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000924160 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000752144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-06-13 08:00 - 2019-06-13 08:00 - 000676048 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000651064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-06-13 08:00 - 2019-06-13 08:00 - 000615440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-06-13 08:00 - 2019-06-13 08:00 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000386576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000292664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2019-06-13 08:00 - 2019-06-13 08:00 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-06-13 08:00 - 2019-06-13 08:00 - 000196920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-06-13 08:00 - 2019-06-13 08:00 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000152896 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000152400 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000137056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000125528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000101176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
2019-06-13 08:00 - 2019-06-13 08:00 - 000090424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-06-13 08:00 - 2019-06-13 08:00 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-06-13 08:00 - 2019-06-13 08:00 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-06-12 09:50 - 2019-06-12 09:50 - 001993528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-09 17:22 - 2019-03-13 19:47 - 000000000 ____D C:\FRST
2019-07-09 17:15 - 2019-03-24 10:19 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-07-09 17:14 - 2019-03-24 10:09 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-07-09 16:58 - 2019-04-28 11:31 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-07-09 14:14 - 2019-03-26 00:41 - 000004210 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{9664F8CC-DF22-4BAD-B06B-0A182B4539A7}
2019-07-09 13:46 - 2019-03-24 10:20 - 000000000 ____D C:\ProgramData\NVIDIA
2019-07-09 13:44 - 2019-03-24 10:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-07-09 13:44 - 2019-03-24 09:59 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-07-09 13:43 - 2019-03-24 10:09 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-07-09 13:24 - 2019-01-04 13:19 - 000000000 ____D C:\Users\mulap\AppData\LocalLow\IObit
2019-07-09 09:56 - 2019-03-24 10:23 - 000000000 ____D C:\Users\mulap
2019-07-08 11:24 - 2019-03-13 19:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2019-07-08 11:19 - 2019-01-05 19:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO64
2019-07-08 11:17 - 2019-04-09 08:32 - 000003078 _____ C:\WINDOWS\System32\Tasks\Monitor
2019-07-08 11:10 - 2019-03-24 10:07 - 000000000 ____D C:\WINDOWS\INF
2019-07-08 11:09 - 2019-03-24 10:20 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-07-08 11:09 - 2019-03-24 10:20 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-07-08 11:09 - 2019-03-24 10:20 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-07-08 11:09 - 2019-03-24 10:09 - 000000000 ____D C:\WINDOWS\Help
2019-07-08 10:55 - 2019-05-06 08:30 - 000000000 ____D C:\Users\mulap\AppData\Local\Battle.net
2019-07-08 09:43 - 2019-04-28 11:57 - 000000000 ____D C:\Users\mulap\AppData\Roaming\Discord
2019-07-08 09:22 - 2019-03-24 13:06 - 000000000 ____D C:\Users\mulap\AppData\Local\D3DSCache
2019-07-07 16:45 - 2019-03-28 00:41 - 000000000 ____D C:\Users\mulap\AppData\Local\CrashDumps
2019-07-06 19:55 - 2019-03-24 10:09 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-07-06 14:00 - 2019-05-28 17:21 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-06 14:00 - 2019-05-28 17:21 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-06 14:00 - 2019-05-28 17:21 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-06 14:00 - 2019-05-28 17:21 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-06 14:00 - 2019-03-27 12:24 - 000001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2019-07-06 14:00 - 2019-03-27 12:23 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-06 14:00 - 2019-03-27 12:23 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-06 14:00 - 2019-03-27 12:22 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-06 14:00 - 2019-03-27 12:22 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-06 14:00 - 2019-03-27 12:22 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-06 14:00 - 2019-03-27 12:22 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-07-06 13:16 - 2019-03-24 12:09 - 000000000 ____D C:\Users\mulap\AppData\Local\PlaceholderTileLogoFolder
2019-07-06 13:16 - 2019-03-24 10:31 - 000000000 ____D C:\Users\mulap\AppData\Local\Packages
2019-07-06 13:16 - 2019-03-24 10:09 - 000000000 ___HD C:\Program Files\WindowsApps
2019-07-05 10:22 - 2019-03-24 10:28 - 001693636 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-07-05 10:22 - 2019-03-24 10:12 - 000716776 _____ C:\WINDOWS\system32\perfh005.dat
2019-07-05 10:22 - 2019-03-24 10:12 - 000144856 _____ C:\WINDOWS\system32\perfc005.dat
2019-07-05 10:15 - 2019-03-25 22:20 - 000000000 ____D C:\Users\mulap\AppData\Local\ElevatedDiagnostics
2019-07-05 10:10 - 2019-01-04 13:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 6
2019-07-05 09:51 - 2019-01-04 13:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster
2019-07-05 09:30 - 2019-05-06 08:29 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-07-04 15:50 - 2019-03-24 10:09 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2019-07-04 15:50 - 2019-03-24 10:09 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2019-07-04 15:48 - 2019-03-24 10:00 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-07-04 09:30 - 2019-02-04 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2019-07-03 08:01 - 2019-05-15 13:26 - 000000000 ____D C:\Users\mulap\AppData\Roaming\uTorrent
2019-06-18 10:59 - 2019-03-27 12:23 - 002785776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2019-06-18 10:59 - 2019-03-27 12:23 - 002164080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2019-06-18 10:59 - 2019-03-27 12:23 - 001316664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2019-06-18 10:56 - 2019-03-27 12:21 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2019-06-16 07:35 - 2019-03-24 12:08 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1281642634-151338527-2747475875-1001
2019-06-16 07:35 - 2019-03-24 10:23 - 000002361 _____ C:\Users\mulap\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-06-16 07:35 - 2019-01-04 12:57 - 000000000 ___RD C:\Users\mulap\OneDrive
2019-06-13 19:14 - 2019-03-24 10:19 - 000259032 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-06-13 19:14 - 2019-01-04 12:54 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-06-13 19:14 - 2019-01-04 12:54 - 000000000 ___RD C:\Users\mulap\3D Objects
2019-06-13 19:13 - 2019-03-24 10:09 - 000000000 ___RD C:\Program Files\Windows Defender
2019-06-13 19:13 - 2019-03-24 10:09 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-06-13 19:13 - 2019-03-24 10:09 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-06-13 08:01 - 2019-01-04 12:39 - 000408512 __RSH C:\bootmgr
2019-06-13 05:37 - 2019-03-27 12:22 - 000179184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2019-06-13 05:37 - 2019-03-27 12:22 - 000154608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2019-06-12 09:52 - 2019-03-24 12:41 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-06-12 09:50 - 2019-03-24 12:40 - 135349160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================





Additional scan result of Farbar Recovery Scan Tool (x64) Version: 3-07-2019
Ran by mulap (09-07-2019 17:24:47)
Running from C:\Users\mulap\OneDrive\Desktop
Windows 10 Home Version 1809 17763.557 (X64) (2019-03-24 08:31:24)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1281642634-151338527-2747475875-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1281642634-151338527-2747475875-503 - Limited - Disabled)
Guest (S-1-5-21-1281642634-151338527-2747475875-501 - Limited - Disabled)
mulap (S-1-5-21-1281642634-151338527-2747475875-1001 - Administrator - Enabled) => C:\Users\mulap
WDAGUtilityAccount (S-1-5-21-1281642634-151338527-2747475875-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Aktualizace NVIDIA 37.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 37.0.0.0 - NVIDIA Corporation) Hidden
ASRock OC Tuner v2.4.93 (HKLM-x32\...\ASRock OC Tuner_is1) (Version: - )
ASUS GPU TweakII (HKLM-x32\...\{2914BAB6-CA16-4B5A-BF41-2466656C7040}) (Version: 1.9.6.1 - ASUSTek COMPUTER INC.) Hidden
ASUS GPU TweakII (HKLM-x32\...\InstallShield_{2914BAB6-CA16-4B5A-BF41-2466656C7040}) (Version: 1.9.6.1 - ASUSTek COMPUTER INC.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Call of Duty Black Ops 4 (HKLM-x32\...\Call of Duty Black Ops 4) (Version: - Blizzard Entertainment)
Call of Duty: WWII (HKLM\...\Y2FsbG9mZHV0eXd3aWk_is1) (Version: 1 - )
CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
Discord (HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Driver Booster (HKLM-x32\...\{C452D509-1644-40F0-8C6D-C362ACCB334E}) (Version: 4.2.0.478 - IObit)
HWiNFO64 Version 6.08 (HKLM\...\HWiNFO64_is1) (Version: 6.08 - Martin Malik - REALiX)
Microsoft OneDrive (HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\OneDriveSetup.exe) (Version: 19.086.0502.0006 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325 (HKLM-x32\...\{404c9c27-8377-4fd1-b607-7ca635db4e49}) (Version: 14.11.25325.0 - Microsoft Corporation)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.19.0.107 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.19.0.107 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 430.86 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Ovládací panel NVIDIA 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 430.86 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.3.0 - TeamSpeak Systems GmbH)
ToneMaker 1 (HKLM-x32\...\BloodyToneMaker) (Version: 17.10.0006 - Bloody)
Uplay (HKLM-x32\...\Uplay) (Version: 85.1 - Ubisoft)

Packages:
=========
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_2.4.521.0_x64__rz1tebttyb220 [2019-03-24] (Dolby Laboratories)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-24] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-24] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.11723.0_x64__8wekyb3d8bbwe [2019-06-27] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.6132.0_x64__8wekyb3d8bbwe [2019-06-18] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.10351.0_x64__8wekyb3d8bbwe [2019-03-24] (Microsoft Corporation) [MS Ad]
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_2.2.9.0_x64__nfy108tqq3p12 [2019-03-24] (Thumbmunkeys Ltd) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20174.0_x64__8wekyb3d8bbwe [2019-05-30] (Microsoft Corporation) [MS Ad]
Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.84.2266.2_x64__8wekyb3d8bbwe [2019-07-05] (ms-resource:PublisherDisplayName)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============


==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\mulap\OneDrive\Documents\Diablo III:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.Metadata [194]
AlternateDataStreams: C:\Users\mulap\OneDrive\Documents\My Games:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.Metadata [194]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2019-03-24 10:09 - 2019-03-24 10:06 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1281642634-151338527-2747475875-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\mulap\OneDrive\Desktop\20190605_175208.jfif
DNS Servers: 185.4.65.4 - 116.203.6.218
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "Discord"
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\StartupApproved\Run: => "BloodyToneMaker"
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{4AB26C77-1F95-49DA-A881-FBDE566ECE7D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8C148B36-BB3C-4A64-90A6-7E3565D74FD4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{7512AFCF-34D4-4DB0-9C2E-8DFB4A9FDB3D}D:\games\call of duty black ops 4\blackops4.exe] => (Allow) D:\games\call of duty black ops 4\blackops4.exe (Activision Publishing Inc -> Activision Publishing, Inc.)
FirewallRules: [UDP Query User{C95094E8-8247-46DE-B1D9-6F2B9B01601A}D:\games\call of duty black ops 4\blackops4.exe] => (Allow) D:\games\call of duty black ops 4\blackops4.exe (Activision Publishing Inc -> Activision Publishing, Inc.)
FirewallRules: [TCP Query User{E40E7C1C-513F-4B87-BB41-440A5608091F}C:\users\mulap\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\mulap\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{56DA6474-4FAB-4D30-B01D-068C8B109F5E}C:\users\mulap\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\mulap\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{0216E93F-F6AA-46B4-894B-74B5678900A8}D:\games\diablo iii\x64\diablo iii64.exe] => (Allow) D:\games\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{7A8B1ADE-40D7-4020-9CAE-C186B92BCD96}D:\games\diablo iii\x64\diablo iii64.exe] => (Allow) D:\games\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{FE350BA9-7492-4062-AF75-48CB47BA43D2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{04928329-2F34-49EA-8CBB-85FAAA19016C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7ABF4D50-ED6A-4C23-9B28-A5A2E67B1C50}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{27CF84D0-B349-4461-8915-E0AA6AE6D10E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{880C52A0-8C89-43D6-82EB-39615942FB26}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DriverBooster.exe No File
FirewallRules: [{ED9D6894-81DB-4B05-9DE1-F4AB6920C32B}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DriverBooster.exe No File
FirewallRules: [{1072A101-95EF-441D-9D30-F148AAAF710C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DBDownloader.exe No File
FirewallRules: [{BFE1B9F6-F6B4-4FD7-9A8A-1AD6934547C7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DBDownloader.exe No File
FirewallRules: [{50D356C9-26AD-431D-9CEA-81C3A3F550DA}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\AutoUpdate.exe No File
FirewallRules: [{43132509-9BD6-4989-8E16-DB5D029DB85D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\AutoUpdate.exe No File
FirewallRules: [{BBB22AB8-3ADD-4B4F-BF9D-451CA0DF5425}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{877E85B6-9611-46AA-BB7B-BFEA2611FF04}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8E937F23-4AF1-4793-913A-92783B7FF5C4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C349C802-6651-4DC6-BC91-4DACCE663385}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)

==================== Restore Points =========================

05-07-2019 10:11:18 Driver Booster : Microsoft Visual C++ 2008 Redistributable (x64)

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/08/2019 11:34:15 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program SecHealthUI.exe verze 10.0.17763.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: c4c

Čas spuštění: 01d5357047d1e217

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe

ID hlášení: 0ac20563-3207-4d6a-8ac8-9c9b65e28358

Úplný název balíčku s chybou: Microsoft.Windows.SecHealthUI_10.0.17763.1_neutral__cw5n1h2txyewy

ID aplikace relativní podle balíčku s chybou: SecHealthUI

Typ zablokování: Quiesce

Error: (07/08/2019 11:19:44 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program MicrosoftEdgeCP.exe verze 11.0.17763.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.

ID procesu: 2aa8

Čas spuštění: 01d5356e12973cda

Čas ukončení: 15

Cesta k aplikaci: C:\Windows\System32\MicrosoftEdgeCP.exe

ID hlášení: 60cb1fb8-9daf-4e9e-b1ec-8c2ec33598a9

Úplný název balíčku s chybou: Microsoft.MicrosoftEdge_44.17763.1.0_neutral__8wekyb3d8bbwe

ID aplikace relativní podle balíčku s chybou: MicrosoftEdge

Typ zablokování: Unknown

Error: (07/07/2019 04:45:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GameBar.exe, verze: 3.30.1906.20002, časové razítko: 0x5d0bb27e
Název chybujícího modulu: MSVCP140_APP.dll, verze: 14.20.27323.0, časové razítko: 0x5c47f762
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000004d22f
ID chybujícího procesu: 0xd60
Čas spuštění chybující aplikace: 0x01d534d2a9a03ebc
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.30.20002.0_x64__8wekyb3d8bbwe\GameBar.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.vclibs.140.00_14.0.27323.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll
ID zprávy: 0ed8b860-62d6-4423-8b3b-694a746654aa
Úplný název chybujícího balíčku: Microsoft.XboxGamingOverlay_3.30.20002.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App

Error: (07/07/2019 04:45:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GameBar.exe, verze: 3.30.1906.20002, časové razítko: 0x5d0bb27e
Název chybujícího modulu: MSVCP140_APP.dll, verze: 14.20.27323.0, časové razítko: 0x5c47f762
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000004d22f
ID chybujícího procesu: 0x9c0
Čas spuštění chybující aplikace: 0x01d534d1fa75dbca
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.30.20002.0_x64__8wekyb3d8bbwe\GameBar.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.vclibs.140.00_14.0.27323.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll
ID zprávy: b6d7bf08-ca54-4542-9932-363865cdc44a
Úplný název chybujícího balíčku: Microsoft.XboxGamingOverlay_3.30.20002.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App

Error: (07/07/2019 12:35:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GameBar.exe, verze: 3.30.1906.20002, časové razítko: 0x5d0bb27e
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.17763.404, časové razítko: 0x490b0aeb
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000006e91e
ID chybujícího procesu: 0x2228
Čas spuštění chybující aplikace: 0x01d534afa1a90ccc
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.30.20002.0_x64__8wekyb3d8bbwe\GameBar.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\ucrtbase.dll
ID zprávy: b99edf54-df75-45f3-bec1-68880f0a46e6
Úplný název chybujícího balíčku: Microsoft.XboxGamingOverlay_3.30.20002.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App

Error: (07/07/2019 12:34:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GameBar.exe, verze: 3.30.1906.20002, časové razítko: 0x5d0bb27e
Název chybujícího modulu: MSVCP140_APP.dll, verze: 14.20.27323.0, časové razítko: 0x5c47f762
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000004d22f
ID chybujícího procesu: 0x2278
Čas spuštění chybující aplikace: 0x01d534af989b38cf
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.30.20002.0_x64__8wekyb3d8bbwe\GameBar.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.vclibs.140.00_14.0.27323.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll
ID zprávy: 653b6ad4-0a49-4134-9f4d-5805300bfcd6
Úplný název chybujícího balíčku: Microsoft.XboxGamingOverlay_3.30.20002.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App

Error: (07/07/2019 09:11:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GameBar.exe, verze: 3.30.1906.20002, časové razítko: 0x5d0bb27e
Název chybujícího modulu: MSVCP140_APP.dll, verze: 14.20.27323.0, časové razítko: 0x5c47f762
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000004d22f
ID chybujícího procesu: 0x1154
Čas spuštění chybující aplikace: 0x01d53493277ca11b
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.30.20002.0_x64__8wekyb3d8bbwe\GameBar.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.vclibs.140.00_14.0.27323.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll
ID zprávy: 8fb5e283-c7bc-461b-b0ec-cefb5f8959ef
Úplný název chybujícího balíčku: Microsoft.XboxGamingOverlay_3.30.20002.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App

Error: (07/07/2019 09:10:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GameBar.exe, verze: 3.30.1906.20002, časové razítko: 0x5d0bb27e
Název chybujícího modulu: MSVCP140_APP.dll, verze: 14.20.27323.0, časové razítko: 0x5c47f762
Kód výjimky: 0xc000027b
Posun chyby: 0x000000000004d22f
ID chybujícího procesu: 0xd50
Čas spuštění chybující aplikace: 0x01d534931950492d
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.30.20002.0_x64__8wekyb3d8bbwe\GameBar.exe
Cesta k chybujícímu modulu: C:\Program Files\WindowsApps\microsoft.vclibs.140.00_14.0.27323.0_x64__8wekyb3d8bbwe\MSVCP140_APP.dll
ID zprávy: 6e6bad75-96c2-4d3e-8819-e5e9888efaf2
Úplný název chybujícího balíčku: Microsoft.XboxGamingOverlay_3.30.20002.0_x64__8wekyb3d8bbwe
ID aplikace související s chybujícím balíčkem: App


System errors:
=============
Error: (07/09/2019 01:46:44 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscDataProtection
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (07/09/2019 01:27:26 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscDataProtection
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (07/09/2019 01:24:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (07/09/2019 01:24:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Telemetry Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.

Error: (07/09/2019 01:24:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ICEsound Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/09/2019 01:24:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ASUS Com Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/09/2019 01:24:33 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.

Error: (07/09/2019 12:31:45 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscDataProtection
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2019-07-04 16:30:08.387
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: BrowserModifier:Win32/Raxtecon
ID: 228516
Závažnost: Vysoké
Kategorie: Program měnící nastavení prohlížeče
Cesta: clsid:_HKLM\SOFTWARE\CLASSES\CLSID\{35F4BB37-03C5-41DE-85AF-7C301390C7EC}; containerfile:_C:\Program Files\My Web Shield\My Web Shield.zip; file:_C:\Program Files\My Web Shield\cert\SSL\cert.db; file:_C:\Program Files\My Web Shield\cert\SSL\My Web Shield 2.cer; file:_C:\Program Files\My Web Shield\libeay32.dll; file:_C:\Program Files\My Web Shield\mwescontroller.sys; file:_C:\Program Files\My Web Shield\mweshield.exe; file:_C:\Program Files\My Web Shield\mweshieldup.exe; file:_C:\Program Files\My Web Shield\mwesmanager.exe; file:_C:\Program Files\My Web Shield\mwessweeper.exe; file:_C:\Program Files\My Web Shield\mwesuninstall.exe; file:_C:\Program Files\My Web Shield\My Web Shield.zip; file:_C:\Program Files\My Web Shield\My Web Shield.zip->libeay32.dll; file:_C:\Program Files\My Web Shield\My Web Shield.zip->ssleay32.dll; file:_C:\Program Files\My Web Shield\ssleay32.dll; file:_C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Manager.lnk; folder:_C:\Program Files\My Web Shield\; folder:_C:\Program File
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Uživatel
Uživatel: DESKTOP-7LFPRUN\mulap
Název procesu: C:\Program Files\My Web Shield\mweshieldup.exe
Verze podpisu: AV: 1.297.421.0, AS: 1.297.421.0, NIS: 1.297.421.0
Verze modulu: AM: 1.1.16100.4, NIS: 1.1.16100.4

Date: 2019-07-04 16:30:08.384
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Conteban.B!ml
ID: 2147735507
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\mulap\AppData\Local\Microsoft\Windows\INetCache\IE\OU5464WJ\margin12[1].exe
Původ zjišťování: Internet
Typ zjišťování: FastPath
Zdroj zjišťování: Uživatel
Uživatel: DESKTOP-7LFPRUN\mulap
Název procesu: Unknown
Verze podpisu: AV: 1.297.421.0, AS: 1.297.421.0, NIS: 1.297.421.0
Verze modulu: AM: 1.1.16100.4, NIS: 1.1.16100.4

Date: 2019-07-04 15:55:00.781
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Program:Win32/Beareuws.A!ml
ID: 256596
Závažnost: Střední
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\mulap\AppData\Local\Temp\H3l0URgjo0qMLfFk\582f125218fe66cd61cf121550ce0bb0.exe
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Systém
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: Unknown
Verze podpisu: AV: 1.297.421.0, AS: 1.297.421.0, NIS: 1.297.421.0
Verze modulu: AM: 1.1.16100.4, NIS: 1.1.16100.4

Date: 2019-07-04 15:52:05.246
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Program:Win32/Beareuws.A!ml
ID: 256596
Závažnost: Střední
Kategorie: Potenciálně nežádoucí software
Cesta: file:_C:\Users\mulap\AppData\Local\Temp\H3l0URgjo0qMLfFk\582f125218fe66cd61cf121550ce0bb0.exe
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: NT AUTHORITY\SYSTEM
Název procesu: C:\Windows\System32\svchost.exe
Verze podpisu: AV: 1.297.421.0, AS: 1.297.421.0, NIS: 1.297.421.0
Verze modulu: AM: 1.1.16100.4, NIS: 1.1.16100.4

Date: 2019-07-04 15:51:42.328
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Conteban.B!ml
ID: 2147735507
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\mulap\AppData\Local\Temp\MSOXNTGJ63Y7FONv\DiskProtect16688\cdplayerassistv2.exe; file:_C:\Users\mulap\AppData\Local\Temp\MSOXNTGJ63Y7FONv\DiskProtect16688\DiskScan.exe
Původ zjišťování: Místní počítač
Typ zjišťování: FastPath
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: DESKTOP-7LFPRUN\mulap
Název procesu: C:\Program Files\My Web Shield\mweshield.exe
Verze podpisu: AV: 1.297.421.0, AS: 1.297.421.0, NIS: 1.297.421.0
Verze modulu: AM: 1.1.16100.4, NIS: 1.1.16100.4

Date: 2019-07-09 13:54:54.019
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.297.639.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16100.4
Kód chyby: 0x8024402c
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2019-07-09 13:35:43.435
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.297.639.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16100.4
Kód chyby: 0x8024402c
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2019-07-09 12:40:09.063
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.297.639.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16100.4
Kód chyby: 0x8024402c
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2019-07-09 10:07:25.073
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.297.639.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16100.4
Kód chyby: 0x8024402c
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2019-07-09 17:24:02.321
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

Date: 2019-07-09 17:24:02.276
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

Date: 2019-07-09 17:24:01.800
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

Date: 2019-07-09 17:24:01.762
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

Date: 2019-07-09 17:24:01.688
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

Date: 2019-07-09 17:24:01.650
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

Date: 2019-07-09 17:24:01.574
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

Date: 2019-07-09 17:24:01.536
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. P1.10 10/02/2014
Motherboard: ASRock N68-GS4/USB3 FX
Processor: AMD FX(tm)-4300 Quad-Core Processor
Percentage of memory in use: 23%
Total physical RAM: 12271.24 MB
Available physical RAM: 9411.73 MB
Total Virtual: 14127.24 MB
Available Virtual: 9806.72 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:110.98 GB) (Free:62.87 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Nový svazek) (Fixed) (Total:931.51 GB) (Free:73.48 GB) NTFS

\\?\Volume{bfedc930-0000-0000-0000-90be1b000000}\ () (Fixed) (Total:0.81 GB) (Free:0.34 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: BFEDC930)
Partition 1: (Active) - (Size=111 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=830 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: F2DB4753)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Malwarebytes AdwCleaner

#4 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\Run: [ASRockOCTuner] => [X]
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\MountPoints2: {a8eaa423-3f5a-11e9-9217-d05099916c94} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
SearchScopes: HKU\S-1-5-21-1281642634-151338527-2747475875-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL =
C:\Users\mulap\AppData\Local\Mail.Ru
AlternateDataStreams: C:\Users\mulap\OneDrive\Documents\Diablo III:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.Metadata [194]
AlternateDataStreams: C:\Users\mulap\OneDrive\Documents\My Games:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.Metadata [194]
FirewallRules: [{880C52A0-8C89-43D6-82EB-39615942FB26}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DriverBooster.exe No File
FirewallRules: [{ED9D6894-81DB-4B05-9DE1-F4AB6920C32B}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DriverBooster.exe No File
FirewallRules: [{1072A101-95EF-441D-9D30-F148AAAF710C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DBDownloader.exe No File
FirewallRules: [{BFE1B9F6-F6B4-4FD7-9A8A-1AD6934547C7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DBDownloader.exe No File
FirewallRules: [{50D356C9-26AD-431D-9CEA-81C3A3F550DA}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\AutoUpdate.exe No File
FirewallRules: [{43132509-9BD6-4989-8E16-DB5D029DB85D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\AutoUpdate.exe No File
C:\Users\mulap\AppData\Local\Microsoft\Windows\INetCache\IE\OU5464WJ\margin12[1].exe
C:\Users\mulap\AppData\Local\Temp

EmptyTemp:
End
Uložte do C:\Users\mulap\OneDrive\Desktop jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

mulapa
Návštěvník
Návštěvník
Příspěvky: 25
Registrován: 13 bře 2019 18:54

Re: Malwarebytes AdwCleaner

#5 Příspěvek od mulapa »

Bohužel po skončení akce se mě žádný log neobjevil a na místo toho se pc restartoval. Krom toho se smaže historie prohlížeče, ale reakce na otevření nebo označení jakékoliv stránky na internetu je pořád mizerná. Přesněji když najedu šipkou myši na stránku kterou chci v prohlížeči otevřít tak mě to povolí asi až po čtyřech vteřinách.
Naposledy upravil(a) mulapa dne 09 črc 2019 17:48, celkem upraveno 1 x.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Malwarebytes AdwCleaner

#6 Příspěvek od Rudy »

V pořádku, že se restartoval. Log bude v souboru C:\Users\mulap\OneDrive\Desktop\fixlog.txt.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

mulapa
Návštěvník
Návštěvník
Příspěvky: 25
Registrován: 13 bře 2019 18:54

Re: Malwarebytes AdwCleaner

#7 Příspěvek od mulapa »

Fix result of Farbar Recovery Scan Tool (x64) Version: 3-07-2019
Ran by mulap (09-07-2019 18:37:16) Run:3
Running from C:\Users\mulap\OneDrive\Desktop
Loaded Profiles: mulap (Available Profiles: mulap)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\Run: [ASRockOCTuner] => [X]
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\...\MountPoints2: {a8eaa423-3f5a-11e9-9217-d05099916c94} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
SearchScopes: HKU\S-1-5-21-1281642634-151338527-2747475875-1001 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL =
C:\Users\mulap\AppData\Local\Mail.Ru
AlternateDataStreams: C:\Users\mulap\OneDrive\Documents\Diablo III:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.Metadata [194]
AlternateDataStreams: C:\Users\mulap\OneDrive\Documents\My Games:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.Metadata [194]
FirewallRules: [{880C52A0-8C89-43D6-82EB-39615942FB26}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DriverBooster.exe No File
FirewallRules: [{ED9D6894-81DB-4B05-9DE1-F4AB6920C32B}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DriverBooster.exe No File
FirewallRules: [{1072A101-95EF-441D-9D30-F148AAAF710C}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DBDownloader.exe No File
FirewallRules: [{BFE1B9F6-F6B4-4FD7-9A8A-1AD6934547C7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DBDownloader.exe No File
FirewallRules: [{50D356C9-26AD-431D-9CEA-81C3A3F550DA}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\AutoUpdate.exe No File
FirewallRules: [{43132509-9BD6-4989-8E16-DB5D029DB85D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\6.5.0\AutoUpdate.exe No File
C:\Users\mulap\AppData\Local\Microsoft\Windows\INetCache\IE\OU5464WJ\margin12[1].exe
C:\Users\mulap\AppData\Local\Temp

EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-1281642634-151338527-2747475875-1001\Software\Microsoft\Windows\CurrentVersion\Run\\ASRockOCTuner" => not found
HKU\S-1-5-21-1281642634-151338527-2747475875-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a8eaa423-3f5a-11e9-9217-d05099916c94} => not found
HKLM\Software\Classes\CLSID\{a8eaa423-3f5a-11e9-9217-d05099916c94} => not found
"C:\WINDOWS\system32\GroupPolicy\Machine" => not found
"C:\WINDOWS\system32\GroupPolicy\User" => not found
"HKU\S-1-5-21-1281642634-151338527-2747475875-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => not found
"C:\Users\mulap\AppData\Local\Mail.Ru" => not found
"C:\Users\mulap\OneDrive\Documents\Diablo III" => ":${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.Metadata" ADS not found.
"C:\Users\mulap\OneDrive\Documents\My Games" => ":${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.Metadata" ADS not found.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{880C52A0-8C89-43D6-82EB-39615942FB26}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ED9D6894-81DB-4B05-9DE1-F4AB6920C32B}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1072A101-95EF-441D-9D30-F148AAAF710C}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BFE1B9F6-F6B4-4FD7-9A8A-1AD6934547C7}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{50D356C9-26AD-431D-9CEA-81C3A3F550DA}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{43132509-9BD6-4989-8E16-DB5D029DB85D}" => not found
"C:\Users\mulap\AppData\Local\Microsoft\Windows\INetCache\IE\OU5464WJ\margin12[1].exe" => not found
"C:\Users\mulap\AppData\Local\Temp" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 8937472 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8586867 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 0 B
Edge => 101192493 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
mulap => 38711 B

RecycleBin => 760 B
EmptyTemp: => 113.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:38:08 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Malwarebytes AdwCleaner

#8 Příspěvek od Rudy »

OK. Mělo by být již čisto.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

mulapa
Návštěvník
Návštěvník
Příspěvky: 25
Registrován: 13 bře 2019 18:54

Re: Malwarebytes AdwCleaner

#9 Příspěvek od mulapa »

Ok děkuji. Každopádně posílám kilčo a jenom informativně co tam bylo prosím za problém k možnému budoucímu vyvarování se.

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Malwarebytes AdwCleaner

#10 Příspěvek od Rudy »

Jen zbytečnosti. Za příspěvek děkujeme a vy nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět