Dobrý den,prosím o pomoc s počítačem. Včera jsem měl puštěný počítač asi 90 minut a po celou dobu běžel pevný disk na 100%. Dnes asi půl hodiny na maximum a potom zatížení kleslo na minimum. Nejvíce zatěžoval disk program Check Point Endpoint Forensic. Zkoušel jsem zaslat log z FRST,ale log se na konci nevytvořil ani po opakovaném skenu. Proto posílám log z RSIT. Předem dík za kontrolu.
Logfile of random's system information tool 1.10 (written by random/random)
Run by 72pav at 2021-03-13 14:21:18
Microsoft Windows 10 Home
System drive C: has 28 GB (33%) free of 85 GB
Total RAM: 3072 MB (40% free)
======Scheduled tasks folder======
C:\WINDOWS\tasks\SUPERAntiSpyware Scheduled Task 99b5634c-c380-4d49-bae8-090ee5c46ba3.job - C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:99b5634c-c380-4d49-bae8-090ee5c46ba3
C:\WINDOWS\tasks\SUPERAntiSpyware Scheduled Task d18cda89-6355-43ae-9192-0d34bed54668.job - C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:d18cda89-6355-43ae-9192-0d34bed54668
C:\WINDOWS\tasks\X-Rite Device Services Software Updater.job - C:\Program Files\X-Rite\Devices\Services\XRD Software Update.exe
C:\WINDOWS\tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}.job - C:\Users\72pav\AppData\Local\Temp\is-ELM4U.tmp\XRD Manager.exe /exenoupdates /exelang 1029 /noprereqs /qr TRANSFORMS=":1029" TARGETDIR="E:\" APPDIR="C:\Program Files\X-Rite\Devices\" AI_RESUME=1 ADDLOCAL=MainFeature,XRDdrivers32 ADDLOCAL="MainFeature,XRDdrivers32" ACTION="INSTALL" EXECUTEACTION="INSTALL" ROOTDRIVE="E:\" TRANSFORMS=":1029" AI_PREREQFILES="C:\Users\72pav\AppData\Local\Temp\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}\drivers32.msi" AI_PREREQDIRS="C:\Users\72pav\AppData\Local\Temp" AI_SETUPEXEPATH="C:\Users\72pav\AppData\Local\Temp\is-ELM4U.tmp\XRD Manager.exe" SETUPEXEDIR="C:\Users\72pav\AppData\Local\Temp\is-ELM4U.tmp\" TARGETDIR="E:\" APPDIR="C:\Program Files\X-Rite\Devices\"
=========Mozilla firefox=========
ProfilePath - C:\Users\72pav\AppData\Roaming\Mozilla\Firefox\Profiles\lxw2l5mn.default
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.281.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.281.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files\Microsoft\Edge\Application\89.0.774.50\BHO\ie_to_edge_bho.dll [2021-03-10 409992]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_281\bin\ssv.dll [2021-01-22 616616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-01-22 280232]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 74752]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2015-10-04 14476032]
"Ulead Memory Card Detector"=C:\Program Files\Ulead Systems\Ulead Photo Explorer 7.0\Monitor.exe [2002-09-10 28672]
"Nikon Message Center 2"=C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe [2019-11-18 612304]
"ZoneAlarm"=C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [2018-05-18 146800]
"ZaAntiRansomware"=C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAAR.exe [2019-11-27 4230368]
"AdobeGCInvoker-1.0"=C:\Program Files\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2021-02-17 3412680]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2021-02-28 104160]
"NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2016-11-14 2397120]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap.dll [2016-11-14 1377752]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2020-12-09 706680]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
i1Profiler Tray.lnk - C:\Program Files\X-Rite\i1Profiler\i1ProfilerTray.exe
XRGamma.lnk - C:\Program Files\X-Rite\i1Profiler\XRGamma.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aswSP.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"aux1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv
======File associations======
.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2021-03-13 14:21:19 ----D---- C:\Program Files\trend micro
2021-03-13 14:21:18 ----D---- C:\rsit
2021-03-13 01:28:33 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2021-03-12 23:24:26 ----A---- C:\WINDOWS\system32\bdesvc.dll
2021-03-12 23:24:24 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2021-03-12 23:24:24 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2021-03-12 23:24:24 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2021-03-12 23:22:58 ----A---- C:\WINDOWS\system32\WalletService.dll
2021-03-12 23:22:57 ----A---- C:\WINDOWS\system32\cdp.dll
2021-03-12 23:19:12 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2021-03-12 23:19:10 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2021-03-12 23:19:09 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2021-03-12 23:19:08 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2021-03-12 23:19:08 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2021-03-12 23:19:08 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2021-03-12 23:19:07 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2021-03-12 23:19:02 ----A---- C:\WINDOWS\system32\mfcore.dll
2021-03-12 23:19:02 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2021-03-12 23:18:44 ----A---- C:\WINDOWS\system32\provplatformdesktop.dll
2021-03-12 23:18:43 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2021-03-12 23:18:43 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2021-03-12 23:18:42 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2021-03-12 23:18:42 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2021-03-12 23:18:41 ----A---- C:\WINDOWS\system32\SIHClient.exe
2021-03-12 23:18:40 ----A---- C:\WINDOWS\system32\tsgqec.dll
2021-03-12 23:18:38 ----A---- C:\WINDOWS\system32\mstscax.dll
2021-03-12 23:18:35 ----A---- C:\WINDOWS\system32\wsp_health.dll
2021-03-12 23:18:35 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2021-03-12 23:18:34 ----A---- C:\WINDOWS\system32\reseteng.dll
2021-03-12 23:18:32 ----A---- C:\WINDOWS\system32\glu32.dll
2021-03-12 23:18:31 ----A---- C:\WINDOWS\system32\opengl32.dll
2021-03-12 23:18:30 ----A---- C:\WINDOWS\system32\msimsg.dll
2021-03-12 23:18:29 ----A---- C:\WINDOWS\system32\msi.dll
2021-03-12 23:18:25 ----A---- C:\WINDOWS\system32\dbnetlib.dll
2021-03-12 23:18:23 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2021-03-12 23:18:23 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2021-03-12 23:18:20 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2021-03-12 23:18:20 ----A---- C:\WINDOWS\system32\ieframe.dll
2021-03-12 23:18:19 ----A---- C:\WINDOWS\system32\jscript9.dll
2021-03-12 23:18:18 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2021-03-12 23:18:18 ----A---- C:\WINDOWS\system32\ieproxy.dll
2021-03-12 23:18:15 ----A---- C:\WINDOWS\system32\mshtml.dll
2021-03-12 23:18:14 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2021-03-12 23:18:13 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2021-03-12 23:18:09 ----A---- C:\WINDOWS\system32\edgehtml.dll
2021-03-12 23:18:08 ----A---- C:\WINDOWS\system32\jscript.dll
2021-03-12 23:17:58 ----A---- C:\WINDOWS\system32\XInput1_4.dll
2021-03-12 23:17:58 ----A---- C:\WINDOWS\system32\werui.dll
2021-03-12 23:17:55 ----A---- C:\WINDOWS\system32\smphost.dll
2021-03-12 23:17:55 ----A---- C:\WINDOWS\system32\mispace.dll
2021-03-12 23:17:53 ----A---- C:\WINDOWS\system32\spaceman.exe
2021-03-12 23:17:53 ----A---- C:\WINDOWS\system32\spacebridge.dll
2021-03-12 23:17:52 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2021-03-12 23:17:50 ----A---- C:\WINDOWS\system32\net1.exe
2021-03-12 23:17:49 ----A---- C:\WINDOWS\system32\upnpcont.exe
2021-03-12 23:17:49 ----A---- C:\WINDOWS\system32\udhisapi.dll
2021-03-12 23:17:48 ----A---- C:\WINDOWS\system32\upnphost.dll
2021-03-12 23:17:48 ----A---- C:\WINDOWS\system32\PayloadRestrictions.dll
2021-03-12 23:17:45 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2021-03-12 23:17:44 ----A---- C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2021-03-12 23:17:43 ----A---- C:\WINDOWS\system32\comdlg32.dll
2021-03-12 23:17:43 ----A---- C:\WINDOWS\system32\comctl32.dll
2021-03-12 23:17:42 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2021-03-12 23:17:40 ----A---- C:\WINDOWS\system32\sppwinob.dll
2021-03-12 23:17:39 ----A---- C:\WINDOWS\system32\WinSCard.dll
2021-03-12 23:17:39 ----A---- C:\WINDOWS\system32\sppcext.dll
2021-03-12 23:17:38 ----A---- C:\WINDOWS\system32\drivers\scfilter.sys
2021-03-12 23:17:37 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2021-03-12 23:17:37 ----A---- C:\WINDOWS\system32\SCardDlg.dll
2021-03-12 23:17:37 ----A---- C:\WINDOWS\system32\SCardBi.dll
2021-03-12 23:17:37 ----A---- C:\WINDOWS\system32\certprop.dll
2021-03-12 23:17:36 ----A---- C:\WINDOWS\system32\SCardSvr.dll
2021-03-12 23:17:31 ----A---- C:\WINDOWS\system32\shell32.dll
2021-03-12 23:17:30 ----A---- C:\WINDOWS\system32\ntshrui.dll
2021-03-12 23:17:29 ----A---- C:\WINDOWS\system32\rasdlg.dll
2021-03-12 23:17:28 ----A---- C:\WINDOWS\system32\rasmans.dll
2021-03-12 23:17:28 ----A---- C:\WINDOWS\system32\rasapi32.dll
2021-03-12 23:17:27 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2021-03-12 23:17:27 ----A---- C:\WINDOWS\system32\iprtprio.dll
2021-03-12 23:17:26 ----A---- C:\WINDOWS\system32\rtm.dll
2021-03-12 23:17:26 ----A---- C:\WINDOWS\system32\mprdim.dll
2021-03-12 23:17:25 ----A---- C:\WINDOWS\system32\rasplap.dll
2021-03-12 23:17:25 ----A---- C:\WINDOWS\system32\drvsetup.dll
2021-03-12 23:17:25 ----A---- C:\WINDOWS\system32\drvinst.exe
2021-03-12 23:17:24 ----A---- C:\WINDOWS\system32\spfileq.dll
2021-03-12 23:17:24 ----A---- C:\WINDOWS\system32\drvstore.dll
2021-03-12 23:15:32 ----A---- C:\WINDOWS\system32\setupapi.dll
2021-03-12 23:15:32 ----A---- C:\WINDOWS\system32\newdev.dll
2021-03-12 23:15:31 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2021-03-12 23:15:31 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2021-03-12 23:15:30 ----A---- C:\WINDOWS\system32\SettingsHandlers_IME.dll
2021-03-12 23:15:29 ----A---- C:\WINDOWS\system32\rasgcw.dll
2021-03-12 23:15:28 ----A---- C:\WINDOWS\system32\pnidui.dll
2021-03-12 23:15:24 ----A---- C:\WINDOWS\system32\vdsbas.dll
2021-03-12 23:15:23 ----A---- C:\WINDOWS\system32\wudriver.dll
2021-03-12 23:15:23 ----A---- C:\WINDOWS\system32\windowsudk.shellcommon.dll
2021-03-12 23:15:22 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2021-03-12 23:15:21 ----A---- C:\WINDOWS\system32\twinui.dll
2021-03-12 23:15:21 ----A---- C:\WINDOWS\system32\twinapi.dll
2021-03-12 23:15:21 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2021-03-12 23:15:20 ----A---- C:\WINDOWS\system32\msxml3r.dll
2021-03-12 23:15:20 ----A---- C:\WINDOWS\system32\msxml3.dll
2021-03-12 23:15:20 ----A---- C:\WINDOWS\system32\input.dll
2021-03-12 23:15:20 ----A---- C:\WINDOWS\system32\AxInstUI.exe
2021-03-12 23:15:19 ----A---- C:\WINDOWS\system32\AxInstSv.dll
2021-03-12 23:15:18 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2021-03-12 23:15:17 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2021-03-12 23:15:17 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2021-03-12 23:15:16 ----A---- C:\WINDOWS\system32\LockHostingFramework.dll
2021-03-12 23:15:16 ----A---- C:\WINDOWS\system32\LockController.dll
2021-03-12 23:15:16 ----A---- C:\WINDOWS\system32\edgeIso.dll
2021-03-12 23:15:15 ----A---- C:\WINDOWS\system32\msIso.dll
2021-03-12 23:15:14 ----A---- C:\WINDOWS\system32\iertutil.dll
2021-03-12 23:15:13 ----A---- C:\WINDOWS\system32\urlmon.dll
2021-03-12 23:15:13 ----A---- C:\WINDOWS\system32\jsproxy.dll
2021-03-12 23:15:12 ----A---- C:\WINDOWS\system32\wininet.dll
2021-03-12 23:15:11 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2021-03-12 23:15:11 ----A---- C:\WINDOWS\system32\actxprxy.dll
2021-03-12 23:15:10 ----A---- C:\WINDOWS\system32\gpsvc.dll
2021-03-12 23:15:10 ----A---- C:\WINDOWS\system32\gpapi.dll
2021-03-12 23:15:09 ----A---- C:\WINDOWS\system32\profsvcext.dll
2021-03-12 23:15:09 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2021-03-12 23:15:08 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2021-03-12 23:15:08 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2021-03-12 23:15:08 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2021-03-12 23:15:07 ----A---- C:\WINDOWS\system32\omadmprc.exe
2021-03-12 23:15:07 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2021-03-12 23:15:06 ----A---- C:\WINDOWS\system32\omadmclient.exe
2021-03-12 23:15:05 ----A---- C:\WINDOWS\system32\omadmapi.dll
2021-03-12 23:15:05 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2021-03-12 23:15:04 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2021-03-12 23:15:03 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2021-03-12 23:15:03 ----A---- C:\WINDOWS\system32\dmpushproxy.dll
2021-03-12 23:15:02 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2021-03-12 23:15:00 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2021-03-12 23:15:00 ----A---- C:\WINDOWS\system32\credprovs.dll
2021-03-12 23:14:59 ----A---- C:\WINDOWS\system32\LogonController.dll
2021-03-12 23:14:58 ----A---- C:\WINDOWS\system32\wuuhext.dll
2021-03-12 23:14:57 ----A---- C:\WINDOWS\system32\winlogon.exe
2021-03-12 23:14:57 ----A---- C:\WINDOWS\system32\usermgr.dll
2021-03-12 23:14:56 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2021-03-12 23:14:55 ----A---- C:\WINDOWS\system32\msctf.dll
2021-03-12 23:14:54 ----A---- C:\WINDOWS\system32\wkssvc.dll
2021-03-12 23:14:54 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2021-03-12 23:14:52 ----A---- C:\WINDOWS\system32\profapi.dll
2021-03-12 23:14:52 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2021-03-12 23:14:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2021-03-12 23:14:49 ----A---- C:\WINDOWS\system32\ntdll.dll
2021-03-12 23:14:46 ----A---- C:\WINDOWS\system32\halmacpi.dll
2021-03-12 23:14:45 ----A---- C:\WINDOWS\system32\hal.dll
2021-03-12 23:14:43 ----A---- C:\WINDOWS\system32\WerEnc.dll
2021-03-12 23:14:42 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2021-03-12 23:14:42 ----A---- C:\WINDOWS\system32\WerFault.exe
2021-03-12 23:14:42 ----A---- C:\WINDOWS\system32\Faultrep.dll
2021-03-12 23:14:41 ----A---- C:\WINDOWS\system32\pacjsworker.exe
2021-03-12 23:14:41 ----A---- C:\WINDOWS\system32\dbghelp.dll
2021-03-12 23:14:40 ----A---- C:\WINDOWS\system32\winhttp.dll
2021-03-12 23:14:38 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2021-03-12 23:14:37 ----A---- C:\WINDOWS\system32\samsrv.dll
2021-03-12 23:14:37 ----A---- C:\WINDOWS\system32\samlib.dll
2021-03-12 23:14:37 ----A---- C:\WINDOWS\system32\offlinesam.dll
2021-03-12 23:14:36 ----A---- C:\WINDOWS\system32\WinTypes.dll
2021-03-12 23:14:36 ----A---- C:\WINDOWS\system32\wincorlib.dll
2021-03-12 23:14:36 ----A---- C:\WINDOWS\system32\crypt32.dll
2021-03-12 23:14:35 ----A---- C:\WINDOWS\system32\combase.dll
2021-03-12 23:14:34 ----A---- C:\WINDOWS\system32\dcomp.dll
2021-03-12 23:14:32 ----A---- C:\WINDOWS\system32\dwmcore.dll
2021-03-12 23:14:31 ----A---- C:\WINDOWS\system32\wimserv.exe
2021-03-12 23:14:31 ----A---- C:\WINDOWS\system32\wimgapi.dll
2021-03-12 23:14:28 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2021-03-12 23:14:24 ----A---- C:\WINDOWS\system32\winresume.exe
2021-03-12 23:14:23 ----A---- C:\WINDOWS\system32\winload.exe
2021-03-12 23:14:14 ----A---- C:\WINDOWS\system32\cldapi.dll
2021-03-12 23:14:12 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2021-03-12 23:14:09 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2021-03-12 23:14:09 ----A---- C:\WINDOWS\system32\acmigration.dll
2021-03-12 23:14:08 ----A---- C:\WINDOWS\system32\appraiser.dll
2021-03-12 23:14:05 ----A---- C:\WINDOWS\system32\LaunchTM.exe
2021-03-12 23:14:03 ----A---- C:\WINDOWS\system32\tier2punctuations.dll
2021-03-12 23:14:03 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2021-03-12 23:14:02 ----A---- C:\WINDOWS\system32\SRH.dll
2021-03-12 23:13:59 ----A---- C:\WINDOWS\system32\SettingsHandlers_Region.dll
2021-03-12 23:13:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_Language.dll
2021-03-12 23:09:52 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2021-03-12 23:09:50 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2021-03-12 23:09:46 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2021-03-12 23:09:41 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2021-03-12 23:09:40 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2021-03-12 23:09:39 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2021-03-12 23:09:38 ----A---- C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2021-03-12 23:09:35 ----A---- C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2021-03-12 23:09:34 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2021-03-12 23:09:33 ----A---- C:\WINDOWS\system32\AppResolver.dll
2021-03-12 23:09:31 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2021-03-12 23:09:31 ----A---- C:\WINDOWS\system32\wuauclt.exe
2021-03-12 23:09:30 ----A---- C:\WINDOWS\system32\wups2.dll
2021-03-12 23:09:30 ----A---- C:\WINDOWS\system32\wuaueng.dll
2021-03-12 23:09:29 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2021-03-12 23:09:28 ----A---- C:\WINDOWS\system32\wuapi.dll
2021-03-12 23:09:26 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2021-03-12 23:09:25 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2021-03-12 23:09:24 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2021-03-12 23:09:23 ----A---- C:\WINDOWS\system32\MusNotification.exe
2021-03-12 23:09:22 ----A---- C:\WINDOWS\system32\upshared.dll
2021-03-12 23:09:20 ----A---- C:\WINDOWS\system32\UsoClient.exe
2021-03-12 23:09:20 ----A---- C:\WINDOWS\system32\updatecsp.dll
2021-03-12 23:09:19 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2021-03-12 23:09:19 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2021-03-12 23:09:18 ----A---- C:\WINDOWS\system32\usosvc.dll
2021-03-12 23:09:17 ----A---- C:\WINDOWS\system32\usoapi.dll
2021-03-12 23:09:17 ----A---- C:\WINDOWS\system32\DuCsps.dll
2021-03-12 23:09:16 ----A---- C:\WINDOWS\system32\SettingsHandlers_Authentication.dll
2021-03-12 23:09:13 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2021-03-12 23:09:10 ----A---- C:\WINDOWS\system32\wevtutil.exe
2021-03-12 23:09:09 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2021-03-12 23:09:09 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2021-03-12 23:09:08 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2021-03-12 23:09:06 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2021-03-12 23:09:06 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2021-03-12 23:09:05 ----A---- C:\WINDOWS\system32\daxexec.dll
2021-03-12 23:09:05 ----A---- C:\WINDOWS\system32\aadjcsp.dll
2021-03-12 23:09:04 ----A---- C:\WINDOWS\system32\win32kfull.sys
2021-03-12 23:09:03 ----A---- C:\WINDOWS\system32\win32u.dll
2021-03-12 23:09:03 ----A---- C:\WINDOWS\system32\win32k.sys
2021-03-12 23:09:02 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2021-03-12 23:09:02 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2021-03-12 23:09:01 ----A---- C:\WINDOWS\system32\wpncore.dll
2021-03-12 23:09:00 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2021-03-12 23:09:00 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2021-03-12 23:08:59 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2021-03-12 23:08:59 ----A---- C:\WINDOWS\system32\BFE.DLL
2021-03-12 23:08:58 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.th.dll
2021-03-12 23:08:57 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2021-03-12 23:08:57 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2021-03-12 23:08:57 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2021-03-12 23:08:56 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2021-03-12 23:08:56 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2021-03-12 23:08:55 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2021-03-12 23:08:54 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2021-03-12 23:08:54 ----A---- C:\WINDOWS\system32\profext.dll
2021-03-12 23:08:53 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2021-03-12 23:08:52 ----A---- C:\WINDOWS\system32\windows.storage.dll
2021-03-12 23:08:52 ----A---- C:\WINDOWS\system32\storewuauth.dll
2021-03-12 23:08:51 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2021-03-12 23:08:51 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2021-03-12 23:08:50 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2021-03-12 23:08:50 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2021-03-12 23:08:50 ----A---- C:\WINDOWS\system32\InstallService.dll
2021-03-12 23:08:49 ----A---- C:\WINDOWS\system32\fidocredprov.dll
2021-03-12 23:08:48 ----A---- C:\WINDOWS\system32\ISM.dll
2021-03-12 23:08:47 ----A---- C:\WINDOWS\system32\tsf3gip.dll
2021-03-12 23:08:47 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2021-03-12 23:08:47 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2021-03-12 23:08:46 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2021-03-12 23:08:46 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2021-03-12 23:08:46 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2021-03-12 23:08:45 ----A---- C:\WINDOWS\system32\InputService.dll
2021-03-12 23:08:43 ----A---- C:\WINDOWS\system32\tquery.dll
2021-03-12 23:08:42 ----A---- C:\WINDOWS\system32\mssrch.dll
2021-03-12 23:08:42 ----A---- C:\WINDOWS\system32\mssprxy.dll
2021-03-12 23:08:40 ----A---- C:\WINDOWS\system32\mssvp.dll
2021-03-12 23:08:39 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2021-03-12 23:08:38 ----A---- C:\WINDOWS\system32\mssph.dll
2021-03-12 23:08:37 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2021-03-12 23:08:36 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2021-03-12 23:08:35 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2021-03-12 23:08:35 ----A---- C:\WINDOWS\system32\mssitlb.dll
2021-03-12 23:08:35 ----A---- C:\WINDOWS\system32\msscntrs.dll
2021-03-12 23:08:32 ----A---- C:\WINDOWS\system32\win32kbase.sys
2021-03-12 23:08:31 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2021-03-12 23:08:31 ----A---- C:\WINDOWS\system32\TextShaping.dll
2021-03-12 23:08:30 ----A---- C:\WINDOWS\system32\d3d9on12.dll
2021-03-12 23:08:29 ----A---- C:\WINDOWS\system32\d3d11on12.dll
2021-03-12 23:08:27 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2021-03-12 23:08:24 ----A---- C:\WINDOWS\system32\msxml6r.dll
2021-03-12 23:08:23 ----A---- C:\WINDOWS\system32\msxml6.dll
2021-03-12 23:08:22 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2021-03-12 23:08:21 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2021-03-12 23:08:18 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2021-03-12 23:08:18 ----A---- C:\WINDOWS\system32\cdd.dll
2021-03-12 23:08:14 ----A---- C:\WINDOWS\system32\Windows.Management.Workplace.dll
2021-03-12 23:08:14 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2021-03-12 23:08:13 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2021-03-12 23:08:13 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2021-03-12 23:08:12 ----A---- C:\WINDOWS\system32\appinfo.dll
2021-03-12 23:08:11 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2021-03-12 23:05:32 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2021-03-12 23:05:32 ----A---- C:\WINDOWS\system32\smartscreen.exe
2021-03-12 23:05:31 ----A---- C:\WINDOWS\system32\GameInput.dll
2021-03-12 23:05:31 ----A---- C:\WINDOWS\system32\cloudAP.dll
2021-03-12 23:05:29 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2021-03-12 23:05:29 ----A---- C:\WINDOWS\system32\AssignedAccessRuntime.dll
2021-03-12 23:05:28 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2021-03-12 23:05:26 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2021-03-12 23:05:26 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2021-03-12 23:05:25 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2021-03-12 23:05:24 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2021-03-12 23:05:23 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2021-03-12 23:05:22 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2021-03-12 23:05:20 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2021-03-12 23:05:15 ----A---- C:\WINDOWS\system32\ReAgent.dll
2021-03-12 23:05:15 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2021-03-12 23:05:11 ----A---- C:\WINDOWS\system32\wsmprovhost.exe
2021-03-12 23:05:11 ----A---- C:\WINDOWS\system32\wsmplpxy.dll
2021-03-12 23:05:11 ----A---- C:\WINDOWS\system32\winrscmd.dll
2021-03-12 23:05:10 ----A---- C:\WINDOWS\system32\WsmRes.dll
2021-03-12 23:05:10 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
2021-03-12 23:05:10 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2021-03-12 23:05:10 ----A---- C:\WINDOWS\system32\WsmAgent.dll
2021-03-12 23:05:09 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2021-03-12 23:05:09 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2021-03-12 23:05:09 ----A---- C:\WINDOWS\system32\WsmAuto.dll
2021-03-12 23:05:08 ----A---- C:\WINDOWS\system32\StartTileData.dll
2021-03-12 23:05:07 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2021-03-12 23:05:07 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2021-03-12 23:05:06 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2021-03-12 23:05:05 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2021-03-12 23:05:00 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2021-03-12 23:04:23 ----A---- C:\WINDOWS\system32\taskbarcpl.dll
2021-03-12 23:04:21 ----A---- C:\WINDOWS\explorer.exe
2021-03-12 23:04:20 ----A---- C:\WINDOWS\system32\dsreg.dll
2021-03-12 23:04:19 ----A---- C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2021-03-12 23:04:18 ----A---- C:\WINDOWS\system32\TpmCertResources.dll
2021-03-12 23:04:17 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2021-03-12 23:04:16 ----A---- C:\WINDOWS\system32\SettingSync.dll
2021-03-12 23:04:14 ----A---- C:\WINDOWS\system32\wbemcomn.dll
2021-03-12 23:04:13 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2021-03-12 23:04:08 ----A---- C:\WINDOWS\system32\framedynos.dll
2021-03-12 23:04:05 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2021-03-12 23:04:04 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2021-03-12 23:04:04 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2021-03-12 23:04:03 ----A---- C:\WINDOWS\system32\provops.dll
2021-03-12 23:04:02 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2021-03-12 23:04:02 ----A---- C:\WINDOWS\system32\provhandlers.dll
2021-03-12 23:04:01 ----A---- C:\WINDOWS\system32\provengine.dll
2021-03-12 23:04:01 ----A---- C:\WINDOWS\system32\provdatastore.dll
2021-03-12 23:04:00 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2021-03-12 23:04:00 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2021-03-12 23:03:59 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2021-03-12 23:03:59 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2021-03-12 23:03:58 ----A---- C:\WINDOWS\system32\provtool.exe
2021-03-12 23:03:57 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2021-03-12 23:03:57 ----A---- C:\WINDOWS\system32\printfilterpipelineprxy.dll
2021-03-12 23:03:56 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2021-03-12 23:03:55 ----A---- C:\WINDOWS\system32\localspl.dll
2021-03-12 23:03:47 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2021-03-12 23:03:46 ----A---- C:\WINDOWS\system32\WpcTok.exe
2021-03-12 23:03:45 ----A---- C:\WINDOWS\system32\ofdeploy.exe
2021-03-12 23:03:43 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2021-03-12 23:03:42 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2021-03-12 23:03:38 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2021-03-12 23:03:32 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2021-03-12 23:03:31 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2021-03-12 23:03:31 ----A---- C:\WINDOWS\system32\AarSvc.dll
2021-03-12 23:03:30 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2021-03-12 23:03:29 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2021-03-12 23:03:26 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2021-03-12 23:03:25 ----A---- C:\WINDOWS\system32\DTUHandlerPS.dll
2021-03-12 23:03:25 ----A---- C:\WINDOWS\system32\DTUHandler.exe
2021-03-12 23:03:24 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2021-03-12 23:03:22 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2021-03-12 23:03:22 ----A---- C:\WINDOWS\system32\autopilotdiag.dll
2021-03-12 23:03:21 ----A---- C:\WINDOWS\system32\autopilot.dll
2021-03-12 23:03:20 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2021-03-12 23:03:18 ----A---- C:\WINDOWS\system32\xboxgipsvc.dll
2021-03-12 23:02:35 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2021-03-12 23:02:29 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2021-03-12 23:02:27 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2021-03-12 23:02:24 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2021-03-12 23:02:17 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2021-03-12 23:02:14 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2021-03-12 23:02:12 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2021-03-12 23:02:09 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2021-03-12 23:02:07 ----A---- C:\WINDOWS\system32\drivers\devauthe.sys
2021-03-12 23:01:52 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2021-03-12 21:16:34 ----A---- C:\WINDOWS\system32\poqexec.exe
2021-03-11 21:27:02 ----D---- C:\Users\72pav\AppData\Roaming\SUPERAntiSpyware.com
2021-03-11 21:25:42 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2021-03-11 21:25:42 ----D---- C:\Program Files\SUPERAntiSpyware
2021-03-11 20:17:50 ----D---- C:\ProgramData\Malwarebytes
2021-03-11 19:40:34 ----A---- C:\WINDOWS\system32\drivers\HWiNFO32_160.SYS
2021-03-11 19:02:45 ----D---- C:\Users\72pav\AppData\Roaming\GHISLER
2021-03-11 19:02:45 ----D---- C:\totalcmd
2021-02-28 10:25:55 ----A---- C:\WINDOWS\system32\aswBoot.exe
2021-02-28 10:25:53 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2021-02-22 15:03:15 ----D---- C:\WINDOWS\system32\Logs
2021-02-22 15:03:15 ----A---- C:\WINDOWS\system32\sedplugins.dll
2021-02-22 15:03:15 ----A---- C:\WINDOWS\system32\QualityUpdateAssistant.dll
2021-02-22 15:03:13 ----D---- C:\Program Files\Microsoft Update Health Tools
2021-02-16 20:07:50 ----D---- C:\ProgramData\SafeNet Sentinel
2021-02-16 20:07:42 ----A---- C:\WINDOWS\system32\drivers\aksfridge.sys
2021-02-16 20:07:41 ----A---- C:\WINDOWS\system32\drivers\hardlock.sys
2021-02-16 20:07:29 ----A---- C:\WINDOWS\system32\hlvdd.dll
======List of files/folders modified in the last 1 month======
2021-03-13 14:21:42 ----D---- C:\WINDOWS\Temp
2021-03-13 14:21:25 ----D---- C:\WINDOWS\Prefetch
2021-03-13 14:21:19 ----RD---- C:\Program Files
2021-03-13 14:18:45 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2021-03-13 14:17:44 ----D---- C:\ProgramData\Mozilla
2021-03-13 14:03:40 ----SHD---- C:\System Volume Information
2021-03-13 13:33:09 ----D---- C:\WINDOWS\system32\sru
2021-03-13 13:32:45 ----D---- C:\Program Files\CCleaner
2021-03-13 01:49:00 ----D---- C:\ProgramData\AVAST Software
2021-03-13 01:47:06 ----D---- C:\WINDOWS\system32\config
2021-03-13 01:43:16 ----RD---- C:\WINDOWS\Microsoft.NET
2021-03-13 01:38:05 ----D---- C:\Windows
2021-03-13 01:37:51 ----D---- C:\WINDOWS\WinSxS
2021-03-13 01:37:22 ----D---- C:\ProgramData\NVIDIA
2021-03-13 01:37:19 ----ASH---- C:\DumpStack.log.tmp
2021-03-13 01:36:03 ----D---- C:\WINDOWS\system32\catroot2
2021-03-13 01:34:59 ----D---- C:\WINDOWS\System32
2021-03-13 01:33:12 ----D---- C:\WINDOWS\CbsTemp
2021-03-13 01:18:46 ----D---- C:\WINDOWS\AppReadiness
2021-03-13 01:18:39 ----HD---- C:\Program Files\WindowsApps
2021-03-13 01:15:04 ----SHD---- C:\Boot
2021-03-13 01:14:37 ----D---- C:\WINDOWS\INF
2021-03-13 01:13:57 ----D---- C:\WINDOWS\system32\DriverStore
2021-03-13 01:10:52 ----D---- C:\WINDOWS\system32\CatRoot
2021-03-13 01:08:01 ----D---- C:\WINDOWS\SystemResources
2021-03-13 01:07:58 ----D---- C:\WINDOWS\system32\WinBioPlugins
2021-03-13 01:07:58 ----D---- C:\WINDOWS\system32\wbem
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\setup
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\oobe
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\migration
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\en-US
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\drivers
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\Dism
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\cs-CZ
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\Boot
2021-03-13 01:07:48 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2021-03-13 01:07:48 ----D---- C:\WINDOWS\Provisioning
2021-03-13 01:07:48 ----D---- C:\WINDOWS\PolicyDefinitions
2021-03-13 01:07:48 ----D---- C:\WINDOWS\bcastdvr
2021-03-13 01:07:48 ----D---- C:\WINDOWS\apppatch
2021-03-13 01:03:21 ----D---- C:\WINDOWS\system32\SleepStudy
2021-03-12 00:16:10 ----SHD---- C:\WINDOWS\Installer
2021-03-12 00:13:09 ----D---- C:\WINDOWS\Downloaded Installations
2021-03-11 23:20:24 ----D---- C:\WINDOWS\system32\Tasks
2021-03-11 23:20:23 ----D---- C:\WINDOWS\Tasks
2021-03-11 21:26:58 ----HD---- C:\ProgramData
2021-03-11 21:00:39 ----D---- C:\WINDOWS\debug
2021-03-11 20:55:47 ----HD---- C:\WINDOWS\ELAMBKUP
2021-03-11 20:51:18 ----D---- C:\ProgramData\Solvusoft
2021-03-11 19:39:54 ----D---- C:\Program Files\HWiNFO32
2021-03-10 19:30:56 ----D---- C:\WINDOWS\system32\MRT
2021-03-10 19:02:17 ----AC---- C:\WINDOWS\system32\MRT.exe
2021-03-03 18:36:58 ----D---- C:\WINDOWS\Minidump
2021-03-03 18:36:58 ----D---- C:\WINDOWS\LiveKernelReports
2021-03-02 22:46:57 ----D---- C:\WINDOWS\system32\NDF
2021-03-02 20:03:10 ----D---- C:\Program Files\Mozilla Firefox
2021-02-26 16:45:48 ----D---- C:\WINDOWS\Logs
2021-02-16 14:31:43 ----D---- C:\WINDOWS\SoftwareDistribution
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2021-02-28 33544]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2021-02-28 206304]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2021-02-28 91616]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2021-01-04 16320]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2021-02-28 71352]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2021-02-28 276960]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-12-07 45584]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\drivers\PxHelp20.sys [2013-09-03 46096]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-09-07 29696]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2021-02-28 175872]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2021-02-28 287192]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2021-02-28 39248]
R1 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2021-02-28 147728]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2021-02-28 376840]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2021-02-28 92696]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2021-02-28 690144]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2021-02-28 384136]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 69432]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2019-12-07 68096]
R1 CPEPMon;CPEPMon; C:\WINDOWS\system32\DRIVERS\CPEPMon.sys [2019-11-05 92960]
R1 epnetflt;Endpoint Security Network Filter Driver; \??\C:\WINDOWS\system32\drivers\epnetflt.sys [2019-10-06 103824]
R1 epregflt;Endpoint Security Registry Filter Driver; \??\C:\WINDOWS\system32\drivers\epregflt.sys [2019-05-01 108736]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 45568]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8192]
R1 HWiNFO;HWiNFO Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO32.SYS [2020-02-22 52624]
R1 HWiNFO_160;HWiNFO Kernel Driver (v160); \??\C:\WINDOWS\system32\drivers\HWiNFO32_160.SYS [2021-03-11 55568]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2021-01-09 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2021-01-09 67664]
R2 aksfridge;aksfridge; \??\C:\WINDOWS\system32\drivers\aksfridge.sys [2020-05-29 444752]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2021-02-28 161312]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-12-09 112456]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2021-02-10 380416]
R2 cpbak;cpbak; C:\WINDOWS\system32\DRIVERS\cpbak.sys [2019-11-05 55584]
R2 hardlock;hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys [2020-05-29 605624]
R2 ISWKL;ISWKL; \??\C:\Program Files\CheckPoint\Endpoint Security\Endpoint Common\bin\ISWKL.sys [2019-08-12 57584]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2020-10-15 37376]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2015-10-04 3596544]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2020-09-07 237368]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2016-11-14 10711488]
R3 NVNET;@netnvm32.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\System32\drivers\nvmf6232.sys [2019-12-07 291456]
R3 nvvad_WaveExtensible;@oem2.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad32v.sys [2016-11-14 50744]
R3 rt640x86;@oem25.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-07-28 746752]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 692536]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 139792]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 103440]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 112656]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 72208]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 87568]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 51728]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 59408]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 33808]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 15360]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-12-07 296448]
S3 amdiox86;AMD IO Driver; C:\WINDOWS\System32\drivers\amdiox86.sys [2015-09-25 37944]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2020-10-15 13312]
S3 avchv;avchv Function Driver; C:\WINDOWS\System32\drivers\avchv.sys [2016-08-29 265424]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-12-07 200192]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2021-03-12 91136]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2020-09-07 78848]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2021-03-12 30720]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2021-03-12 1175552]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2021-03-12 76288]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 31232]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 55608]
S3 cpuz137;cpuz137; \??\C:\Program Files\CPUID\PC Wizard 2015\pcwiz_x32.sys [2014-02-17 26856]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_x86_9fb34a6bf4965cb2\genericusbfn.sys [2019-12-07 18944]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2019-12-07 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 41272]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 45056]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 21504]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 28672]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 73728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2019-12-07 57856]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2020-10-15 32768]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 22016]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 45368]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 426808]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 47632]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2020-08-16 296960]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 46080]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2021-02-10 145408]
S3 nvstor32;nvstor32; C:\WINDOWS\System32\drivers\nvstor32.sys [2015-11-13 110624]
S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\WINDOWS\System32\drivers\nvstusb.sys [2016-12-09 444784]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2020-11-12 87872]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 13312]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 19968]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 159744]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 79360]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2021-01-09 143776]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe [2021-02-17 3780296]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021-02-17 3548360]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2021-02-28 563416]
R2 avast! Tools;Avast Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2021-02-28 330976]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2021-02-28 56904]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R2 CDPUserSvc_28b539;Uživatelská služba platformy připojených zařízení_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R2 CPEFR;Check Point Endpoint EFR; C:\Program Files\CheckPoint\Endpoint Security\EFR\EFRService.exe [2019-11-27 2825976]
R2 CpSbaCipolla;Check Point Sandblast Agent Cipolla; C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [2019-10-29 33016]
R2 CpSbaUpdater;Check Point Sandblast Agent Updater; C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [2019-10-29 33016]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-11-14 930240]
R2 hasplms;Sentinel LDK License Manager; C:\Program Files\Common Files\Aladdin Shared\HASP\hasplms.exe [2020-05-29 5730312]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-11-14 1879488]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-11-14 677312]
R2 OneSyncSvc_28b539;Hostitel synchronizace_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R2 RemediationService;Check Point Endpoint Remediation; C:\Program Files\CheckPoint\Endpoint Security\Remediation\RemediationService.exe [2019-11-04 18168]
R3 AarSvc_28b539;Agent Activation Runtime_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2021-03-03 7195160]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R3 cbdhsvc_28b539;Uživatelská služba schránky_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
R3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
R3 PimIndexMaintenanceSvc_28b539;Data kontaktů_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2021-02-10 800040]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-08 224160]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2018-01-15 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-11-14 2016704]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 BcastDVRUserService_28b539;Uživatelská služba pro GameDVR a vysílání her_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 BluetoothUserService_28b539;Služba pro podporu uživatelů Bluetooth_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 brlapi;BRLAPI; C:\WINDOWS\brltty\bin\brltty.exe [2020-08-16 847886]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 CaptureService_28b539;CaptureService_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 ConsentUxUserSvc_28b539;ConsentUX_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-03-12 293368]
S3 CredentialEnrollmentManagerUserSvc_28b539;CredentialEnrollmentManagerUserSvc_28b539; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-03-12 293368]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DeviceAssociationBrokerSvc_28b539;DeviceAssociationBroker_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DevicePickerUserSvc_28b539;DevicePicker_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DevicesFlowUserSvc_28b539;Tok zařízení_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2021-01-15 71680]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-08 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2019-12-03 45976]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files\Google\Chrome\Application\89.0.4389.82\elevation_service.exe [2021-03-05 1151592]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2018-01-15 153168]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 MessagingService_28b539;Služba zasílání zpráv_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files\Microsoft\Edge\Application\89.0.774.50\elevation_service.exe [2021-03-10 1192840]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2021-01-15 80896]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 PrintWorkflowUserSvc_28b539;PrintWorkflow_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2021-01-15 870912]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2021-01-15 627712]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Disk jede na 100%
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Disk jede na 100%
Zdravím!
Pro vyčištění nemohu použít RSIT, ke s desítkami nekompatibilní a může poškodit oper. systém. Proces patří k softwaru Check Point EFR Light Agent. Není nezbytný pro chod systému a lze ho i odinstalovat standardně přes ovl. panely.
Pro vyčištění nemohu použít RSIT, ke s desítkami nekompatibilní a může poškodit oper. systém. Proces patří k softwaru Check Point EFR Light Agent. Není nezbytný pro chod systému a lze ho i odinstalovat standardně přes ovl. panely.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Disk jede na 100%
V ovládacích panelech ten program není. Zkoušel jsem to přes total comander ,ale tam to také nešlo,jelikož je program stále používán. Vypnutí přes správce úloh se podaří jenom na chvíli.
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Disk jede na 100%
Tak ho zakažte v services. Do příkazového řádku napište:
Otevře se okno služeb. Službu najděte, klikněe na ni prvým myšítkem a v rozbalovacím menu vyberte "zakázat". Restartujte PC.
a odentrujteservices.msc
Otevře se okno služeb. Službu najděte, klikněe na ni prvým myšítkem a v rozbalovacím menu vyberte "zakázat". Restartujte PC.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Disk jede na 100%
Přes servces se to podařilo zakázat a také jsem získal logy z FRST.
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6ed484b7-7dae-41f3-b9b0-380db601314d}: [DhcpNameServer] 192.168.0.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Profile: C:\Users\72pav\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-13]
FireFox:
========
FF DefaultProfile: lxw2l5mn.default
FF ProfilePath: C:\Users\72pav\AppData\Roaming\Mozilla\Firefox\Profiles\lxw2l5mn.default [2021-03-13]
FF Homepage: Mozilla\Firefox\Profiles\lxw2l5mn.default -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\lxw2l5mn.default -> hxxps://pusshnetwork.com
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: {ea614400-e918-4741-9a97-7a972ff7c30b}
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: mapy-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: heureka-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: seznam-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: google@search.mozilla.org
FF Extension: (Seznam doplněk - Esko) - C:\Users\72pav\AppData\Roaming\Mozilla\Firefox\Profiles\lxw2l5mn.default\Extensions\sko-extension@firma.seznam.cz.xpi [2020-04-27]
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
Chrome:
=======
CHR Profile: C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default [2021-03-13]
CHR HomePage: Default -> hxxp://www.google.com
CHR Extension: (Prezentace) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-15]
CHR Extension: (Dokumenty) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-15]
CHR Extension: (Disk Google) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-15]
CHR Extension: (YouTube) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-15]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-10-02]
CHR Extension: (Tabulky) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-19]
CHR Extension: (Gmail) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-11-19]
CHR Extension: (Chrome Media Router) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-02]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [143776 2021-01-09] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AGMService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7195160 2021-03-03] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [563416 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [330976 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56904 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
S3 brlapi; C:\WINDOWS\brltty\bin\brltty.exe [847886 2020-08-16] (Microsoft Windows -> )
S4 CPEFR; C:\Program Files\CheckPoint\Endpoint Security\EFR\EFRService.exe [2825976 2019-11-27] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S4 CpSbaCipolla; C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33016 2019-10-29] (Check Point Software Technologies Ltd. -> )
S4 CpSbaUpdater; C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33016 2019-10-29] (Check Point Software Technologies Ltd. -> )
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [930240 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 hasplms; C:\Program Files\Common Files\Aladdin Shared\HASP\hasplms.exe [5730312 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016704 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
S4 RemediationService; C:\Program Files\CheckPoint\Endpoint Security\Remediation\RemediationService.exe [18168 2019-11-04] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S4 TESvc; C:\Program Files\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe [301304 2019-11-04] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [259904 2021-02-05] (Microsoft Windows -> Microsoft Corporation)
R2 vsmon; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [4292984 2018-05-18] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [2250992 2020-01-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [85240 2020-01-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2032136 2021-01-05] (Sony Mobile Communications AB -> Sony)
R2 xrdd.exe; C:\Program Files\X-Rite\Devices\Services\xrdd.exe [91048 2020-06-01] (X-Rite Incorporated -> X-Rite Inc.)
R2 ZA NET ICM Service; C:\Program Files\CheckPoint\ICM\ICM-Service-NET.exe [42208 2020-03-13] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 ZAARUpdateService; C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe [51936 2019-11-27] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 ZAPrivacyService; C:\Program Files\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [114936 2018-05-15] (Check Point Software Technologies Ltd. -> Check Point Software Technologies, Ltd.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aksfridge; C:\WINDOWS\system32\drivers\aksfridge.sys [444752 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.)
S3 amdiox86; C:\WINDOWS\System32\drivers\amdiox86.sys [37944 2015-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [33544 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [175872 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [287192 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206304 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [91616 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16320 2021-01-04] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39248 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [147728 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [376840 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92696 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [71352 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [690144 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [384136 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [161312 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [276960 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
S3 avchv; C:\WINDOWS\System32\drivers\avchv.sys [265424 2016-08-29] (Bitdefender SRL -> BitDefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [File not signed]
R2 cpbak; C:\WINDOWS\System32\DRIVERS\cpbak.sys [55584 2019-11-05] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 CPEPMon; C:\WINDOWS\System32\DRIVERS\CPEPMon.sys [92960 2019-11-05] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
S3 cpuz137; C:\Program Files\CPUID\PC Wizard 2015\pcwiz_x32.sys [26856 2014-02-17] (CPUID -> CPUID)
R1 epnetflt; C:\WINDOWS\system32\drivers\epnetflt.sys [103824 2019-10-06] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 epregflt; C:\WINDOWS\system32\drivers\epregflt.sys [108736 2019-05-01] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [605624 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.)
R1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [52624 2020-02-22] (Martin Malik - REALiX -> REALiX(tm))
R1 HWiNFO_160; C:\WINDOWS\system32\drivers\HWiNFO32_160.SYS [55568 2021-03-11] (Martin Malik - REALiX -> REALiX(tm))
R2 ISWKL; C:\Program Files\CheckPoint\Endpoint Security\Endpoint Common\bin\ISWKL.sys [57584 2019-08-12] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 NvStUSB; C:\WINDOWS\System32\drivers\nvstusb.sys [444784 2016-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [50744 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
R0 PxHelp20; C:\WINDOWS\System32\drivers\PxHelp20.sys [46096 2013-09-03] (Corel Corporation -> Corel Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [746752 2015-07-28] (Realtek Semiconductor Corp -> Realtek)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [15872 2020-09-07] (Microsoft Windows -> Microsoft Corporation)
R1 Vsdatant; C:\WINDOWS\system32\DRIVERS\vsdatant.sys [365496 2018-05-15] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [37472 2020-01-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [278456 2020-01-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [39368 2020-01-05] (Microsoft Windows -> Microsoft Corporation)
R2 WinI2C-DDC; C:\WINDOWS\system32\drivers\DDCDrv.sys [10240 2016-10-28] (Nicomsoft Ltd.) [File not signed]
S3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [213504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U3 iswSvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-03-13 18:27 - 2021-03-13 18:30 - 000014077 _____ C:\Users\72pav\Desktop\FRST.txt
2021-03-13 18:26 - 2021-03-13 18:28 - 000000000 ____D C:\FRST
2021-03-13 18:06 - 2021-03-13 18:30 - 007337536 _____ C:\WINDOWS\cpepmon.mlf
2021-03-13 17:53 - 2021-03-13 17:53 - 002013696 _____ (Farbar) C:\Users\72pav\Desktop\FRST.exe
2021-03-13 14:21 - 2021-03-13 14:21 - 000000000 ____D C:\rsit
2021-03-13 14:21 - 2021-03-13 14:21 - 000000000 ____D C:\Program Files\trend micro
2021-03-12 23:18 - 2021-03-12 23:18 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-03-12 23:17 - 2021-03-12 23:17 - 000941568 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-03-12 23:14 - 2021-03-12 23:14 - 001432296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-03-12 23:14 - 2021-03-12 23:14 - 001128520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-03-12 23:08 - 2021-03-12 23:08 - 000611952 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-11 23:47 - 2021-03-11 23:48 - 356282440 _____ C:\Users\72pav\Downloads\S-NXD___-010605WF-ALLIN-ALL___.exe
2021-03-11 23:20 - 2021-03-13 18:08 - 000000542 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task d18cda89-6355-43ae-9192-0d34bed54668.job
2021-03-11 23:20 - 2021-03-13 17:19 - 000003386 _____ C:\WINDOWS\system32\Tasks\SUPERAntiSpyware Scheduled Task d18cda89-6355-43ae-9192-0d34bed54668
2021-03-11 21:27 - 2021-03-13 18:08 - 000000542 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 99b5634c-c380-4d49-bae8-090ee5c46ba3.job
2021-03-11 21:27 - 2021-03-13 17:19 - 000003128 _____ C:\WINDOWS\system32\Tasks\SUPERAntiSpyware Scheduled Task 99b5634c-c380-4d49-bae8-090ee5c46ba3
2021-03-11 21:27 - 2021-03-11 21:27 - 000000000 ____D C:\Users\72pav\AppData\Roaming\SUPERAntiSpyware.com
2021-03-11 21:25 - 2021-03-11 21:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2021-03-11 21:25 - 2021-03-11 21:26 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2021-03-11 21:25 - 2021-03-11 21:25 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2021-03-11 20:20 - 2021-03-11 20:20 - 000000000 ____D C:\Users\72pav\AppData\Local\mbam
2021-03-11 20:17 - 2021-03-11 20:17 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-03-11 19:40 - 2021-03-11 19:40 - 000055568 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO32_160.SYS
2021-03-11 19:03 - 2021-03-11 19:03 - 000000000 ____D C:\Users\72pav\AppData\Local\GHISLER
2021-03-11 19:02 - 2021-03-11 19:47 - 000000000 ____D C:\Users\72pav\AppData\Roaming\GHISLER
2021-03-11 19:02 - 2021-03-11 19:47 - 000000000 ____D C:\totalcmd
2021-02-28 10:25 - 2021-02-28 10:25 - 000286944 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-02-28 10:25 - 2021-02-28 10:25 - 000161312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-02-24 10:00 - 2021-02-24 10:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-02-22 15:03 - 2021-02-22 15:03 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-20 20:04 - 2021-02-26 18:39 - 000000000 ____D C:\Users\72pav\Desktop\2021_02_20 Lišaj oleandrový
2021-02-16 20:07 - 2021-02-16 20:07 - 000000000 ____D C:\ProgramData\SafeNet Sentinel
2021-02-16 20:07 - 2020-05-29 10:11 - 000605624 _____ (SafeNet, Inc.) C:\WINDOWS\system32\Drivers\hardlock.sys
2021-02-16 20:07 - 2020-05-29 10:11 - 000444752 _____ (SafeNet, Inc.) C:\WINDOWS\system32\Drivers\aksfridge.sys
2021-02-16 20:07 - 2020-05-29 10:11 - 000206800 _____ (Aladdin Knowledge Systems Ltd.) C:\WINDOWS\system32\hlvdd.dll
2021-02-15 11:38 - 2021-02-27 13:59 - 000002365 _____ C:\Users\72pav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-11 19:30 - 2021-03-03 18:36 - 000000000 ____D C:\WINDOWS\Minidump
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-03-13 18:24 - 2019-12-07 07:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-13 18:12 - 2019-04-19 20:50 - 000000000 ____D C:\Program Files\CCleaner
2021-03-13 18:08 - 2020-08-16 02:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-13 18:08 - 2020-08-16 02:12 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-13 18:08 - 2018-07-24 16:27 - 000001590 ____H C:\WINDOWS\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}.job
2021-03-13 18:08 - 2018-07-24 16:26 - 000000416 _____ C:\WINDOWS\Tasks\X-Rite Device Services Software Updater.job
2021-03-13 18:08 - 2018-01-14 19:47 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-13 18:07 - 2019-12-07 07:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-03-13 18:06 - 2018-01-15 20:08 - 000000000 ____D C:\ProgramData\AVAST Software
2021-03-13 18:00 - 2019-12-07 07:10 - 000000000 ____D C:\WINDOWS\INF
2021-03-13 17:54 - 2019-01-29 18:43 - 000000000 ____D C:\ProgramData\Mozilla
2021-03-13 17:53 - 2018-01-17 19:43 - 000000000 ____D C:\Users\72pav\AppData\LocalLow\Mozilla
2021-03-13 17:19 - 2020-08-16 02:56 - 000003626 _____ C:\WINDOWS\system32\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}
2021-03-13 17:19 - 2020-08-16 02:56 - 000003500 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-13 17:19 - 2020-08-16 02:56 - 000003388 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-03-13 17:19 - 2020-08-16 02:56 - 000003276 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-13 17:19 - 2020-08-16 02:56 - 000003164 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-03-13 17:19 - 2020-08-16 02:56 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-13 17:19 - 2020-08-16 02:56 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2217886342-2387461023-2343114404-1001
2021-03-13 17:19 - 2020-08-16 02:56 - 000002600 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2021-03-13 17:19 - 2020-08-16 02:56 - 000002574 _____ C:\WINDOWS\system32\Tasks\X-Rite Device Services Software Updater
2021-03-13 17:19 - 2020-08-16 02:56 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-03-13 17:11 - 2018-01-14 19:06 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-03-13 14:54 - 2020-08-16 02:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-03-13 14:05 - 2018-06-23 22:42 - 000000000 ____D C:\Users\72pav\AppData\Local\AVAST Software
2021-03-13 01:40 - 2020-08-16 02:56 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-03-13 01:33 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-03-13 01:18 - 2019-12-07 07:12 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-13 01:18 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-13 01:14 - 2020-08-16 02:12 - 000284232 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-03-13 01:08 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\SystemResources
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugins
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\setup
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\Provisioning
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-03-13 01:03 - 2020-08-16 02:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-12 23:14 - 2015-07-10 11:53 - 000413702 __RSH C:\bootmgr
2021-03-12 21:54 - 2020-06-08 14:12 - 000002382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-12 00:15 - 2018-01-19 20:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2
2021-03-12 00:13 - 2020-03-04 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Control Utility 2
2021-03-12 00:13 - 2018-01-16 20:03 - 000000000 ____D C:\WINDOWS\Downloaded Installations
2021-03-12 00:12 - 2018-01-19 20:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Capture NX-D
2021-03-12 00:11 - 2018-01-19 20:13 - 000000000 ____D C:\Users\72pav\AppData\Local\Downloaded Installations
2021-03-11 20:55 - 2019-12-07 07:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-03-11 20:51 - 2018-03-29 20:58 - 000000000 ____D C:\ProgramData\Solvusoft
2021-03-11 19:39 - 2018-02-18 21:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO32
2021-03-11 19:39 - 2018-02-18 21:15 - 000000000 ____D C:\Program Files\HWiNFO32
2021-03-10 19:30 - 2018-01-15 19:56 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-10 19:02 - 2018-01-15 19:55 - 127268096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-09 18:54 - 2018-07-01 13:55 - 000000000 ____D C:\Users\72pav\AppData\Local\CrashDumps
2021-03-05 22:44 - 2018-01-15 20:15 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-03-03 18:36 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-03-02 22:46 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-03-02 20:03 - 2019-12-05 19:53 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-02-28 10:27 - 2020-10-26 20:07 - 000147728 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-02-28 10:27 - 2020-01-14 19:23 - 000384136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-02-28 10:25 - 2020-04-03 19:16 - 000376840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000276960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000206304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000092696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000091616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000071352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000039248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-02-28 10:24 - 2020-01-14 19:23 - 000690144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-02-28 10:24 - 2020-01-14 19:23 - 000287192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-02-28 10:24 - 2020-01-14 19:23 - 000175872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-02-28 10:24 - 2020-01-14 19:23 - 000033544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-02-27 13:59 - 2018-01-14 20:13 - 000000000 ___RD C:\Users\72pav\OneDrive
2021-02-24 10:00 - 2018-01-17 19:43 - 000001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-02-11 19:38 - 2020-08-16 02:29 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-11 19:38 - 2019-12-07 13:21 - 000716602 _____ C:\WINDOWS\system32\perfh005.dat
2021-02-11 19:38 - 2019-12-07 13:21 - 000144780 _____ C:\WINDOWS\system32\perfc005.dat
==================== Files in the root of some directories ========
2018-09-01 19:17 - 2018-09-01 19:17 - 000000028 _____ () C:\Users\72pav\AppData\Roaming\kulerdata.json
2019-10-28 21:17 - 2019-10-28 21:18 - 000019447 _____ () C:\Users\72pav\AppData\Local\kritacrash.log
2020-01-15 19:43 - 2020-01-15 19:43 - 000000039 _____ () C:\Users\72pav\AppData\Local\kritadisplayrc
2018-09-04 19:09 - 2020-01-15 19:43 - 000018088 _____ () C:\Users\72pav\AppData\Local\kritarc
2018-09-30 08:41 - 2018-09-30 08:41 - 000000000 _____ () C:\Users\72pav\AppData\Local\oobelibMkey.log
2018-10-27 01:04 - 2018-10-27 01:04 - 000005112 _____ () C:\Users\72pav\AppData\Local\recently-used.xbel
2018-02-07 00:34 - 2018-02-07 00:34 - 000000017 _____ () C:\Users\72pav\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2021
Ran by 72pav (13-03-2021 18:32:02)
Running from C:\Users\72pav\Desktop
Microsoft Windows 10 Home Version 20H2 19042.867 (X86) (2020-08-16 01:58:42)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
72pav (S-1-5-21-2217886342-2387461023-2343114404-1001 - Administrator - Enabled) => C:\Users\72pav
Administrator (S-1-5-21-2217886342-2387461023-2343114404-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2217886342-2387461023-2343114404-503 - Limited - Disabled)
Guest (S-1-5-21-2217886342-2387461023-2343114404-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2217886342-2387461023-2343114404-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: ZoneAlarm Free Firewall Firewall (Enabled) {3EB84D8C-4821-F4B8-2DD8-2831FAA29B21}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Genuine Service (HKLM\...\AdobeGenuineService) (Version: - Adobe)
Aktualizace NVIDIA 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.1.2449 - Avast Software)
Camera Support Core Library (HKLM\...\{A1D0D14A-B776-4907-BC00-5149F2298086}) (Version: 7.3.0.4 - Canon) Hidden
Camera Window DS (HKLM\...\{0A146245-DB79-4197-BF5D-FE1A699A2CC7}) (Version: 5.3.1 - Canon) Hidden
Camera Window DVC (HKLM\...\{A2EB8F2E-6D9B-4F8B-96EB-F976D33F416F}) (Version: 5.4.4 - Canon) Hidden
Camera Window MC (HKLM\...\{36C65B50-37BA-4467-AAD5-0523EFDF6F62}) (Version: 5.4.3 - Canon) Hidden
Canon Camera Support Core Library (HKLM\...\InstallShield_{A1D0D14A-B776-4907-BC00-5149F2298086}) (Version: 7.3.0.4 - Canon)
Canon Camera WIA Driver (HKLM\...\{33CF7CDF-9805-4500-9CC7-D19D52AD63C4}) (Version: 5.6 - Canon) Hidden
Canon Camera Window DC_DV 5 for ZoomBrowser EX (HKLM\...\InstallShield_{A2EB8F2E-6D9B-4F8B-96EB-F976D33F416F}) (Version: 5.4.4 - Canon)
Canon Camera Window DSLR 5 for ZoomBrowser EX (HKLM\...\InstallShield_{0A146245-DB79-4197-BF5D-FE1A699A2CC7}) (Version: 5.3.1 - Canon)
Canon Camera Window MC 5 for ZoomBrowser EX (HKLM\...\InstallShield_{36C65B50-37BA-4467-AAD5-0523EFDF6F62}) (Version: 5.4.3 - Canon)
Canon EOS Kiss_N REBEL_XT 350D WIA Driver (HKLM\...\InstallShield_{33CF7CDF-9805-4500-9CC7-D19D52AD63C4}) (Version: 5.6 - Canon)
CANON iMAGE GATEWAY Task (HKLM\...\{33711828-7194-4446-8C05-0DC0E59A0C1B}) (Version: 1.0.0.23 - Canon) Hidden
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM\...\InstallShield_{33711828-7194-4446-8C05-0DC0E59A0C1B}) (Version: 1.0.0.23 - Canon)
Canon Internet Library for ZoomBrowser EX (HKLM\...\InstallShield_{D0E8C34D-19D2-49FD-A900-88DEB788FF86}) (Version: 1.4.0 - Canon Inc.)
Canon PhotoRecord (HKLM\...\{BBBC2B89-E193-4348-A83C-C8DD8210A4AC}) (Version: 02.02.03002 - Cisra)
Canon RAW Image Task for ZoomBrowser EX (HKLM\...\InstallShield_{BAA43DA2-B6C5-46EC-B163-0E8EEAF975A4}) (Version: 2.2 - Canon)
Canon Utilities Digital Photo Professional (HKLM\...\Digital Photo Professional) (Version: 3.15.0.0 - Canon Inc.)
Canon Utilities Digital Photo Professional 4 (HKLM\...\Digital Photo Professional 4 (x86)) (Version: 4.11.0.2 - Canon Inc.)
Canon Utilities EOS Capture 1.5 (HKLM\...\InstallShield_{589D17BB-C997-48C0-BCD2-CC8DC3375FE8}) (Version: 1.5 - Canon)
Canon Utilities EOS Lens Registration Tool (HKLM\...\EOS Lens Registration Tool) (Version: 1.11.0.0 - Canon Inc.)
Canon Utilities PhotoStitch 3.1 (HKLM\...\InstallShield_{874E44F3-B9A7-4AA1-B4BA-83E5684ED9C6}) (Version: 3.1.16 - Canon)
Canon Utilities Picture Style Editor (HKLM\...\Picture Style Editor) (Version: 1.19.10.0 - Canon Inc.)
Canon ZoomBrowser EX (E) (HKLM\...\{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}) (Version: 5.05.0000 - Canon)
Capture NX-D (HKLM\...\{5396D01F-ABC2-4B1C-ACFE-22BD75DA4BD2}) (Version: 1.6.5 - Nikon Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.77 - Piriform)
EOS Capture 1.5 (HKLM\...\{589D17BB-C997-48C0-BCD2-CC8DC3375FE8}) (Version: 1.5 - Canon) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 89.0.4389.82 - Google LLC)
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
HWiNFO32 Version 7.00 (HKLM\...\HWiNFO32_is1) (Version: 7.00 - Martin Malik - REALiX)
Check Point SBA (HKLM\...\{F2C3D172-994D-4E0A-93FB-5C121E373B19}) (Version: 86.5.9511 - Check Point Software Technologies Ltd.) Hidden
i1Profiler (HKLM\...\i1Profiler_is1) (Version: 3.3.0.13493 - X-Rite)
Internet Library (HKLM\...\{D0E8C34D-19D2-49FD-A900-88DEB788FF86}) (Version: 1.4.0 - Canon Inc.) Hidden
Java 8 Update 281 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
Microcular (HKLM\...\{2CBD0ADE-0EB2-491A-BDF8-17A738CFE264}) (Version: 0.1.3.5.0 - PC Camera) Hidden
Microcular (HKLM\...\InstallShield_{2CBD0ADE-0EB2-491A-BDF8-17A738CFE264}) (Version: 0.1.3.5.0 - PC Camera)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 89.0.774.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM\...\Microsoft Edge Update) (Version: 1.3.141.63 - )
Microsoft OneDrive (HKU\S-1-5-21-2217886342-2387461023-2343114404-1001\...\OneDriveSetup.exe) (Version: 21.016.0124.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{9733902C-4FFF-4543-8612-C376A55574A5}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27012 (HKLM\...\{67f67547-9693-4937-aa13-56e296bd40f6}) (Version: 14.16.27012.6 - Microsoft Corporation)
Mozilla Firefox 86.0 (x86 cs) (HKLM\...\Mozilla Firefox 86.0 (x86 cs)) (Version: 86.0 - Mozilla)
MSVC80_x86_v2 (HKLM\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (HKLM\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nikon Message Center 2 (HKLM\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.4.1 - Nikon Corporation)
Nikon Transfer 2 (HKLM\...\{757DBE04-3DC8-4741-B10B-4628745E96FE}) (Version: 2.13.7 - Nikon Corporation)
NVIDIA GeForce Experience 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.125 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OpenOffice 4.1.5 (HKLM\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Ovládací panel NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
PhotoStitch (HKLM\...\{874E44F3-B9A7-4AA1-B4BA-83E5684ED9C6}) (Version: 3.1.16 - Canon) Hidden
Picture Control Utility 2 (HKLM\...\{814B3246-517B-4AF1-9D70-D48D255E1C93}) (Version: 2.4.7 - Nikon Corporation)
RAW Image Task 2.2 (HKLM\...\{BAA43DA2-B6C5-46EC-B163-0E8EEAF975A4}) (Version: 2.2 - Canon) Hidden
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.3.723.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7572 - Realtek Semiconductor Corp.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Služba Xperia Companion (HKLM\...\{F7D83289-8833-4B2A-A579-9CE04B90E48A}) (Version: 2.11.5.0 - Sony) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 10.0.1220 - SUPERAntiSpyware.com)
TomTom MyDrive Connect 4.2.11.4200 (HKLM\...\MyDriveConnect) (Version: 4.2.11.4200 - TomTom)
Ulead Photo Explorer 7.0 SE (HKLM\...\{7C6D8763-EEB7-433E-A75E-2AB44892FCA2}) (Version: - Ulead Systems, Inc.)
Ulead Photo Explorer 8.5 Trial (HKLM\...\{025C3792-E9C6-432A-92C1-661F99D021CA}) (Version: - Ulead Systems, Inc.)
ViewNX-i (HKLM\...\{CF16D3B2-7923-49B6-9021-10688783D56A}) (Version: 1.4.4 - Nikon Corporation)
Xperia Companion (HKLM\...\{661E8A68-8643-4318-B269-C4BEE64367CF}) (Version: 2.11.5.0 - Sony) Hidden
Xperia Companion (HKLM\...\{88bf2ea0-8f90-4309-b41d-01811d88acd7}) (Version: 2.11.5.0 - Sony)
X-Rite Device Services Manager (HKLM\...\{55440983-A1BA-4166-885C-076DB9284D38}) (Version: 3.1.119.139 - X-Rite)
ZoneAlarm Anti-Ransomware (HKLM\...\{0B8C3231-9818-4CB9-8213-4AB839836791}) (Version: 1.002.1006 - Check Point Software) Hidden
ZoneAlarm Firewall (HKLM\...\{B136506E-D077-4943-9F0D-B22494BAC3BA}) (Version: 15.3.060.17669 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Free Firewall (HKLM\...\ZoneAlarm Free Firewall) (Version: 15.3.060.17669 - Check Point)
ZoneAlarm Security (HKLM\...\{21085985-346F-4750-B57C-270359D3BB83}) (Version: 15.3.060.17669 - Check Point Software Technologies Ltd.) Hidden
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x86__8wekyb3d8bbwe [2020-01-11] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x86__8wekyb3d8bbwe [2018-09-14] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x86__8wekyb3d8bbwe [2021-01-30] (Microsoft Studios) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2020-06-01 18:13 - 2020-06-01 18:13 - 001664512 _____ () [File not signed] C:\Program Files\X-Rite\Devices\rm200\GoldenEye.dll
2018-05-15 01:18 - 2018-05-15 01:18 - 000986112 _____ (Microsoft Corporation) [File not signed] C:\Program Files\CheckPoint\ZoneAlarm\dbghelp.dll
2018-01-16 20:00 - 2000-10-23 11:22 - 000995383 ____N (Microsoft Corporation) [File not signed] C:\Program Files\Ulead Systems\Ulead Photo Explorer 7.0\MFC42.DLL
2020-01-19 18:35 - 2016-11-14 13:35 - 001157000 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll
2020-08-16 02:29 - 2016-11-14 10:45 - 001220424 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPI.dll
2019-11-27 11:27 - 2019-11-27 11:27 - 001189888 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\x86\SQLite.Interop.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 001502208 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro\i1iO.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 003962368 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro\i1Pro.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 001529344 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro3\i1iO3.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 003986432 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro3\i1Pro3.dll
2020-06-01 18:15 - 2020-06-01 18:15 - 000151040 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro3\i1pro3.xrdevice
2020-06-01 18:13 - 2020-06-01 18:13 - 002359296 _____ (X-Rite) [File not signed] C:\Program Files\X-Rite\Devices\i1isis\EyeOne_iSis.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 001019392 _____ (X-Rite) [File not signed] C:\Program Files\X-Rite\Devices\i1pro\i1Fun.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 001162752 _____ (X-Rite) [File not signed] C:\Program Files\X-Rite\Devices\i1pro3\i1Pro3Fun.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\WINDOWS\system32\AcpiServiceVnA.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTACap.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTARen.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\audioLibVc.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CX32APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPD32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPO32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOProp.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv201.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv211.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBassEnhancementDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBoostDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGainCompensatorDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPONS.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLimiterDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSNeoPCDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2SpeakerDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSSymmetryDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PGFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PLFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PREC32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSVoiceClarityDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\FMAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\HiFiDAX2API.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\ICEsoundAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\KAAPORT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO50.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO60.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO70.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPOShell.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioEQ.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioRealtek.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxSpeechAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVolumeSDAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MISS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICAPOlfx.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NahimicAPONSControl.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICV2apo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEA32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RltkAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DAA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DHT32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkApoApi.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoInstII.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoLDR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkPgExt.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTSndMgr.cpl:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEAPO32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SECOMN32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEHDRA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFNHK.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFSS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sl3apo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slcnt32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slprp32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sltech32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRRPTR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSHP360.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSHD.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSXT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSWOW.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo2.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\TepeqAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosade.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosasfapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\toseaeapo32.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\tossaeapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tossaemaxapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesGUILib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesLib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\amdiox86.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\RTKVHDA.sys:$CmdTcID [64]
AlternateDataStreams: C:\Users\72pav\Desktop\Pigomo.exe:$CmdTcID [64]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_281\bin\ssv.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-01-14 19:07 - 2018-01-14 19:04 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\NVIDIA Corporation\PhysX\Common;C:\Program Files\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Common Files\Ulead Systems\MPEG;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Common Files\Ulead Systems\DVD
HKU\S-1-5-21-2217886342-2387461023-2343114404-1001\Control Panel\Desktop\\Wallpaper -> c:\users\72pav\desktop\dpp_100.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{178DEE5C-E041-4016-83B7-6E6AB23B7649}] => (Allow) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{7C8C78A0-6B40-4D3A-A543-62C5B5551FA8}] => (Allow) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{4348E2CC-AEF0-4C88-B317-7914788D5F82}] => (Allow) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{B1603454-A8BC-478B-86E8-E7258C7BAEB0}] => (Allow) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{EDB2D607-EA37-4C97-B021-FF404F688B9B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BCFFB500-F137-4C25-A08B-1768F0950D74}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B4F35460-3A05-40B8-8D11-FF5C88CDBCEE}] => (Allow) C:\Program Files\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{1995F709-98FC-4320-AD96-E04DC59E09E9}] => (Allow) C:\Program Files\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony)
FirewallRules: [{D77C99F6-54E9-4D7F-8869-97E0D62BD1FF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4567716F-CF35-4A6F-8C8A-B0D930A88B07}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DF3B5167-7DEA-4A2B-BA27-DA6C64DC6771}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{32B852EF-65C6-4073-97D2-27FF99F6C894}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D3CA726A-500D-4600-8391-C112F84C68A4}] => (Allow) LPort=5454
FirewallRules: [{88A7862C-C0C0-446A-B2A9-D4A4ADF3D3D5}] => (Allow) C:\Program Files\Common Files\Aladdin Shared\HASP\hasplms.exe (Gemalto, Inc. -> SafeNet, Inc.)
FirewallRules: [{0AB565EB-74C1-4389-B543-8F45E50319D6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
24-02-2021 10:58:56 Naplánovaný kontrolní bod
04-03-2021 18:19:30 Naplánovaný kontrolní bod
11-03-2021 22:57:09 Naplánovaný kontrolní bod
12-03-2021 00:09:51 Installed "Capture NX-D"
12-03-2021 21:14:41 Instalační služba modulů systému Windows
12-03-2021 21:56:10 Instalační služba modulů systému Windows
13-03-2021 01:27:13 Instalační služba modulů systému Windows
13-03-2021 01:30:03 Instalační služba modulů systému Windows
13-03-2021 01:31:27 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (03/13/2021 01:35:47 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (03/13/2021 01:35:47 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (03/13/2021 01:35:47 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (03/13/2021 01:35:47 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (03/13/2021 01:31:29 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (03/13/2021 01:30:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (03/13/2021 01:27:39 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (03/12/2021 09:57:02 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
System errors:
=============
Error: (03/13/2021 06:06:36 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Check Point Endpoint EFR se po přijetí pokynu pro vypnutí neukončila správně.
Error: (03/13/2021 01:43:09 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.
Error: (03/13/2021 01:40:08 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby CPEFR bylo dosaženo časového limitu (30000 ms).
Error: (03/13/2021 01:39:38 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby avast! Tools bylo dosaženo časového limitu (30000 ms).
Error: (03/13/2021 01:35:46 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Check Point Endpoint EFR se po přijetí pokynu pro vypnutí neukončila správně.
Error: (03/13/2021 01:18:33 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.
Error: (03/13/2021 01:17:01 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby avast! Tools bylo dosaženo časového limitu (30000 ms).
Error: (03/13/2021 01:10:18 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Check Point Endpoint EFR se po přijetí pokynu pro vypnutí neukončila správně.
CodeIntegrity:
===============
Date: 2021-03-13 18:28:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe) attempted to load \Device\HarddiskVolume1\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2021-03-13 18:14:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: Award Software International, Inc. GBT - 42302e31 01/24/2008
Motherboard: Gigabyte Technology Co., Ltd. M55S-S3
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 6000+
Percentage of memory in use: 63%
Total physical RAM: 3071.55 MB
Available physical RAM: 1134.66 MB
Total Virtual: 5503.55 MB
Available Virtual: 3359.19 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:82.57 GB) (Free:27.2 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: () (Fixed) (Total:149.87 GB) (Free:92.25 GB) NTFS
\\?\Volume{da8afb11-0000-0000-0000-70a414000000}\ () (Fixed) (Total:0.44 GB) (Free:0.09 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: DA8AFB11)
Partition 1: (Active) - (Size=82.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=449 MB) - (Type=27)
Partition 3: (Not Active) - (Size=149.9 GB) - (Type=0F Extended)
==================== End of Addition.txt =======================
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6ed484b7-7dae-41f3-b9b0-380db601314d}: [DhcpNameServer] 192.168.0.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
Edge:
=======
Edge Profile: C:\Users\72pav\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-13]
FireFox:
========
FF DefaultProfile: lxw2l5mn.default
FF ProfilePath: C:\Users\72pav\AppData\Roaming\Mozilla\Firefox\Profiles\lxw2l5mn.default [2021-03-13]
FF Homepage: Mozilla\Firefox\Profiles\lxw2l5mn.default -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\lxw2l5mn.default -> hxxps://pusshnetwork.com
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: {ea614400-e918-4741-9a97-7a972ff7c30b}
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: mapy-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: heureka-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: seznam-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: google@search.mozilla.org
FF Extension: (Seznam doplněk - Esko) - C:\Users\72pav\AppData\Roaming\Mozilla\Firefox\Profiles\lxw2l5mn.default\Extensions\sko-extension@firma.seznam.cz.xpi [2020-04-27]
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
Chrome:
=======
CHR Profile: C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default [2021-03-13]
CHR HomePage: Default -> hxxp://www.google.com
CHR Extension: (Prezentace) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-15]
CHR Extension: (Dokumenty) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-15]
CHR Extension: (Disk Google) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-15]
CHR Extension: (YouTube) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-15]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-10-02]
CHR Extension: (Tabulky) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-19]
CHR Extension: (Gmail) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-11-19]
CHR Extension: (Chrome Media Router) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-02]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [143776 2021-01-09] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AGMService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7195160 2021-03-03] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [563416 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [330976 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56904 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
S3 brlapi; C:\WINDOWS\brltty\bin\brltty.exe [847886 2020-08-16] (Microsoft Windows -> )
S4 CPEFR; C:\Program Files\CheckPoint\Endpoint Security\EFR\EFRService.exe [2825976 2019-11-27] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S4 CpSbaCipolla; C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33016 2019-10-29] (Check Point Software Technologies Ltd. -> )
S4 CpSbaUpdater; C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33016 2019-10-29] (Check Point Software Technologies Ltd. -> )
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [930240 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 hasplms; C:\Program Files\Common Files\Aladdin Shared\HASP\hasplms.exe [5730312 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016704 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
S4 RemediationService; C:\Program Files\CheckPoint\Endpoint Security\Remediation\RemediationService.exe [18168 2019-11-04] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S4 TESvc; C:\Program Files\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe [301304 2019-11-04] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [259904 2021-02-05] (Microsoft Windows -> Microsoft Corporation)
R2 vsmon; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [4292984 2018-05-18] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [2250992 2020-01-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [85240 2020-01-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2032136 2021-01-05] (Sony Mobile Communications AB -> Sony)
R2 xrdd.exe; C:\Program Files\X-Rite\Devices\Services\xrdd.exe [91048 2020-06-01] (X-Rite Incorporated -> X-Rite Inc.)
R2 ZA NET ICM Service; C:\Program Files\CheckPoint\ICM\ICM-Service-NET.exe [42208 2020-03-13] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 ZAARUpdateService; C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe [51936 2019-11-27] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 ZAPrivacyService; C:\Program Files\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [114936 2018-05-15] (Check Point Software Technologies Ltd. -> Check Point Software Technologies, Ltd.)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aksfridge; C:\WINDOWS\system32\drivers\aksfridge.sys [444752 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.)
S3 amdiox86; C:\WINDOWS\System32\drivers\amdiox86.sys [37944 2015-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [33544 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [175872 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [287192 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206304 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [91616 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16320 2021-01-04] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39248 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [147728 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [376840 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92696 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [71352 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [690144 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [384136 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [161312 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [276960 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
S3 avchv; C:\WINDOWS\System32\drivers\avchv.sys [265424 2016-08-29] (Bitdefender SRL -> BitDefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [File not signed]
R2 cpbak; C:\WINDOWS\System32\DRIVERS\cpbak.sys [55584 2019-11-05] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 CPEPMon; C:\WINDOWS\System32\DRIVERS\CPEPMon.sys [92960 2019-11-05] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
S3 cpuz137; C:\Program Files\CPUID\PC Wizard 2015\pcwiz_x32.sys [26856 2014-02-17] (CPUID -> CPUID)
R1 epnetflt; C:\WINDOWS\system32\drivers\epnetflt.sys [103824 2019-10-06] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 epregflt; C:\WINDOWS\system32\drivers\epregflt.sys [108736 2019-05-01] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [605624 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.)
R1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [52624 2020-02-22] (Martin Malik - REALiX -> REALiX(tm))
R1 HWiNFO_160; C:\WINDOWS\system32\drivers\HWiNFO32_160.SYS [55568 2021-03-11] (Martin Malik - REALiX -> REALiX(tm))
R2 ISWKL; C:\Program Files\CheckPoint\Endpoint Security\Endpoint Common\bin\ISWKL.sys [57584 2019-08-12] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 NvStUSB; C:\WINDOWS\System32\drivers\nvstusb.sys [444784 2016-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [50744 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
R0 PxHelp20; C:\WINDOWS\System32\drivers\PxHelp20.sys [46096 2013-09-03] (Corel Corporation -> Corel Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [746752 2015-07-28] (Realtek Semiconductor Corp -> Realtek)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [15872 2020-09-07] (Microsoft Windows -> Microsoft Corporation)
R1 Vsdatant; C:\WINDOWS\system32\DRIVERS\vsdatant.sys [365496 2018-05-15] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [37472 2020-01-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [278456 2020-01-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [39368 2020-01-05] (Microsoft Windows -> Microsoft Corporation)
R2 WinI2C-DDC; C:\WINDOWS\system32\drivers\DDCDrv.sys [10240 2016-10-28] (Nicomsoft Ltd.) [File not signed]
S3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [213504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U3 iswSvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-03-13 18:27 - 2021-03-13 18:30 - 000014077 _____ C:\Users\72pav\Desktop\FRST.txt
2021-03-13 18:26 - 2021-03-13 18:28 - 000000000 ____D C:\FRST
2021-03-13 18:06 - 2021-03-13 18:30 - 007337536 _____ C:\WINDOWS\cpepmon.mlf
2021-03-13 17:53 - 2021-03-13 17:53 - 002013696 _____ (Farbar) C:\Users\72pav\Desktop\FRST.exe
2021-03-13 14:21 - 2021-03-13 14:21 - 000000000 ____D C:\rsit
2021-03-13 14:21 - 2021-03-13 14:21 - 000000000 ____D C:\Program Files\trend micro
2021-03-12 23:18 - 2021-03-12 23:18 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-03-12 23:17 - 2021-03-12 23:17 - 000941568 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-03-12 23:14 - 2021-03-12 23:14 - 001432296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-03-12 23:14 - 2021-03-12 23:14 - 001128520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-03-12 23:08 - 2021-03-12 23:08 - 000611952 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-11 23:47 - 2021-03-11 23:48 - 356282440 _____ C:\Users\72pav\Downloads\S-NXD___-010605WF-ALLIN-ALL___.exe
2021-03-11 23:20 - 2021-03-13 18:08 - 000000542 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task d18cda89-6355-43ae-9192-0d34bed54668.job
2021-03-11 23:20 - 2021-03-13 17:19 - 000003386 _____ C:\WINDOWS\system32\Tasks\SUPERAntiSpyware Scheduled Task d18cda89-6355-43ae-9192-0d34bed54668
2021-03-11 21:27 - 2021-03-13 18:08 - 000000542 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 99b5634c-c380-4d49-bae8-090ee5c46ba3.job
2021-03-11 21:27 - 2021-03-13 17:19 - 000003128 _____ C:\WINDOWS\system32\Tasks\SUPERAntiSpyware Scheduled Task 99b5634c-c380-4d49-bae8-090ee5c46ba3
2021-03-11 21:27 - 2021-03-11 21:27 - 000000000 ____D C:\Users\72pav\AppData\Roaming\SUPERAntiSpyware.com
2021-03-11 21:25 - 2021-03-11 21:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2021-03-11 21:25 - 2021-03-11 21:26 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2021-03-11 21:25 - 2021-03-11 21:25 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2021-03-11 20:20 - 2021-03-11 20:20 - 000000000 ____D C:\Users\72pav\AppData\Local\mbam
2021-03-11 20:17 - 2021-03-11 20:17 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-03-11 19:40 - 2021-03-11 19:40 - 000055568 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO32_160.SYS
2021-03-11 19:03 - 2021-03-11 19:03 - 000000000 ____D C:\Users\72pav\AppData\Local\GHISLER
2021-03-11 19:02 - 2021-03-11 19:47 - 000000000 ____D C:\Users\72pav\AppData\Roaming\GHISLER
2021-03-11 19:02 - 2021-03-11 19:47 - 000000000 ____D C:\totalcmd
2021-02-28 10:25 - 2021-02-28 10:25 - 000286944 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-02-28 10:25 - 2021-02-28 10:25 - 000161312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-02-24 10:00 - 2021-02-24 10:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-02-22 15:03 - 2021-02-22 15:03 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-20 20:04 - 2021-02-26 18:39 - 000000000 ____D C:\Users\72pav\Desktop\2021_02_20 Lišaj oleandrový
2021-02-16 20:07 - 2021-02-16 20:07 - 000000000 ____D C:\ProgramData\SafeNet Sentinel
2021-02-16 20:07 - 2020-05-29 10:11 - 000605624 _____ (SafeNet, Inc.) C:\WINDOWS\system32\Drivers\hardlock.sys
2021-02-16 20:07 - 2020-05-29 10:11 - 000444752 _____ (SafeNet, Inc.) C:\WINDOWS\system32\Drivers\aksfridge.sys
2021-02-16 20:07 - 2020-05-29 10:11 - 000206800 _____ (Aladdin Knowledge Systems Ltd.) C:\WINDOWS\system32\hlvdd.dll
2021-02-15 11:38 - 2021-02-27 13:59 - 000002365 _____ C:\Users\72pav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-11 19:30 - 2021-03-03 18:36 - 000000000 ____D C:\WINDOWS\Minidump
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2021-03-13 18:24 - 2019-12-07 07:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-13 18:12 - 2019-04-19 20:50 - 000000000 ____D C:\Program Files\CCleaner
2021-03-13 18:08 - 2020-08-16 02:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-13 18:08 - 2020-08-16 02:12 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-13 18:08 - 2018-07-24 16:27 - 000001590 ____H C:\WINDOWS\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}.job
2021-03-13 18:08 - 2018-07-24 16:26 - 000000416 _____ C:\WINDOWS\Tasks\X-Rite Device Services Software Updater.job
2021-03-13 18:08 - 2018-01-14 19:47 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-13 18:07 - 2019-12-07 07:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-03-13 18:06 - 2018-01-15 20:08 - 000000000 ____D C:\ProgramData\AVAST Software
2021-03-13 18:00 - 2019-12-07 07:10 - 000000000 ____D C:\WINDOWS\INF
2021-03-13 17:54 - 2019-01-29 18:43 - 000000000 ____D C:\ProgramData\Mozilla
2021-03-13 17:53 - 2018-01-17 19:43 - 000000000 ____D C:\Users\72pav\AppData\LocalLow\Mozilla
2021-03-13 17:19 - 2020-08-16 02:56 - 000003626 _____ C:\WINDOWS\system32\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}
2021-03-13 17:19 - 2020-08-16 02:56 - 000003500 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-13 17:19 - 2020-08-16 02:56 - 000003388 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-03-13 17:19 - 2020-08-16 02:56 - 000003276 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-13 17:19 - 2020-08-16 02:56 - 000003164 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-03-13 17:19 - 2020-08-16 02:56 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-13 17:19 - 2020-08-16 02:56 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2217886342-2387461023-2343114404-1001
2021-03-13 17:19 - 2020-08-16 02:56 - 000002600 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2021-03-13 17:19 - 2020-08-16 02:56 - 000002574 _____ C:\WINDOWS\system32\Tasks\X-Rite Device Services Software Updater
2021-03-13 17:19 - 2020-08-16 02:56 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-03-13 17:11 - 2018-01-14 19:06 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-03-13 14:54 - 2020-08-16 02:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-03-13 14:05 - 2018-06-23 22:42 - 000000000 ____D C:\Users\72pav\AppData\Local\AVAST Software
2021-03-13 01:40 - 2020-08-16 02:56 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-03-13 01:33 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-03-13 01:18 - 2019-12-07 07:12 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-13 01:18 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-13 01:14 - 2020-08-16 02:12 - 000284232 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-03-13 01:08 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\SystemResources
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugins
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\setup
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\Provisioning
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-03-13 01:03 - 2020-08-16 02:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-12 23:14 - 2015-07-10 11:53 - 000413702 __RSH C:\bootmgr
2021-03-12 21:54 - 2020-06-08 14:12 - 000002382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-12 00:15 - 2018-01-19 20:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2
2021-03-12 00:13 - 2020-03-04 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Control Utility 2
2021-03-12 00:13 - 2018-01-16 20:03 - 000000000 ____D C:\WINDOWS\Downloaded Installations
2021-03-12 00:12 - 2018-01-19 20:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Capture NX-D
2021-03-12 00:11 - 2018-01-19 20:13 - 000000000 ____D C:\Users\72pav\AppData\Local\Downloaded Installations
2021-03-11 20:55 - 2019-12-07 07:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-03-11 20:51 - 2018-03-29 20:58 - 000000000 ____D C:\ProgramData\Solvusoft
2021-03-11 19:39 - 2018-02-18 21:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO32
2021-03-11 19:39 - 2018-02-18 21:15 - 000000000 ____D C:\Program Files\HWiNFO32
2021-03-10 19:30 - 2018-01-15 19:56 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-10 19:02 - 2018-01-15 19:55 - 127268096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-09 18:54 - 2018-07-01 13:55 - 000000000 ____D C:\Users\72pav\AppData\Local\CrashDumps
2021-03-05 22:44 - 2018-01-15 20:15 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-03-03 18:36 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-03-02 22:46 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-03-02 20:03 - 2019-12-05 19:53 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-02-28 10:27 - 2020-10-26 20:07 - 000147728 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-02-28 10:27 - 2020-01-14 19:23 - 000384136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-02-28 10:25 - 2020-04-03 19:16 - 000376840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000276960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000206304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000092696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000091616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000071352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000039248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-02-28 10:24 - 2020-01-14 19:23 - 000690144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-02-28 10:24 - 2020-01-14 19:23 - 000287192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-02-28 10:24 - 2020-01-14 19:23 - 000175872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-02-28 10:24 - 2020-01-14 19:23 - 000033544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-02-27 13:59 - 2018-01-14 20:13 - 000000000 ___RD C:\Users\72pav\OneDrive
2021-02-24 10:00 - 2018-01-17 19:43 - 000001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-02-11 19:38 - 2020-08-16 02:29 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-11 19:38 - 2019-12-07 13:21 - 000716602 _____ C:\WINDOWS\system32\perfh005.dat
2021-02-11 19:38 - 2019-12-07 13:21 - 000144780 _____ C:\WINDOWS\system32\perfc005.dat
==================== Files in the root of some directories ========
2018-09-01 19:17 - 2018-09-01 19:17 - 000000028 _____ () C:\Users\72pav\AppData\Roaming\kulerdata.json
2019-10-28 21:17 - 2019-10-28 21:18 - 000019447 _____ () C:\Users\72pav\AppData\Local\kritacrash.log
2020-01-15 19:43 - 2020-01-15 19:43 - 000000039 _____ () C:\Users\72pav\AppData\Local\kritadisplayrc
2018-09-04 19:09 - 2020-01-15 19:43 - 000018088 _____ () C:\Users\72pav\AppData\Local\kritarc
2018-09-30 08:41 - 2018-09-30 08:41 - 000000000 _____ () C:\Users\72pav\AppData\Local\oobelibMkey.log
2018-10-27 01:04 - 2018-10-27 01:04 - 000005112 _____ () C:\Users\72pav\AppData\Local\recently-used.xbel
2018-02-07 00:34 - 2018-02-07 00:34 - 000000017 _____ () C:\Users\72pav\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2021
Ran by 72pav (13-03-2021 18:32:02)
Running from C:\Users\72pav\Desktop
Microsoft Windows 10 Home Version 20H2 19042.867 (X86) (2020-08-16 01:58:42)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
72pav (S-1-5-21-2217886342-2387461023-2343114404-1001 - Administrator - Enabled) => C:\Users\72pav
Administrator (S-1-5-21-2217886342-2387461023-2343114404-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2217886342-2387461023-2343114404-503 - Limited - Disabled)
Guest (S-1-5-21-2217886342-2387461023-2343114404-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2217886342-2387461023-2343114404-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: ZoneAlarm Free Firewall Firewall (Enabled) {3EB84D8C-4821-F4B8-2DD8-2831FAA29B21}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Genuine Service (HKLM\...\AdobeGenuineService) (Version: - Adobe)
Aktualizace NVIDIA 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.1.2449 - Avast Software)
Camera Support Core Library (HKLM\...\{A1D0D14A-B776-4907-BC00-5149F2298086}) (Version: 7.3.0.4 - Canon) Hidden
Camera Window DS (HKLM\...\{0A146245-DB79-4197-BF5D-FE1A699A2CC7}) (Version: 5.3.1 - Canon) Hidden
Camera Window DVC (HKLM\...\{A2EB8F2E-6D9B-4F8B-96EB-F976D33F416F}) (Version: 5.4.4 - Canon) Hidden
Camera Window MC (HKLM\...\{36C65B50-37BA-4467-AAD5-0523EFDF6F62}) (Version: 5.4.3 - Canon) Hidden
Canon Camera Support Core Library (HKLM\...\InstallShield_{A1D0D14A-B776-4907-BC00-5149F2298086}) (Version: 7.3.0.4 - Canon)
Canon Camera WIA Driver (HKLM\...\{33CF7CDF-9805-4500-9CC7-D19D52AD63C4}) (Version: 5.6 - Canon) Hidden
Canon Camera Window DC_DV 5 for ZoomBrowser EX (HKLM\...\InstallShield_{A2EB8F2E-6D9B-4F8B-96EB-F976D33F416F}) (Version: 5.4.4 - Canon)
Canon Camera Window DSLR 5 for ZoomBrowser EX (HKLM\...\InstallShield_{0A146245-DB79-4197-BF5D-FE1A699A2CC7}) (Version: 5.3.1 - Canon)
Canon Camera Window MC 5 for ZoomBrowser EX (HKLM\...\InstallShield_{36C65B50-37BA-4467-AAD5-0523EFDF6F62}) (Version: 5.4.3 - Canon)
Canon EOS Kiss_N REBEL_XT 350D WIA Driver (HKLM\...\InstallShield_{33CF7CDF-9805-4500-9CC7-D19D52AD63C4}) (Version: 5.6 - Canon)
CANON iMAGE GATEWAY Task (HKLM\...\{33711828-7194-4446-8C05-0DC0E59A0C1B}) (Version: 1.0.0.23 - Canon) Hidden
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM\...\InstallShield_{33711828-7194-4446-8C05-0DC0E59A0C1B}) (Version: 1.0.0.23 - Canon)
Canon Internet Library for ZoomBrowser EX (HKLM\...\InstallShield_{D0E8C34D-19D2-49FD-A900-88DEB788FF86}) (Version: 1.4.0 - Canon Inc.)
Canon PhotoRecord (HKLM\...\{BBBC2B89-E193-4348-A83C-C8DD8210A4AC}) (Version: 02.02.03002 - Cisra)
Canon RAW Image Task for ZoomBrowser EX (HKLM\...\InstallShield_{BAA43DA2-B6C5-46EC-B163-0E8EEAF975A4}) (Version: 2.2 - Canon)
Canon Utilities Digital Photo Professional (HKLM\...\Digital Photo Professional) (Version: 3.15.0.0 - Canon Inc.)
Canon Utilities Digital Photo Professional 4 (HKLM\...\Digital Photo Professional 4 (x86)) (Version: 4.11.0.2 - Canon Inc.)
Canon Utilities EOS Capture 1.5 (HKLM\...\InstallShield_{589D17BB-C997-48C0-BCD2-CC8DC3375FE8}) (Version: 1.5 - Canon)
Canon Utilities EOS Lens Registration Tool (HKLM\...\EOS Lens Registration Tool) (Version: 1.11.0.0 - Canon Inc.)
Canon Utilities PhotoStitch 3.1 (HKLM\...\InstallShield_{874E44F3-B9A7-4AA1-B4BA-83E5684ED9C6}) (Version: 3.1.16 - Canon)
Canon Utilities Picture Style Editor (HKLM\...\Picture Style Editor) (Version: 1.19.10.0 - Canon Inc.)
Canon ZoomBrowser EX (E) (HKLM\...\{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}) (Version: 5.05.0000 - Canon)
Capture NX-D (HKLM\...\{5396D01F-ABC2-4B1C-ACFE-22BD75DA4BD2}) (Version: 1.6.5 - Nikon Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.77 - Piriform)
EOS Capture 1.5 (HKLM\...\{589D17BB-C997-48C0-BCD2-CC8DC3375FE8}) (Version: 1.5 - Canon) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 89.0.4389.82 - Google LLC)
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
HWiNFO32 Version 7.00 (HKLM\...\HWiNFO32_is1) (Version: 7.00 - Martin Malik - REALiX)
Check Point SBA (HKLM\...\{F2C3D172-994D-4E0A-93FB-5C121E373B19}) (Version: 86.5.9511 - Check Point Software Technologies Ltd.) Hidden
i1Profiler (HKLM\...\i1Profiler_is1) (Version: 3.3.0.13493 - X-Rite)
Internet Library (HKLM\...\{D0E8C34D-19D2-49FD-A900-88DEB788FF86}) (Version: 1.4.0 - Canon Inc.) Hidden
Java 8 Update 281 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
Microcular (HKLM\...\{2CBD0ADE-0EB2-491A-BDF8-17A738CFE264}) (Version: 0.1.3.5.0 - PC Camera) Hidden
Microcular (HKLM\...\InstallShield_{2CBD0ADE-0EB2-491A-BDF8-17A738CFE264}) (Version: 0.1.3.5.0 - PC Camera)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 89.0.774.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM\...\Microsoft Edge Update) (Version: 1.3.141.63 - )
Microsoft OneDrive (HKU\S-1-5-21-2217886342-2387461023-2343114404-1001\...\OneDriveSetup.exe) (Version: 21.016.0124.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{9733902C-4FFF-4543-8612-C376A55574A5}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27012 (HKLM\...\{67f67547-9693-4937-aa13-56e296bd40f6}) (Version: 14.16.27012.6 - Microsoft Corporation)
Mozilla Firefox 86.0 (x86 cs) (HKLM\...\Mozilla Firefox 86.0 (x86 cs)) (Version: 86.0 - Mozilla)
MSVC80_x86_v2 (HKLM\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (HKLM\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nikon Message Center 2 (HKLM\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.4.1 - Nikon Corporation)
Nikon Transfer 2 (HKLM\...\{757DBE04-3DC8-4741-B10B-4628745E96FE}) (Version: 2.13.7 - Nikon Corporation)
NVIDIA GeForce Experience 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.125 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OpenOffice 4.1.5 (HKLM\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Ovládací panel NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
PhotoStitch (HKLM\...\{874E44F3-B9A7-4AA1-B4BA-83E5684ED9C6}) (Version: 3.1.16 - Canon) Hidden
Picture Control Utility 2 (HKLM\...\{814B3246-517B-4AF1-9D70-D48D255E1C93}) (Version: 2.4.7 - Nikon Corporation)
RAW Image Task 2.2 (HKLM\...\{BAA43DA2-B6C5-46EC-B163-0E8EEAF975A4}) (Version: 2.2 - Canon) Hidden
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.3.723.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7572 - Realtek Semiconductor Corp.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Služba Xperia Companion (HKLM\...\{F7D83289-8833-4B2A-A579-9CE04B90E48A}) (Version: 2.11.5.0 - Sony) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 10.0.1220 - SUPERAntiSpyware.com)
TomTom MyDrive Connect 4.2.11.4200 (HKLM\...\MyDriveConnect) (Version: 4.2.11.4200 - TomTom)
Ulead Photo Explorer 7.0 SE (HKLM\...\{7C6D8763-EEB7-433E-A75E-2AB44892FCA2}) (Version: - Ulead Systems, Inc.)
Ulead Photo Explorer 8.5 Trial (HKLM\...\{025C3792-E9C6-432A-92C1-661F99D021CA}) (Version: - Ulead Systems, Inc.)
ViewNX-i (HKLM\...\{CF16D3B2-7923-49B6-9021-10688783D56A}) (Version: 1.4.4 - Nikon Corporation)
Xperia Companion (HKLM\...\{661E8A68-8643-4318-B269-C4BEE64367CF}) (Version: 2.11.5.0 - Sony) Hidden
Xperia Companion (HKLM\...\{88bf2ea0-8f90-4309-b41d-01811d88acd7}) (Version: 2.11.5.0 - Sony)
X-Rite Device Services Manager (HKLM\...\{55440983-A1BA-4166-885C-076DB9284D38}) (Version: 3.1.119.139 - X-Rite)
ZoneAlarm Anti-Ransomware (HKLM\...\{0B8C3231-9818-4CB9-8213-4AB839836791}) (Version: 1.002.1006 - Check Point Software) Hidden
ZoneAlarm Firewall (HKLM\...\{B136506E-D077-4943-9F0D-B22494BAC3BA}) (Version: 15.3.060.17669 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Free Firewall (HKLM\...\ZoneAlarm Free Firewall) (Version: 15.3.060.17669 - Check Point)
ZoneAlarm Security (HKLM\...\{21085985-346F-4750-B57C-270359D3BB83}) (Version: 15.3.060.17669 - Check Point Software Technologies Ltd.) Hidden
Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x86__8wekyb3d8bbwe [2020-01-11] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x86__8wekyb3d8bbwe [2018-09-14] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x86__8wekyb3d8bbwe [2021-01-30] (Microsoft Studios) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2020-06-01 18:13 - 2020-06-01 18:13 - 001664512 _____ () [File not signed] C:\Program Files\X-Rite\Devices\rm200\GoldenEye.dll
2018-05-15 01:18 - 2018-05-15 01:18 - 000986112 _____ (Microsoft Corporation) [File not signed] C:\Program Files\CheckPoint\ZoneAlarm\dbghelp.dll
2018-01-16 20:00 - 2000-10-23 11:22 - 000995383 ____N (Microsoft Corporation) [File not signed] C:\Program Files\Ulead Systems\Ulead Photo Explorer 7.0\MFC42.DLL
2020-01-19 18:35 - 2016-11-14 13:35 - 001157000 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll
2020-08-16 02:29 - 2016-11-14 10:45 - 001220424 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPI.dll
2019-11-27 11:27 - 2019-11-27 11:27 - 001189888 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\x86\SQLite.Interop.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 001502208 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro\i1iO.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 003962368 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro\i1Pro.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 001529344 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro3\i1iO3.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 003986432 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro3\i1Pro3.dll
2020-06-01 18:15 - 2020-06-01 18:15 - 000151040 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro3\i1pro3.xrdevice
2020-06-01 18:13 - 2020-06-01 18:13 - 002359296 _____ (X-Rite) [File not signed] C:\Program Files\X-Rite\Devices\i1isis\EyeOne_iSis.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 001019392 _____ (X-Rite) [File not signed] C:\Program Files\X-Rite\Devices\i1pro\i1Fun.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 001162752 _____ (X-Rite) [File not signed] C:\Program Files\X-Rite\Devices\i1pro3\i1Pro3Fun.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\WINDOWS\system32\AcpiServiceVnA.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTACap.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTARen.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\audioLibVc.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CX32APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPD32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPO32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOProp.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv201.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv211.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBassEnhancementDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBoostDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGainCompensatorDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPONS.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLimiterDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSNeoPCDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2SpeakerDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSSymmetryDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PGFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PLFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PREC32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSVoiceClarityDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\FMAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\HiFiDAX2API.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\ICEsoundAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\KAAPORT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO50.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO60.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO70.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPOShell.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioEQ.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioRealtek.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxSpeechAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVolumeSDAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MISS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICAPOlfx.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NahimicAPONSControl.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICV2apo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEA32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RltkAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DAA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DHT32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkApoApi.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoInstII.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoLDR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkPgExt.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTSndMgr.cpl:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEAPO32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SECOMN32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEHDRA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFNHK.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFSS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sl3apo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slcnt32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slprp32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sltech32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRRPTR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSHP360.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSHD.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSXT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSWOW.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo2.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\TepeqAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosade.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosasfapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\toseaeapo32.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\tossaeapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tossaemaxapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesGUILib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesLib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\amdiox86.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\RTKVHDA.sys:$CmdTcID [64]
AlternateDataStreams: C:\Users\72pav\Desktop\Pigomo.exe:$CmdTcID [64]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_281\bin\ssv.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation)
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-01-14 19:07 - 2018-01-14 19:04 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\NVIDIA Corporation\PhysX\Common;C:\Program Files\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Common Files\Ulead Systems\MPEG;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Common Files\Ulead Systems\DVD
HKU\S-1-5-21-2217886342-2387461023-2343114404-1001\Control Panel\Desktop\\Wallpaper -> c:\users\72pav\desktop\dpp_100.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{178DEE5C-E041-4016-83B7-6E6AB23B7649}] => (Allow) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{7C8C78A0-6B40-4D3A-A543-62C5B5551FA8}] => (Allow) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{4348E2CC-AEF0-4C88-B317-7914788D5F82}] => (Allow) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{B1603454-A8BC-478B-86E8-E7258C7BAEB0}] => (Allow) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{EDB2D607-EA37-4C97-B021-FF404F688B9B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BCFFB500-F137-4C25-A08B-1768F0950D74}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B4F35460-3A05-40B8-8D11-FF5C88CDBCEE}] => (Allow) C:\Program Files\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{1995F709-98FC-4320-AD96-E04DC59E09E9}] => (Allow) C:\Program Files\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony)
FirewallRules: [{D77C99F6-54E9-4D7F-8869-97E0D62BD1FF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4567716F-CF35-4A6F-8C8A-B0D930A88B07}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DF3B5167-7DEA-4A2B-BA27-DA6C64DC6771}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{32B852EF-65C6-4073-97D2-27FF99F6C894}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D3CA726A-500D-4600-8391-C112F84C68A4}] => (Allow) LPort=5454
FirewallRules: [{88A7862C-C0C0-446A-B2A9-D4A4ADF3D3D5}] => (Allow) C:\Program Files\Common Files\Aladdin Shared\HASP\hasplms.exe (Gemalto, Inc. -> SafeNet, Inc.)
FirewallRules: [{0AB565EB-74C1-4389-B543-8F45E50319D6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
24-02-2021 10:58:56 Naplánovaný kontrolní bod
04-03-2021 18:19:30 Naplánovaný kontrolní bod
11-03-2021 22:57:09 Naplánovaný kontrolní bod
12-03-2021 00:09:51 Installed "Capture NX-D"
12-03-2021 21:14:41 Instalační služba modulů systému Windows
12-03-2021 21:56:10 Instalační služba modulů systému Windows
13-03-2021 01:27:13 Instalační služba modulů systému Windows
13-03-2021 01:30:03 Instalační služba modulů systému Windows
13-03-2021 01:31:27 Instalační služba modulů systému Windows
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (03/13/2021 01:35:47 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (03/13/2021 01:35:47 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.
Error: (03/13/2021 01:35:47 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (03/13/2021 01:35:47 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
Error: (03/13/2021 01:31:29 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (03/13/2021 01:30:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (03/13/2021 01:27:39 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (03/12/2021 09:57:02 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
System errors:
=============
Error: (03/13/2021 06:06:36 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Check Point Endpoint EFR se po přijetí pokynu pro vypnutí neukončila správně.
Error: (03/13/2021 01:43:09 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.
Error: (03/13/2021 01:40:08 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby CPEFR bylo dosaženo časového limitu (30000 ms).
Error: (03/13/2021 01:39:38 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby avast! Tools bylo dosaženo časového limitu (30000 ms).
Error: (03/13/2021 01:35:46 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Check Point Endpoint EFR se po přijetí pokynu pro vypnutí neukončila správně.
Error: (03/13/2021 01:18:33 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.
Error: (03/13/2021 01:17:01 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby avast! Tools bylo dosaženo časového limitu (30000 ms).
Error: (03/13/2021 01:10:18 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Check Point Endpoint EFR se po přijetí pokynu pro vypnutí neukončila správně.
CodeIntegrity:
===============
Date: 2021-03-13 18:28:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe) attempted to load \Device\HarddiskVolume1\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2021-03-13 18:14:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
==================== Memory info ===========================
BIOS: Award Software International, Inc. GBT - 42302e31 01/24/2008
Motherboard: Gigabyte Technology Co., Ltd. M55S-S3
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 6000+
Percentage of memory in use: 63%
Total physical RAM: 3071.55 MB
Available physical RAM: 1134.66 MB
Total Virtual: 5503.55 MB
Available Virtual: 3359.19 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:82.57 GB) (Free:27.2 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: () (Fixed) (Total:149.87 GB) (Free:92.25 GB) NTFS
\\?\Volume{da8afb11-0000-0000-0000-70a414000000}\ () (Fixed) (Total:0.44 GB) (Free:0.09 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: DA8AFB11)
Partition 1: (Active) - (Size=82.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=449 MB) - (Type=27)
Partition 3: (Not Active) - (Size=149.9 GB) - (Type=0F Extended)
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Disk jede na 100%
OK. Spusťte teď tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Disk jede na 100%
Tady je log z Malwarebytes:
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 13.03.21
Čas skenování: 19:48
Logovací soubor: a542c5a0-842c-11eb-8ce2-0016e6d91c61.json
-Informace o softwaru-
Verze: 4.3.0.98
Verze komponentů: 1.0.1217
Aktualizovat verzi balíku komponent: 1.0.38115
Licence: Zkušební
-Systémová informace-
OS: Windows 10 (Build 19042.867)
CPU: x86
Systém souborů: NTFS
Uživatel: DESKTOP-23MVDJ4\72pav
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 194358
Zjištěné hrozby: 0
Hrozby umístěné do karantény: 0
Uplynulý čas: 10 min, 8 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
WMI: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 13.03.21
Čas skenování: 19:48
Logovací soubor: a542c5a0-842c-11eb-8ce2-0016e6d91c61.json
-Informace o softwaru-
Verze: 4.3.0.98
Verze komponentů: 1.0.1217
Aktualizovat verzi balíku komponent: 1.0.38115
Licence: Zkušební
-Systémová informace-
OS: Windows 10 (Build 19042.867)
CPU: x86
Systém souborů: NTFS
Uživatel: DESKTOP-23MVDJ4\72pav
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 194358
Zjištěné hrozby: 0
Hrozby umístěné do karantény: 0
Uplynulý čas: 10 min, 8 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
WMI: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Disk jede na 100%
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
U3 iswSvc; no ImagePath
C:\WINDOWS\system32\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
AlternateDataStreams: C:\WINDOWS\system32\AcpiServiceVnA.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTACap.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTARen.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\audioLibVc.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CX32APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPD32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPO32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOProp.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv201.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv211.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBassEnhancementDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBoostDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGainCompensatorDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPONS.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLimiterDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSNeoPCDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2SpeakerDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSSymmetryDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PGFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PLFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PREC32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSVoiceClarityDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\FMAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\HiFiDAX2API.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\ICEsoundAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\KAAPORT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO50.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO60.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO70.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPOShell.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioEQ.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioRealtek.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxSpeechAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVolumeSDAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MISS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICAPOlfx.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NahimicAPONSControl.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICV2apo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEA32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RltkAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DAA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DHT32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkApoApi.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoInstII.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoLDR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkPgExt.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTSndMgr.cpl:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEAPO32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SECOMN32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEHDRA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFNHK.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFSS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sl3apo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slcnt32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slprp32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sltech32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRRPTR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSHP360.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSHD.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSXT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSWOW.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo2.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\TepeqAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosade.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosasfapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\toseaeapo32.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\tossaeapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tossaemaxapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesGUILib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesLib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\amdiox86.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\RTKVHDA.sys:$CmdTcID [64]
AlternateDataStreams: C:\Users\72pav\Desktop\Pigomo.exe:$CmdTcID [64]
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Disk jede na 100%
Malwarebytes mě nechtěl pustit na forum viry.cz z důvodu možného trojanu. Doufám.že je to zbytečná obava a přístup jsem povolil.
Tady je fixlog:
Fix result of Farbar Recovery Scan Tool (x86) Version: 13-03-2021
Ran by 72pav (13-03-2021 21:39:36) Run:1
Running from C:\Users\72pav\Desktop
Loaded Profiles: 72pav
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
U3 iswSvc; no ImagePath
C:\WINDOWS\system32\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
AlternateDataStreams: C:\WINDOWS\system32\AcpiServiceVnA.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTACap.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTARen.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\audioLibVc.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CX32APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPD32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPO32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOProp.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv201.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv211.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBassEnhancementDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBoostDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGainCompensatorDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPONS.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLimiterDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSNeoPCDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2SpeakerDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSSymmetryDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PGFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PLFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PREC32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSVoiceClarityDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\FMAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\HiFiDAX2API.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\ICEsoundAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\KAAPORT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO50.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO60.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO70.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPOShell.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioEQ.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioRealtek.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxSpeechAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVolumeSDAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MISS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICAPOlfx.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NahimicAPONSControl.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICV2apo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEA32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RltkAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DAA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DHT32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkApoApi.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoInstII.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoLDR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkPgExt.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTSndMgr.cpl:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEAPO32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SECOMN32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEHDRA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFNHK.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFSS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sl3apo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slcnt32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slprp32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sltech32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRRPTR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSHP360.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSHD.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSXT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSWOW.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo2.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\TepeqAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosade.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosasfapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\toseaeapo32.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\tossaeapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tossaemaxapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesGUILib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesLib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\amdiox86.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\RTKVHDA.sys:$CmdTcID [64]
AlternateDataStreams: C:\Users\72pav\Desktop\Pigomo.exe:$CmdTcID [64]
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => removed successfully.
HKLM\System\CurrentControlSet\Services\iswSvc => removed successfully.
iswSvc => service removed successfully.
C:\WINDOWS\system32\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1} => moved successfully
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\WINDOWS\system32\AcpiServiceVnA.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\AERTACap.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\AERTARen.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\audioLibVc.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\CX32APO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DDPA32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DDPD32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DDPO32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DDPP32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DolbyDAX2APOProp.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DolbyDAX2APOv201.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DolbyDAX2APOv211.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSBassEnhancementDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSBoostDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSGainCompensatorDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSGFXAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSGFXAPONS.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSLFXAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSLimiterDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSNeoPCDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSS2SpeakerDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSSymmetryDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSU2PGFX32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSU2PLFX32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSU2PREC32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSVoiceClarityDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\FMAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\HiFiDAX2API.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\ICEsoundAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\KAAPORT.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO20.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO30.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO40.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO50.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO60.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO70.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPOShell.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioEQ.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioRealtek.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxSpeechAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxVoiceAPO20.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxVoiceAPO30.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxVoiceAPO40.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxVolumeSDAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MISS_APO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\NAHIMICAPOlfx.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\NahimicAPONSControl.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\NAHIMICV2apo.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EEA32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EED32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EEG32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EEL32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EEP32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RltkAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RP3DAA32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RP3DHT32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTEED32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTEEG32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTEEL32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTEEP32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RtkApoApi.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RtkCoInstII.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RtkCoLDR.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RtkPgExt.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTSndMgr.cpl => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SEAPO32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SECOMN32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SEHDRA32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SFAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SFCOM.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SFNHK.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SFSS_APO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\sl3apo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\slcnt32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\slprp32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\sltech32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRCOM.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRRPTR.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRSHP360.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRSTSHD.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRSTSXT.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRSWOW.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tadefxapo.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tadefxapo2.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\TepeqAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tosade.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tosasfapo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\toseaeapo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tossaeapo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tossaemaxapo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\WavesGUILib.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\WavesLib.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\Drivers\amdiox86.sys => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\Drivers\RTKVHDA.sys => ":$CmdTcID" ADS removed successfully.
C:\Users\72pav\Desktop\Pigomo.exe => ":$CmdTcID" ADS removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 10248192 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14763152 B
Java, Flash, Steam htmlcache => 1172 B
Windows/system/drivers => 2770381 B
Edge => 178727 B
Chrome => 206004 B
Firefox => 146905504 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 5356 B
NetworkService => 5356 B
72pav => 277327243 B
RecycleBin => 0 B
EmptyTemp: => 431.5 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:43:04 ====
Tady je fixlog:
Fix result of Farbar Recovery Scan Tool (x86) Version: 13-03-2021
Ran by 72pav (13-03-2021 21:39:36) Run:1
Running from C:\Users\72pav\Desktop
Loaded Profiles: 72pav
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
U3 iswSvc; no ImagePath
C:\WINDOWS\system32\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
AlternateDataStreams: C:\WINDOWS\system32\AcpiServiceVnA.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTACap.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTARen.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\audioLibVc.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CX32APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPD32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPO32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOProp.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv201.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv211.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBassEnhancementDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBoostDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGainCompensatorDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPONS.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLimiterDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSNeoPCDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2SpeakerDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSSymmetryDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PGFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PLFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PREC32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSVoiceClarityDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\FMAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\HiFiDAX2API.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\ICEsoundAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\KAAPORT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO50.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO60.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO70.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPOShell.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioEQ.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioRealtek.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxSpeechAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVolumeSDAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MISS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICAPOlfx.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NahimicAPONSControl.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICV2apo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEA32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RltkAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DAA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DHT32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkApoApi.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoInstII.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoLDR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkPgExt.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTSndMgr.cpl:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEAPO32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SECOMN32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEHDRA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFNHK.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFSS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sl3apo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slcnt32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slprp32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sltech32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRRPTR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSHP360.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSHD.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSXT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSWOW.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo2.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\TepeqAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosade.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosasfapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\toseaeapo32.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\tossaeapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tossaemaxapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesGUILib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesLib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\amdiox86.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\RTKVHDA.sys:$CmdTcID [64]
AlternateDataStreams: C:\Users\72pav\Desktop\Pigomo.exe:$CmdTcID [64]
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => removed successfully.
HKLM\System\CurrentControlSet\Services\iswSvc => removed successfully.
iswSvc => service removed successfully.
C:\WINDOWS\system32\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1} => moved successfully
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\WINDOWS\system32\AcpiServiceVnA.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\AERTACap.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\AERTARen.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\audioLibVc.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\CX32APO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DDPA32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DDPD32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DDPO32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DDPP32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DolbyDAX2APOProp.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DolbyDAX2APOv201.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DolbyDAX2APOv211.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSBassEnhancementDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSBoostDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSGainCompensatorDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSGFXAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSGFXAPONS.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSLFXAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSLimiterDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSNeoPCDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSS2SpeakerDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSSymmetryDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSU2PGFX32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSU2PLFX32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSU2PREC32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSVoiceClarityDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\FMAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\HiFiDAX2API.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\ICEsoundAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\KAAPORT.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO20.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO30.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO40.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO50.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO60.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO70.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPOShell.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioEQ.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioRealtek.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxSpeechAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxVoiceAPO20.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxVoiceAPO30.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxVoiceAPO40.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxVolumeSDAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MISS_APO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\NAHIMICAPOlfx.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\NahimicAPONSControl.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\NAHIMICV2apo.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EEA32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EED32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EEG32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EEL32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EEP32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RltkAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RP3DAA32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RP3DHT32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTEED32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTEEG32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTEEL32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTEEP32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RtkApoApi.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RtkCoInstII.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RtkCoLDR.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RtkPgExt.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTSndMgr.cpl => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SEAPO32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SECOMN32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SEHDRA32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SFAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SFCOM.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SFNHK.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SFSS_APO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\sl3apo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\slcnt32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\slprp32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\sltech32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRCOM.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRRPTR.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRSHP360.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRSTSHD.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRSTSXT.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRSWOW.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tadefxapo.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tadefxapo2.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\TepeqAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tosade.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tosasfapo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\toseaeapo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tossaeapo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tossaemaxapo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\WavesGUILib.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\WavesLib.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\Drivers\amdiox86.sys => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\Drivers\RTKVHDA.sys => ":$CmdTcID" ADS removed successfully.
C:\Users\72pav\Desktop\Pigomo.exe => ":$CmdTcID" ADS removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 10248192 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14763152 B
Java, Flash, Steam htmlcache => 1172 B
Windows/system/drivers => 2770381 B
Edge => 178727 B
Chrome => 206004 B
Firefox => 146905504 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 5356 B
NetworkService => 5356 B
72pav => 277327243 B
RecycleBin => 0 B
EmptyTemp: => 431.5 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 21:43:04 ====
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Disk jede na 100%
Učinil jste správně, některým AV se FRST nelíbí. Je to ale pouze nástroj na mazání. Bylo smazáno, log je již OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Disk jede na 100%
Disk už se tolik nepřetěžuje, proto Vám moc děkuji za pomoc.
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Disk jede na 100%
Rádo se stalo! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?