Právě je 26 čer 2019 14:20

Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Všechny časy jsou v UTC + 1 hodina


Pravidla fóra


Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.



Odeslat nové téma Odpovědět na téma  [ Příspěvků: 10 ] 
Autor Zpráva
 Předmět příspěvku: Win10 spomalenie PC
PříspěvekNapsal: 15 zář 2018 13:24 
Offline
Vzorný návštěvník
Vzorný návštěvník

Registrován: 02 čer 2005 18:17
Příspěvky: 44
Bydliště: u internetu
Dobrý deň,
v poslednom čase pociťujem spomalenie PC. Poprosím o kontrolu logu.
Ďakujem



Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15.09.2018
Ran by Home (administrator) on M-HOME (15-09-2018 14:20:44)
Running from C:\Users\Home\Desktop
Loaded Profiles: Home (Available Profiles: Home)
Platform: Windows 10 Pro Version 1803 17134.285 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(ASUSTeKcomputer.Inc) C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixUILauncher.exe
() C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixSvc32.exe
() C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixSvc64.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [178504 2018-07-28] (ESET)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor)
HKLM-x32\...\Run: [RoccatIsku] => C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE [536576 2013-10-30] (ROCCAT GmbH)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-08-14] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18334528 2018-04-12] (Piriform Ltd)
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3207968 2018-09-08] (Valve Corporation)
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\Run: [nhAsusStrixUILauncher] => C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixUILauncher.exe [706232 2017-07-27] (ASUSTeKcomputer.Inc)
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [16442096 2018-07-20] ()
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\MountPoints2: {23a4d93e-86b6-11e8-af07-305a3a03df57} - "F:\stp-grw.exe"
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\MountPoints2: {4c8f6988-60f6-11e8-aef7-305a3a03df57} - "F:\setup.exe"
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\MountPoints2: {b09ee7b3-13cb-11e8-aebe-305a3a03df57} - "F:\HiSuiteDownLoader.exe"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2c87aa5c-97ec-4ce3-bba9-4c6cd4a10563}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{dd2f3ffe-e34a-434e-a27a-c6fbfbaa72c1}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.sk/
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-08-24] (Microsoft Corporation)
BHO: No Name -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> No File
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-07-18] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-07-23] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-23] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-18] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-18] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-18] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-18] (Microsoft Corporation)

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-579719181-2443963251-1893562305-1001 -> hxxp://www.google.sk/

FireFox:
========
FF DefaultProfile: daxwg1fk.default
FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\daxwg1fk.default [2018-09-15]
FF Homepage: Mozilla\Firefox\Profiles\daxwg1fk.default -> hxxps://www.google.sk
FF Extension: (Adblock Plus) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\daxwg1fk.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-08-31]
FF Extension: (Firefox Monitor) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\daxwg1fk.default\features\{5965b6d4-dcee-4255-8078-ef9bb83e8be1}\fxmonitor@mozilla.org.xpi [2018-09-10]
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-07-18] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-07-18] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-07-18] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-09-06] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-09-06] (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-03] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8522912 2018-08-07] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2330224 2018-07-28] (ESET)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-09] (Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2205504 2018-07-19] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3075400 2018-07-19] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2018-05-05] ()
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-15] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11293936 2018-04-03] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [106904 2018-08-03] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (Apple Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-03] ()
R3 ASUSSC150; C:\WINDOWS\system32\DRIVERS\ASUSSC150.sys [3805696 2016-12-07] (ASUSTeK)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2017-06-19] (Windows (R) Win 7 DDK provider)
S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2017-06-19] (Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [143624 2018-07-28] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [109920 2018-07-28] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-02-19] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [196112 2018-07-28] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50144 2018-07-28] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [82816 2018-07-28] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [110376 2018-07-28] (ESET)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [55232 2018-03-23] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_adc520364db29861\nvlddmkm.sys [17213832 2018-09-06] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-07-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-06-08] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [65792 2018-04-24] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Realtek )
S3 RZSURROUNDVADService; C:\WINDOWS\system32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Windows (R) Win 7 DDK provider)
S3 smbdirect; C:\WINDOWS\System32\DRIVERS\smbdirect.sys [152064 2018-04-12] (Microsoft Corporation)
S3 sonarworks_VirtualDevice; C:\WINDOWS\system32\DRIVERS\sonarworks.sys [435392 2017-10-06] (Sonarworks)
S3 SplitCamAudio; C:\WINDOWS\system32\drivers\SplitCamAudio.sys [33904 2017-08-11] (SplitCam Co.)
S3 splitcam_hd_driver; C:\WINDOWS\system32\DRIVERS\splitcam_hd_driver.sys [38000 2017-08-11] (Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 usbaudio2; C:\WINDOWS\system32\DRIVERS\usbaudio2.sys [229888 2018-04-12] (Microsoft Corporation)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [44544 2018-04-12] (Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [48656 2018-09-14] (Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-15 14:20 - 2018-09-15 14:20 - 000016641 _____ C:\Users\Home\Desktop\FRST.txt
2018-09-15 13:33 - 2018-09-15 14:20 - 000000000 ____D C:\FRST
2018-09-15 13:32 - 2018-09-15 13:32 - 002413568 _____ (Farbar) C:\Users\Home\Desktop\FRST64.exe
2018-09-14 20:30 - 2018-09-14 21:44 - 000000000 ____D C:\Program Files (x86)\S.K.I.L.L
2018-09-14 20:30 - 2018-09-14 20:30 - 000000898 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\S.K.I.L.L. - Special Force 2.lnk
2018-09-14 20:30 - 2018-09-14 20:30 - 000000886 _____ C:\Users\Public\Desktop\S.K.I.L.L..lnk
2018-09-14 18:34 - 2018-09-14 18:34 - 000000222 _____ C:\Users\Home\Desktop\S.K.I.L.L. - Special Force 2.url
2018-09-12 18:48 - 2018-08-31 09:46 - 000542504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-09-12 18:48 - 2018-08-31 09:45 - 000348328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-09-12 18:48 - 2018-08-31 09:43 - 001524152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-09-12 18:48 - 2018-08-31 09:42 - 001636232 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-09-12 18:48 - 2018-08-31 09:27 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-09-12 18:48 - 2018-08-31 09:27 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2018-09-12 18:48 - 2018-08-31 09:26 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2018-09-12 18:48 - 2018-08-31 09:25 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\spp.dll
2018-09-12 18:48 - 2018-08-31 09:25 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2018-09-12 18:48 - 2018-08-31 09:24 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2018-09-12 18:48 - 2018-08-31 09:24 - 000482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2018-09-12 18:48 - 2018-08-31 09:24 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-09-12 18:48 - 2018-08-31 09:23 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-09-12 18:48 - 2018-08-31 09:23 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2018-09-12 18:48 - 2018-08-31 09:22 - 001855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-09-12 18:48 - 2018-08-31 09:22 - 001661440 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-09-12 18:48 - 2018-08-31 08:55 - 001455960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-09-12 18:48 - 2018-08-31 08:53 - 001327504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2018-09-12 18:48 - 2018-08-31 08:41 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-09-12 18:48 - 2018-08-31 08:41 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2018-09-12 18:48 - 2018-08-31 08:40 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spp.dll
2018-09-12 18:48 - 2018-08-31 08:37 - 001585664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-09-12 18:48 - 2018-08-31 08:37 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2018-09-12 18:48 - 2018-08-31 08:37 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-09-12 18:48 - 2018-08-31 08:36 - 001469952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-09-12 18:48 - 2018-08-31 05:50 - 000273720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-09-12 18:48 - 2018-08-31 05:50 - 000270648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-09-12 18:48 - 2018-08-31 05:44 - 001222440 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-09-12 18:48 - 2018-08-31 05:44 - 001064744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-09-12 18:48 - 2018-08-31 05:44 - 001030952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-09-12 18:48 - 2018-08-31 05:44 - 000568600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-09-12 18:48 - 2018-08-31 05:44 - 000136488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-09-12 18:48 - 2018-08-31 05:44 - 000076256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-09-12 18:48 - 2018-08-31 05:43 - 002719216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-09-12 18:48 - 2018-08-31 05:43 - 000722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 009090016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-09-12 18:48 - 2018-08-31 05:42 - 007520064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 007436192 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 002824672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-09-12 18:48 - 2018-08-31 05:42 - 002461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 001767064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 001458552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-09-12 18:48 - 2018-08-31 05:42 - 001258352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-09-12 18:48 - 2018-08-31 05:42 - 001142000 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-09-12 18:48 - 2018-08-31 05:42 - 001097720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 000983080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-09-12 18:48 - 2018-08-31 05:42 - 000885928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 000632296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 000604640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-09-12 18:48 - 2018-08-31 05:42 - 000527328 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 000494472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 000155112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 006570040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 006043680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 001989496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 001514352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 001129728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 000568568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 000453104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 000134936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2018-09-12 18:48 - 2018-08-31 05:26 - 025847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-09-12 18:48 - 2018-08-31 05:21 - 022008320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-09-12 18:48 - 2018-08-31 05:20 - 022715904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-09-12 18:48 - 2018-08-31 05:18 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-09-12 18:48 - 2018-08-31 05:17 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-09-12 18:48 - 2018-08-31 05:17 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\netevent.dll
2018-09-12 18:48 - 2018-08-31 05:16 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-09-12 18:48 - 2018-08-31 05:16 - 006661120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-09-12 18:48 - 2018-08-31 05:16 - 004382720 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-09-12 18:48 - 2018-08-31 05:15 - 007577088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-09-12 18:48 - 2018-08-31 05:15 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-09-12 18:48 - 2018-08-31 05:15 - 003392512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-09-12 18:48 - 2018-08-31 05:15 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-09-12 18:48 - 2018-08-31 05:15 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-09-12 18:48 - 2018-08-31 05:15 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2018-09-12 18:48 - 2018-08-31 05:14 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-09-12 18:48 - 2018-08-31 05:14 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-09-12 18:48 - 2018-08-31 05:14 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-09-12 18:48 - 2018-08-31 05:14 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-09-12 18:48 - 2018-08-31 05:14 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-09-12 18:48 - 2018-08-31 05:13 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-09-12 18:48 - 2018-08-31 05:13 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-09-12 18:48 - 2018-08-31 05:13 - 000402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2018-09-12 18:48 - 2018-08-31 05:12 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-09-12 18:48 - 2018-08-31 05:12 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netevent.dll
2018-09-12 18:48 - 2018-08-31 05:11 - 002236928 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-09-12 18:48 - 2018-08-31 05:11 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-09-12 18:48 - 2018-08-31 05:11 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-09-12 18:48 - 2018-08-31 05:11 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-09-12 18:48 - 2018-08-31 05:11 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-09-12 18:48 - 2018-08-31 05:11 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-09-12 18:48 - 2018-08-31 05:11 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-09-12 18:48 - 2018-08-31 05:10 - 005777920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 001375744 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-09-12 18:48 - 2018-08-31 05:09 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-09-12 18:48 - 2018-08-31 05:09 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-09-12 18:48 - 2018-08-31 05:08 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-09-12 18:48 - 2018-08-31 05:07 - 001627648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-09-12 18:48 - 2018-08-31 05:07 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-09-12 18:48 - 2018-08-31 05:07 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-09-12 18:48 - 2018-08-31 05:06 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-09-12 18:48 - 2018-08-31 03:57 - 000001308 _____ C:\WINDOWS\system32\tcbres.wim
2018-09-12 18:48 - 2018-08-28 09:17 - 023862784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-09-12 18:48 - 2018-08-28 08:56 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-09-12 18:48 - 2018-08-28 08:49 - 000677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-09-12 18:48 - 2018-08-28 08:48 - 001274368 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2018-09-12 18:48 - 2018-08-28 08:45 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2018-09-12 18:48 - 2018-08-28 07:51 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2018-09-12 18:48 - 2018-08-14 04:14 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2018-09-12 18:48 - 2018-08-14 04:14 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2018-09-12 18:48 - 2018-08-09 11:37 - 002267944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2018-09-12 18:48 - 2018-08-09 11:32 - 004527680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-09-12 18:48 - 2018-08-09 11:31 - 001617728 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-09-12 18:48 - 2018-08-09 11:31 - 000766872 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-09-12 18:48 - 2018-08-09 11:31 - 000253544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2018-09-12 18:48 - 2018-08-09 11:31 - 000236624 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-09-12 18:48 - 2018-08-09 11:17 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2018-09-12 18:48 - 2018-08-09 11:16 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-09-12 18:48 - 2018-08-09 11:14 - 012709376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-09-12 18:48 - 2018-08-09 11:14 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2018-09-12 18:48 - 2018-08-09 11:14 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollUI.dll
2018-09-12 18:48 - 2018-08-09 11:14 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2018-09-12 18:48 - 2018-08-09 11:13 - 000521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2018-09-12 18:48 - 2018-08-09 11:13 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\certreq.exe
2018-09-12 18:48 - 2018-08-09 11:13 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-09-12 18:48 - 2018-08-09 11:13 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsExt.dll
2018-09-12 18:48 - 2018-08-09 11:12 - 002084864 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-09-12 18:48 - 2018-08-09 11:12 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2018-09-12 18:48 - 2018-08-09 11:12 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-09-12 18:48 - 2018-08-09 11:11 - 003652608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-09-12 18:48 - 2018-08-09 11:11 - 002051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2018-09-12 18:48 - 2018-08-09 11:11 - 001004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2018-09-12 18:48 - 2018-08-09 11:11 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2018-09-12 18:48 - 2018-08-09 11:11 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2018-09-12 18:48 - 2018-08-09 11:10 - 001557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2018-09-12 18:48 - 2018-08-09 11:10 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2018-09-12 18:48 - 2018-08-09 11:10 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-09-12 18:48 - 2018-08-09 11:09 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2018-09-12 18:48 - 2018-08-09 11:09 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2018-09-12 18:48 - 2018-08-09 11:09 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2018-09-12 18:48 - 2018-08-09 11:09 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageInspector.exe
2018-09-12 18:48 - 2018-08-09 10:38 - 001538976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2018-09-12 18:48 - 2018-08-09 10:36 - 000660896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2018-09-12 18:48 - 2018-08-09 10:36 - 000221120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2018-09-12 18:48 - 2018-08-09 10:24 - 011901952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-09-12 18:48 - 2018-08-09 10:24 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2018-09-12 18:48 - 2018-08-09 10:23 - 003397632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-09-12 18:48 - 2018-08-09 10:23 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2018-09-12 18:48 - 2018-08-09 10:23 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollUI.dll
2018-09-12 18:48 - 2018-08-09 10:22 - 001452544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2018-09-12 18:48 - 2018-08-09 10:22 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-09-12 18:48 - 2018-08-09 10:22 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2018-09-12 18:48 - 2018-08-09 10:22 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certreq.exe
2018-09-12 18:48 - 2018-08-09 10:21 - 002894848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-09-12 18:48 - 2018-08-09 10:21 - 002016768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-09-12 18:48 - 2018-08-09 10:21 - 001274368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2018-09-12 18:48 - 2018-08-09 10:21 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2018-09-12 18:48 - 2018-08-09 10:20 - 002401792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2018-09-12 18:48 - 2018-08-09 10:20 - 000423424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2018-09-12 18:48 - 2018-08-09 10:20 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2018-09-12 18:48 - 2018-08-09 10:20 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2018-09-12 18:48 - 2018-08-09 10:19 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2018-09-12 18:48 - 2018-08-09 07:02 - 001035144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-09-12 18:48 - 2018-08-09 07:01 - 000777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2018-09-12 18:48 - 2018-08-09 06:55 - 000230304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2018-09-12 18:48 - 2018-08-09 06:54 - 001019016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-09-12 18:48 - 2018-08-09 06:54 - 000709824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-09-12 18:48 - 2018-08-09 06:54 - 000375704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-09-12 18:48 - 2018-08-09 06:54 - 000203568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2018-09-12 18:48 - 2018-08-09 06:54 - 000170912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-09-12 18:48 - 2018-08-09 06:53 - 002765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-09-12 18:48 - 2018-08-09 06:53 - 001947720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-09-12 18:48 - 2018-08-09 06:53 - 001026456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-09-12 18:48 - 2018-08-09 06:53 - 000932136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-09-12 18:48 - 2018-08-09 06:53 - 000714792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-09-12 18:48 - 2018-08-09 06:53 - 000482480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-09-12 18:48 - 2018-08-09 06:53 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-09-12 18:48 - 2018-08-09 06:53 - 000125600 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2018-09-12 18:48 - 2018-08-09 06:30 - 000829856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-09-12 18:48 - 2018-08-09 06:30 - 000183992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2018-09-12 18:48 - 2018-08-09 06:29 - 002253584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-09-12 18:48 - 2018-08-09 06:29 - 001620880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-09-12 18:48 - 2018-08-09 06:29 - 001174552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2018-09-12 18:48 - 2018-08-09 06:29 - 000581696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2018-09-12 18:48 - 2018-08-09 06:29 - 000099208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2018-09-12 18:48 - 2018-08-09 06:28 - 003395072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-09-12 18:48 - 2018-08-09 06:28 - 001589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2018-09-12 18:48 - 2018-08-09 06:27 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-09-12 18:48 - 2018-08-09 06:27 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2018-09-12 18:48 - 2018-08-09 06:27 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2018-09-12 18:48 - 2018-08-09 06:26 - 000990720 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2018-09-12 18:48 - 2018-08-09 06:26 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2018-09-12 18:48 - 2018-08-09 06:26 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2018-09-12 18:48 - 2018-08-09 06:26 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-09-12 18:48 - 2018-08-09 06:26 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsAuth.dll
2018-09-12 18:48 - 2018-08-09 06:26 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsCfg.dll
2018-09-12 18:48 - 2018-08-09 06:26 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 000797184 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 000460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2018-09-12 18:48 - 2018-08-09 06:24 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-09-12 18:48 - 2018-08-09 06:24 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-09-12 18:48 - 2018-08-09 06:23 - 003148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2018-09-12 18:48 - 2018-08-09 06:23 - 002904064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-09-12 18:48 - 2018-08-09 06:23 - 002172928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-09-12 18:48 - 2018-08-09 06:23 - 000916992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-09-12 18:48 - 2018-08-09 06:22 - 004615680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-09-12 18:48 - 2018-08-09 06:22 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-09-12 18:48 - 2018-08-09 06:22 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-09-12 18:48 - 2018-08-09 06:22 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2018-09-12 18:48 - 2018-08-09 06:21 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-09-12 18:48 - 2018-08-09 06:13 - 001189376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2018-09-12 18:48 - 2018-08-09 06:13 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe
2018-09-12 18:48 - 2018-08-09 06:12 - 000652288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsAuth.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsCfg.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2018-09-12 18:48 - 2018-08-09 06:10 - 002893824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2018-09-12 18:48 - 2018-08-09 06:10 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-09-12 18:48 - 2018-08-09 06:10 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-09-12 18:48 - 2018-08-09 06:09 - 004191232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-09-12 18:48 - 2018-08-09 06:09 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-09-12 18:48 - 2018-08-09 06:08 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2018-09-12 18:48 - 2018-08-09 05:08 - 000806416 _____ C:\WINDOWS\SysWOW64\locale.nls
2018-09-12 18:48 - 2018-08-09 05:08 - 000806416 _____ C:\WINDOWS\system32\locale.nls
2018-09-10 16:41 - 2018-09-06 03:27 - 000132408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2018-09-10 16:39 - 2018-09-06 20:27 - 040346912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 035251264 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 004352800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 003768768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 002014832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439924.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 001565248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 001467832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439924.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 001420224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 001218624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 001093568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 000749960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 000629120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 000608728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 000518592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 031250800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 025966472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 017756464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 015170504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 013732232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 011277048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 004127984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 001358608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 001349272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 001159392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 001071272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 001065768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 000906904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 000816672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 000654864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 000636064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2018-08-31 21:53 - 2018-08-22 18:13 - 002016600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439907.dll
2018-08-31 21:53 - 2018-08-22 18:13 - 001469144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439907.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-15 14:19 - 2018-05-12 14:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-09-15 13:38 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-09-15 13:33 - 2018-05-12 14:37 - 003283284 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-09-15 13:33 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2018-09-15 13:33 - 2017-11-26 20:25 - 001848288 _____ C:\WINDOWS\system32\perfh01B.dat
2018-09-15 13:33 - 2017-11-26 20:25 - 000568944 _____ C:\WINDOWS\system32\perfc01B.dat
2018-09-15 13:30 - 2017-11-16 15:29 - 000000000 ____D C:\ProgramData\NVIDIA
2018-09-15 13:28 - 2017-11-16 15:34 - 000000000 ____D C:\Users\Home\AppData\LocalLow\Mozilla
2018-09-15 13:27 - 2018-05-12 14:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-09-15 13:27 - 2018-03-08 18:04 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2018-09-14 21:44 - 2018-01-03 16:20 - 000000000 ____D C:\Program Files (x86)\Steam
2018-09-14 21:44 - 2017-11-18 15:16 - 000000000 ____D C:\Users\Home\AppData\Local\CrashDumps
2018-09-14 21:44 - 2017-11-17 18:04 - 000048656 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2018-09-14 17:45 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-09-14 17:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-09-14 17:44 - 2018-05-12 14:33 - 000004208 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{27195F37-9EEA-45E2-9B40-EF1C10FEDF9B}
2018-09-13 16:48 - 2018-07-15 10:26 - 000000000 ____D C:\Program Files\Tom Clancy's Ghost Recon Wildlands
2018-09-12 23:23 - 2018-05-12 14:27 - 000407304 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-09-12 23:23 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2018-09-12 23:23 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-09-12 23:23 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-09-12 23:23 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-09-12 23:23 - 2018-04-11 23:04 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2018-09-12 23:23 - 2018-04-11 23:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-09-12 18:51 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-09-12 16:59 - 2017-11-16 15:24 - 000000000 ____D C:\Users\Home\AppData\Local\Packages
2018-09-12 16:05 - 2017-11-16 15:32 - 000000000 ____D C:\Users\Home\AppData\Local\PlaceholderTileLogoFolder
2018-09-11 19:22 - 2017-11-24 19:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-09-11 19:21 - 2017-11-24 19:23 - 139184408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-09-11 18:06 - 2018-02-26 18:04 - 000000000 ____D C:\Users\Home\AppData\Roaming\vlc
2018-09-10 16:41 - 2018-05-26 17:23 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-09-10 16:41 - 2018-01-25 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-09-10 16:41 - 2017-11-16 15:29 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-09-10 16:37 - 2017-11-17 00:23 - 000000000 ____D C:\Program Files\CCleaner
2018-09-09 11:51 - 2017-11-16 15:34 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-09-09 11:51 - 2017-11-16 15:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-09-06 20:26 - 2018-05-12 13:05 - 004858088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-09-06 17:14 - 2017-11-16 15:34 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-09-06 04:58 - 2018-05-12 13:05 - 000044335 _____ C:\WINDOWS\system32\nvinfo.pb
2018-09-06 03:18 - 2018-01-25 19:11 - 005947704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-09-06 03:18 - 2018-01-25 19:11 - 002612616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-09-06 03:17 - 2018-01-25 19:11 - 008330242 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-09-06 03:17 - 2018-01-25 19:11 - 001767280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-09-06 03:17 - 2018-01-25 19:11 - 000634248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-09-06 03:17 - 2018-01-25 19:11 - 000450416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-09-06 03:17 - 2018-01-25 19:11 - 000124112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2018-09-06 03:17 - 2018-01-25 19:11 - 000083256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-09-05 20:12 - 2018-01-25 19:11 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2018-09-05 16:22 - 2018-05-12 14:33 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-09-05 01:04 - 2018-04-12 01:41 - 000835144 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-09-05 01:04 - 2018-04-12 01:41 - 000179808 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-02 22:03 - 2018-05-12 16:48 - 000000000 ____D C:\Users\Home\AppData\Local\D3DSCache
2018-09-01 19:34 - 2017-12-11 19:22 - 000000000 ____D C:\Users\Home\Documents\_DOKUMENTY
2018-08-31 21:55 - 2017-11-16 16:22 - 000000000 ____D C:\Users\Home\AppData\Local\NVIDIA
2018-08-24 18:31 - 2018-02-07 21:52 - 000000000 ____D C:\Program Files (x86)\Microsoft Office

==================== Files in the root of some directories =======

2017-12-11 21:48 - 2017-12-11 21:48 - 000000017 _____ () C:\Users\Home\AppData\Local\resmon.resmoncfg

Some files in TEMP:
====================
2018-09-12 18:31 - 2018-09-14 21:45 - 000000093 _____ () C:\Users\Home\AppData\Local\Temp\941694f64bc4f7408bff242cb0fe56c5.dll
2018-09-12 18:31 - 2018-09-15 00:14 - 000000000 _____ () C:\Users\Home\AppData\Local\Temp\ed6e8e8c4b588010c8f64663407c6196.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-12 14:27

==================== End of FRST.txt ============================







Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15.09.2018
Ran by Home (15-09-2018 14:21:11)
Running from C:\Users\Home\Desktop
Windows 10 Pro Version 1803 17134.285 (X64) (2018-05-12 12:33:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-579719181-2443963251-1893562305-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-579719181-2443963251-1893562305-503 - Limited - Disabled)
Guest (S-1-5-21-579719181-2443963251-1893562305-501 - Limited - Disabled)
Home (S-1-5-21-579719181-2443963251-1893562305-1001 - Administrator - Enabled) => C:\Users\Home
WDAGUtilityAccount (S-1-5-21-579719181-2443963251-1893562305-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\uTorrent) (Version: 3.4.9.42606 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated)
Aktualizácie NVIDIA 31.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.2.0.0 - NVIDIA Corporation) Hidden
ASUS STRIX SOUNDCARD SERIES AUDIO DEVICE (HKLM-x32\...\{fc2c1d81-3504-4425-a84f-9261197f34a4}) (Version: 1.1.18 - ASUSTeKcomputer.Inc)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - )
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.56.37170 - Electronic Arts)
Bloody6 (HKLM-x32\...\Bloody3) (Version: 18.07.0009 - Bloody)
CCleaner (HKLM\...\CCleaner) (Version: 5.42 - Piriform)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.2014 - CyberLink Corp.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 399.24 - NVIDIA Corporation) Hidden
ESET Security (HKLM\...\{8B35CE46-1F7C-4B22-815E-AB6DC63EE3AB}) (Version: 11.0.149.0 - ESET, spol. s r.o.)
HP DeskJet 4530 series Basic Device Software (HKLM\...\{DC9FEEEC-6FB3-423E-A2FF-5DB116C8DC17}) (Version: 40.11.1122.1796 - HP Inc.)
HP DeskJet 4530 series Help (HKLM-x32\...\{C9F38DCB-E73A-4C5F-A82E-CB2E0848A83B}) (Version: 36.0.0 - Hewlett Packard)
HP Dropbox Plugin (HKLM-x32\...\{D12BC084-97D6-438A-AA7C-5962608D17A0}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{BFA42100-DB54-467A-BB87-CF70732B4065}) (Version: 36.0.41.58587 - HP)
CheckDevicesConfigurator (HKLM\...\{9BCCF4B4-5C3B-48B2-9D6F-2F3C3B2344EE}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
ChkHwId (HKLM-x32\...\{F80CB04D-6EDA-4417-8792-2C2CBC0AE389}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
LauncherSetup Install (HKLM\...\{2A84B2C8-D11F-4305-9E62-FC1C87EAF093}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
Malwarebytes verzia 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Microsoft Office 365 ProPlus - sk-sk (HKLM\...\O365ProPlusRetail - sk-sk) (Version: 16.0.9126.2275 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 62.0 (x64 sk) (HKLM\...\Mozilla Firefox 62.0 (x64 sk)) (Version: 62.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 62.0.0.6816 - Mozilla)
Mozilla Thunderbird 52.9.1 (x86 sk) (HKLM-x32\...\Mozilla Thunderbird 52.9.1 (x86 sk)) (Version: 52.9.1 - Mozilla)
NahimicSettingsConfigurator (HKLM\...\{0CE3B53F-72B5-45B9-8052-E6D31886EE02}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
NVIDIA 3D Vision radič ovládača 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.14.1.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.1.48 - NVIDIA Corporation)
NVIDIA Grafický ovládač 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 399.24 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 399.24 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9126.2275 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9126.2275 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9126.2275 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.24.5022 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 399.24 - NVIDIA Corporation) Hidden
Piercing Blow (HKLM-x32\...\Piercing Blow) (Version: 1.0.0 - Zepetto)
Product Improvement Study for HP DeskJet 4530 series (HKLM\...\{C8228528-C6DF-4C79-8E88-C314D8CC778C}) (Version: 40.11.1122.1796 - HP Inc.)
ProductDaemonSetup (HKLM\...\{DF5085A6-6CF9-4073-AF16-F0744D0F75E3}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Python 3.6.5 (32-bit) (HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\{3346977b-49da-4095-8f4d-f56f103e52e9}) (Version: 3.6.5150.0 - Python Software Foundation)
Python 3.6.5 Core Interpreter (32-bit) (HKLM-x32\...\{58E1C809-82C5-4EDF-B69B-188A6C81F21F}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Development Libraries (32-bit) (HKLM-x32\...\{21FD2EE0-8D55-49DC-A1B0-771696DDEE98}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Documentation (32-bit) (HKLM-x32\...\{5C613D87-0AED-48A9-A216-3A3783463D6C}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Executables (32-bit) (HKLM-x32\...\{9107CF1A-A09C-4035-B29E-E79B4098AB8C}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 pip Bootstrap (32-bit) (HKLM-x32\...\{C024F06C-0E37-4529-945F-7920A9CFFD78}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Standard Library (32-bit) (HKLM-x32\...\{8C2E8A7D-95CC-491C-AB9C-DE785A137D00}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Tcl/Tk Support (32-bit) (HKLM-x32\...\{052FD2FB-034D-4CDD-864E-798DE45C742A}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Test Suite (32-bit) (HKLM-x32\...\{86533809-919A-4858-AFC4-4226B86C5291}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Utility Scripts (32-bit) (HKLM-x32\...\{5C0C82E9-B580-4EE4-894A-4451A23B0E2C}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{8A66FEC2-E443-4219-B9AC-F9B10607B57C}) (Version: 3.6.6295.0 - Python Software Foundation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7841 - Realtek Semiconductor Corp.)
Reference 4 AAX plugin for ProTools 10 (HKLM-x32\...\{1515D06B-F9D4-4065-8A48-84E4263081CB}) (Version: 4.0.85 - Sonarworks)
Reference 4 AAX plugin for ProTools 11/12 (HKLM\...\{C91F2185-E922-4C45-9CDC-BD7073827481}) (Version: 4.0.85 - Sonarworks)
Reference 4 RTAS plugin (HKLM-x32\...\{E32E4290-9A5B-47E9-B599-3A14D3120E03}) (Version: 4.0.85 - Sonarworks)
Reference 4 VST plugin (32-bit) (HKLM-x32\...\{AAE399B2-B8ED-4D4A-A615-8B0A9FDF0BFE}) (Version: 4.0.85 - Sonarworks)
Reference 4 VST plugin (64-bit) (HKLM\...\{0079AB1F-1EEC-450F-A9A1-465BDF24273C}) (Version: 4.0.85 - Sonarworks)
ROCCAT Isku Keyboard Driver (HKLM-x32\...\{4ABAF918-A6BD-43D8-AE0B-5292034B14CB}) (Version: - Roccat GmbH)
S.K.I.L.L. - Special Force 2 (HKLM-x32\...\Special Force 2 Beta_is1) (Version: - Gameforge 4D GmbH)
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
SC150 Audio Driver Package (HKLM\...\{1F4FBEA8-B59A-4A7F-A09B-6DF69770F0D8}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
SC200 Audio Driver Package (HKLM\...\{978DB748-A411-4554-8540-397B244E62F8}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
Shotcut (HKLM-x32\...\Shotcut) (Version: - )
SonicRadarSetup (HKLM\...\{796FC1B7-6502-4AC5-BC84-F3F699B0D201}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
SonicStudioSetup (HKLM\...\{5708BBF7-F94E-4F74-9618-43FF754F4ABE}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.1.3629 - TeamViewer)
Tom Clancy's Ghost Recon Wildlands (HKLM\...\Tom Clancys Ghost Recon Wildlands_is1) (Version: 1.0 - )
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.10 - Ghisler Software GmbH)
Uplay (HKLM-x32\...\Uplay) (Version: 45.1 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-08-16] (Cyberlink)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-07-28] (ESET)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-08-16] (Cyberlink)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-07-28] (ESET)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-09-06] (NVIDIA Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-07-28] (ESET)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00552B8F-4622-409F-8CC8-CAB1BF003C1A} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-07-19] (NVIDIA Corporation)
Task: {26044651-777C-4077-9FF6-6993AA6F1F96} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
Task: {2CD60F52-86DE-4926-89BF-9AFAF2170F1F} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-07] (Microsoft Corporation)
Task: {3916BDB5-5C8D-4419-BFEB-EBF0B7FF7885} - System32\Tasks\S-1-5-21-579719181-2443963251-1893562305-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-04-12] (Microsoft Corporation)
Task: {3D781854-BD83-48C1-99E0-1E6C10A76456} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-19] (NVIDIA Corporation)
Task: {3DA26E3B-0545-4D2B-8EDD-1758CBD32CCC} - System32\Tasks\nhAsusStrixUILauncherRun => C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixUILauncher.exe [2017-07-27] (ASUSTeKcomputer.Inc)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {6D784525-FBDD-4036-B0E3-FD05B93F164A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-19] (NVIDIA Corporation)
Task: {70941F52-D405-45DF-8591-9EF736192C1E} - System32\Tasks\HPCustParticipation HP DeskJet 4530 series => C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPCustPartic.exe [2017-04-06] (HP Inc.)
Task: {712A02F8-1787-413D-8435-584C9C2D150A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-19] (NVIDIA Corporation)
Task: {78891524-5F89-413E-8D46-0650B25F4977} - System32\Tasks\R@1n-KMS\Office16ProPlus => wmic [Argument = path SoftwareLicensingProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate]
Task: {8B7C89BA-D80D-42F5-97FC-99DCB75FA8E4} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-07-19] (NVIDIA Corporation)
Task: {91CF0A0B-C369-4084-B141-8218A39C0474} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-08-24] (Microsoft Corporation)
Task: {978FC6FD-BA3D-43EC-99CB-067A4F4AA1CF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-07] (Microsoft Corporation)
Task: {9BAAD1B5-8EB4-4994-8133-30A2E1BA83F8} - System32\Tasks\nhAsusStrixSvc64Run => C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixSvc64.exe [2017-07-27] ()
Task: {A4EDB420-203E-4B3D-9E4A-990964387AB5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-08-24] (Microsoft Corporation)
Task: {AB194620-EF6F-4626-A7D9-C71D47E6F2E1} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-08-24] (Microsoft Corporation)
Task: {B6B7E0F1-95E9-43D5-BEA0-53138DB6179D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-04-12] (Piriform Ltd)
Task: {C1B6D214-B7E4-4549-BDAF-69EBE67ED383} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-19] (NVIDIA Corporation)
Task: {C6040819-6856-4B6D-9B98-25758F7820E6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-04-12] (Piriform Ltd)
Task: {C8D14FBF-D769-4532-B88C-B92FE9A5DB2C} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
Task: {C8EC41E1-58CA-43D2-B706-E77DE14BE672} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-08-24] (Microsoft Corporation)
Task: {CCB4AC26-9C59-4F87-9A8D-6A07F0FCD09D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-08-24] (Microsoft Corporation)
Task: {D495E185-8E8A-455D-8B0A-5E0AC1C5145A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
Task: {D6AF4A80-7D1E-4274-97DA-90A7AAD624B5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {D6CFE5E5-28E7-4BDE-8C8C-F905A0834300} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
Task: {DA669DAB-543C-492F-A25D-C46D2CAE30C3} - System32\Tasks\R@1n-KMS\Office16VisioPro => wmic [Argument = path SoftwareLicensingProduct where (ID="6bf301c1-b94a-43e9-ba31-d494598c47fb") call Activate]
Task: {DBDA5BE1-C930-4BC9-B59F-A3846E503023} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-07-19] (NVIDIA Corporation)
Task: {EE157B51-FFE9-4C21-9847-99E78873894D} - System32\Tasks\R@1n-KMS\Office16ProjectPro => wmic [Argument = path SoftwareLicensingProduct where (ID="4f414197-0fc2-4c01-b68a-86cbb9ac254c") call Activate]
Task: {F211B266-4009-4553-A74E-94DF13D492C2} - System32\Tasks\nhAsusStrixSvc32Run => C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixSvc32.exe [2017-07-27] ()

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2017-11-16 15:23 - 2013-07-03 21:32 - 000936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2017-11-24 23:38 - 2018-05-05 19:51 - 000076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2018-05-26 16:50 - 2018-07-19 22:20 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-07-27 06:25 - 2017-07-27 06:25 - 000251576 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixDevProps.dll
2017-07-27 06:26 - 2017-07-27 06:26 - 000353464 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixOSD.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-09-12 18:48 - 2018-08-31 05:12 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-05-26 16:50 - 2018-07-19 22:19 - 095437352 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-05-26 16:50 - 2018-07-19 22:19 - 003029032 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll
2018-05-26 16:50 - 2018-07-19 22:19 - 000149544 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll
2018-07-09 18:12 - 2018-07-20 17:58 - 016442096 _____ () C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe
2018-04-09 12:48 - 2018-04-09 12:48 - 000061408 _____ () C:\Program Files\CCleaner\branding.dll
2018-04-12 22:15 - 2018-04-12 22:15 - 000082184 _____ () C:\Program Files\CCleaner\lang\lang-1051.dll
2017-07-27 06:23 - 2017-07-27 06:23 - 003330744 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixsvc32.exe
2017-07-27 06:26 - 2017-07-27 06:26 - 000324280 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixsvc64.exe
2018-08-30 16:08 - 2018-08-30 16:08 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-08-30 16:08 - 2018-08-30 16:08 - 069283840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-11-16 15:57 - 2017-11-16 15:58 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-08-17 20:39 - 2018-08-17 20:39 - 000049664 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-05-04 16:26 - 2018-05-04 16:27 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-08-30 16:08 - 2018-08-30 16:08 - 003699200 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-08-30 16:08 - 2018-08-30 16:08 - 000035328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-17 20:39 - 2018-08-17 20:39 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-08-17 20:39 - 2018-08-17 20:39 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-03-30 15:20 - 2018-03-30 15:20 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-08-30 16:08 - 2018-08-30 16:08 - 014333440 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-08-30 16:08 - 2018-08-30 16:08 - 003544576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-08-30 16:08 - 2018-08-30 16:08 - 002869248 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-30 16:08 - 2018-08-30 16:08 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-27 13:27 - 2018-07-27 13:27 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-11-16 15:23 - 2018-09-15 13:27 - 000034448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2017-11-16 15:23 - 2013-07-03 21:32 - 000104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2018-01-25 19:20 - 2018-07-19 22:19 - 001032744 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-07-27 06:23 - 2017-07-27 06:23 - 000129208 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\sradarlauncher.dll
2018-07-26 22:09 - 2018-01-26 11:50 - 000103152 _____ () C:\Program Files (x86)\Bloody6\Bloody6\DLL\DLL_ZoomControl.dll
2017-07-27 06:20 - 2017-07-27 06:20 - 000221368 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixDevProps.dll
2017-07-27 06:20 - 2017-07-27 06:20 - 000321208 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixOSD.dll
2018-07-26 22:09 - 2017-04-17 10:43 - 003852800 _____ () C:\Program Files (x86)\Bloody6\Bloody6\Data\RES\Forms\Internet_Advertisement\Internet_Advertisement_DLL.dll
2017-11-16 19:20 - 2010-11-04 12:48 - 000061440 _____ () C:\Program Files (x86)\ROCCAT\Isku Keyboard\hiddriver.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-579719181-2443963251-1893562305-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ROCCAT_DarkGlow_1920x1200.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\StartupApproved\Run: => "Power2GoExpress8"
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B51963D0-206B-43A4-8452-5752F6C79EA5}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{F6C1ECF6-DFFF-471F-B95E-83B07349CB1C}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{B6C0F750-1FAE-4F56-AAE3-34B95EB5397E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{CD768ED8-F2CE-4EE1-A282-D4D99B5A86FB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{3264AF04-1D36-4991-80FE-ADFB5C56DCD9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{47378943-7ECA-456C-AFD0-5D6957CFFCD6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{319F41A8-4393-4E07-829A-8F27B43F9976}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{94E7B842-37B7-4039-AFAB-A0BAAA703461}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{16B15372-4885-436D-9987-4188003A6893}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{B20C83A8-D1D1-4CEC-BEC3-B18C469014DF}] => (Allow) LPort=5357
FirewallRules: [{78BF05A7-7177-4AB3-A7FF-FC3DD1DF3B46}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\DeviceSetup.exe
FirewallRules: [{7AD93062-FAF2-49A7-B97D-CA97A9EE13AE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1850C5A2-FD3E-4986-A4BB-6D260402341B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C7AB03F8-1FCB-40DE-BE62-24964A9E3B77}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B5A03BBC-AC8A-4295-81FF-9FD90FF0A025}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FA7E31DE-E6A0-4467-8A53-F18A1F35AF2D}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6B22D482-39FF-4326-9DCD-A6D0B7DC9793}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{12FB76DB-D18C-4640-BD38-4AA58BB4A73A}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F04F930F-6E3D-4582-BB40-1E086647C933}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2FE588B8-6105-43DB-AEDD-A03103453A2A}] => (Allow) C:\Program Files (x86)\Piercing Blow\PiercingBlow.exe
FirewallRules: [{397DB12F-3200-4C66-9191-A0FAE74A8BBE}] => (Allow) C:\Program Files (x86)\Piercing Blow\PiercingBlow.exe
FirewallRules: [{222A24E2-C092-4B8E-A169-30626D638A6D}] => (Allow) C:\Program Files (x86)\Piercing Blow\PiercingBlow.exe
FirewallRules: [{CDA4D975-2BF2-4FC0-81F1-F11BFC34B79C}] => (Allow) C:\Program Files (x86)\Piercing Blow\PiercingBlow.exe
FirewallRules: [{0413A390-4A25-4DE5-9E71-F57EF39C3A65}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{03E871E8-8D73-4DEF-9357-A23DBE7B41DB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{25E05237-17AD-4DC6-B754-B0C849C91FB7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{AF35EE27-FD54-48A7-986B-F4F80EB6859F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{F5D6AEA5-EC06-4E9D-AF9E-D799F046F6AE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{9350BDDA-622A-4C15-8132-3E39F4834B45}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{BA7D91D8-8D32-4D66-95D7-504D41996164}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BABA82CC-DA9B-4C62-A1DC-670430CABDC1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{870DA9B7-1EDC-48E6-9828-ABC1A06D0581}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{E8421258-ECA4-4A6D-8A2F-E43AB999CC45}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{EA4E7A62-0B64-4094-B3DC-96667E3E274E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{99D9DE41-CBE4-4E26-97A1-683227C7F44C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{2F6E97DE-1352-41C1-9041-4E9A64D60033}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4A750EEA-8BD6-4345-882E-03C552544FF0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{D030A9EB-2797-4533-B46C-CD2A5A2B7E22}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{9D3AA0AB-566C-45F7-89FD-9C169B5B2F53}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{F6526F6E-20E3-4840-A938-997B97075237}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{3ECD2F24-247E-4F8D-A152-CBB7C590733F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{289BDB51-0C00-4BCE-8487-1520AF75C646}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{7C3AD04B-74E6-4A33-9DB8-CF02ED910A1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{348337ED-26D8-4028-A24A-68269621F162}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{1E89C5A3-0242-4F18-AA68-F9605B673C79}] => (Allow) C:\Program Files (x86)\S.K.I.L.L\Binaries\Win32\sf2.exe
FirewallRules: [{87B44270-E8FA-40C6-ABEB-EB6B848BC690}] => (Allow) C:\Program Files (x86)\S.K.I.L.L\Binaries\Win32\sf2.exe

==================== Restore Points =========================

26-08-2018 13:08:27 Windows Update
03-09-2018 12:33:06 Scheduled Checkpoint
10-09-2018 16:45:43 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/14/2018 11:57:15 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/14/2018 06:54:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: sf2.exe, verzia: 1.0.60478.0, časová značka: 0x5b5935f3
Názov chybujúceho modulu: nhAsusStrixOSD.dll, verzia: 0.0.0.0, časová značka: 0x59796a1c
Kód výnimky: 0xc0000005
Odstup chyby: 0x00003c83
Identifikácia chybujúceho procesu: 0x888
Čas spustenia chybujúcej aplikácie: 0x01d44c4b7cf3f02f
Cesta chybujúcej aplikácie: C:\Program Files (x86)\Steam\steamapps\common\SKILL\binaries\Win32\sf2.exe
Cesta chybujúceho modulu: C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixOSD.dll
Identifikácia hlásenia: 3ec56760-31b8-4c4d-bb4f-4b46c2a130c1
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/14/2018 06:51:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: sf2.exe, verzia: 1.0.60478.0, časová značka: 0x5b5935f3
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.17134.254, časová značka: 0xbf2f8c99
Kód výnimky: 0xc0000409
Odstup chyby: 0x00062b74
Identifikácia chybujúceho procesu: 0x1120
Čas spustenia chybujúcej aplikácie: 0x01d44c4b3773ffb2
Cesta chybujúcej aplikácie: C:\Program Files (x86)\Steam\steamapps\common\SKILL\binaries\Win32\sf2.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: 75560426-9e1b-4666-8bd2-48f94465b86c
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/14/2018 06:47:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: sf2.exe, verzia: 1.0.60478.0, časová značka: 0x5b5935f3
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.17134.254, časová značka: 0xbf2f8c99
Kód výnimky: 0xc0000409
Odstup chyby: 0x00062b74
Identifikácia chybujúceho procesu: 0x18a0
Čas spustenia chybujúcej aplikácie: 0x01d44c4a9b2e21d7
Cesta chybujúcej aplikácie: C:\Program Files (x86)\Steam\steamapps\common\SKILL\binaries\Win32\sf2.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: ae3a34f8-6574-4836-9439-5385b751717b
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/14/2018 06:46:52 PM) (Source: Steam Client Service) (EventID: 1) (User: )
Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe

Error: (09/14/2018 06:44:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: sf2.exe, verzia: 1.0.60478.0, časová značka: 0x5b5935f3
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.17134.254, časová značka: 0xbf2f8c99
Kód výnimky: 0xc0000409
Odstup chyby: 0x00062b74
Identifikácia chybujúceho procesu: 0x2b8c
Čas spustenia chybujúcej aplikácie: 0x01d44c4a350eabb9
Cesta chybujúcej aplikácie: C:\Program Files (x86)\Steam\steamapps\common\SKILL\binaries\Win32\sf2.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: 9d92e991-0fde-47ab-adc6-5c0631539737
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/14/2018 06:43:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: DFUFG.exe, verzia: 2.2.0.7, časová značka: 0x5811ee3b
Názov chybujúceho modulu: nhAsusStrixOSD.dll, verzia: 0.0.0.0, časová značka: 0x59796a1c
Kód výnimky: 0xc0000005
Odstup chyby: 0x0000591e
Identifikácia chybujúceho procesu: 0x384
Čas spustenia chybujúcej aplikácie: 0x01d44c4a0d59297c
Cesta chybujúcej aplikácie: C:\Program Files (x86)\Steam\steamapps\common\SKILL\DFUFG.exe
Cesta chybujúceho modulu: C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixOSD.dll
Identifikácia hlásenia: ec609e40-45d2-4468-833c-93d400dda6d8
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/14/2018 06:42:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: sf2.exe, verzia: 1.0.60478.0, časová značka: 0x5b5935f3
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.17134.254, časová značka: 0xbf2f8c99
Kód výnimky: 0xc0000409
Odstup chyby: 0x00062b74
Identifikácia chybujúceho procesu: 0x19c4
Čas spustenia chybujúcej aplikácie: 0x01d44c49f26ca57e
Cesta chybujúcej aplikácie: C:\Program Files (x86)\Steam\steamapps\common\SKILL\binaries\Win32\sf2.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: 56725c5a-73a1-4ca9-bdef-c27a61b0fb2f
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:


System errors:
=============
Error: (09/15/2018 01:29:46 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/15/2018 01:27:33 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 23:39:21 on ‎14. ‎9. ‎2018 was unexpected.

Error: (09/15/2018 01:27:28 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684A fatal error occurred processing the restoration data.

Error: (09/14/2018 06:46:52 PM) (Source: DCOM) (EventID: 10016) (User: M-HOME)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user M-HOME\Home SID (S-1-5-21-579719181-2443963251-1893562305-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/14/2018 06:46:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Spustenie služby Steam Client Service zlyhalo kvôli nasledujúcej chybe:
The service did not respond to the start or control request in a timely fashion.

Error: (09/14/2018 06:46:52 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Počas čakania na pripojenie služby Steam Client Service bol dosiahnutý časový limit (30000 ms).

Error: (09/14/2018 06:33:10 PM) (Source: DCOM) (EventID: 10016) (User: M-HOME)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user M-HOME\Home SID (S-1-5-21-579719181-2443963251-1893562305-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/14/2018 05:41:27 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


CodeIntegrity:
===================================

Date: 2018-05-29 14:19:38.791
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixDevProps.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 14:19:38.789
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixOSD.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 14:19:38.327
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixDevProps.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 14:19:38.322
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixOSD.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 06:24:21.769
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixDevProps.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 06:24:21.768
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixOSD.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 06:24:21.313
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixDevProps.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 06:24:21.309
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixOSD.dll that did not meet the Store signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Percentage of memory in use: 33%
Total physical RAM: 8097 MB
Available physical RAM: 5348.33 MB
Total Virtual: 12065 MB
Available Virtual: 8970.09 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:446.57 GB) (Free:177.68 GB) NTFS

\\?\Volume{8077ab68-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{8077ab68-0000-0000-0000-c0aa6f000000}\ () (Fixed) (Total:0.46 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 8077AB68)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=446.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=472 MB) - (Type=27)

==================== End of Addition.txt ============================


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Win10 spomalenie PC
PříspěvekNapsal: 16 zář 2018 00:00 
Offline
Rádce
Rádce

Registrován: 30 pro 2013 22:29
Příspěvky: 2480
Bydliště: Bratislava
Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Nechaj zaskrtnute vsetky nalezy
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj

_________________
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

V pripade spokojnosti je mozne podporit forum. Dakujeme!


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Win10 spomalenie PC
PříspěvekNapsal: 16 zář 2018 11:33 
Offline
Vzorný návštěvník
Vzorný návštěvník

Registrován: 02 čer 2005 18:17
Příspěvky: 44
Bydliště: u internetu
Spustené, ale prebehlo to veľmi rýchlo :?:

# -------------------------------
# Malwarebytes AdwCleaner 7.2.3.1
# -------------------------------
# Build: 09-03-2018
# Database: 2018-09-14.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 09-16-2018
# Duration: 00:00:08
# OS: Windows 10 Pro
# Scanned: 41927
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [1249 octets] - [16/09/2018 12:10:38]
AdwCleaner[S01].txt - [1310 octets] - [16/09/2018 12:23:50]
AdwCleaner_Debug.log - [5356 octets] - [16/09/2018 12:27:11]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ##########


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Win10 spomalenie PC
PříspěvekNapsal: 16 zář 2018 17:41 
Offline
Rádce
Rádce

Registrován: 30 pro 2013 22:29
Příspěvky: 2480
Bydliště: Bratislava
:arrow: Poprosim o obidva nove logy z FRST.

_________________
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

V pripade spokojnosti je mozne podporit forum. Dakujeme!


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Win10 spomalenie PC
PříspěvekNapsal: 17 zář 2018 20:47 
Offline
Vzorný návštěvník
Vzorný návštěvník

Registrován: 02 čer 2005 18:17
Příspěvky: 44
Bydliště: u internetu
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15.09.2018
Ran by Home (administrator) on M-HOME (17-09-2018 21:42:09)
Running from C:\Users\Home\Desktop
Loaded Profiles: Home (Available Profiles: Home)
Platform: Windows 10 Pro Version 1803 17134.285 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(ASUSTeKcomputer.Inc) C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixUILauncher.exe
() C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixSvc32.exe
() C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixSvc64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmds.exe [177928 2018-09-16] (ESET)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8838400 2016-06-07] (Realtek Semiconductor)
HKLM-x32\...\Run: [RoccatIsku] => C:\Program Files (x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE [536576 2013-10-30] (ROCCAT GmbH)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-08-14] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3207968 2018-09-08] (Valve Corporation)
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\Run: [nhAsusStrixUILauncher] => C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixUILauncher.exe [706232 2017-07-27] (ASUSTeKcomputer.Inc)
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [16442096 2018-07-20] ()
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-08-24] (Piriform Ltd)
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\MountPoints2: {23a4d93e-86b6-11e8-af07-305a3a03df57} - "F:\stp-grw.exe"
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\MountPoints2: {4c8f6988-60f6-11e8-aef7-305a3a03df57} - "F:\setup.exe"
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\MountPoints2: {b09ee7b3-13cb-11e8-aebe-305a3a03df57} - "F:\HiSuiteDownLoader.exe"

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2c87aa5c-97ec-4ce3-bba9-4c6cd4a10563}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{dd2f3ffe-e34a-434e-a27a-c6fbfbaa72c1}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.sk/
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-08-24] (Microsoft Corporation)
BHO: No Name -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> No File
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-07-18] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\ssv.dll [2018-07-23] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-23] (Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-18] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-18] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-18] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-07-18] (Microsoft Corporation)

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-579719181-2443963251-1893562305-1001 -> hxxp://www.google.sk/

FireFox:
========
FF DefaultProfile: daxwg1fk.default
FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\daxwg1fk.default [2018-09-17]
FF Homepage: Mozilla\Firefox\Profiles\daxwg1fk.default -> hxxps://www.google.sk
FF Extension: (Adblock Plus) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\daxwg1fk.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-08-31]
FF Extension: (Firefox Monitor) - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\daxwg1fk.default\features\{5965b6d4-dcee-4255-8078-ef9bb83e8be1}\fxmonitor@mozilla.org.xpi [2018-09-10]
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-07-18] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [No File]
FF Plugin-x32: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files (x86)\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-23] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-07-18] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-07-18] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-09-06] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-09-06] (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-03] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8522912 2018-08-07] (Microsoft Corporation)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2260144 2018-09-16] (ESET)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764456 2018-07-19] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2205504 2018-07-19] (Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3075400 2018-07-19] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2018-05-05] ()
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-15] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11293936 2018-04-03] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [106904 2018-08-03] (Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (Apple Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-03] ()
R3 ASUSSC150; C:\WINDOWS\system32\DRIVERS\ASUSSC150.sys [3805696 2016-12-07] (ASUSTeK)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2017-06-19] (Windows (R) Win 7 DDK provider)
S3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [39048 2017-06-19] (Windows (R) Win 7 DDK provider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [141512 2018-09-16] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [109232 2018-09-16] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-02-19] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188824 2018-09-16] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50144 2018-09-16] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [82304 2018-09-16] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [109864 2018-09-16] (ESET)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [55232 2018-03-23] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_adc520364db29861\nvlddmkm.sys [17213832 2018-09-06] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30656 2018-07-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-06-08] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [65792 2018-04-24] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Realtek )
S3 RZSURROUNDVADService; C:\WINDOWS\system32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Windows (R) Win 7 DDK provider)
S3 smbdirect; C:\WINDOWS\System32\DRIVERS\smbdirect.sys [152064 2018-04-12] (Microsoft Corporation)
S3 sonarworks_VirtualDevice; C:\WINDOWS\system32\DRIVERS\sonarworks.sys [435392 2017-10-06] (Sonarworks)
S3 SplitCamAudio; C:\WINDOWS\system32\drivers\SplitCamAudio.sys [33904 2017-08-11] (SplitCam Co.)
S3 splitcam_hd_driver; C:\WINDOWS\system32\DRIVERS\splitcam_hd_driver.sys [38000 2017-08-11] (Windows (R) Win 7 DDK provider)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 usbaudio2; C:\WINDOWS\system32\DRIVERS\usbaudio2.sys [229888 2018-04-12] (Microsoft Corporation)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [44544 2018-04-12] (Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [48656 2018-09-15] (Wellbia.com Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-17 21:42 - 2018-09-17 21:42 - 000016429 _____ C:\Users\Home\Desktop\FRST.txt
2018-09-16 22:30 - 2018-09-16 22:30 - 005835025 _____ (UserBenchmark.com) C:\Users\Home\Downloads\UserBenchMark.exe
2018-09-16 12:18 - 2018-09-16 12:20 - 007571152 _____ (Malwarebytes) C:\Users\Home\Desktop\adwcleaner_7.2.3.1(1).exe
2018-09-16 12:10 - 2018-09-16 12:10 - 000000000 ____D C:\AdwCleaner
2018-09-16 12:07 - 2018-09-16 12:07 - 007571152 _____ (Malwarebytes) C:\Users\Home\Downloads\adwcleaner_7.2.3.1.exe
2018-09-15 13:33 - 2018-09-17 21:42 - 000000000 ____D C:\FRST
2018-09-15 13:32 - 2018-09-15 13:32 - 002413568 _____ (Farbar) C:\Users\Home\Desktop\FRST64.exe
2018-09-14 20:30 - 2018-09-14 21:44 - 000000000 ____D C:\Program Files (x86)\S.K.I.L.L
2018-09-14 20:30 - 2018-09-14 20:30 - 000000898 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\S.K.I.L.L. - Special Force 2.lnk
2018-09-14 20:30 - 2018-09-14 20:30 - 000000886 _____ C:\Users\Public\Desktop\S.K.I.L.L..lnk
2018-09-14 18:34 - 2018-09-14 18:34 - 000000222 _____ C:\Users\Home\Desktop\S.K.I.L.L. - Special Force 2.url
2018-09-12 18:48 - 2018-08-31 09:46 - 000542504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-09-12 18:48 - 2018-08-31 09:45 - 000348328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-09-12 18:48 - 2018-08-31 09:43 - 001524152 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2018-09-12 18:48 - 2018-08-31 09:42 - 001636232 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-09-12 18:48 - 2018-08-31 09:27 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2018-09-12 18:48 - 2018-08-31 09:27 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2018-09-12 18:48 - 2018-08-31 09:26 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2018-09-12 18:48 - 2018-08-31 09:25 - 000270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\spp.dll
2018-09-12 18:48 - 2018-08-31 09:25 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2018-09-12 18:48 - 2018-08-31 09:24 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2018-09-12 18:48 - 2018-08-31 09:24 - 000482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2018-09-12 18:48 - 2018-08-31 09:24 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-09-12 18:48 - 2018-08-31 09:23 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-09-12 18:48 - 2018-08-31 09:23 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2018-09-12 18:48 - 2018-08-31 09:22 - 001855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2018-09-12 18:48 - 2018-08-31 09:22 - 001661440 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2018-09-12 18:48 - 2018-08-31 08:55 - 001455960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-09-12 18:48 - 2018-08-31 08:53 - 001327504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2018-09-12 18:48 - 2018-08-31 08:41 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2018-09-12 18:48 - 2018-08-31 08:41 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2018-09-12 18:48 - 2018-08-31 08:40 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spp.dll
2018-09-12 18:48 - 2018-08-31 08:37 - 001585664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2018-09-12 18:48 - 2018-08-31 08:37 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2018-09-12 18:48 - 2018-08-31 08:37 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-09-12 18:48 - 2018-08-31 08:36 - 001469952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2018-09-12 18:48 - 2018-08-31 05:50 - 000273720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-09-12 18:48 - 2018-08-31 05:50 - 000270648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-09-12 18:48 - 2018-08-31 05:44 - 001222440 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-09-12 18:48 - 2018-08-31 05:44 - 001064744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-09-12 18:48 - 2018-08-31 05:44 - 001030952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-09-12 18:48 - 2018-08-31 05:44 - 000568600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-09-12 18:48 - 2018-08-31 05:44 - 000136488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-09-12 18:48 - 2018-08-31 05:44 - 000076256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2018-09-12 18:48 - 2018-08-31 05:43 - 002719216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-09-12 18:48 - 2018-08-31 05:43 - 000722880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 009090016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-09-12 18:48 - 2018-08-31 05:42 - 007520064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 007436192 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 002824672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-09-12 18:48 - 2018-08-31 05:42 - 002461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 001767064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 001458552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-09-12 18:48 - 2018-08-31 05:42 - 001258352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-09-12 18:48 - 2018-08-31 05:42 - 001142000 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-09-12 18:48 - 2018-08-31 05:42 - 001097720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 000983080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-09-12 18:48 - 2018-08-31 05:42 - 000885928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 000632296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 000604640 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2018-09-12 18:48 - 2018-08-31 05:42 - 000527328 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 000494472 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2018-09-12 18:48 - 2018-08-31 05:42 - 000155112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 006570040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 006043680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 001989496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 001514352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 001129728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 000568568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 000453104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2018-09-12 18:48 - 2018-08-31 05:28 - 000134936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2018-09-12 18:48 - 2018-08-31 05:26 - 025847808 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-09-12 18:48 - 2018-08-31 05:21 - 022008320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-09-12 18:48 - 2018-08-31 05:20 - 022715904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-09-12 18:48 - 2018-08-31 05:18 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-09-12 18:48 - 2018-08-31 05:17 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2018-09-12 18:48 - 2018-08-31 05:17 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\netevent.dll
2018-09-12 18:48 - 2018-08-31 05:16 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-09-12 18:48 - 2018-08-31 05:16 - 006661120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-09-12 18:48 - 2018-08-31 05:16 - 004382720 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-09-12 18:48 - 2018-08-31 05:15 - 007577088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-09-12 18:48 - 2018-08-31 05:15 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-09-12 18:48 - 2018-08-31 05:15 - 003392512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-09-12 18:48 - 2018-08-31 05:15 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-09-12 18:48 - 2018-08-31 05:15 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2018-09-12 18:48 - 2018-08-31 05:15 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2018-09-12 18:48 - 2018-08-31 05:14 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-09-12 18:48 - 2018-08-31 05:14 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-09-12 18:48 - 2018-08-31 05:14 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-09-12 18:48 - 2018-08-31 05:14 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-09-12 18:48 - 2018-08-31 05:14 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-09-12 18:48 - 2018-08-31 05:13 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2018-09-12 18:48 - 2018-08-31 05:13 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-09-12 18:48 - 2018-08-31 05:13 - 000402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2018-09-12 18:48 - 2018-08-31 05:12 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-09-12 18:48 - 2018-08-31 05:12 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netevent.dll
2018-09-12 18:48 - 2018-08-31 05:11 - 002236928 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-09-12 18:48 - 2018-08-31 05:11 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-09-12 18:48 - 2018-08-31 05:11 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-09-12 18:48 - 2018-08-31 05:11 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2018-09-12 18:48 - 2018-08-31 05:11 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2018-09-12 18:48 - 2018-08-31 05:11 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-09-12 18:48 - 2018-08-31 05:11 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2018-09-12 18:48 - 2018-08-31 05:10 - 005777920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 001375744 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2018-09-12 18:48 - 2018-08-31 05:10 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2018-09-12 18:48 - 2018-08-31 05:09 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2018-09-12 18:48 - 2018-08-31 05:09 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-09-12 18:48 - 2018-08-31 05:08 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-09-12 18:48 - 2018-08-31 05:07 - 001627648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-09-12 18:48 - 2018-08-31 05:07 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2018-09-12 18:48 - 2018-08-31 05:07 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2018-09-12 18:48 - 2018-08-31 05:06 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2018-09-12 18:48 - 2018-08-31 03:57 - 000001308 _____ C:\WINDOWS\system32\tcbres.wim
2018-09-12 18:48 - 2018-08-28 09:17 - 023862784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-09-12 18:48 - 2018-08-28 08:56 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-09-12 18:48 - 2018-08-28 08:49 - 000677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-09-12 18:48 - 2018-08-28 08:48 - 001274368 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2018-09-12 18:48 - 2018-08-28 08:45 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2018-09-12 18:48 - 2018-08-28 07:51 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2018-09-12 18:48 - 2018-08-14 04:14 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2018-09-12 18:48 - 2018-08-14 04:14 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2018-09-12 18:48 - 2018-08-09 11:37 - 002267944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2018-09-12 18:48 - 2018-08-09 11:32 - 004527680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-09-12 18:48 - 2018-08-09 11:31 - 001617728 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2018-09-12 18:48 - 2018-08-09 11:31 - 000766872 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-09-12 18:48 - 2018-08-09 11:31 - 000253544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2018-09-12 18:48 - 2018-08-09 11:31 - 000236624 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2018-09-12 18:48 - 2018-08-09 11:17 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2018-09-12 18:48 - 2018-08-09 11:16 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2018-09-12 18:48 - 2018-08-09 11:14 - 012709376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-09-12 18:48 - 2018-08-09 11:14 - 000466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2018-09-12 18:48 - 2018-08-09 11:14 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollUI.dll
2018-09-12 18:48 - 2018-08-09 11:14 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdeploy.dll
2018-09-12 18:48 - 2018-08-09 11:13 - 000521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2018-09-12 18:48 - 2018-08-09 11:13 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\certreq.exe
2018-09-12 18:48 - 2018-08-09 11:13 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-09-12 18:48 - 2018-08-09 11:13 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsExt.dll
2018-09-12 18:48 - 2018-08-09 11:12 - 002084864 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-09-12 18:48 - 2018-08-09 11:12 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2018-09-12 18:48 - 2018-08-09 11:12 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-09-12 18:48 - 2018-08-09 11:11 - 003652608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-09-12 18:48 - 2018-08-09 11:11 - 002051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2018-09-12 18:48 - 2018-08-09 11:11 - 001004032 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2018-09-12 18:48 - 2018-08-09 11:11 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2018-09-12 18:48 - 2018-08-09 11:11 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2018-09-12 18:48 - 2018-08-09 11:10 - 001557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2018-09-12 18:48 - 2018-08-09 11:10 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2018-09-12 18:48 - 2018-08-09 11:10 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-09-12 18:48 - 2018-08-09 11:09 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2018-09-12 18:48 - 2018-08-09 11:09 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2018-09-12 18:48 - 2018-08-09 11:09 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2018-09-12 18:48 - 2018-08-09 11:09 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageInspector.exe
2018-09-12 18:48 - 2018-08-09 10:38 - 001538976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2018-09-12 18:48 - 2018-08-09 10:36 - 000660896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2018-09-12 18:48 - 2018-08-09 10:36 - 000221120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2018-09-12 18:48 - 2018-08-09 10:24 - 011901952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-09-12 18:48 - 2018-08-09 10:24 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdeploy.dll
2018-09-12 18:48 - 2018-08-09 10:23 - 003397632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2018-09-12 18:48 - 2018-08-09 10:23 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2018-09-12 18:48 - 2018-08-09 10:23 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollUI.dll
2018-09-12 18:48 - 2018-08-09 10:22 - 001452544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2018-09-12 18:48 - 2018-08-09 10:22 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-09-12 18:48 - 2018-08-09 10:22 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2018-09-12 18:48 - 2018-08-09 10:22 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certreq.exe
2018-09-12 18:48 - 2018-08-09 10:21 - 002894848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-09-12 18:48 - 2018-08-09 10:21 - 002016768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-09-12 18:48 - 2018-08-09 10:21 - 001274368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2018-09-12 18:48 - 2018-08-09 10:21 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2018-09-12 18:48 - 2018-08-09 10:20 - 002401792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2018-09-12 18:48 - 2018-08-09 10:20 - 000423424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2018-09-12 18:48 - 2018-08-09 10:20 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2018-09-12 18:48 - 2018-08-09 10:20 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2018-09-12 18:48 - 2018-08-09 10:19 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2018-09-12 18:48 - 2018-08-09 07:02 - 001035144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-09-12 18:48 - 2018-08-09 07:01 - 000777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2018-09-12 18:48 - 2018-08-09 06:55 - 000230304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2018-09-12 18:48 - 2018-08-09 06:54 - 001019016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-09-12 18:48 - 2018-08-09 06:54 - 000709824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-09-12 18:48 - 2018-08-09 06:54 - 000375704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2018-09-12 18:48 - 2018-08-09 06:54 - 000203568 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2018-09-12 18:48 - 2018-08-09 06:54 - 000170912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-09-12 18:48 - 2018-08-09 06:53 - 002765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-09-12 18:48 - 2018-08-09 06:53 - 001947720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-09-12 18:48 - 2018-08-09 06:53 - 001026456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-09-12 18:48 - 2018-08-09 06:53 - 000932136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-09-12 18:48 - 2018-08-09 06:53 - 000714792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-09-12 18:48 - 2018-08-09 06:53 - 000482480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2018-09-12 18:48 - 2018-08-09 06:53 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-09-12 18:48 - 2018-08-09 06:53 - 000125600 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2018-09-12 18:48 - 2018-08-09 06:30 - 000829856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2018-09-12 18:48 - 2018-08-09 06:30 - 000183992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll
2018-09-12 18:48 - 2018-08-09 06:29 - 002253584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-09-12 18:48 - 2018-08-09 06:29 - 001620880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-09-12 18:48 - 2018-08-09 06:29 - 001174552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2018-09-12 18:48 - 2018-08-09 06:29 - 000581696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2018-09-12 18:48 - 2018-08-09 06:29 - 000099208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2018-09-12 18:48 - 2018-08-09 06:28 - 003395072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-09-12 18:48 - 2018-08-09 06:28 - 001589248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2018-09-12 18:48 - 2018-08-09 06:27 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-09-12 18:48 - 2018-08-09 06:27 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\eShims.dll
2018-09-12 18:48 - 2018-08-09 06:27 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnrollCtrl.exe
2018-09-12 18:48 - 2018-08-09 06:26 - 000990720 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2018-09-12 18:48 - 2018-08-09 06:26 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2018-09-12 18:48 - 2018-08-09 06:26 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2018-09-12 18:48 - 2018-08-09 06:26 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-09-12 18:48 - 2018-08-09 06:26 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsAuth.dll
2018-09-12 18:48 - 2018-08-09 06:26 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\TtlsCfg.dll
2018-09-12 18:48 - 2018-08-09 06:26 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 000797184 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 000460288 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2018-09-12 18:48 - 2018-08-09 06:25 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2018-09-12 18:48 - 2018-08-09 06:24 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-09-12 18:48 - 2018-08-09 06:24 - 001535488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-09-12 18:48 - 2018-08-09 06:23 - 003148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2018-09-12 18:48 - 2018-08-09 06:23 - 002904064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-09-12 18:48 - 2018-08-09 06:23 - 002172928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-09-12 18:48 - 2018-08-09 06:23 - 000916992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-09-12 18:48 - 2018-08-09 06:22 - 004615680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-09-12 18:48 - 2018-08-09 06:22 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-09-12 18:48 - 2018-08-09 06:22 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-09-12 18:48 - 2018-08-09 06:22 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2018-09-12 18:48 - 2018-08-09 06:21 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-09-12 18:48 - 2018-08-09 06:13 - 001189376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2018-09-12 18:48 - 2018-08-09 06:13 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnrollCtrl.exe
2018-09-12 18:48 - 2018-08-09 06:12 - 000652288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsAuth.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TtlsCfg.dll
2018-09-12 18:48 - 2018-08-09 06:11 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2018-09-12 18:48 - 2018-08-09 06:10 - 002893824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2018-09-12 18:48 - 2018-08-09 06:10 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-09-12 18:48 - 2018-08-09 06:10 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-09-12 18:48 - 2018-08-09 06:09 - 004191232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-09-12 18:48 - 2018-08-09 06:09 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-09-12 18:48 - 2018-08-09 06:08 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2018-09-12 18:48 - 2018-08-09 05:08 - 000806416 _____ C:\WINDOWS\SysWOW64\locale.nls
2018-09-12 18:48 - 2018-08-09 05:08 - 000806416 _____ C:\WINDOWS\system32\locale.nls
2018-09-10 16:41 - 2018-09-06 03:27 - 000132408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2018-09-10 16:39 - 2018-09-06 20:27 - 040346912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 035251264 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 004352800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 003768768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 002014832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439924.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 001565248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 001467832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439924.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 001420224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 001218624 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 001093568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 000749960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 000629120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 000608728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2018-09-10 16:39 - 2018-09-06 20:27 - 000518592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 031250800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 025966472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 017756464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 015170504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 013732232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 011277048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 004127984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 001358608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 001349272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 001159392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 001071272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 001065768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 000906904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 000816672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 000654864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2018-09-10 16:39 - 2018-09-06 20:26 - 000636064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2018-08-31 21:53 - 2018-08-22 18:13 - 002016600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6439907.dll
2018-08-31 21:53 - 2018-08-22 18:13 - 001469144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6439907.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-17 21:42 - 2017-11-16 15:34 - 000000000 ____D C:\Users\Home\AppData\LocalLow\Mozilla
2018-09-17 21:07 - 2018-05-12 14:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-09-17 20:11 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-09-17 16:39 - 2018-07-15 10:26 - 000000000 ____D C:\Program Files\Tom Clancy's Ghost Recon Wildlands
2018-09-17 15:45 - 2018-05-12 14:33 - 000004208 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{27195F37-9EEA-45E2-9B40-EF1C10FEDF9B}
2018-09-17 15:45 - 2017-11-16 15:29 - 000000000 ____D C:\ProgramData\NVIDIA
2018-09-17 15:42 - 2018-05-12 14:37 - 003283284 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-09-17 15:42 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2018-09-17 15:42 - 2017-11-26 20:25 - 001848288 _____ C:\WINDOWS\system32\perfh01B.dat
2018-09-17 15:42 - 2017-11-26 20:25 - 000568944 _____ C:\WINDOWS\system32\perfc01B.dat
2018-09-17 15:36 - 2018-05-12 14:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-09-17 15:36 - 2018-03-08 18:04 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2018-09-16 22:23 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-09-16 22:22 - 2018-05-12 14:07 - 000188824 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2018-09-16 22:22 - 2018-05-12 14:07 - 000141512 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2018-09-16 22:22 - 2018-05-12 14:07 - 000109864 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2018-09-16 22:22 - 2018-05-12 14:07 - 000109232 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2018-09-16 22:22 - 2018-05-12 14:07 - 000082304 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2018-09-16 22:22 - 2018-05-12 14:07 - 000050144 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2018-09-16 22:22 - 2018-04-11 23:04 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2018-09-16 12:25 - 2017-11-18 16:34 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-09-16 09:19 - 2018-05-12 14:33 - 000003356 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-579719181-2443963251-1893562305-1001
2018-09-16 09:19 - 2018-05-12 14:29 - 000002364 _____ C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2018-09-16 09:19 - 2017-11-16 15:25 - 000000000 ___RD C:\Users\Home\OneDrive
2018-09-16 09:18 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-09-16 09:18 - 2017-11-16 15:24 - 000000000 ____D C:\Users\Home\AppData\Local\Packages
2018-09-15 20:25 - 2017-11-17 18:04 - 000048656 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2018-09-15 15:48 - 2018-05-12 14:33 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-09-15 15:47 - 2017-11-17 00:23 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-09-15 15:41 - 2018-05-12 14:29 - 000000000 ____D C:\Users\Home
2018-09-14 21:44 - 2018-01-03 16:20 - 000000000 ____D C:\Program Files (x86)\Steam
2018-09-14 21:44 - 2017-11-18 15:16 - 000000000 ____D C:\Users\Home\AppData\Local\CrashDumps
2018-09-12 23:23 - 2018-05-12 14:27 - 000407304 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-09-12 23:23 - 2018-04-12 19:07 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-09-12 23:23 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2018-09-12 23:23 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-09-12 23:23 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-09-12 23:23 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-09-12 23:23 - 2018-04-11 23:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-09-12 18:51 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-09-12 16:05 - 2017-11-16 15:32 - 000000000 ____D C:\Users\Home\AppData\Local\PlaceholderTileLogoFolder
2018-09-11 19:22 - 2017-11-24 19:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-09-11 19:21 - 2017-11-24 19:23 - 139184408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-09-11 18:06 - 2018-02-26 18:04 - 000000000 ____D C:\Users\Home\AppData\Roaming\vlc
2018-09-10 16:41 - 2018-05-26 17:23 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2018-09-10 16:41 - 2018-01-25 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2018-09-10 16:41 - 2017-11-16 15:29 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-09-10 16:37 - 2017-11-17 00:23 - 000000000 ____D C:\Program Files\CCleaner
2018-09-09 11:51 - 2017-11-16 15:34 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-09-09 11:51 - 2017-11-16 15:34 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-09-06 20:26 - 2018-05-12 13:05 - 004858088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2018-09-06 17:14 - 2017-11-16 15:34 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-09-06 04:58 - 2018-05-12 13:05 - 000044335 _____ C:\WINDOWS\system32\nvinfo.pb
2018-09-06 03:18 - 2018-01-25 19:11 - 005947704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-09-06 03:18 - 2018-01-25 19:11 - 002612616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2018-09-06 03:17 - 2018-01-25 19:11 - 008330242 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-09-06 03:17 - 2018-01-25 19:11 - 001767280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2018-09-06 03:17 - 2018-01-25 19:11 - 000634248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2018-09-06 03:17 - 2018-01-25 19:11 - 000450416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-09-06 03:17 - 2018-01-25 19:11 - 000124112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2018-09-06 03:17 - 2018-01-25 19:11 - 000083256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2018-09-05 20:12 - 2018-01-25 19:11 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2018-09-05 01:04 - 2018-04-12 01:41 - 000835144 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-09-05 01:04 - 2018-04-12 01:41 - 000179808 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-09-02 22:03 - 2018-05-12 16:48 - 000000000 ____D C:\Users\Home\AppData\Local\D3DSCache
2018-09-01 19:34 - 2017-12-11 19:22 - 000000000 ____D C:\Users\Home\Documents\_DOKUMENTY
2018-08-31 21:55 - 2017-11-16 16:22 - 000000000 ____D C:\Users\Home\AppData\Local\NVIDIA
2018-08-24 18:31 - 2018-02-07 21:52 - 000000000 ____D C:\Program Files (x86)\Microsoft Office

==================== Files in the root of some directories =======

2017-12-11 21:48 - 2017-12-11 21:48 - 000000017 _____ () C:\Users\Home\AppData\Local\resmon.resmoncfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-12 14:27

==================== End of FRST.txt ============================






Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15.09.2018
Ran by Home (17-09-2018 21:42:37)
Running from C:\Users\Home\Desktop
Windows 10 Pro Version 1803 17134.285 (X64) (2018-05-12 12:33:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-579719181-2443963251-1893562305-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-579719181-2443963251-1893562305-503 - Limited - Disabled)
Guest (S-1-5-21-579719181-2443963251-1893562305-501 - Limited - Disabled)
Home (S-1-5-21-579719181-2443963251-1893562305-1001 - Administrator - Enabled) => C:\Users\Home
WDAGUtilityAccount (S-1-5-21-579719181-2443963251-1893562305-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\uTorrent) (Version: 3.4.9.42606 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated)
Aktualizácie NVIDIA 31.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.2.0.0 - NVIDIA Corporation) Hidden
ASUS STRIX SOUNDCARD SERIES AUDIO DEVICE (HKLM-x32\...\{fc2c1d81-3504-4425-a84f-9261197f34a4}) (Version: 1.1.18 - ASUSTeKcomputer.Inc)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - )
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.56.37170 - Electronic Arts)
Bloody6 (HKLM-x32\...\Bloody3) (Version: 18.07.0009 - Bloody)
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.2014 - CyberLink Corp.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 399.24 - NVIDIA Corporation) Hidden
ESET Security (HKLM\...\{8B35CE46-1F7C-4B22-815E-AB6DC63EE3AB}) (Version: 11.0.149.0 - ESET, spol. s r.o.)
HP DeskJet 4530 series Basic Device Software (HKLM\...\{DC9FEEEC-6FB3-423E-A2FF-5DB116C8DC17}) (Version: 40.11.1122.1796 - HP Inc.)
HP DeskJet 4530 series Help (HKLM-x32\...\{C9F38DCB-E73A-4C5F-A82E-CB2E0848A83B}) (Version: 36.0.0 - Hewlett Packard)
HP Dropbox Plugin (HKLM-x32\...\{D12BC084-97D6-438A-AA7C-5962608D17A0}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{BFA42100-DB54-467A-BB87-CF70732B4065}) (Version: 36.0.41.58587 - HP)
CheckDevicesConfigurator (HKLM\...\{9BCCF4B4-5C3B-48B2-9D6F-2F3C3B2344EE}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
ChkHwId (HKLM-x32\...\{F80CB04D-6EDA-4417-8792-2C2CBC0AE389}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
LauncherSetup Install (HKLM\...\{2A84B2C8-D11F-4305-9E62-FC1C87EAF093}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
Microsoft Office 365 ProPlus - sk-sk (HKLM\...\O365ProPlusRetail - sk-sk) (Version: 16.0.9126.2275 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\OneDriveSetup.exe) (Version: 18.151.0729.0006 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 62.0 (x64 sk) (HKLM\...\Mozilla Firefox 62.0 (x64 sk)) (Version: 62.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 62.0.0.6816 - Mozilla)
Mozilla Thunderbird 52.9.1 (x86 sk) (HKLM-x32\...\Mozilla Thunderbird 52.9.1 (x86 sk)) (Version: 52.9.1 - Mozilla)
NahimicSettingsConfigurator (HKLM\...\{0CE3B53F-72B5-45B9-8052-E6D31886EE02}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
NVIDIA 3D Vision radič ovládača 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.14.1.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.1.48 - NVIDIA Corporation)
NVIDIA Grafický ovládač 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 399.24 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 399.24 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9126.2275 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9126.2275 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9126.2275 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 10.5.24.5022 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 399.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 399.24 - NVIDIA Corporation) Hidden
Piercing Blow (HKLM-x32\...\Piercing Blow) (Version: 1.0.0 - Zepetto)
Product Improvement Study for HP DeskJet 4530 series (HKLM\...\{C8228528-C6DF-4C79-8E88-C314D8CC778C}) (Version: 40.11.1122.1796 - HP Inc.)
ProductDaemonSetup (HKLM\...\{DF5085A6-6CF9-4073-AF16-F0744D0F75E3}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Python 3.6.5 (32-bit) (HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\{3346977b-49da-4095-8f4d-f56f103e52e9}) (Version: 3.6.5150.0 - Python Software Foundation)
Python 3.6.5 Core Interpreter (32-bit) (HKLM-x32\...\{58E1C809-82C5-4EDF-B69B-188A6C81F21F}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Development Libraries (32-bit) (HKLM-x32\...\{21FD2EE0-8D55-49DC-A1B0-771696DDEE98}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Documentation (32-bit) (HKLM-x32\...\{5C613D87-0AED-48A9-A216-3A3783463D6C}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Executables (32-bit) (HKLM-x32\...\{9107CF1A-A09C-4035-B29E-E79B4098AB8C}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 pip Bootstrap (32-bit) (HKLM-x32\...\{C024F06C-0E37-4529-945F-7920A9CFFD78}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Standard Library (32-bit) (HKLM-x32\...\{8C2E8A7D-95CC-491C-AB9C-DE785A137D00}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Tcl/Tk Support (32-bit) (HKLM-x32\...\{052FD2FB-034D-4CDD-864E-798DE45C742A}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Test Suite (32-bit) (HKLM-x32\...\{86533809-919A-4858-AFC4-4226B86C5291}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python 3.6.5 Utility Scripts (32-bit) (HKLM-x32\...\{5C0C82E9-B580-4EE4-894A-4451A23B0E2C}) (Version: 3.6.5150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{8A66FEC2-E443-4219-B9AC-F9B10607B57C}) (Version: 3.6.6295.0 - Python Software Foundation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7841 - Realtek Semiconductor Corp.)
Reference 4 AAX plugin for ProTools 10 (HKLM-x32\...\{1515D06B-F9D4-4065-8A48-84E4263081CB}) (Version: 4.0.85 - Sonarworks)
Reference 4 AAX plugin for ProTools 11/12 (HKLM\...\{C91F2185-E922-4C45-9CDC-BD7073827481}) (Version: 4.0.85 - Sonarworks)
Reference 4 RTAS plugin (HKLM-x32\...\{E32E4290-9A5B-47E9-B599-3A14D3120E03}) (Version: 4.0.85 - Sonarworks)
Reference 4 VST plugin (32-bit) (HKLM-x32\...\{AAE399B2-B8ED-4D4A-A615-8B0A9FDF0BFE}) (Version: 4.0.85 - Sonarworks)
Reference 4 VST plugin (64-bit) (HKLM\...\{0079AB1F-1EEC-450F-A9A1-465BDF24273C}) (Version: 4.0.85 - Sonarworks)
ROCCAT Isku Keyboard Driver (HKLM-x32\...\{4ABAF918-A6BD-43D8-AE0B-5292034B14CB}) (Version: - Roccat GmbH)
S.K.I.L.L. - Special Force 2 (HKLM-x32\...\Special Force 2 Beta_is1) (Version: - Gameforge 4D GmbH)
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
SC150 Audio Driver Package (HKLM\...\{1F4FBEA8-B59A-4A7F-A09B-6DF69770F0D8}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
SC200 Audio Driver Package (HKLM\...\{978DB748-A411-4554-8540-397B244E62F8}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
Shotcut (HKLM-x32\...\Shotcut) (Version: - )
SonicRadarSetup (HKLM\...\{796FC1B7-6502-4AC5-BC84-F3F699B0D201}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
SonicStudioSetup (HKLM\...\{5708BBF7-F94E-4F74-9618-43FF754F4ABE}) (Version: 1.1.18 - ASUSTeKcomputer.Inc) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.1.3629 - TeamViewer)
Tom Clancy's Ghost Recon Wildlands (HKLM\...\Tom Clancys Ghost Recon Wildlands_is1) (Version: 1.0 - )
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.10 - Ghisler Software GmbH)
Uplay (HKLM-x32\...\Uplay) (Version: 45.1 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-08-16] (Cyberlink)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-09-16] (ESET)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-08-16] (Cyberlink)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-09-16] (ESET)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-09-06] (NVIDIA Corporation)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-09-16] (ESET)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00552B8F-4622-409F-8CC8-CAB1BF003C1A} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-07-19] (NVIDIA Corporation)
Task: {26044651-777C-4077-9FF6-6993AA6F1F96} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
Task: {2CD60F52-86DE-4926-89BF-9AFAF2170F1F} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-07] (Microsoft Corporation)
Task: {3916BDB5-5C8D-4419-BFEB-EBF0B7FF7885} - System32\Tasks\S-1-5-21-579719181-2443963251-1893562305-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-04-12] (Microsoft Corporation)
Task: {3D781854-BD83-48C1-99E0-1E6C10A76456} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-19] (NVIDIA Corporation)
Task: {3DA26E3B-0545-4D2B-8EDD-1758CBD32CCC} - System32\Tasks\nhAsusStrixUILauncherRun => C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixUILauncher.exe [2017-07-27] (ASUSTeKcomputer.Inc)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {6D784525-FBDD-4036-B0E3-FD05B93F164A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-19] (NVIDIA Corporation)
Task: {70941F52-D405-45DF-8591-9EF736192C1E} - System32\Tasks\HPCustParticipation HP DeskJet 4530 series => C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPCustPartic.exe [2017-04-06] (HP Inc.)
Task: {712A02F8-1787-413D-8435-584C9C2D150A} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-19] (NVIDIA Corporation)
Task: {78891524-5F89-413E-8D46-0650B25F4977} - System32\Tasks\R@1n-KMS\Office16ProPlus => wmic [Argument = path SoftwareLicensingProduct where (ID="d450596f-894d-49e0-966a-fd39ed4c4c64") call Activate]
Task: {86F21218-CECB-4F94-BECE-632028319557} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-08-24] (Piriform Ltd)
Task: {8B7C89BA-D80D-42F5-97FC-99DCB75FA8E4} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-07-19] (NVIDIA Corporation)
Task: {91CF0A0B-C369-4084-B141-8218A39C0474} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-08-24] (Microsoft Corporation)
Task: {978FC6FD-BA3D-43EC-99CB-067A4F4AA1CF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-07] (Microsoft Corporation)
Task: {9BAAD1B5-8EB4-4994-8133-30A2E1BA83F8} - System32\Tasks\nhAsusStrixSvc64Run => C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixSvc64.exe [2017-07-27] ()
Task: {A4EDB420-203E-4B3D-9E4A-990964387AB5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-08-24] (Microsoft Corporation)
Task: {AB194620-EF6F-4626-A7D9-C71D47E6F2E1} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-08-24] (Microsoft Corporation)
Task: {C1B6D214-B7E4-4549-BDAF-69EBE67ED383} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-19] (NVIDIA Corporation)
Task: {C6040819-6856-4B6D-9B98-25758F7820E6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-08-24] (Piriform Ltd)
Task: {C8D14FBF-D769-4532-B88C-B92FE9A5DB2C} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
Task: {C8EC41E1-58CA-43D2-B706-E77DE14BE672} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-08-24] (Microsoft Corporation)
Task: {CCB4AC26-9C59-4F87-9A8D-6A07F0FCD09D} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-08-24] (Microsoft Corporation)
Task: {D495E185-8E8A-455D-8B0A-5E0AC1C5145A} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
Task: {D6AF4A80-7D1E-4274-97DA-90A7AAD624B5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {D6CFE5E5-28E7-4BDE-8C8C-F905A0834300} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-19] (NVIDIA Corporation)
Task: {DA669DAB-543C-492F-A25D-C46D2CAE30C3} - System32\Tasks\R@1n-KMS\Office16VisioPro => wmic [Argument = path SoftwareLicensingProduct where (ID="6bf301c1-b94a-43e9-ba31-d494598c47fb") call Activate]
Task: {DBDA5BE1-C930-4BC9-B59F-A3846E503023} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-07-19] (NVIDIA Corporation)
Task: {EE157B51-FFE9-4C21-9847-99E78873894D} - System32\Tasks\R@1n-KMS\Office16ProjectPro => wmic [Argument = path SoftwareLicensingProduct where (ID="4f414197-0fc2-4c01-b68a-86cbb9ac254c") call Activate]
Task: {F211B266-4009-4553-A74E-94DF13D492C2} - System32\Tasks\nhAsusStrixSvc32Run => C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixSvc32.exe [2017-07-27] ()

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-01-25 19:11 - 2018-09-06 03:18 - 000142888 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-11-16 15:23 - 2013-07-03 21:32 - 000936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2018-05-26 16:50 - 2018-07-19 22:20 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-11-24 23:38 - 2018-05-05 19:51 - 000076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-07-27 06:25 - 2017-07-27 06:25 - 000251576 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixDevProps.dll
2017-07-27 06:26 - 2017-07-27 06:26 - 000353464 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixOSD.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-05-26 16:50 - 2018-07-19 22:19 - 095437352 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-09-12 18:48 - 2018-08-31 05:12 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-05-26 16:50 - 2018-07-19 22:19 - 003029032 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll
2018-05-26 16:50 - 2018-07-19 22:19 - 000149544 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll
2018-07-09 18:12 - 2018-07-20 17:58 - 016442096 _____ () C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe
2018-07-30 07:34 - 2018-07-30 07:34 - 000061408 _____ () C:\Program Files\CCleaner\branding.dll
2018-08-24 20:37 - 2018-08-24 20:37 - 000083784 _____ () C:\Program Files\CCleaner\lang\lang-1051.dll
2017-07-27 06:23 - 2017-07-27 06:23 - 003330744 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixsvc32.exe
2017-07-27 06:26 - 2017-07-27 06:26 - 000324280 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixsvc64.exe
2018-08-30 16:08 - 2018-08-30 16:08 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-08-30 16:08 - 2018-08-30 16:08 - 069283840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-11-16 15:57 - 2017-11-16 15:58 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-08-17 20:39 - 2018-08-17 20:39 - 000049664 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-08-30 16:08 - 2018-08-30 16:08 - 003699200 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-05-04 16:26 - 2018-05-04 16:27 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-08-30 16:08 - 2018-08-30 16:08 - 000035328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-17 20:39 - 2018-08-17 20:39 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-08-17 20:39 - 2018-08-17 20:39 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-03-30 15:20 - 2018-03-30 15:20 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-08-30 16:08 - 2018-08-30 16:08 - 014333440 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-08-30 16:08 - 2018-08-30 16:08 - 003544576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-08-30 16:08 - 2018-08-30 16:08 - 002869248 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-30 16:08 - 2018-08-30 16:08 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-27 13:27 - 2018-07-27 13:27 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-11-16 15:23 - 2018-09-17 15:36 - 000034448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2017-11-16 15:23 - 2013-07-03 21:32 - 000104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2018-01-25 19:20 - 2018-07-19 22:19 - 001032744 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-07-27 06:23 - 2017-07-27 06:23 - 000129208 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\sradarlauncher.dll
2018-07-26 22:09 - 2018-01-26 11:50 - 000103152 _____ () C:\Program Files (x86)\Bloody6\Bloody6\DLL\DLL_ZoomControl.dll
2017-07-27 06:20 - 2017-07-27 06:20 - 000221368 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixDevProps.dll
2017-07-27 06:20 - 2017-07-27 06:20 - 000321208 _____ () C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixOSD.dll
2018-07-26 22:09 - 2017-04-17 10:43 - 003852800 _____ () C:\Program Files (x86)\Bloody6\Bloody6\Data\RES\Forms\Internet_Advertisement\Internet_Advertisement_DLL.dll
2017-11-16 19:20 - 2010-11-04 12:48 - 000061440 _____ () C:\Program Files (x86)\ROCCAT\Isku Keyboard\hiddriver.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-579719181-2443963251-1893562305-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ROCCAT_DarkGlow_1920x1200.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G8"
HKLM\...\StartupApproved\Run32: => "CLVirtualDrive"
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\StartupApproved\Run: => "Power2GoExpress8"
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B51963D0-206B-43A4-8452-5752F6C79EA5}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{F6C1ECF6-DFFF-471F-B95E-83B07349CB1C}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{B6C0F750-1FAE-4F56-AAE3-34B95EB5397E}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{CD768ED8-F2CE-4EE1-A282-D4D99B5A86FB}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{3264AF04-1D36-4991-80FE-ADFB5C56DCD9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{47378943-7ECA-456C-AFD0-5D6957CFFCD6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{319F41A8-4393-4E07-829A-8F27B43F9976}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{94E7B842-37B7-4039-AFAB-A0BAAA703461}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{16B15372-4885-436D-9987-4188003A6893}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{B20C83A8-D1D1-4CEC-BEC3-B18C469014DF}] => (Allow) LPort=5357
FirewallRules: [{78BF05A7-7177-4AB3-A7FF-FC3DD1DF3B46}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\DeviceSetup.exe
FirewallRules: [{7AD93062-FAF2-49A7-B97D-CA97A9EE13AE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1850C5A2-FD3E-4986-A4BB-6D260402341B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C7AB03F8-1FCB-40DE-BE62-24964A9E3B77}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B5A03BBC-AC8A-4295-81FF-9FD90FF0A025}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FA7E31DE-E6A0-4467-8A53-F18A1F35AF2D}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6B22D482-39FF-4326-9DCD-A6D0B7DC9793}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{12FB76DB-D18C-4640-BD38-4AA58BB4A73A}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F04F930F-6E3D-4582-BB40-1E086647C933}] => (Allow) C:\Users\Home\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2FE588B8-6105-43DB-AEDD-A03103453A2A}] => (Allow) C:\Program Files (x86)\Piercing Blow\PiercingBlow.exe
FirewallRules: [{397DB12F-3200-4C66-9191-A0FAE74A8BBE}] => (Allow) C:\Program Files (x86)\Piercing Blow\PiercingBlow.exe
FirewallRules: [{222A24E2-C092-4B8E-A169-30626D638A6D}] => (Allow) C:\Program Files (x86)\Piercing Blow\PiercingBlow.exe
FirewallRules: [{CDA4D975-2BF2-4FC0-81F1-F11BFC34B79C}] => (Allow) C:\Program Files (x86)\Piercing Blow\PiercingBlow.exe
FirewallRules: [{0413A390-4A25-4DE5-9E71-F57EF39C3A65}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{03E871E8-8D73-4DEF-9357-A23DBE7B41DB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{25E05237-17AD-4DC6-B754-B0C849C91FB7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{AF35EE27-FD54-48A7-986B-F4F80EB6859F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{F5D6AEA5-EC06-4E9D-AF9E-D799F046F6AE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{9350BDDA-622A-4C15-8132-3E39F4834B45}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{BA7D91D8-8D32-4D66-95D7-504D41996164}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BABA82CC-DA9B-4C62-A1DC-670430CABDC1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{870DA9B7-1EDC-48E6-9828-ABC1A06D0581}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{E8421258-ECA4-4A6D-8A2F-E43AB999CC45}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{EA4E7A62-0B64-4094-B3DC-96667E3E274E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{99D9DE41-CBE4-4E26-97A1-683227C7F44C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{2F6E97DE-1352-41C1-9041-4E9A64D60033}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4A750EEA-8BD6-4345-882E-03C552544FF0}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{D030A9EB-2797-4533-B46C-CD2A5A2B7E22}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{9D3AA0AB-566C-45F7-89FD-9C169B5B2F53}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{F6526F6E-20E3-4840-A938-997B97075237}] => (Allow) C:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{3ECD2F24-247E-4F8D-A152-CBB7C590733F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{289BDB51-0C00-4BCE-8487-1520AF75C646}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
FirewallRules: [{7C3AD04B-74E6-4A33-9DB8-CF02ED910A1C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{348337ED-26D8-4028-A24A-68269621F162}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{1DEB3DBF-283C-4C2B-877F-8BBF9DA5FA58}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{018A7B6C-2881-4A3D-8DEC-A996833B2C37}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{9747914A-522C-437E-B59E-C3E2EFEA2FC1}] => (Allow) C:\Program Files (x86)\S.K.I.L.L\Binaries\Win32\sf2.exe
FirewallRules: [{64D6B958-CE6F-4737-A5BB-A793C627B5BF}] => (Allow) C:\Program Files (x86)\S.K.I.L.L\Binaries\Win32\sf2.exe

==================== Restore Points =========================

26-08-2018 13:08:27 Windows Update
03-09-2018 12:33:06 Scheduled Checkpoint
10-09-2018 16:45:43 Scheduled Checkpoint

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/17/2018 03:45:06 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/16/2018 10:28:03 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Activation context generation failed for "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest".Error in manifest or policy file "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" on line 1.
Component identity found in manifest does not match the identity of the component requested.
Reference is UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition is UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Please use sxstrace.exe for detailed diagnosis.

Error: (09/16/2018 01:55:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: svchost.exe_GraphicsPerfSvc, verzia: 10.0.17134.1, časová značka: 0xa38b9ab2
Názov chybujúceho modulu: ucrtbase.dll, verzia: 10.0.17134.254, časová značka: 0xea85cc89
Kód výnimky: 0xc0000409
Odstup chyby: 0x000000000006e55e
Identifikácia chybujúceho procesu: 0x1b70
Čas spustenia chybujúcej aplikácie: 0x01d44db4341f7f2d
Cesta chybujúcej aplikácie: c:\windows\system32\svchost.exe
Cesta chybujúceho modulu: C:\WINDOWS\System32\ucrtbase.dll
Identifikácia hlásenia: be726717-a2c0-4250-bc17-790e2f59e99b
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/15/2018 11:57:14 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/14/2018 11:57:15 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/14/2018 06:54:01 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: sf2.exe, verzia: 1.0.60478.0, časová značka: 0x5b5935f3
Názov chybujúceho modulu: nhAsusStrixOSD.dll, verzia: 0.0.0.0, časová značka: 0x59796a1c
Kód výnimky: 0xc0000005
Odstup chyby: 0x00003c83
Identifikácia chybujúceho procesu: 0x888
Čas spustenia chybujúcej aplikácie: 0x01d44c4b7cf3f02f
Cesta chybujúcej aplikácie: C:\Program Files (x86)\Steam\steamapps\common\SKILL\binaries\Win32\sf2.exe
Cesta chybujúceho modulu: C:\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\nhAsusStrixOSD.dll
Identifikácia hlásenia: 3ec56760-31b8-4c4d-bb4f-4b46c2a130c1
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/14/2018 06:51:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: sf2.exe, verzia: 1.0.60478.0, časová značka: 0x5b5935f3
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.17134.254, časová značka: 0xbf2f8c99
Kód výnimky: 0xc0000409
Odstup chyby: 0x00062b74
Identifikácia chybujúceho procesu: 0x1120
Čas spustenia chybujúcej aplikácie: 0x01d44c4b3773ffb2
Cesta chybujúcej aplikácie: C:\Program Files (x86)\Steam\steamapps\common\SKILL\binaries\Win32\sf2.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: 75560426-9e1b-4666-8bd2-48f94465b86c
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:

Error: (09/14/2018 06:47:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: sf2.exe, verzia: 1.0.60478.0, časová značka: 0x5b5935f3
Názov chybujúceho modulu: ntdll.dll, verzia: 10.0.17134.254, časová značka: 0xbf2f8c99
Kód výnimky: 0xc0000409
Odstup chyby: 0x00062b74
Identifikácia chybujúceho procesu: 0x18a0
Čas spustenia chybujúcej aplikácie: 0x01d44c4a9b2e21d7
Cesta chybujúcej aplikácie: C:\Program Files (x86)\Steam\steamapps\common\SKILL\binaries\Win32\sf2.exe
Cesta chybujúceho modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
Identifikácia hlásenia: ae3a34f8-6574-4836-9439-5385b751717b
Celé meno chybujúceho balíka:
Identifikácia chybujúcej aplikácie vzhľadom na balík:


System errors:
=============
Error: (09/17/2018 03:36:29 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/17/2018 03:36:03 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 22:23:06 on ‎16. ‎9. ‎2018 was unexpected.

Error: (09/17/2018 03:35:58 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684A fatal error occurred processing the restoration data.

Error: (09/16/2018 10:23:30 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/16/2018 09:15:18 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

Error: (09/16/2018 09:14:55 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 1:41:40 on ‎16. ‎9. ‎2018 was unexpected.

Error: (09/16/2018 09:14:50 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 3221225684A fatal error occurred processing the restoration data.

Error: (09/15/2018 03:43:51 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Launch permission for the COM Server application with CLSID
Windows.SecurityCenter.WscBrokerManager
and APPID
Unavailable
to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.


CodeIntegrity:
===================================

Date: 2018-05-29 14:19:38.791
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixDevProps.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 14:19:38.789
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixOSD.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 14:19:38.327
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixDevProps.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 14:19:38.322
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixOSD.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 06:24:21.769
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixDevProps.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 06:24:21.768
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixOSD.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 06:24:21.313
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixDevProps.dll that did not meet the Store signing level requirements.

Date: 2018-05-29 06:24:21.309
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume2\Program Files\ASUSTeKcomputer.Inc\nhAsusStrix\UserInterface\x64\nhAsusStrixOSD.dll that did not meet the Store signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Percentage of memory in use: 25%
Total physical RAM: 8097 MB
Available physical RAM: 6015.09 MB
Total Virtual: 12449 MB
Available Virtual: 9291.98 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:446.57 GB) (Free:195.4 GB) NTFS

\\?\Volume{8077ab68-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{8077ab68-0000-0000-0000-c0aa6f000000}\ () (Fixed) (Total:0.46 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 8077AB68)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=446.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=472 MB) - (Type=27)

==================== End of Addition.txt ============================


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Win10 spomalenie PC
PříspěvekNapsal: 17 zář 2018 22:17 
Offline
Rádce
Rádce

Registrován: 30 pro 2013 22:29
Příspěvky: 2480
Bydliště: Bratislava
:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:
    Kód:
    Start
    CloseProcesses:
    CreateRestorePoint:

    PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
    HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\MountPoints2: {23a4d93e-86b6-11e8-af07-305a3a03df57} - "F:\stp-grw.exe"
    HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\MountPoints2: {4c8f6988-60f6-11e8-aef7-305a3a03df57} - "F:\setup.exe"
    HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\MountPoints2: {b09ee7b3-13cb-11e8-aebe-305a3a03df57} - "F:\HiSuiteDownLoader.exe"
    BHO: No Name -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> No File
    FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [No File]

    Hosts:
    EmptyTemp:
    End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj

_________________
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

V pripade spokojnosti je mozne podporit forum. Dakujeme!


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Win10 spomalenie PC
PříspěvekNapsal: 18 zář 2018 17:06 
Offline
Vzorný návštěvník
Vzorný návštěvník

Registrován: 02 čer 2005 18:17
Příspěvky: 44
Bydliště: u internetu
Tak som to spustil. A pozeral som že ten stp-grw je z hry tak som ju odinstaloval.


Fix result of Farbar Recovery Scan Tool (x64) Version: 15.09.2018
Ran by Home (18-09-2018 18:00:01) Run:1
Running from C:\Users\Home\Desktop
Loaded Profiles: Home (Available Profiles: Home)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\MountPoints2: {23a4d93e-86b6-11e8-af07-305a3a03df57} - "F:\stp-grw.exe"
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\MountPoints2: {4c8f6988-60f6-11e8-aef7-305a3a03df57} - "F:\setup.exe"
HKU\S-1-5-21-579719181-2443963251-1893562305-1001\...\MountPoints2: {b09ee7b3-13cb-11e8-aebe-305a3a03df57} - "F:\HiSuiteDownLoader.exe"
BHO: No Name -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> No File
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [No File]

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 18
Average :
Sum : 1018831924
Maximum :
Minimum :
Property : Length




========= End of Powershell: =========

"HKU\S-1-5-21-579719181-2443963251-1893562305-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{23a4d93e-86b6-11e8-af07-305a3a03df57}" => removed successfully
HKLM\Software\Classes\CLSID\{23a4d93e-86b6-11e8-af07-305a3a03df57} => not found
"HKU\S-1-5-21-579719181-2443963251-1893562305-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4c8f6988-60f6-11e8-aef7-305a3a03df57}" => removed successfully
HKLM\Software\Classes\CLSID\{4c8f6988-60f6-11e8-aef7-305a3a03df57} => not found
"HKU\S-1-5-21-579719181-2443963251-1893562305-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b09ee7b3-13cb-11e8-aebe-305a3a03df57}" => removed successfully
HKLM\Software\Classes\CLSID\{b09ee7b3-13cb-11e8-aebe-305a3a03df57} => not found
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}" => removed successfully
"HKLM\Software\Classes\CLSID\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}" => removed successfully
"HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 9199616 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 139732293 B
Java, Flash, Steam htmlcache => 55566409 B
Windows/system/drivers => 884114 B
Edge => 6144 B
Chrome => 0 B
Firefox => 18900001 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
Home => 461171409 B

RecycleBin => 839944 B
EmptyTemp: => 654.5 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:00:23 ====


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Win10 spomalenie PC
PříspěvekNapsal: 18 zář 2018 21:55 
Offline
Rádce
Rádce

Registrován: 30 pro 2013 22:29
Příspěvky: 2480
Bydliště: Bratislava
:arrow: To neznamena, ze "F:\stp-grw.exe" je nutne havet, tym fixlistom sme iba precistili zbytocnosti v registroch.

:arrow: V PC je uz nainstalovany Malwarebytes, tak mozes spravit Thread Scan / Sken hrozieb.

:arrow: Nastala nejaka zmena alebo su este nejake problemy s PC?

:arrow: Plocha ma cca 1 GB. Sice to nie az tak vela, ale aj tak odporucam presunut vsetky subory a zlozky z plochy do dokumentov a na ploche nechat iba odkazy/zastupcov. Prilis velka velkost plochy moze sposobit spomalenie systemu.

_________________
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

V pripade spokojnosti je mozne podporit forum. Dakujeme!


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Win10 spomalenie PC
PříspěvekNapsal: 19 zář 2018 10:34 
Offline
Vzorný návštěvník
Vzorný návštěvník

Registrován: 02 čer 2005 18:17
Příspěvky: 44
Bydliště: u internetu
Ahoj, tak s malwarebytes som pc preskenoval, čistý. Z plochy som odstránil 2 malé videa z kamery, a zatiaľ môže byť :thumbsup: Ak by bolo niečo ozvem sa a Ďakujem.


Nahoru
 Profil  
Odpovědět s citací  
 Předmět příspěvku: Re: Win10 spomalenie PC
PříspěvekNapsal: 19 zář 2018 22:20 
Offline
Rádce
Rádce

Registrován: 30 pro 2013 22:29
Příspěvky: 2480
Bydliště: Bratislava
:arrow: Tak este upraceme po pouzitych nastrojoch:

_________________
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

V pripade spokojnosti je mozne podporit forum. Dakujeme!


Nahoru
 Profil  
Odpovědět s citací  
Zobrazit příspěvky za předchozí:  Seřadit podle  
Odeslat nové téma Odpovědět na téma  [ Příspěvků: 10 ] 

Všechny časy jsou v UTC + 1 hodina


Kdo je online

Uživatelé procházející toto fórum: Žádní registrovaní uživatelé


Nemůžete zakládat nová témata v tomto fóru
Nemůžete odpovídat v tomto fóru
Nemůžete upravovat své příspěvky v tomto fóru
Nemůžete mazat své příspěvky v tomto fóru
Nemůžete přikládat soubory v tomto fóru

Hledat:
Přejít na:  
cron
Založeno na phpBB® Forum Software © phpBB Group
Český překlad – phpBB.cz
Přispějete na provoz fóra?