Prosím o kontrolu PC, posledních pár dní mám vytížený procesor na 100% a zpomalený PC, děkuji...
Logfile of random's system information tool 1.10 (written by random/random)
Run by tata at 2017-10-01 17:55:12
Microsoft Windows 10 Home
System drive C: has 33 GB (27%) free of 122 GB
Total RAM: 15837 MB (65% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:55:23, on 01.10.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.15063.0608)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
H:\Games\World_of_Tanks\worldoftanks.exe
C:\Program Files\trend micro\tata.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O17 - HKLM\System\CCS\Services\Tcpip\..\{2df02f22-0070-420d-8d24-d156534266e4}: NameServer = 79.127.176.42
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Security\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: O&O Defrag (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: Overwolf Updater Windows SCM (OverwolfUpdater) - Overwolf LTD - C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: Thrustmaster® General Accessories Service (tmGAInstall) - Thrustmaster® - C:\Program Files (x86)\Thrustmaster\Thrustmaster FFB Driver\64bits\tmGAInstall.exe
O23 - Service: Thrustmaster FAST service (TmWinService) - Guillemot Corporation - C:\Program Files (x86)\Thrustmaster\TARGET\TmService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 9246 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -s PlugPlay
"fontdrvhost.exe"
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
c:\windows\system32\svchost.exe -k rpcss
c:\windows\system32\svchost.exe -k dcomlaunch -s LSM
"dwm.exe"
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s lmhosts
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -s Schedule
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s hidserv
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -s ProfSvc
c:\windows\system32\svchost.exe -k localservice -s nsi
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s Dhcp
c:\windows\system32\svchost.exe -k netsvcs -s UserManager
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
c:\windows\system32\svchost.exe -k netsvcs -s Themes
c:\windows\system32\svchost.exe -k localservice -s EventSystem
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
c:\windows\system32\svchost.exe -k netsvcs -s SENS
c:\windows\system32\svchost.exe -k networkservice -s NlaSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -s FontCache
c:\windows\system32\svchost.exe -k localservice -s netprofm
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
c:\windows\system32\svchost.exe -k networkservice -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
c:\windows\system32\svchost.exe -k netsvcs -s ShellHWDetection
c:\windows\system32\svchost.exe -k appmodel -s StateRepository
c:\windows\system32\svchost.exe -k localservice -s WinHttpAutoProxySvc
C:\WINDOWS\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k localservicenonetwork
c:\windows\system32\svchost.exe -k networkservice -s LanmanWorkstation
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
c:\windows\system32\svchost.exe -k networkservice -s CryptSvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DeviceAssociationService
c:\windows\system32\svchost.exe -k localservicenonetwork -s DPS
C:\WINDOWS\System32\svchost.exe -k utcsvc
c:\windows\system32\svchost.exe -k netsvcs -s IKEEXT
c:\windows\system32\svchost.exe -k netsvcs -s Winmgmt
c:\windows\system32\svchost.exe -k netsvcs -s LanmanServer
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
"C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
"C:\Program Files\OO Software\Defrag\oodag.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s PcaSvc
C:\WINDOWS\system32\AUDIODG.EXE 0x454
C:\WINDOWS\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s SysMain
c:\windows\system32\svchost.exe -k appmodel -s tiledatamodelsvc
"C:\Program Files (x86)\Thrustmaster\Thrustmaster FFB Driver\64bits\tmGAInstall.exe"
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s TrkWks
"C:\Program Files (x86)\Thrustmaster\TARGET\TmService.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
c:\windows\system32\svchost.exe -k netsvcs -s WpnService
dashost.exe {1b9d67cd-7d7f-490b-857a8255662cbae4}
c:\windows\system32\svchost.exe -k localservice -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs -s iphlpsvc
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -s PolicyAgent
c:\windows\system32\svchost.exe -k netsvcs -s Browser
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s SSDPSRV
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
sihost.exe
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
c:\windows\system32\svchost.exe -k netsvcs -s TokenBroker
C:\WINDOWS\Explorer.EXE
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s upnphost
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
c:\windows\system32\svchost.exe -k localservice -s CDPSvc
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files (x86)\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -c
c:\windows\system32\svchost.exe -k localservice -s LicenseManager
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe" -ServerName:SkypeHost.ServerServer
"C:\Program Files\Windows Defender\MSASCuiL.exe"
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe"
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s FDResPub
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s HomeGroupProvider
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k netsvcs -s DoSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -s wscsvc
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\system32\svchost.exe -k SDRSVC
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s StorSvc
c:\windows\system32\svchost.exe -k netsvcs -s lfsvc
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -s wcncsvc
c:\windows\system32\svchost.exe -k netsvcs -s Appinfo
c:\windows\system32\svchost.exe -k dcomlaunch -s DeviceInstall
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\ESET\ESET Security\egui.exe" /hide
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -s NcdAutoSetup
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -s DsSvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\tata\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\tata\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=61.0.3163.100 --initial-client-data=0x1e0,0x1e4,0x1e8,0x1dc,0x1ec,0x7fff5b151988,0x7fff5b151948,0x7fff5b151958
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=6988 --on-initialized-event-handle=632 --parent-handle=636 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1016,16639002349195266141,5098681494483788492,131072 --supports-dual-gpus=false --gpu-driver-bug-workarounds=9,12,20,23,24,27,49,84 --disable-gl-extensions="GL_KHR_blend_equation_advanced GL_KHR_blend_equation_advanced_coherent" --gpu-vendor-id=0x10de --gpu-device-id=0x11c0 --gpu-driver-vendor=NVIDIA --gpu-driver-version=22.21.13.8494 --gpu-driver-date=7-18-2017 --service-request-channel-token=C512B3769D9AE5ADCDF768323CD59AE3 --mojo-platform-channel-handle=1564 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1016,16639002349195266141,5098681494483788492,131072 --service-pipe-token=345D389696186E907D43CF5E8BD515AE --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --enable-gpu-async-worker-context --service-request-channel-token=345D389696186E907D43CF5E8BD515AE --renderer-client-id=4 --mojo-platform-channel-handle=3204 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1016,16639002349195266141,5098681494483788492,131072 --service-pipe-token=729ADAFFA867149B9D0AF6D914928DC1 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --enable-gpu-async-worker-context --service-request-channel-token=729ADAFFA867149B9D0AF6D914928DC1 --renderer-client-id=5 --mojo-platform-channel-handle=3476 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1016,16639002349195266141,5098681494483788492,131072 --service-pipe-token=A183F0B90C134445EECA684D9EF51800 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --enable-gpu-async-worker-context --service-request-channel-token=A183F0B90C134445EECA684D9EF51800 --renderer-client-id=6 --mojo-platform-channel-handle=3524 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1016,16639002349195266141,5098681494483788492,131072 --service-pipe-token=C754E410A6B382133E361F1DA23DC0EE --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --enable-gpu-async-worker-context --service-request-channel-token=C754E410A6B382133E361F1DA23DC0EE --renderer-client-id=7 --mojo-platform-channel-handle=3532 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1016,16639002349195266141,5098681494483788492,131072 --service-pipe-token=0CC3EC544DBD209E85E98C93BF0C4E26 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --enable-gpu-async-worker-context --service-request-channel-token=0CC3EC544DBD209E85E98C93BF0C4E26 --renderer-client-id=8 --mojo-platform-channel-handle=3540 /prefetch:1
"H:\Games\World_of_Tanks\worldoftanks.exe" wot_wait_for_mutex
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1016,16639002349195266141,5098681494483788492,131072 --service-pipe-token=10D58F2329136E3FF27AE06CE25B8EE3 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --enable-gpu-async-worker-context --service-request-channel-token=10D58F2329136E3FF27AE06CE25B8EE3 --renderer-client-id=23 --mojo-platform-channel-handle=8164 /prefetch:1
"C:\Windows\System32\GameBarPresenceWriter.exe" -ServerName:Windows.Gaming.GameBar.Internal.PresenceWriterServer
C:\WINDOWS\system32\svchost.exe -k netsvcs -s XblAuthManager
taskhostw.exe
"C:\WINDOWS\System32\Taskmgr.exe" /3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1016,16639002349195266141,5098681494483788492,131072 --service-pipe-token=C1CA95F94B753C36F3C9768E388CFB2D --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --enable-gpu-async-worker-context --service-request-channel-token=C1CA95F94B753C36F3C9768E388CFB2D --renderer-client-id=67 --mojo-platform-channel-handle=9532 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1016,16639002349195266141,5098681494483788492,131072 --service-pipe-token=38BFCCCE180B6D45892F37A3DB64FE1B --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --enable-gpu-async-worker-context --service-request-channel-token=38BFCCCE180B6D45892F37A3DB64FE1B --renderer-client-id=122 --mojo-platform-channel-handle=7808 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:App.AppXe9cvj1thv1hmcw0cs98xm3r97tyzy2xs.mca
"C:\Users\tata\Downloads\RSITx64.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -s gpsvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1016,16639002349195266141,5098681494483788492,131072 --service-pipe-token=5791EEC60C34644E4D4CB64E019637D3 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --enable-gpu-async-worker-context --service-request-channel-token=5791EEC60C34644E4D4CB64E019637D3 --renderer-client-id=133 --mojo-platform-channel-handle=8392 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1016,16639002349195266141,5098681494483788492,131072 --service-pipe-token=0EAF89C931C3396958EA95887CB4F726 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553 --enable-gpu-async-worker-context --service-request-channel-token=0EAF89C931C3396958EA95887CB4F726 --renderer-client-id=134 --mojo-platform-channel-handle=9000 /prefetch:1
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -s WdiSystemHost
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-02-07 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-07 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-03-18 629152]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2017-09-19 1923008]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe [2011-01-12 4012360]
"egui"=cmd /c /q C:\Program Files\ESET\ESET Security\ecmd.exe /launch /hide []
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-10-01 17:55:12 ----D---- C:\rsit
2017-10-01 17:55:12 ----D---- C:\Program Files\trend micro
2017-10-01 13:39:18 ----D---- C:\ProgramData\ESET
2017-10-01 13:39:18 ----D---- C:\Program Files\ESET
2017-10-01 12:12:36 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2017-10-01 12:12:29 ----A---- C:\WINDOWS\SYSWOW64\vulkaninfo.exe
2017-10-01 12:12:29 ----A---- C:\WINDOWS\SYSWOW64\vulkan-1.dll
2017-10-01 12:12:29 ----A---- C:\WINDOWS\system32\vulkaninfo.exe
2017-10-01 12:12:29 ----A---- C:\WINDOWS\system32\vulkan-1.dll
2017-10-01 12:12:28 ----D---- C:\Program Files (x86)\VulkanRT
2017-10-01 12:12:04 ----D---- C:\WINDOWS\LastGood
2017-10-01 12:10:42 ----A---- C:\WINDOWS\SYSWOW64\nvptxJitCompiler.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\SYSWOW64\nvfatbinaryLoader.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\SYSWOW64\nvEncMFTH264.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\SYSWOW64\nvDecMFTMjpeg.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\nvopencl.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\nvdispgenco6438494.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\nvdispco6438494.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\nvcuda.dll
2017-10-01 12:10:42 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2017-10-01 10:44:46 ----D---- C:\WINDOWS\LastGood.Tmp
2017-09-30 20:31:54 ----D---- C:\Users\tata\AppData\Roaming\EZCA
2017-09-30 20:31:53 ----D---- C:\Program Files (x86)\EZCA
2017-09-24 12:50:43 ----A---- C:\WINDOWS\system32\nvdispgenco6438569.dll
2017-09-24 12:50:43 ----A---- C:\WINDOWS\system32\nvdispco6438569.dll
2017-09-24 12:28:10 ----D---- C:\WINDOWS\pss
2017-09-21 19:10:12 ----D---- C:\ProgramData\Bernd's Homebrew
2017-09-21 19:10:06 ----D---- C:\Program Files (x86)\Bernd's Homebrew
2017-09-19 10:05:54 ----A---- C:\WINDOWS\system32\drivers\epfwwfp.sys
2017-09-19 10:05:42 ----A---- C:\WINDOWS\system32\drivers\epfw.sys
2017-09-19 10:05:40 ----A---- C:\WINDOWS\system32\drivers\ekbdflt.sys
2017-09-19 10:05:38 ----A---- C:\WINDOWS\system32\drivers\ehdrv.sys
2017-09-19 10:05:34 ----A---- C:\WINDOWS\system32\drivers\edevmon.sys
2017-09-17 08:43:46 ----D---- C:\WINDOWS\Panther
2017-09-16 17:53:39 ----D---- C:\Users\tata\AppData\Roaming\.ndp-chartcloud
2017-09-16 17:22:14 ----D---- C:\Program Files\Lockheed Martin
2017-09-15 08:18:56 ----D---- C:\Users\tata\AppData\Roaming\Lockheed Martin
2017-09-15 08:15:44 ----D---- C:\ProgramData\Lockheed Martin
2017-09-14 10:00:19 ----D---- C:\Users\tata\AppData\Roaming\Orbx systems
2017-09-13 12:24:27 ----D---- C:\WINDOWS\PCHEALTH
2017-09-13 12:23:30 ----A---- C:\WINDOWS\SYSWOW64\XpsPrint.dll
2017-09-13 12:23:30 ----A---- C:\WINDOWS\SYSWOW64\PCPKsp.dll
2017-09-13 12:23:30 ----A---- C:\WINDOWS\SYSWOW64\OpcServices.dll
2017-09-13 12:23:29 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2017-09-13 12:23:29 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2017-09-13 12:23:29 ----A---- C:\WINDOWS\SYSWOW64\TpmCoreProvisioning.dll
2017-09-13 12:23:29 ----A---- C:\WINDOWS\SYSWOW64\olepro32.dll
2017-09-13 12:23:29 ----A---- C:\WINDOWS\SYSWOW64\odbcconf.dll
2017-09-13 12:23:29 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2017-09-13 12:23:29 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2017-09-13 12:23:29 ----A---- C:\WINDOWS\SYSWOW64\D3DCompiler_47.dll
2017-09-13 12:23:29 ----A---- C:\WINDOWS\SYSWOW64\d3d10warp.dll
2017-09-13 12:23:28 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.Resources.dll
2017-09-13 12:23:28 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2017-09-13 12:23:28 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2017-09-13 12:23:28 ----A---- C:\WINDOWS\SYSWOW64\d2d1.dll
2017-09-13 12:23:28 ----A---- C:\WINDOWS\SYSWOW64\aadtb.dll
2017-09-13 12:23:27 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-13 12:23:27 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2017-09-13 12:23:27 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2017-09-13 12:23:27 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2017-09-13 12:23:27 ----A---- C:\WINDOWS\SYSWOW64\dbgeng.dll
2017-09-13 12:23:27 ----A---- C:\WINDOWS\SYSWOW64\CoreMessaging.dll
2017-09-13 12:23:26 ----A---- C:\WINDOWS\SYSWOW64\WWAHost.exe
2017-09-13 12:23:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2017-09-13 12:23:26 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2017-09-13 12:23:26 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2017-09-13 12:23:26 ----A---- C:\WINDOWS\SYSWOW64\AzureSettingSyncProvider.dll
2017-09-13 12:23:26 ----A---- C:\WINDOWS\SYSWOW64\ActivationManager.dll
2017-09-13 12:23:25 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2017-09-13 12:23:25 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2017-09-13 12:23:25 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2017-09-13 12:23:25 ----A---- C:\WINDOWS\SYSWOW64\twinui.appcore.dll
2017-09-13 12:23:25 ----A---- C:\WINDOWS\SYSWOW64\RstrtMgr.dll
2017-09-13 12:23:25 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2017-09-13 12:23:25 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2017-09-13 12:23:25 ----A---- C:\WINDOWS\SYSWOW64\CredentialUIBroker.exe
2017-09-13 12:23:25 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2017-09-13 12:23:24 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2017-09-13 12:23:24 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2017-09-13 12:23:24 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2017-09-13 12:23:24 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2017-09-13 12:23:23 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2017-09-13 12:23:23 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2017-09-13 12:23:23 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2017-09-13 12:23:23 ----A---- C:\WINDOWS\SYSWOW64\cldapi.dll
2017-09-13 12:23:22 ----A---- C:\WINDOWS\SYSWOW64\WpcWebFilter.dll
2017-09-13 12:23:22 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2017-09-13 12:23:22 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2017-09-13 12:23:22 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2017-09-13 12:23:22 ----A---- C:\WINDOWS\SYSWOW64\SHCore.dll
2017-09-13 12:23:22 ----A---- C:\WINDOWS\SYSWOW64\rasapi32.dll
2017-09-13 12:23:22 ----A---- C:\WINDOWS\SYSWOW64\mfds.dll
2017-09-13 12:23:22 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2017-09-13 12:23:22 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2017-09-13 12:23:22 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2017-09-13 12:23:22 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2017-09-13 12:23:22 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2017-09-13 12:23:22 ----A---- C:\WINDOWS\system32\drivers\dumpsd.sys
2017-09-13 12:23:21 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2017-09-13 12:23:21 ----A---- C:\WINDOWS\SYSWOW64\wevtapi.dll
2017-09-13 12:23:21 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2017-09-13 12:23:21 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2017-09-13 12:23:21 ----A---- C:\WINDOWS\SYSWOW64\setupapi.dll
2017-09-13 12:23:21 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2017-09-13 12:23:21 ----A---- C:\WINDOWS\SYSWOW64\msvproc.dll
2017-09-13 12:23:21 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2017-09-13 12:23:21 ----A---- C:\WINDOWS\SYSWOW64\dinput8.dll
2017-09-13 12:23:21 ----A---- C:\WINDOWS\SYSWOW64\cryptngc.dll
2017-09-13 12:23:21 ----A---- C:\WINDOWS\system32\nshwfp.dll
2017-09-13 12:23:21 ----A---- C:\WINDOWS\system32\mssprxy.dll
2017-09-13 12:23:21 ----A---- C:\WINDOWS\system32\drivers\hidbth.sys
2017-09-13 12:23:20 ----A---- C:\WINDOWS\SYSWOW64\wisp.dll
2017-09-13 12:23:20 ----A---- C:\WINDOWS\SYSWOW64\win32u.dll
2017-09-13 12:23:20 ----A---- C:\WINDOWS\SYSWOW64\win32k.sys
2017-09-13 12:23:20 ----A---- C:\WINDOWS\SYSWOW64\tbs.dll
2017-09-13 12:23:20 ----A---- C:\WINDOWS\SYSWOW64\srpapi.dll
2017-09-13 12:23:20 ----A---- C:\WINDOWS\SYSWOW64\rasplap.dll
2017-09-13 12:23:20 ----A---- C:\WINDOWS\SYSWOW64\rasman.dll
2017-09-13 12:23:20 ----A---- C:\WINDOWS\SYSWOW64\rasgcw.dll
2017-09-13 12:23:20 ----A---- C:\WINDOWS\SYSWOW64\rasdlg.dll
2017-09-13 12:23:20 ----A---- C:\WINDOWS\SYSWOW64\ntprint.dll
2017-09-13 12:23:20 ----A---- C:\WINDOWS\SYSWOW64\ngccredprov.dll
2017-09-13 12:23:20 ----A---- C:\WINDOWS\SYSWOW64\dsreg.dll
2017-09-13 12:23:20 ----A---- C:\WINDOWS\SYSWOW64\appidapi.dll
2017-09-13 12:23:20 ----A---- C:\WINDOWS\system32\drivers\usbser.sys
2017-09-13 12:23:20 ----A---- C:\WINDOWS\system32\drivers\buttonconverter.sys
2017-09-13 12:23:20 ----A---- C:\WINDOWS\system32\BthHFSrv.dll
2017-09-13 12:23:19 ----A---- C:\WINDOWS\SYSWOW64\Windows.Networking.Vpn.dll
2017-09-13 12:23:19 ----A---- C:\WINDOWS\SYSWOW64\shdocvw.dll
2017-09-13 12:23:19 ----A---- C:\WINDOWS\SYSWOW64\Phoneutil.dll
2017-09-13 12:23:19 ----A---- C:\WINDOWS\SYSWOW64\ntprint.exe
2017-09-13 12:23:19 ----A---- C:\WINDOWS\SYSWOW64\dinput.dll
2017-09-13 12:23:19 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2017-09-13 12:23:19 ----A---- C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-09-13 12:23:16 ----A---- C:\WINDOWS\system32\WWAHost.exe
2017-09-13 12:23:16 ----A---- C:\WINDOWS\system32\storewuauth.dll
2017-09-13 12:23:15 ----A---- C:\WINDOWS\system32\mstscax.dll
2017-09-13 12:23:14 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2017-09-13 12:23:14 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2017-09-13 12:23:14 ----A---- C:\WINDOWS\system32\diagtrack.dll
2017-09-13 12:23:13 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2017-09-13 12:23:13 ----A---- C:\WINDOWS\system32\ngcsvc.dll
2017-09-13 12:23:12 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-09-13 12:23:12 ----A---- C:\WINDOWS\system32\NgcCtnr.dll
2017-09-13 12:23:12 ----A---- C:\WINDOWS\system32\cryptngc.dll
2017-09-13 12:23:11 ----A---- C:\WINDOWS\system32\Phoneutil.dll
2017-09-13 12:23:11 ----A---- C:\WINDOWS\system32\ngcrecovery.dll
2017-09-13 12:23:11 ----A---- C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-09-13 12:23:11 ----A---- C:\WINDOWS\system32\ngccredprov.dll
2017-09-13 12:23:11 ----A---- C:\WINDOWS\system32\drivers\UcmCx.sys
2017-09-13 12:23:10 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2017-09-13 12:23:10 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2017-09-13 12:23:10 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2017-09-13 12:23:10 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2017-09-13 12:23:10 ----A---- C:\WINDOWS\system32\mshtmled.dll
2017-09-13 12:23:10 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2017-09-13 12:23:10 ----A---- C:\WINDOWS\system32\jscript9.dll
2017-09-13 12:23:10 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-09-13 12:23:10 ----A---- C:\WINDOWS\system32\dxtrans.dll
2017-09-13 12:23:09 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2017-09-13 12:23:09 ----A---- C:\WINDOWS\system32\rdpudd.dll
2017-09-13 12:23:09 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-09-13 12:23:09 ----A---- C:\WINDOWS\system32\mfcore.dll
2017-09-13 12:23:09 ----A---- C:\WINDOWS\system32\iepeers.dll
2017-09-13 12:23:09 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2017-09-13 12:23:09 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2017-09-13 12:23:08 ----A---- C:\WINDOWS\system32\win32spl.dll
2017-09-13 12:23:08 ----A---- C:\WINDOWS\system32\offreg.dll
2017-09-13 12:23:08 ----A---- C:\WINDOWS\system32\localspl.dll
2017-09-13 12:23:08 ----A---- C:\WINDOWS\system32\KernelBase.dll
2017-09-13 12:23:08 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-09-13 12:23:08 ----A---- C:\WINDOWS\system32\drivers\ndis.sys
2017-09-13 12:23:07 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2017-09-13 12:23:06 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2017-09-13 12:23:06 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2017-09-13 12:23:05 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2017-09-13 12:23:04 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2017-09-13 12:23:04 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2017-09-13 12:23:04 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2017-09-13 12:23:04 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-09-13 12:23:03 ----A---- C:\WINDOWS\system32\wmpps.dll
2017-09-13 12:23:03 ----A---- C:\WINDOWS\system32\rasgcw.dll
2017-09-13 12:23:03 ----A---- C:\WINDOWS\system32\rasdlg.dll
2017-09-13 12:23:03 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-13 12:23:03 ----A---- C:\WINDOWS\system32\nettrace.dll
2017-09-13 12:23:03 ----A---- C:\WINDOWS\system32\msvproc.dll
2017-09-13 12:23:03 ----A---- C:\WINDOWS\system32\mfps.dll
2017-09-13 12:23:03 ----A---- C:\WINDOWS\system32\mfds.dll
2017-09-13 12:23:03 ----A---- C:\WINDOWS\system32\drivers\ksecdd.sys
2017-09-13 12:23:03 ----A---- C:\WINDOWS\system32\drivers\afd.sys
2017-09-13 12:23:02 ----A---- C:\WINDOWS\system32\wpnpinst.exe
2017-09-13 12:23:02 ----A---- C:\WINDOWS\system32\spoolsv.exe
2017-09-13 12:23:02 ----A---- C:\WINDOWS\system32\SEMgrPS.dll
2017-09-13 12:23:02 ----A---- C:\WINDOWS\system32\rasplap.dll
2017-09-13 12:23:02 ----A---- C:\WINDOWS\system32\ntprint.exe
2017-09-13 12:23:02 ----A---- C:\WINDOWS\system32\ntprint.dll
2017-09-13 12:23:02 ----A---- C:\WINDOWS\system32\inetpp.dll
2017-09-13 12:23:02 ----A---- C:\WINDOWS\system32\drivers\nsiproxy.sys
2017-09-13 12:23:01 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2017-09-13 12:23:01 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2017-09-13 12:23:01 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2017-09-13 12:23:01 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2017-09-13 12:23:01 ----A---- C:\WINDOWS\system32\wudriver.dll
2017-09-13 12:23:01 ----A---- C:\WINDOWS\system32\webcheck.dll
2017-09-13 12:23:01 ----A---- C:\WINDOWS\system32\msfeeds.dll
2017-09-13 12:23:01 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2017-09-13 12:23:01 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2017-09-13 12:23:00 ----A---- C:\WINDOWS\SYSWOW64\ntdll.dll
2017-09-13 12:23:00 ----A---- C:\WINDOWS\system32\WpAXHolder.dll
2017-09-13 12:23:00 ----A---- C:\WINDOWS\system32\wersvc.dll
2017-09-13 12:23:00 ----A---- C:\WINDOWS\system32\wermgr.exe
2017-09-13 12:23:00 ----A---- C:\WINDOWS\system32\WerFault.exe
2017-09-13 12:23:00 ----A---- C:\WINDOWS\system32\wer.dll
2017-09-13 12:23:00 ----A---- C:\WINDOWS\system32\wc_storage.dll
2017-09-13 12:23:00 ----A---- C:\WINDOWS\system32\odbcconf.dll
2017-09-13 12:23:00 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-09-13 12:23:00 ----A---- C:\WINDOWS\system32\Faultrep.dll
2017-09-13 12:23:00 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-13 12:22:59 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-09-13 12:22:59 ----A---- C:\WINDOWS\system32\ntdll.dll
2017-09-13 12:22:59 ----A---- C:\WINDOWS\system32\dbgeng.dll
2017-09-13 12:22:59 ----A---- C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-13 12:22:58 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-09-13 12:22:58 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-09-13 12:22:58 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2017-09-13 12:22:57 ----A---- C:\WINDOWS\system32\LocationFramework.dll
2017-09-13 12:22:57 ----A---- C:\WINDOWS\system32\drivers\partmgr.sys
2017-09-13 12:22:57 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2017-09-13 12:22:57 ----A---- C:\WINDOWS\system32\d3d10warp.dll
2017-09-13 12:22:56 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-13 12:22:56 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2017-09-13 12:22:56 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2017-09-13 12:22:56 ----A---- C:\WINDOWS\system32\vss_ps.dll
2017-09-13 12:22:56 ----A---- C:\WINDOWS\system32\OpcServices.dll
2017-09-13 12:22:56 ----A---- C:\WINDOWS\system32\drivers\netbt.sys
2017-09-13 12:22:56 ----A---- C:\WINDOWS\system32\datamarketsvc.dll
2017-09-13 12:22:56 ----A---- C:\WINDOWS\system32\CoreMessaging.dll
2017-09-13 12:22:55 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-13 12:22:55 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-13 12:22:54 ----A---- C:\WINDOWS\system32\wwansvc.dll
2017-09-13 12:22:54 ----A---- C:\WINDOWS\system32\windows.storage.dll
2017-09-13 12:22:54 ----A---- C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-09-13 12:22:54 ----A---- C:\WINDOWS\system32\StartTileData.dll
2017-09-13 12:22:54 ----A---- C:\WINDOWS\system32\NotificationController.dll
2017-09-13 12:22:54 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-13 12:22:53 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2017-09-13 12:22:53 ----A---- C:\WINDOWS\system32\twinui.dll
2017-09-13 12:22:53 ----A---- C:\WINDOWS\system32\twinui.appcore.dll
2017-09-13 12:22:53 ----A---- C:\WINDOWS\system32\RstrtMgr.dll
2017-09-13 12:22:53 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-09-13 12:22:53 ----A---- C:\WINDOWS\system32\msIso.dll
2017-09-13 12:22:53 ----A---- C:\WINDOWS\system32\iertutil.dll
2017-09-13 12:22:53 ----A---- C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-13 12:22:52 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-09-13 12:22:52 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-09-13 12:22:52 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-09-13 12:22:51 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2017-09-13 12:22:51 ----A---- C:\WINDOWS\system32\wsqmcons.exe
2017-09-13 12:22:51 ----A---- C:\WINDOWS\system32\winlogon.exe
2017-09-13 12:22:51 ----A---- C:\WINDOWS\system32\wininet.dll
2017-09-13 12:22:51 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2017-09-13 12:22:51 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-09-13 12:22:51 ----A---- C:\WINDOWS\system32\rpcss.dll
2017-09-13 12:22:51 ----A---- C:\WINDOWS\system32\rasmans.dll
2017-09-13 12:22:51 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2017-09-13 12:22:51 ----A---- C:\WINDOWS\system32\combase.dll
2017-09-13 12:22:51 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-09-13 12:22:51 ----A---- C:\WINDOWS\explorer.exe
2017-09-13 12:22:50 ----A---- C:\WINDOWS\system32\wuuhext.dll
2017-09-13 12:22:50 ----A---- C:\WINDOWS\system32\winsrvext.dll
2017-09-13 12:22:50 ----A---- C:\WINDOWS\system32\werui.dll
2017-09-13 12:22:50 ----A---- C:\WINDOWS\system32\werconcpl.dll
2017-09-13 12:22:50 ----A---- C:\WINDOWS\system32\urlmon.dll
2017-09-13 12:22:50 ----A---- C:\WINDOWS\system32\SIHClient.exe
2017-09-13 12:22:50 ----A---- C:\WINDOWS\system32\rasapi32.dll
2017-09-13 12:22:50 ----A---- C:\WINDOWS\system32\hvloader.exe
2017-09-13 12:22:50 ----A---- C:\WINDOWS\system32\hvax64.exe
2017-09-13 12:22:50 ----A---- C:\WINDOWS\system32\drivers\mrxsmb20.sys
2017-09-13 12:22:50 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2017-09-13 12:22:50 ----A---- C:\WINDOWS\system32\cldapi.dll
2017-09-13 12:22:50 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2017-09-13 12:22:49 ----A---- C:\WINDOWS\system32\wuaueng.dll
2017-09-13 12:22:49 ----A---- C:\WINDOWS\system32\wuapi.dll
2017-09-13 12:22:49 ----A---- C:\WINDOWS\system32\win32kbase.sys
2017-09-13 12:22:49 ----A---- C:\WINDOWS\system32\PCPKsp.dll
2017-09-13 12:22:49 ----A---- C:\WINDOWS\system32\MrmCoreR.dll
2017-09-13 12:22:49 ----A---- C:\WINDOWS\system32\kerberos.dll
2017-09-13 12:22:49 ----A---- C:\WINDOWS\system32\hvix64.exe
2017-09-13 12:22:49 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-09-13 12:22:49 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-13 12:22:48 ----A---- C:\WINDOWS\system32\shell32.dll
2017-09-13 12:22:48 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2017-09-13 12:22:48 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2017-09-13 12:22:47 ----A---- C:\WINDOWS\system32\wpx.dll
2017-09-13 12:22:47 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-09-13 12:22:47 ----A---- C:\WINDOWS\system32\GamePanel.exe
2017-09-13 12:22:47 ----A---- C:\WINDOWS\system32\aadtb.dll
2017-09-13 12:22:46 ----A---- C:\WINDOWS\SYSWOW64\UIRibbonRes.dll
2017-09-13 12:22:46 ----A---- C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-13 12:22:46 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2017-09-13 12:22:46 ----A---- C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-13 12:22:46 ----A---- C:\WINDOWS\system32\sppobjs.dll
2017-09-13 12:22:46 ----A---- C:\WINDOWS\system32\netlogon.dll
2017-09-13 12:22:46 ----A---- C:\WINDOWS\system32\aadcloudap.dll
2017-09-13 12:22:45 ----A---- C:\WINDOWS\system32\wlidsvc.dll
2017-09-13 12:22:45 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2017-09-13 12:22:45 ----A---- C:\WINDOWS\system32\rascustom.dll
2017-09-13 12:22:45 ----A---- C:\WINDOWS\system32\daxexec.dll
2017-09-13 12:22:45 ----A---- C:\WINDOWS\system32\bcdedit.exe
2017-09-13 12:22:44 ----A---- C:\WINDOWS\system32\winsrv.dll
2017-09-13 12:22:44 ----A---- C:\WINDOWS\system32\winhttp.dll
2017-09-13 12:22:44 ----A---- C:\WINDOWS\system32\wevtapi.dll
2017-09-13 12:22:44 ----A---- C:\WINDOWS\system32\user32.dll
2017-09-13 12:22:44 ----A---- C:\WINDOWS\system32\SHCore.dll
2017-09-13 12:22:44 ----A---- C:\WINDOWS\system32\propsys.dll
2017-09-13 12:22:44 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2017-09-13 12:22:44 ----A---- C:\WINDOWS\system32\httpprxm.dll
2017-09-13 12:22:44 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2017-09-13 12:22:43 ----A---- C:\WINDOWS\system32\wisp.dll
2017-09-13 12:22:43 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-09-13 12:22:43 ----A---- C:\WINDOWS\system32\tpmvsc.dll
2017-09-13 12:22:43 ----A---- C:\WINDOWS\system32\tdh.dll
2017-09-13 12:22:43 ----A---- C:\WINDOWS\system32\RasMediaManager.dll
2017-09-13 12:22:43 ----A---- C:\WINDOWS\system32\profsvc.dll
2017-09-13 12:22:43 ----A---- C:\WINDOWS\system32\PhoneService.dll
2017-09-13 12:22:43 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2017-09-13 12:22:43 ----A---- C:\WINDOWS\system32\nltest.exe
2017-09-13 12:22:43 ----A---- C:\WINDOWS\system32\lsasrv.dll
2017-09-13 12:22:43 ----A---- C:\WINDOWS\system32\dsreg.dll
2017-09-13 12:22:43 ----A---- C:\WINDOWS\system32\dinput8.dll
2017-09-13 12:22:43 ----A---- C:\WINDOWS\system32\csplte.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\wups.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\win32u.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\win32k.sys
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\tbs.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\srpapi.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\shdocvw.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\setupapi.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\rasman.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\dinput.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\dab.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\CfgSPCellular.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\authz.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\appinfo.dll
2017-09-13 12:22:42 ----A---- C:\WINDOWS\system32\appidapi.dll
2017-09-11 19:14:00 ----A---- C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-09-11 19:13:42 ----A---- C:\WINDOWS\SYSWOW64\OpenCL.dll
2017-09-11 19:13:42 ----A---- C:\WINDOWS\system32\OpenCL.dll
2017-09-11 19:12:17 ----A---- C:\WINDOWS\system32\nvhdap64.dll
2017-09-11 19:12:17 ----A---- C:\WINDOWS\system32\drivers\nvvhci.sys
2017-09-11 19:12:16 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2017-09-11 19:12:16 ----A---- C:\WINDOWS\system32\nvdispgenco6438541.dll
2017-09-11 19:12:16 ----A---- C:\WINDOWS\system32\nvdispco6438541.dll
2017-09-08 18:37:29 ----D---- C:\WINDOWS\SYSWOW64\directx
======List of files/folders modified in the last 1 month======
2017-10-01 17:55:12 ----RD---- C:\Program Files
2017-10-01 17:51:17 ----D---- C:\WINDOWS\Temp
2017-10-01 17:18:00 ----D---- C:\WINDOWS\system32\sru
2017-10-01 16:23:50 ----D---- C:\WINDOWS\system32\SleepStudy
2017-10-01 16:11:32 ----RD---- C:\WINDOWS\Microsoft.NET
2017-10-01 16:11:10 ----D---- C:\WINDOWS\Prefetch
2017-10-01 14:01:24 ----D---- C:\WINDOWS\Tasks
2017-10-01 14:01:24 ----D---- C:\WINDOWS\system32\Tasks
2017-10-01 13:39:55 ----D---- C:\WINDOWS\INF
2017-10-01 13:39:43 ----D---- C:\WINDOWS\system32\DriverStore
2017-10-01 13:39:43 ----D---- C:\WINDOWS\system32\drivers
2017-10-01 13:39:43 ----D---- C:\WINDOWS\system32\CatRoot
2017-10-01 13:39:38 ----SHDC---- C:\WINDOWS\Installer
2017-10-01 13:39:34 ----HD---- C:\WINDOWS\ELAMBKUP
2017-10-01 13:39:18 ----HD---- C:\ProgramData
2017-10-01 12:25:44 ----D---- C:\ProgramData\NVIDIA
2017-10-01 12:14:12 ----D---- C:\WINDOWS\SysWOW64
2017-10-01 12:14:12 ----D---- C:\WINDOWS\System32
2017-10-01 12:12:59 ----D---- C:\temp
2017-10-01 12:12:58 ----D---- C:\ProgramData\NVIDIA Corporation
2017-10-01 12:12:28 ----RD---- C:\Program Files (x86)
2017-10-01 12:12:04 ----D---- C:\Windows
2017-10-01 11:00:12 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-10-01 10:57:48 ----D---- C:\WINDOWS\system32\config
2017-10-01 10:45:11 ----D---- C:\WINDOWS\system32\catroot2
2017-09-30 13:02:41 ----D---- C:\WINDOWS\CbsTemp
2017-09-30 10:23:20 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2017-09-29 18:04:28 ----HD---- C:\Program Files\WindowsApps
2017-09-29 18:04:28 ----D---- C:\WINDOWS\AppReadiness
2017-09-26 21:25:12 ----D---- C:\WINDOWS\WinSxS
2017-09-24 19:00:13 ----SHD---- C:\System Volume Information
2017-09-24 14:36:58 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2017-09-24 13:10:31 ----D---- C:\Program Files\NVIDIA Corporation
2017-09-21 19:41:45 ----D---- C:\Users\tata\AppData\Roaming\KeePass
2017-09-21 18:38:38 ----RSD---- C:\WINDOWS\assembly
2017-09-19 09:23:48 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2017-09-19 09:23:48 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2017-09-19 09:23:48 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2017-09-19 09:23:47 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2017-09-19 09:23:47 ----A---- C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-09-19 09:23:43 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2017-09-19 09:23:42 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2017-09-17 15:54:40 ----SD---- C:\Users\tata\AppData\Roaming\Microsoft
2017-09-17 15:54:40 ----SD---- C:\ProgramData\Microsoft
2017-09-16 18:04:56 ----D---- C:\Program Files (x86)\HiFi
2017-09-16 15:10:50 ----D---- C:\ProgramData\Package Cache
2017-09-16 13:08:07 ----D---- C:\WINDOWS\system32\WDI
2017-09-16 09:10:20 ----D---- C:\Users\tata\AppData\Roaming\RAASPRO
2017-09-15 18:07:00 ----D---- C:\WINDOWS\Logs
2017-09-15 08:24:16 ----D---- C:\WINDOWS\rescache
2017-09-14 16:23:41 ----D---- C:\Program Files (x86)\PMDG Operations Center
2017-09-14 09:22:13 ----AD---- C:\Program Files (x86)\Overwolf
2017-09-13 13:40:14 ----SHD---- C:\Boot
2017-09-13 13:39:13 ----SD---- C:\WINDOWS\SYSWOW64\F12
2017-09-13 13:39:13 ----D---- C:\WINDOWS\SYSWOW64\wbem
2017-09-13 13:39:13 ----D---- C:\WINDOWS\SYSWOW64\setup
2017-09-13 13:39:13 ----D---- C:\WINDOWS\SYSWOW64\en-US
2017-09-13 13:39:13 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2017-09-13 13:39:12 ----SD---- C:\WINDOWS\system32\F12
2017-09-13 13:39:12 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2017-09-13 13:39:12 ----D---- C:\WINDOWS\system32\wbem
2017-09-13 13:39:12 ----D---- C:\WINDOWS\system32\setup
2017-09-13 13:39:12 ----D---- C:\WINDOWS\system32\en-US
2017-09-13 13:39:12 ----D---- C:\WINDOWS\system32\drivers\UMDF
2017-09-13 13:39:12 ----D---- C:\WINDOWS\system32\cs-CZ
2017-09-13 13:39:12 ----D---- C:\WINDOWS\system32\cs
2017-09-13 13:39:11 ----D---- C:\WINDOWS\ShellExperiences
2017-09-13 13:39:11 ----D---- C:\Program Files\Windows Photo Viewer
2017-09-13 13:39:11 ----D---- C:\Program Files\Windows Mail
2017-09-13 13:39:11 ----D---- C:\Program Files\Internet Explorer
2017-09-13 13:39:11 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2017-09-13 13:39:11 ----D---- C:\Program Files (x86)\Windows Mail
2017-09-13 13:39:11 ----D---- C:\Program Files (x86)\Internet Explorer
2017-09-13 12:27:34 ----D---- C:\WINDOWS\system32\MRT
2017-09-13 12:26:29 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-09-13 12:24:58 ----D---- C:\ProgramData\Microsoft Help
2017-09-02 17:15:22 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 edevmon;edevmon; C:\WINDOWS\system32\DRIVERS\edevmon.sys [2017-09-19 107336]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-03-18 49568]
R0 sptd2;sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [2016-07-25 196152]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2017-07-25 133360]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2017-09-19 180096]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2017-09-19 81888]
R1 epfwwfp;epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [2017-09-19 106312]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2017-03-18 54272]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2017-03-18 8192]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2017-03-18 14336]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2017-03-18 50688]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2017-03-18 79872]
R3 dtlitescsibus;@oem6.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2016-07-25 30264]
R3 dtliteusbbus;@oem1.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2016-07-25 47672]
R3 MarvinBus;@oem30.inf,%MarvinBus.SVCDESC%;Pinnacle Marvin Bus 64; C:\WINDOWS\System32\drivers\MarvinBus64.sys [2005-09-23 261120]
R3 MEIx64;@oem32.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2016-01-19 202032]
R3 NVHDA;@oem8.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys [2017-08-22 218712]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_24ddebfb518b5a55\nvlddmkm.sys [2017-07-19 15668664]
R3 nvvad_WaveExtensible;@oem4.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2017-08-22 48248]
R3 nvvhci;@oem10.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-07-19 57792]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2017-03-18 604160]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2017-03-18 13312]
R3 TmBusEn;@oem17.inf,%busenum.SVCDESC%;Thrustmaster Bus Enumerator; C:\WINDOWS\System32\drivers\TmBusEn.sys [2011-01-26 30208]
S0 eelam;eelam; C:\WINDOWS\system32\DRIVERS\eelam.sys [2017-07-25 15392]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2017-03-18 123808]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2017-03-18 103328]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-03-18 64416]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2017-03-18 58784]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2017-03-18 61848]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2017-03-18 91040]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2017-03-18 36760]
S2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2017-03-18 12288]
S2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2017-09-19 50744]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-03-18 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-03-18 17920]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2017-09-05 39424]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-03-18 53664]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2017-03-18 122880]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2017-03-18 21504]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2017-03-18 51104]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2017-03-18 74648]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2017-03-18 347032]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2017-03-18 2104224]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-03-18 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2017-03-18 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2017-03-18 70656]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-03-18 85504]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2017-03-18 165376]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-03-18 168448]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2017-03-18 526240]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-03-18 36864]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-03-18 120320]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-03-18 405408]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-03-18 51104]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2017-03-18 842656]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2017-03-18 108960]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-03-18 122368]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\WINDOWS\System32\drivers\nvdimmn.sys [2017-03-18 80896]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-09-19 30144]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2017-03-18 101376]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2017-03-18 936864]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2009-12-30 31800]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2017-03-18 31128]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [2017-03-20 40352]
S3 TmFilter;@oem17.inf,%filter.SvcDesc%;Thrustmaster HID Filter Driver; C:\WINDOWS\System32\drivers\TmFilter.sys [2011-01-26 24576]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2017-09-05 104960]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-07-19 83032]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 CDPUserSvc_41e97;Uživatelská služba platformy připojených zařízení_41e97; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Security\ekrn.exe [2017-09-22 1933872]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-09-19 512960]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-07-19 462968]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-09-19 449984]
R2 OneSyncSvc_41e97;Hostitel synchronizace_41e97; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 OODefragAgent;O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2011-01-12 3134792]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2017-07-11 336320]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R2 tmGAInstall;Thrustmaster® General Accessories Service; C:\Program Files (x86)\Thrustmaster\Thrustmaster FFB Driver\64bits\tmGAInstall.exe [2016-03-23 32256]
R2 TmWinService;Thrustmaster FAST service; C:\Program Files (x86)\Thrustmaster\TARGET\TmService.exe [2016-10-31 315944]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
R3 PimIndexMaintenanceSvc_41e97;Data kontaktů_41e97; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
R3 TokenBroker;@%systemroot%\system32\tokenbroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-24 154440]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 DevicesFlowUserSvc_41e97;Tok zařízení_41e97; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2017-03-18 86528]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-06-22 1467072]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2016-09-11 1044816]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-02-10 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-24 154440]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 MessagingService_41e97;Služba zasílání zpráv_41e97; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-09-19 512960]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 OverwolfUpdater;Overwolf Updater Windows SCM; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-09-10 1450824]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2017-03-18 1284608]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2017-03-18 891904]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2017-09-27 1610016]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2017-03-18 302592]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2017-03-18 47664]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2017-03-18 47664]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Vytížený procesor
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vytížený procesor
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vytížený procesor
Dobrý den, log je tu:
# AdwCleaner 7.0.3.1 - Logfile created on Mon Oct 02 15:38:09 2017
# Updated on 2017/29/09 by Malwarebytes
# Database: 09-29-2017.1
# Running on Windows 10 Home (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
PUP.Optional.Legacy, C:\END
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\cloud.mail.ru
PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\mail.ru
PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\cloud.mail.ru
PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\mail.ru
PUP.Optional.Conduit, [Key] - HKU\S-1-5-21-1489680871-105870493-2040455859-1001\Software\Conduit
PUP.Optional.Conduit, [Key] - HKCU\Software\Conduit
PUP.Optional.InstallCore, [Key] - HKU\S-1-5-21-1489680871-105870493-2040455859-1001\Software\csastats
PUP.Optional.InstallCore, [Key] - HKCU\Software\csastats
PUP.Optional.ProductSetup.A, [Key] - HKU\S-1-5-21-1489680871-105870493-2040455859-1001\Software\PRODUCTSETUP
PUP.Optional.ProductSetup.A, [Key] - HKCU\Software\PRODUCTSETUP
PUP.Optional.Norassie, [Key] - HKU\S-1-5-21-1489680871-105870493-2040455859-1001\Software\Norassie
PUP.Optional.Norassie, [Key] - HKCU\Software\Norassie
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########
# AdwCleaner 7.0.3.1 - Logfile created on Mon Oct 02 15:38:09 2017
# Updated on 2017/29/09 by Malwarebytes
# Database: 09-29-2017.1
# Running on Windows 10 Home (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
PUP.Optional.Legacy, C:\END
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\cloud.mail.ru
PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\mail.ru
PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\cloud.mail.ru
PUP.Optional.Legacy, [Key] - HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\mail.ru
PUP.Optional.Conduit, [Key] - HKU\S-1-5-21-1489680871-105870493-2040455859-1001\Software\Conduit
PUP.Optional.Conduit, [Key] - HKCU\Software\Conduit
PUP.Optional.InstallCore, [Key] - HKU\S-1-5-21-1489680871-105870493-2040455859-1001\Software\csastats
PUP.Optional.InstallCore, [Key] - HKCU\Software\csastats
PUP.Optional.ProductSetup.A, [Key] - HKU\S-1-5-21-1489680871-105870493-2040455859-1001\Software\PRODUCTSETUP
PUP.Optional.ProductSetup.A, [Key] - HKCU\Software\PRODUCTSETUP
PUP.Optional.Norassie, [Key] - HKU\S-1-5-21-1489680871-105870493-2040455859-1001\Software\Norassie
PUP.Optional.Norassie, [Key] - HKCU\Software\Norassie
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vytížený procesor
Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=30&t=133101 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vytížený procesor
Zde je log:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-10-2017
Ran by tata (02-10-2017 19:22:41)
Running from C:\Users\tata\Desktop
Windows 10 Home Version 1703 (X64) (2017-07-11 19:24:26)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1489680871-105870493-2040455859-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1489680871-105870493-2040455859-503 - Limited - Disabled)
Guest (S-1-5-21-1489680871-105870493-2040455859-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1489680871-105870493-2040455859-1003 - Limited - Enabled)
tata (S-1-5-21-1489680871-105870493-2040455859-1001 - Administrator - Enabled) => C:\Users\tata
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Internet Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Internet Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.02 (x64) (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov)
A2A C172 Trainer Academic for P3D (HKLM-x32\...\A2A C172 Trainer Academic for P3D) (Version: - )
Active Sky 2012 (HKLM-x32\...\{A9C7C8A6-22A5-2012-8E5A-F77D709A9489}_is1) (Version: 13.1.4569.9495 - HiFi Technologies, Inc.)
Active Sky Next for FSX SP5 (HKLM-x32\...\{F1AE1E08-5094-46AD-AA4D-670C482723B2}_is1) (Version: 1.0.6255.21938 - HiFi Technologies, Inc.)
Active Sky Next for P3D SP5 (HKLM-x32\...\{67230DFC-F135-4F7F-B489-5860FD0EE162}_is1) (Version: 1.0.6255.21926 - HiFi Technologies, Inc.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_4977c84bcdc298c444ccfbdcccb660d) (Version: 10.0 - Adobe Systems Incorporated)
Aerosoft's - Airbus A318-A319 - FSX (HKLM-x32\...\Airbus A318-A319 - FSX) (Version: 1.31 - Aerosoft)
Aerosoft's - Airbus A318-A319 - PREPAR3D V2.x (HKLM-x32\...\Airbus A318-A319 - PREPAR3D V2.x) (Version: 1.31 - Aerosoft)
Aerosoft's - Airbus A320-A321 - FSX (HKLM-x32\...\Airbus A320-A321 - FSX) (Version: 1.31 - Aerosoft)
Aerosoft's - Airbus A320-A321 - PREPAR3D V2.x (HKLM-x32\...\Airbus A320-A321 - PREPAR3D V2.x) (Version: 1.31 - Aerosoft)
aerosoft's - Antalya X (HKLM-x32\...\{E6E332E8-9BFA-48CC-B03C-F181C1F06DC0}) (Version: 1.03 - aerosoft)
aerosoft's - Approaching Innsbruck X (HKLM-x32\...\{70864384-DD19-44CB-A999-A917F32F623D}) (Version: 1.20 - aerosoft)
aerosoft's - Balearic Islands X for FSX (HKLM-x32\...\{04B73EB2-7538-4CC4-BBD6-5463E508B69B}) (Version: 1.01 - aerosoft)
Aerosoft's - Bergamo X - FSX (HKLM-x32\...\Bergamo X - FSX) (Version: 1.02 - Aerosoft)
aerosoft's - German Airports 1 - Stuttgart X (HKLM-x32\...\{E4298CF5-9C36-4519-9089-FF7A43EA5C5D}) (Version: 1.02 - aerosoft)
aerosoft's - German Airports 3 - 2012 (Berlin-Tegel FSX) (HKLM-x32\...\{3DAD565E-1275-4EE8-9568-932CB7B75FB8}) (Version: 1.02 - aerosoft)
aerosoft's - Mega Airport Amsterdam FSX (HKLM-x32\...\{0A297C87-BF52-43FD-AD75-EE72228E4457}) (Version: 1.04 - aerosoft)
Aerosoft's - Mega Airport Budapest (HKLM-x32\...\{AD6C554F-5050-40B1-B84D-51D74A09C7E4}) (Version: 2.00 - Aerosoft)
aerosoft's - Mega Airport Frankfurt X (HKLM-x32\...\{BAEE0C24-C8C2-4820-9DF4-887909F1A286}) (Version: 1.04 - aerosoft)
aerosoft's - Mega Airport London Heathrow X (HKLM-x32\...\{2F4AF40B-433A-494E-BB41-816D113F32BA}) (Version: 1.10 - aerosoft)
aerosoft's - Mega Airport Madrid Barajas (HKLM-x32\...\{8233F99B-C4C2-44E9-8486-374E9B300BF2}) (Version: 1.03 - aerosoft)
aerosoft's - Mega Airport Munich X (HKLM-x32\...\{1B19DA07-6870-4E60-9171-5C53AD21A0E0}) (Version: 1.02 - aerosoft)
Aerosoft's - Mega Airport Oslo 2.0 - FSX (HKLM-x32\...\Mega Airport Oslo 2.0 - FSX) (Version: 1.03 - Aerosoft)
aerosoft's - Mega Airport Paris CDG X (HKLM-x32\...\{0F5E7FC8-3D49-47DA-9A51-6A8B4BE393B0}) (Version: 1.00 - aerosoft)
Aerosoft's - Mega Airport Prag - FSX (HKLM-x32\...\Mega Airport Prag - FSX) (Version: 1.05 - Aerosoft)
Aerosoft's - Mega Airport Rome - FSX (HKLM-x32\...\Mega Airport Rome - FSX) (Version: 1.01 - Aerosoft)
aerosoft's - Mega Airport Stockholm Arlanda X (HKLM-x32\...\{3B6F6E35-900C-4FE3-B2F6-067443353CD1}) (Version: 1.00 - aerosoft)
Aerosoft's - Mega Airport Zurich 2012 - FSX (HKLM-x32\...\{463A571A-B793-459B-BEA8-028DC323AAB0}) (Version: 1.02 - Aerosoft)
Aerosoft's - Mega Airport Zurich V2.0 Professional (HKLM-x32\...\Mega Airport Zurich V2.0 Professional) (Version: 1.00 - Aerosoft)
aerosoft's - Nice Cote dAzur X (HKLM-x32\...\{90447E05-DE8E-470D-8D3E-C871D2AE74AF}) (Version: 1.10 - aerosoft)
Aktualizace NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISER_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISER_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISER_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 384.94 - NVIDIA Corporation) Hidden
ASConnect for FSX Installer (HKLM-x32\...\{7E1270D4-42C4-49A4-9EC4-3300D2E47331}_is1) (Version: 1.0.0.34 - HiFi Technologies, Inc.)
ASConnect for P3D (HKLM-x32\...\{70C18CD2-D9F3-478D-994C-DCE39C84E19E}_is1) (Version: 1.0.0.34 - HiFi Technologies, Inc.)
Ashampoo Burning Studio 9.12 (HKLM-x32\...\Ashampoo Burning Studio 9_is1) (Version: 9.1.2 - ashampoo GmbH & Co. KG)
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.50.1017 - Webteh, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform)
CEWE fotosvet (HKLM-x32\...\CEWE fotosvet) (Version: 6.1.5 - CEWE Stiftung u Co. KGaA)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0192 - Disc Soft Ltd)
DCS World (HKLM\...\DCS World_is1) (Version: 1.5 - Eagle Dynamics)
DCS World (HKLM\...\Steam App 223750) (Version: - Eagle Dynamics)
DCS World 2 OpenAlpha (HKLM\...\DCS World 2 OpenAlpha_is1) (Version: 2.0 - Eagle Dynamics)
Elite Dangerous (HKLM\...\Steam App 359320) (Version: - Frontier Developments)
ESET Security (HKLM\...\{0F462EFA-8AE8-4C2A-BC94-0AFFF17A8245}) (Version: 11.0.131.0 - ESET, spol. s r.o.)
EZdok Camera for Microsoft Flight Simulator X (HKLM-x32\...\EZdok Camera for Microsoft Flight Simulator X) (Version: - )
Fortaleza City Airport Photoreal (HKLM\...\{D5BF1377-BC17-4986-9AFB-C788E3479C71}) (Version: 2 - guyfs9, Bruno Israel, Rui Mesquita)
Fotolab Fotosvet (HKLM-x32\...\Fotolab Fotosvet) (Version: 6.1.5 - CEWE Stiftung u Co. KGaA)
FPRConverter (HKLM-x32\...\{4E040662-D0E1-4EA4-A934-0552CD67CF48}) (Version: 1.1.141 - Bernd's Homebrew)
Google Earth Pro (HKLM-x32\...\{ECF2E224-42F5-4E50-B58E-94CA70E85697}) (Version: 7.3.0.3832 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
HP Deskjet 4640 series Nápověda (HKLM-x32\...\{1F8F66BE-AFF4-45C4-A425-82A285D97977}) (Version: 31.0.0 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Istanbul Sabiha Gokcen X (HKLM-x32\...\SCENERYTR_ISTANBUL_SABIHA_GOKCEN_X_is1) (Version: 1.0.0.1 - SimMarket)
IvAp v2.0.2 (build 2773) (HKLM-x32\...\IvAp-v2_is1) (Version: - IVAO)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
KeePass Password Safe 2.36 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.36 - Dominik Reichl)
Košice International Airport for FSX (HKLM-x32\...\LZKZFSX_is1) (Version: - SimMarket)
Landi 2000 (HKLM-x32\...\Landi2000) (Version: - )
LanguageLab (HKLM-x32\...\{E6F4BB0D-0239-454C-AA75-03EE8A1D8770}) (Version: 3.9.2.1 - Vitware)
Majestic MJC8Q400 (HKLM-x32\...\MJC8Q400) (Version: - )
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft ESP SimConnect Client v1.0.20.0 (HKLM-x32\...\{C0A9FCC1-9725-4679-8AC2-FE501B139B63}) (Version: 1.0.20.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)
Microsoft Flight Simulator X Service Pack 2 (HKLM-x32\...\{4847BBB9-EADD-4C92-90BF-4223B0892FF6}) (Version: 10.0.61472.0 - Microsoft Game Studios)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1489680871-105870493-2040455859-1001\...\OneDriveSetup.exe) (Version: 17.3.6998.0830 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{e9d78d68-c26c-4da7-9158-99355d8ef3ad}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Migration Tool (HKLM-x32\...\{64cd40e2-6e5e-4732-8ed4-b4a5be475825}) (Version: 2.2.1.647 - Flightsim Estonia)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NVIDIA GeForce Experience 3.9.0.97 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.97 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 384.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 384.94 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 384.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 384.94 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
O&O Defrag Professional (HKLM\...\{7AA6F1A2-6A65-4A3A-AC62-4445704B04E3}) (Version: 14.1.425 - O&O Software GmbH)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.107.36.0 - Overwolf Ltd.)
Ovládací panel NVIDIA 384.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 384.94 - NVIDIA Corporation) Hidden
Ovladače videa společnosti Pinnacle (HKLM\...\{5EB90C06-964F-4195-B83E-BD7E55C88415}) (Version: 12.00.0017 - Pinnacle Systems)
PDF Settings (HKLM-x32\...\{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Pinnacle Studio 12 (HKLM-x32\...\{D041EB9E-890A-4098-8F94-51DA194AC72A}) (Version: 12.0.0.6163 - Pinnacle Systems)
Plan-G v3.1.3 version 3.1.3 (HKLM-x32\...\{BC13ABF2-2C08-42A6-A5C4-AFCE666ABE58}_is1) (Version: 3.1.3 - TA Studio)
PMDG 737 6700 NGX Expansion FSX (HKLM-x32\...\{C7EE862A-D83D-4A9F-B746-CBDE39BD7001}) (Version: 1.10.6461 - PMDG Simulations, LLC.)
PMDG 737 6700 NGX Expansion P3D (HKLM-x32\...\{51CE3C56-7069-4055-AC02-FDCA5A0C0D0C}) (Version: 1.10.6436 - PMDG Simulations, LLC.)
PMDG 737 8900 NGX Base Package FSX (HKLM-x32\...\{20708FD5-E94D-4097-A21E-E28564CDBC06}) (Version: 1.10.6461 - PMDG Simulations, LLC.)
PMDG 737 8900 NGX Base Package P3D (HKLM-x32\...\{0EA92925-36E7-40CB-A714-118AB046099B}) (Version: 1.10.6436 - PMDG Simulations, LLC.)
PMDG 777-200LR/F Base Package FSX (HKLM-x32\...\{0F16340B-5B5B-4531-8D87-4952E3BCA6E6}) (Version: 1.10.7025 - PMDG Simulations, LLC.)
Prepar3D v2 Academic (HKLM-x32\...\{92B3FF8A-3C33-4EFC-850D-CF29E54292D9}) (Version: 2.5.12946.0 - Lockheed Martin)
Prepar3D v2 Academic Bundle (HKLM-x32\...\{b0f2a07b-2ab5-4059-8be9-cb464ef75221}) (Version: 2.5.12946.0 - Lockheed Martin) Hidden
Prepar3D v2 SDK 2.5.12946.0 (HKLM-x32\...\{5FA0CF7C-0225-4595-B2E5-DB9AE7E920AE}) (Version: 2.5.12946.0 - Lockheed Martin)
Prepar3D v4 Academic (HKLM-x32\...\{24334c8e-bce6-476c-bf15-aaaa4d69c877}) (Version: 4.0.28.21686 - Lockheed Martin)
Prepar3D v4 Academic Client (HKLM\...\{F4C0F17C-2CAD-4CC2-B8EA-63D59CF17070}) (Version: 4.0.28.21686 - Lockheed Martin)
Prepar3D v4 Content (HKLM\...\{87040041-993B-42AF-BEA0-6086FEB45184}) (Version: 4.0.28.21686 - Lockheed Martin)
Prepar3D v4 Scenery (HKLM\...\{C953A291-C0D5-414E-8211-778D5E53D73A}) (Version: 4.0.28.21686 - Lockheed Martin)
Prepar3D v4 SDK 4.0.28.21686 (HKLM\...\{CB22CCFE-1549-4092-9FE9-793682820254}) (Version: 4.0.28.21686 - Lockheed Martin)
RAAS Professional by FS2Crew (LOCKED) (HKLM-x32\...\RAAS Professional by FS2Crew (LOCKED)) (Version: - )
RAAS Professional by FS2Crew (LOCKED) P3D V2 (HKLM-x32\...\RAAS Professional by FS2Crew (LOCKED) P3D V2) (Version: - )
Remove UK2000 Stansted Xtreme files (HKLM-x32\...\UK2000 Stansted Xtreme) (Version: - )
Revo Uninstaller Pro 2.5.9 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 2.5.9 - VS Revo Group, Ltd.)
Rocksmith® 2014 Edition - Remastered (HKLM\...\Steam App 221680) (Version: - Ubisoft - San Francisco)
Smart Tests - testy, které učí (HKLM-x32\...\Smart Tests) (Version: - )
Stellarium 0.10.4 (HKLM-x32\...\Stellarium_is1) (Version: - )
Studie vylepšování produktu HP Deskjet 4640 series (HKLM\...\{3F59AE11-5D41-4969-AA39-2EA1A17ABF34}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
TeamSpeak 2 RC2 (HKLM-x32\...\Teamspeak 2 RC2_is1) (Version: 2.0.32.60 - Dominating Bytes Design)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TenLittleIndians (HKLM-x32\...\{12BA5DFC-4BE2-4F07-BE38-5BDC50789B35}) (Version: 1.3.0.0 - Vitware)
The Witcher 3: Wild Hunt (HKLM\...\Steam App 292030) (Version: - CD PROJEKT RED)
Thrustmaster Force Feedback Driver (HKLM-x32\...\{8F5A0981-5CDC-41D0-BCA2-AD3B777FC358}) (Version: 4.FFD.2016 - Thrustmaster)
Thrustmaster TARGET (HKLM-x32\...\{8036A569-CA02-4D33-A7E9-E9BC8A482E91}) (Version: 3.0.16.615 - Thrustmaster)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52a - Ghisler Software GmbH)
UK2000 Gatwick Xtreme FSX (HKLM-x32\...\UK2000 Gatwick Xtreme FSX) (Version: 3.00 - UK2000 Scenery)
UK2000 Stansted Xtreme FSX (HKLM-x32\...\UK2000 Stansted Xtreme FSX) (Version: 3.31 - UK2000 Scenery)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Viber (HKLM-x32\...\{A2493BD0-D9CC-4818-BA08-23A1D61D5083}) (Version: 6.8.5.1318 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-1489680871-105870493-2040455859-1001\...\{91f70fae-0d33-4d99-9dc6-82bc860c483d}) (Version: 6.8.5.1318 - Viber Media Inc.)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
War Thunder Launcher 1.0.1.737 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
webiums modpack 0.9.20.0 v04 (HKLM-x32\...\{B64D8CE9-11B2-469D-A347-9A13C2BCA423}_is1) (Version: 04 - myWOTmods.com)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
World of Tanks (HKU\S-1-5-21-1489680871-105870493-2040455859-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
Xtreme FSX PC (HKLM-x32\...\{9B4A616D-0E58-4EDD-A75E-6F0FB60BBBF0}) (Version: 3.0.0.0 - FSPS)
Základní software zařízení HP Deskjet 4640 series (HKLM\...\{1E6B798E-3376-4F34-A80C-4729A9D0ADCB}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1489680871-105870493-2040455859-1001_Classes\CLSID\{3D3B1846-CC43-42AE-BFF9-D914083C2BA3}\InprocServer32 -> C:\Program Files\SumatraPDF\PdfPreview.dll ()
CustomCLSID: HKU\S-1-5-21-1489680871-105870493-2040455859-1001_Classes\CLSID\{55808EA8-81FE-43c6-AAE8-1D8149F941D3}\InprocServer32 -> C:\Program Files\SumatraPDF\PdfFilter.dll ()
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-09-22] (ESET)
ContextMenuHandlers1: [OODefrag] -> {48EAD1E1-ECF2-4a85-AA09-1C44FBEED451} => C:\Program Files\OO Software\Defrag\oodsh.dll [2011-01-12] (O&O Software GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2009-06-02] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-08-16] ()
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-09-22] (ESET)
ContextMenuHandlers2: [OODefrag] -> {48EAD1E1-ECF2-4a85-AA09-1C44FBEED451} => C:\Program Files\OO Software\Defrag\oodsh.dll [2011-01-12] (O&O Software GmbH)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2009-06-02] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-08-16] ()
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-07-19] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-09-22] (ESET)
ContextMenuHandlers6: [OODefrag] -> {48EAD1E1-ECF2-4a85-AA09-1C44FBEED451} => C:\Program Files\OO Software\Defrag\oodsh.dll [2011-01-12] (O&O Software GmbH)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2010-08-12] (VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2009-06-02] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-08-16] ()
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1567A14A-BB97-4B69-AF5E-B2AAF448F8BB} - System32\Tasks\HPCustParticipation HP Deskjet 4640 series => C:\Program Files\HP\HP Deskjet 4640 series\Bin\HPCustPartic.exe [2014-03-06] (Hewlett-Packard Co.)
Task: {3465D331-6356-4A07-86EB-A5A129DECB9A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd)
Task: {63E7B13B-5D54-4018-A303-C7591BE9B46C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-24] (Google Inc.)
Task: {7703845E-0203-4844-A4EA-B6BFE5571A55} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-24] (Google Inc.)
Task: {77B5E608-CCEE-471B-90DE-76DC9AA56CD7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-09-19] (NVIDIA Corporation)
Task: {79F2630A-E505-4987-89BF-A8516DBAB841} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-09-19] (NVIDIA Corporation)
Task: {7B542751-1C5D-4BA1-B79B-57A53F49AC5F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {81212440-E18F-44B4-B881-F4C7B1925669} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-09-10] (Overwolf LTD)
Task: {85FA6AE7-6607-418A-8640-BC8B8550D0BF} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-09-19] (NVIDIA Corporation)
Task: {9BBB6673-3609-43DD-980F-8E505FE73D85} - System32\Tasks\S-1-5-21-1489680871-105870493-2040455859-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-03-18] (Microsoft Corporation)
Task: {9CA21F78-9845-414E-AAD3-F645B4A77974} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-09-19] (NVIDIA Corporation)
Task: {A5F68901-91E0-46AD-BFA0-8146D90B5BB1} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-09-19] (NVIDIA Corporation)
Task: {BD37F398-4BF7-4CA0-825D-AB61EF97DED5} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-09-19] (NVIDIA Corporation)
Task: {D93E2D9C-B0F1-4EEB-801A-F3B7E3E57113} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-09-19] (NVIDIA Corporation)
Task: {F8A98F2E-89F6-49CB-8549-BE9D6F8DDC91} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-09-19] (NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\tata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Unit Converter.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=fbiicdapcioonpclifmhmcnhhdegnpke
==================== Loaded Modules (Whitelisted) ==============
2017-07-11 21:16 - 2017-07-19 01:24 - 000133568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-01-04 12:19 - 2017-09-19 09:23 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-07-25 17:52 - 2009-06-02 01:15 - 000051200 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2017-03-18 22:59 - 2017-03-20 06:45 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-08-23 09:06 - 2017-08-23 09:06 - 000074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-08-23 09:06 - 2017-08-23 09:06 - 000203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-08-23 09:06 - 2017-08-23 09:06 - 036162048 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-08-23 09:06 - 2017-08-23 09:06 - 002237952 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\skypert.dll
2017-09-25 20:52 - 2017-09-21 09:29 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libglesv2.dll
2017-09-25 20:52 - 2017-09-21 09:29 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libegl.dll
2017-01-04 12:19 - 2017-09-19 09:23 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-10-30 09:24 - 2015-10-30 09:21 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1489680871-105870493-2040455859-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\tata\Pictures\Prepar3D v2 Files\2017-9-18_20-33-24-285.bmp
DNS Servers: 79.127.176.42
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-1489680871-105870493-2040455859-1001\...\StartupApproved\Run: => "Overwolf"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{A23DF4B8-C06B-4E7E-BBF5-794EA6B4EC22}] => (Allow) G:\Eagle Dynamics\DCS World\bin\DCS.exe
FirewallRules: [{3499B5ED-8D67-404D-AF90-C82F951F17E8}] => (Allow) G:\Eagle Dynamics\DCS World\bin\DCS.exe
FirewallRules: [{BB3265DA-9A9A-446A-9A53-B10895D7996F}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\umi.exe
FirewallRules: [{DC26B3F7-BE4D-4C54-B7DC-468935060C3E}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\umi.exe
FirewallRules: [{97F699C4-3CE6-4B97-8499-830D0C9DFE78}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe
FirewallRules: [{E8E6BF37-3ABC-482F-A62B-F8A7E8D1F6BF}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe
FirewallRules: [{22EB4A79-5C74-42EC-84CC-3CA8945C0D46}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\RM.exe
FirewallRules: [{E2F12230-C451-455B-A728-9EB87EC8C671}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\RM.exe
FirewallRules: [UDP Query User{2EA4F822-3D7C-4D2F-9A0A-BF90DDE1E10E}J:\microsoft games\microsoft flight simulator x\fsx.exe] => (Allow) J:\microsoft games\microsoft flight simulator x\fsx.exe
FirewallRules: [TCP Query User{5FC90490-7616-43B1-BBD3-3515E4074C36}J:\microsoft games\microsoft flight simulator x\fsx.exe] => (Allow) J:\microsoft games\microsoft flight simulator x\fsx.exe
FirewallRules: [UDP Query User{43EEE7E3-134C-48AC-8A6C-AAACC0FB1DC2}J:\microsoft games\microsoft flight simulator x\aerosoft\airbus a318_a319\airbusxconnectextended.exe] => (Allow) J:\microsoft games\microsoft flight simulator x\aerosoft\airbus a318_a319\airbusxconnectextended.exe
FirewallRules: [TCP Query User{4CDEDA34-DC80-40F1-B8CF-9749DAA5F7A4}J:\microsoft games\microsoft flight simulator x\aerosoft\airbus a318_a319\airbusxconnectextended.exe] => (Allow) J:\microsoft games\microsoft flight simulator x\aerosoft\airbus a318_a319\airbusxconnectextended.exe
FirewallRules: [{FE5121AA-ACFE-4C2B-8A85-266C1076A490}] => (Allow) F:\Games\Steam\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{E766A9A6-5CC1-497A-AE57-99778F0442CF}] => (Allow) F:\Games\Steam\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{A3331AF4-166E-40E3-B4CE-05893980BC97}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8CE39660-8781-4BC9-BC28-04B7B6E6B124}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0A52BC6B-A12E-4D85-8777-2CDEEABE0DA2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{D009C3E3-A9D4-4A9F-9E71-D463A8B2D9F9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{F05879FF-68BF-4AEB-9AAD-FFE207FDDF61}] => (Allow) F:\Games\Steam\SteamApps\common\Rocksmith2014\Rocksmith2014.exe
FirewallRules: [{E3421EF9-C240-4D25-B19F-B9E79F13D7DE}] => (Allow) F:\Games\Steam\SteamApps\common\Rocksmith2014\Rocksmith2014.exe
FirewallRules: [UDP Query User{E2F40D3E-76D6-4D34-BCA8-6BFD4E69D3F1}D:\warthunder\win64\aces.exe] => (Allow) D:\warthunder\win64\aces.exe
FirewallRules: [TCP Query User{67EA84BD-412F-41D1-A448-8E4267EBE98B}D:\warthunder\win64\aces.exe] => (Allow) D:\warthunder\win64\aces.exe
FirewallRules: [{8E366639-61A1-41C1-A422-F8B8F8FF606A}] => (Allow) D:\WarThunder\run.exe
FirewallRules: [{0AA61C96-6F79-4F58-ADD1-CF8FB4C30F5B}] => (Allow) D:\WarThunder\run.exe
FirewallRules: [{A5E1CA43-F4F3-4201-A2C8-2FF582FEAAFD}] => (Allow) D:\WarThunder\launcher.exe
FirewallRules: [{89FAB3BE-C749-4C40-B446-8FAA5D768C2E}] => (Allow) D:\WarThunder\launcher.exe
FirewallRules: [{0A1ECBAC-4384-46D4-97C3-EAFA79DDBD22}] => (Allow) F:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{0DFA84E1-DD03-4BDD-A663-E1F65F36CBAC}] => (Allow) F:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [UDP Query User{0B99AAC6-C2A7-4597-9A63-23BBC48BCC06}G:\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe] => (Allow) G:\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe
FirewallRules: [TCP Query User{7CDD9D25-B6FA-4275-AEFB-B4E56150CC36}G:\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe] => (Allow) G:\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe
FirewallRules: [UDP Query User{16183B89-066D-408C-B41C-352886A9CA6C}G:\eagle dynamics\dcs world\bin\dcs_updater.exe] => (Allow) G:\eagle dynamics\dcs world\bin\dcs_updater.exe
FirewallRules: [TCP Query User{119D8E50-AC43-4ECE-88B8-FFA61575F554}G:\eagle dynamics\dcs world\bin\dcs_updater.exe] => (Allow) G:\eagle dynamics\dcs world\bin\dcs_updater.exe
FirewallRules: [UDP Query User{89498AB8-8696-476C-9F46-B62AC6CB8488}C:\program files (x86)\ivao\ivap v2\ivap_dllhost.exe] => (Allow) C:\program files (x86)\ivao\ivap v2\ivap_dllhost.exe
FirewallRules: [TCP Query User{BBEC4A2B-538D-452F-9B92-97663AC79133}C:\program files (x86)\ivao\ivap v2\ivap_dllhost.exe] => (Allow) C:\program files (x86)\ivao\ivap v2\ivap_dllhost.exe
FirewallRules: [{32C9184C-2CED-40EF-9226-9958BFCAAA72}] => (Allow) F:\Games\Steam\SteamApps\common\DCSWorld\Run.exe
FirewallRules: [{DD0EA405-1244-4214-AF2F-A3848C998C42}] => (Allow) F:\Games\Steam\SteamApps\common\DCSWorld\Run.exe
FirewallRules: [{47F310B2-3705-4FBB-9BC8-5A1DD94CEFD3}] => (Allow) F:\Games\Steam\SteamApps\common\Elite Dangerous\EDLaunch.exe
FirewallRules: [{C668C644-1AD2-4B94-ADB2-C61A3CCBFB59}] => (Allow) F:\Games\Steam\SteamApps\common\Elite Dangerous\EDLaunch.exe
FirewallRules: [{2B485CB2-3899-4BD3-8DE8-07AE2DC82C52}] => (Allow) h:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{7B4DF7A1-3BC6-4E00-8701-D6D220F03126}] => (Allow) h:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{CF286F40-1443-4157-AB9C-8D846654ECEA}] => (Allow) h:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{D7509B76-9479-4FBF-B401-18903CB9DDFC}] => (Allow) h:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{47FBDCCE-37B2-40A5-BB7C-A682DAFCA8E2}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\bin\FaxApplications.exe
FirewallRules: [{87B77A57-64ED-48BC-89E0-5EC78BF632AF}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\bin\DigitalWizards.exe
FirewallRules: [{72E00770-29D6-4537-A18A-688727024A41}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\bin\SendAFax.exe
FirewallRules: [{23910DED-9DC1-4E6E-B140-724FC7E0FD93}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\Bin\DeviceSetup.exe
FirewallRules: [{390ABE9E-4329-4E68-9113-6D5EE56FD531}] => (Allow) LPort=5357
FirewallRules: [{343ECE9F-CDC5-43F7-9D25-D30B5D99F336}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{DC22243C-DB3A-43DB-AEE0-F6F4BF827BBC}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [{592143F0-27EF-44DF-B039-F3B594661952}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [{44E8DB8A-7957-46A9-8632-AC592811E821}] => (Allow) F:\Steam\bin\steamwebhelper.exe
FirewallRules: [{59CF9FAC-5765-409D-AB94-023E40199893}] => (Allow) F:\Steam\bin\steamwebhelper.exe
FirewallRules: [{59D85A46-C68E-4AF1-A15E-FF953CDEF7D2}] => (Allow) F:\Steam\SteamApps\common\DCSWorld\Run.exe
FirewallRules: [{094E0CC2-05BA-4F6B-B993-EEC033C2A9A0}] => (Allow) F:\Steam\SteamApps\common\DCSWorld\Run.exe
FirewallRules: [{A8830FC5-4B87-492B-A7B0-7168A5BB3590}] => (Allow) F:\Games\Steam\Steam.exe
FirewallRules: [{1721EB4B-D8F0-46E6-A9A8-C7951CE7C812}] => (Allow) F:\Games\Steam\Steam.exe
FirewallRules: [{CB0E6961-0FF6-46B3-B6A7-B02567C462A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{7CF2A4CC-ABCE-4C02-90C0-8143436DAE2A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{EBA1D1C4-2AB6-4E35-98D6-A1E4A1E3BD3D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{553398DE-EB3B-403A-A7E0-D68068F320C4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{62FC2DB2-2D51-429A-9592-A19AACB5F247}] => (Allow) J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
FirewallRules: [{C6D21D65-D7F8-477F-A298-DCC74095AC9E}] => (Allow) J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
FirewallRules: [TCP Query User{A75B8D74-27AF-428C-8595-2CE1A231B742}J:\microsoft games\microsoft flight simulator x\fsx.exe] => (Allow) J:\microsoft games\microsoft flight simulator x\fsx.exe
FirewallRules: [UDP Query User{C4CCA545-D5CD-4A63-959D-DA9027A037B4}J:\microsoft games\microsoft flight simulator x\fsx.exe] => (Allow) J:\microsoft games\microsoft flight simulator x\fsx.exe
FirewallRules: [TCP Query User{B2731DDE-2BAE-4FBD-B4E8-203F8E410364}D:\lockheed martin\prepar3d v4\prepar3d.exe] => (Allow) D:\lockheed martin\prepar3d v4\prepar3d.exe
FirewallRules: [UDP Query User{4B7D66AE-225E-4DBC-AE11-95A56E349931}D:\lockheed martin\prepar3d v4\prepar3d.exe] => (Allow) D:\lockheed martin\prepar3d v4\prepar3d.exe
FirewallRules: [{DB3E09E2-6777-45DC-A838-7FBD1ECF578A}] => (Allow) J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
FirewallRules: [{C13C7BA5-438E-48B0-97E7-98EAC9629E26}] => (Allow) J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
FirewallRules: [TCP Query User{0A18E72A-B695-4D5E-A55E-8BEEF3FAD3FD}D:\x-plane 11\x-plane.exe] => (Allow) D:\x-plane 11\x-plane.exe
FirewallRules: [UDP Query User{3C4446F0-BDCF-4D18-BBE1-30972DB3B264}D:\x-plane 11\x-plane.exe] => (Allow) D:\x-plane 11\x-plane.exe
FirewallRules: [{BCF2C280-8CEB-47E0-96F4-7D72AABFE91A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{D43101FB-2AE9-4A58-AD56-2ECCCB2CA965}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Restore Points =========================
ATTENTION: System Restore is disabled
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (10/01/2017 03:14:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FSXPC)
Description: Aplikaci Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App se nepovedlo aktivovat, protože došlo k chybě: -2147023170. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (10/01/2017 03:14:02 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FSXPC)
Description: Aplikaci Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App se nepovedlo aktivovat, protože došlo k chybě: -2147023170. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (10/01/2017 09:52:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fsx.exe, verze: 10.0.61472.0, časové razítko: 0x475e17d3
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc000041d
Posun chyby: 0x04e3eee0
ID chybujícího procesu: 0x23b8
Čas spuštění chybující aplikace: 0x01d33a7ddb5253c8
Cesta k chybující aplikaci: J:\Microsoft Games\Microsoft Flight Simulator X\fsx.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 5965c0b9-a6ca-4773-a54e-61e77f814dbe
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/01/2017 09:52:20 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fsx.exe, verze: 10.0.61472.0, časové razítko: 0x475e17d3
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x04e3eee0
ID chybujícího procesu: 0x23b8
Čas spuštění chybující aplikace: 0x01d33a7ddb5253c8
Cesta k chybující aplikaci: J:\Microsoft Games\Microsoft Flight Simulator X\fsx.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: d572e012-24a7-4962-bbe3-cce64bec6ebf
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/30/2017 10:31:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Prepar3D.exe, verze: 2.5.12946.0, časové razítko: 0x555f2e54
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc000041d
Posun chyby: 0x1c78b230
ID chybujícího procesu: 0x298c
Čas spuštění chybující aplikace: 0x01d339c615508c59
Cesta k chybující aplikaci: J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 88c8284e-19e9-4035-b928-29c83cc803d7
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/30/2017 10:31:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Prepar3D.exe, verze: 2.5.12946.0, časové razítko: 0x555f2e54
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x1c78b230
ID chybujícího procesu: 0x298c
Čas spuštění chybující aplikace: 0x01d339c615508c59
Cesta k chybující aplikaci: J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 762fafc8-feb3-4dce-aa37-abd2f3ff9044
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/30/2017 10:31:40 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: Prepar3D.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: kód výjimky c0000005, adresa výjimky 1C78B230
Zásobník:
Error: (09/30/2017 10:27:52 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Prepar3D.exe, verze: 2.5.12946.0, časové razítko: 0x555f2e54
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc000041d
Posun chyby: 0x0aafdd00
ID chybujícího procesu: 0x1d94
Čas spuštění chybující aplikace: 0x01d339c599988ba6
Cesta k chybující aplikaci: J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 40fafa2a-05a3-46f0-ab4e-2b79d40d60ad
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/30/2017 10:27:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Prepar3D.exe, verze: 2.5.12946.0, časové razítko: 0x555f2e54
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x0aafdd00
ID chybujícího procesu: 0x1d94
Čas spuštění chybující aplikace: 0x01d339c599988ba6
Cesta k chybující aplikaci: J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: c904d2a2-8a0f-4816-ad92-8356bb8cc23d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/30/2017 10:27:47 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: Prepar3D.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: kód výjimky c0000005, adresa výjimky 0AAFDD00
Zásobník:
na MS.Win32.UnsafeNativeMethods.IntGetMessageW(System.Windows.Interop.MSG ByRef, System.Runtime.InteropServices.HandleRef, Int32, Int32)
na MS.Win32.UnsafeNativeMethods.GetMessageW(System.Windows.Interop.MSG ByRef, System.Runtime.InteropServices.HandleRef, Int32, Int32)
na System.Windows.Threading.Dispatcher.GetMessage(System.Windows.Interop.MSG ByRef, IntPtr, Int32, Int32)
na System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
na System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
na Views.AlertBox.P3DAlertBox.ProcessPendingWorkItems()
na Views.AlertBox.P3DAlertBox.OnProgressPercentChanged(System.Object)
na MenuModels.AlertBox.AlertData.set_ProgressCurrent(Double)
na <Module>.P3DAlert.SetCurrent(P3DAlert*, Int32)
na <Module>.P3DAlertSystem.UpdateModeless(Void*, Int32)
System errors:
=============
Error: (10/02/2017 05:40:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CldFlt neuspěla při spuštění v důsledku následující chyby:
Požadavek není podporován.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Thrustmaster FAST service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Thrustmaster® General Accessories Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Telemetry Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba O&O Defrag byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
CodeIntegrity:
===================================
Date: 2017-10-02 19:19:40.319
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-02 19:19:39.638
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-02 19:19:35.643
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-02 19:19:33.912
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-02 19:19:33.064
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-02 19:19:32.741
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-02 19:19:32.600
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-01 13:40:18.670
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-09-30 09:42:40.302
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-09-29 18:52:07.186
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz
Percentage of memory in use: 18%
Total physical RAM: 15836.84 MB
Available physical RAM: 12985.33 MB
Total Virtual: 18268.84 MB
Available Virtual: 15278.79 MB
==================== Drives ================================
Drive c: (Data_SSD_128GB) (Fixed) (Total:119.23 GB) (Free:32.45 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Nový svazek) (Fixed) (Total:886.33 GB) (Free:498.11 GB) NTFS
Drive e: (Nový svazek) (Fixed) (Total:976.56 GB) (Free:228.75 GB) NTFS
Drive f: () (Fixed) (Total:303.48 GB) (Free:127.78 GB) NTFS
Drive g: () (Fixed) (Total:309.26 GB) (Free:15.39 GB) NTFS
Drive h: () (Fixed) (Total:318.76 GB) (Free:99.26 GB) NTFS
Drive i: (Moje soubory) (CDROM) (Total:0.04 GB) (Free:0 GB) UDF
Drive j: (Nový svazek) (Fixed) (Total:232.88 GB) (Free:32.97 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: FFFFFFFF)
Partition 1: (Active) - (Size=119.2 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 98134E45)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: DEDA7A36)
Partition 1: (Active) - (Size=931.5 GB) - (Type=05)
==================== End of Addition.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-10-2017
Ran by tata (02-10-2017 19:22:41)
Running from C:\Users\tata\Desktop
Windows 10 Home Version 1703 (X64) (2017-07-11 19:24:26)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1489680871-105870493-2040455859-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1489680871-105870493-2040455859-503 - Limited - Disabled)
Guest (S-1-5-21-1489680871-105870493-2040455859-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1489680871-105870493-2040455859-1003 - Limited - Enabled)
tata (S-1-5-21-1489680871-105870493-2040455859-1001 - Administrator - Enabled) => C:\Users\tata
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Internet Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Internet Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.02 (x64) (HKLM\...\7-Zip) (Version: 16.02 - Igor Pavlov)
A2A C172 Trainer Academic for P3D (HKLM-x32\...\A2A C172 Trainer Academic for P3D) (Version: - )
Active Sky 2012 (HKLM-x32\...\{A9C7C8A6-22A5-2012-8E5A-F77D709A9489}_is1) (Version: 13.1.4569.9495 - HiFi Technologies, Inc.)
Active Sky Next for FSX SP5 (HKLM-x32\...\{F1AE1E08-5094-46AD-AA4D-670C482723B2}_is1) (Version: 1.0.6255.21938 - HiFi Technologies, Inc.)
Active Sky Next for P3D SP5 (HKLM-x32\...\{67230DFC-F135-4F7F-B489-5860FD0EE162}_is1) (Version: 1.0.6255.21926 - HiFi Technologies, Inc.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_4977c84bcdc298c444ccfbdcccb660d) (Version: 10.0 - Adobe Systems Incorporated)
Aerosoft's - Airbus A318-A319 - FSX (HKLM-x32\...\Airbus A318-A319 - FSX) (Version: 1.31 - Aerosoft)
Aerosoft's - Airbus A318-A319 - PREPAR3D V2.x (HKLM-x32\...\Airbus A318-A319 - PREPAR3D V2.x) (Version: 1.31 - Aerosoft)
Aerosoft's - Airbus A320-A321 - FSX (HKLM-x32\...\Airbus A320-A321 - FSX) (Version: 1.31 - Aerosoft)
Aerosoft's - Airbus A320-A321 - PREPAR3D V2.x (HKLM-x32\...\Airbus A320-A321 - PREPAR3D V2.x) (Version: 1.31 - Aerosoft)
aerosoft's - Antalya X (HKLM-x32\...\{E6E332E8-9BFA-48CC-B03C-F181C1F06DC0}) (Version: 1.03 - aerosoft)
aerosoft's - Approaching Innsbruck X (HKLM-x32\...\{70864384-DD19-44CB-A999-A917F32F623D}) (Version: 1.20 - aerosoft)
aerosoft's - Balearic Islands X for FSX (HKLM-x32\...\{04B73EB2-7538-4CC4-BBD6-5463E508B69B}) (Version: 1.01 - aerosoft)
Aerosoft's - Bergamo X - FSX (HKLM-x32\...\Bergamo X - FSX) (Version: 1.02 - Aerosoft)
aerosoft's - German Airports 1 - Stuttgart X (HKLM-x32\...\{E4298CF5-9C36-4519-9089-FF7A43EA5C5D}) (Version: 1.02 - aerosoft)
aerosoft's - German Airports 3 - 2012 (Berlin-Tegel FSX) (HKLM-x32\...\{3DAD565E-1275-4EE8-9568-932CB7B75FB8}) (Version: 1.02 - aerosoft)
aerosoft's - Mega Airport Amsterdam FSX (HKLM-x32\...\{0A297C87-BF52-43FD-AD75-EE72228E4457}) (Version: 1.04 - aerosoft)
Aerosoft's - Mega Airport Budapest (HKLM-x32\...\{AD6C554F-5050-40B1-B84D-51D74A09C7E4}) (Version: 2.00 - Aerosoft)
aerosoft's - Mega Airport Frankfurt X (HKLM-x32\...\{BAEE0C24-C8C2-4820-9DF4-887909F1A286}) (Version: 1.04 - aerosoft)
aerosoft's - Mega Airport London Heathrow X (HKLM-x32\...\{2F4AF40B-433A-494E-BB41-816D113F32BA}) (Version: 1.10 - aerosoft)
aerosoft's - Mega Airport Madrid Barajas (HKLM-x32\...\{8233F99B-C4C2-44E9-8486-374E9B300BF2}) (Version: 1.03 - aerosoft)
aerosoft's - Mega Airport Munich X (HKLM-x32\...\{1B19DA07-6870-4E60-9171-5C53AD21A0E0}) (Version: 1.02 - aerosoft)
Aerosoft's - Mega Airport Oslo 2.0 - FSX (HKLM-x32\...\Mega Airport Oslo 2.0 - FSX) (Version: 1.03 - Aerosoft)
aerosoft's - Mega Airport Paris CDG X (HKLM-x32\...\{0F5E7FC8-3D49-47DA-9A51-6A8B4BE393B0}) (Version: 1.00 - aerosoft)
Aerosoft's - Mega Airport Prag - FSX (HKLM-x32\...\Mega Airport Prag - FSX) (Version: 1.05 - Aerosoft)
Aerosoft's - Mega Airport Rome - FSX (HKLM-x32\...\Mega Airport Rome - FSX) (Version: 1.01 - Aerosoft)
aerosoft's - Mega Airport Stockholm Arlanda X (HKLM-x32\...\{3B6F6E35-900C-4FE3-B2F6-067443353CD1}) (Version: 1.00 - aerosoft)
Aerosoft's - Mega Airport Zurich 2012 - FSX (HKLM-x32\...\{463A571A-B793-459B-BEA8-028DC323AAB0}) (Version: 1.02 - Aerosoft)
Aerosoft's - Mega Airport Zurich V2.0 Professional (HKLM-x32\...\Mega Airport Zurich V2.0 Professional) (Version: 1.00 - Aerosoft)
aerosoft's - Nice Cote dAzur X (HKLM-x32\...\{90447E05-DE8E-470D-8D3E-C871D2AE74AF}) (Version: 1.10 - aerosoft)
Aktualizace NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISER_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISER_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISER_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 384.94 - NVIDIA Corporation) Hidden
ASConnect for FSX Installer (HKLM-x32\...\{7E1270D4-42C4-49A4-9EC4-3300D2E47331}_is1) (Version: 1.0.0.34 - HiFi Technologies, Inc.)
ASConnect for P3D (HKLM-x32\...\{70C18CD2-D9F3-478D-994C-DCE39C84E19E}_is1) (Version: 1.0.0.34 - HiFi Technologies, Inc.)
Ashampoo Burning Studio 9.12 (HKLM-x32\...\Ashampoo Burning Studio 9_is1) (Version: 9.1.2 - ashampoo GmbH & Co. KG)
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.50.1017 - Webteh, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform)
CEWE fotosvet (HKLM-x32\...\CEWE fotosvet) (Version: 6.1.5 - CEWE Stiftung u Co. KGaA)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0192 - Disc Soft Ltd)
DCS World (HKLM\...\DCS World_is1) (Version: 1.5 - Eagle Dynamics)
DCS World (HKLM\...\Steam App 223750) (Version: - Eagle Dynamics)
DCS World 2 OpenAlpha (HKLM\...\DCS World 2 OpenAlpha_is1) (Version: 2.0 - Eagle Dynamics)
Elite Dangerous (HKLM\...\Steam App 359320) (Version: - Frontier Developments)
ESET Security (HKLM\...\{0F462EFA-8AE8-4C2A-BC94-0AFFF17A8245}) (Version: 11.0.131.0 - ESET, spol. s r.o.)
EZdok Camera for Microsoft Flight Simulator X (HKLM-x32\...\EZdok Camera for Microsoft Flight Simulator X) (Version: - )
Fortaleza City Airport Photoreal (HKLM\...\{D5BF1377-BC17-4986-9AFB-C788E3479C71}) (Version: 2 - guyfs9, Bruno Israel, Rui Mesquita)
Fotolab Fotosvet (HKLM-x32\...\Fotolab Fotosvet) (Version: 6.1.5 - CEWE Stiftung u Co. KGaA)
FPRConverter (HKLM-x32\...\{4E040662-D0E1-4EA4-A934-0552CD67CF48}) (Version: 1.1.141 - Bernd's Homebrew)
Google Earth Pro (HKLM-x32\...\{ECF2E224-42F5-4E50-B58E-94CA70E85697}) (Version: 7.3.0.3832 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
HP Deskjet 4640 series Nápověda (HKLM-x32\...\{1F8F66BE-AFF4-45C4-A425-82A285D97977}) (Version: 31.0.0 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Istanbul Sabiha Gokcen X (HKLM-x32\...\SCENERYTR_ISTANBUL_SABIHA_GOKCEN_X_is1) (Version: 1.0.0.1 - SimMarket)
IvAp v2.0.2 (build 2773) (HKLM-x32\...\IvAp-v2_is1) (Version: - IVAO)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
KeePass Password Safe 2.36 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.36 - Dominik Reichl)
Košice International Airport for FSX (HKLM-x32\...\LZKZFSX_is1) (Version: - SimMarket)
Landi 2000 (HKLM-x32\...\Landi2000) (Version: - )
LanguageLab (HKLM-x32\...\{E6F4BB0D-0239-454C-AA75-03EE8A1D8770}) (Version: 3.9.2.1 - Vitware)
Majestic MJC8Q400 (HKLM-x32\...\MJC8Q400) (Version: - )
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft ESP SimConnect Client v1.0.20.0 (HKLM-x32\...\{C0A9FCC1-9725-4679-8AC2-FE501B139B63}) (Version: 1.0.20.0 - Microsoft Corporation)
Microsoft Flight Simulator SimConnect Client v10.0.61259.0 (HKLM-x32\...\{D61CA184-3F6D-4A50-B2CC-7A18447D6A8D}) (Version: 10.0.61259.0 - Microsoft Corporation)
Microsoft Flight Simulator X Service Pack 2 (HKLM-x32\...\{4847BBB9-EADD-4C92-90BF-4223B0892FF6}) (Version: 10.0.61472.0 - Microsoft Game Studios)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1489680871-105870493-2040455859-1001\...\OneDriveSetup.exe) (Version: 17.3.6998.0830 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{e9d78d68-c26c-4da7-9158-99355d8ef3ad}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Migration Tool (HKLM-x32\...\{64cd40e2-6e5e-4732-8ed4-b4a5be475825}) (Version: 2.2.1.647 - Flightsim Estonia)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NVIDIA GeForce Experience 3.9.0.97 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.97 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 384.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 384.94 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 384.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 384.94 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
O&O Defrag Professional (HKLM\...\{7AA6F1A2-6A65-4A3A-AC62-4445704B04E3}) (Version: 14.1.425 - O&O Software GmbH)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.107.36.0 - Overwolf Ltd.)
Ovládací panel NVIDIA 384.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 384.94 - NVIDIA Corporation) Hidden
Ovladače videa společnosti Pinnacle (HKLM\...\{5EB90C06-964F-4195-B83E-BD7E55C88415}) (Version: 12.00.0017 - Pinnacle Systems)
PDF Settings (HKLM-x32\...\{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
Pinnacle Studio 12 (HKLM-x32\...\{D041EB9E-890A-4098-8F94-51DA194AC72A}) (Version: 12.0.0.6163 - Pinnacle Systems)
Plan-G v3.1.3 version 3.1.3 (HKLM-x32\...\{BC13ABF2-2C08-42A6-A5C4-AFCE666ABE58}_is1) (Version: 3.1.3 - TA Studio)
PMDG 737 6700 NGX Expansion FSX (HKLM-x32\...\{C7EE862A-D83D-4A9F-B746-CBDE39BD7001}) (Version: 1.10.6461 - PMDG Simulations, LLC.)
PMDG 737 6700 NGX Expansion P3D (HKLM-x32\...\{51CE3C56-7069-4055-AC02-FDCA5A0C0D0C}) (Version: 1.10.6436 - PMDG Simulations, LLC.)
PMDG 737 8900 NGX Base Package FSX (HKLM-x32\...\{20708FD5-E94D-4097-A21E-E28564CDBC06}) (Version: 1.10.6461 - PMDG Simulations, LLC.)
PMDG 737 8900 NGX Base Package P3D (HKLM-x32\...\{0EA92925-36E7-40CB-A714-118AB046099B}) (Version: 1.10.6436 - PMDG Simulations, LLC.)
PMDG 777-200LR/F Base Package FSX (HKLM-x32\...\{0F16340B-5B5B-4531-8D87-4952E3BCA6E6}) (Version: 1.10.7025 - PMDG Simulations, LLC.)
Prepar3D v2 Academic (HKLM-x32\...\{92B3FF8A-3C33-4EFC-850D-CF29E54292D9}) (Version: 2.5.12946.0 - Lockheed Martin)
Prepar3D v2 Academic Bundle (HKLM-x32\...\{b0f2a07b-2ab5-4059-8be9-cb464ef75221}) (Version: 2.5.12946.0 - Lockheed Martin) Hidden
Prepar3D v2 SDK 2.5.12946.0 (HKLM-x32\...\{5FA0CF7C-0225-4595-B2E5-DB9AE7E920AE}) (Version: 2.5.12946.0 - Lockheed Martin)
Prepar3D v4 Academic (HKLM-x32\...\{24334c8e-bce6-476c-bf15-aaaa4d69c877}) (Version: 4.0.28.21686 - Lockheed Martin)
Prepar3D v4 Academic Client (HKLM\...\{F4C0F17C-2CAD-4CC2-B8EA-63D59CF17070}) (Version: 4.0.28.21686 - Lockheed Martin)
Prepar3D v4 Content (HKLM\...\{87040041-993B-42AF-BEA0-6086FEB45184}) (Version: 4.0.28.21686 - Lockheed Martin)
Prepar3D v4 Scenery (HKLM\...\{C953A291-C0D5-414E-8211-778D5E53D73A}) (Version: 4.0.28.21686 - Lockheed Martin)
Prepar3D v4 SDK 4.0.28.21686 (HKLM\...\{CB22CCFE-1549-4092-9FE9-793682820254}) (Version: 4.0.28.21686 - Lockheed Martin)
RAAS Professional by FS2Crew (LOCKED) (HKLM-x32\...\RAAS Professional by FS2Crew (LOCKED)) (Version: - )
RAAS Professional by FS2Crew (LOCKED) P3D V2 (HKLM-x32\...\RAAS Professional by FS2Crew (LOCKED) P3D V2) (Version: - )
Remove UK2000 Stansted Xtreme files (HKLM-x32\...\UK2000 Stansted Xtreme) (Version: - )
Revo Uninstaller Pro 2.5.9 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 2.5.9 - VS Revo Group, Ltd.)
Rocksmith® 2014 Edition - Remastered (HKLM\...\Steam App 221680) (Version: - Ubisoft - San Francisco)
Smart Tests - testy, které učí (HKLM-x32\...\Smart Tests) (Version: - )
Stellarium 0.10.4 (HKLM-x32\...\Stellarium_is1) (Version: - )
Studie vylepšování produktu HP Deskjet 4640 series (HKLM\...\{3F59AE11-5D41-4969-AA39-2EA1A17ABF34}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
TeamSpeak 2 RC2 (HKLM-x32\...\Teamspeak 2 RC2_is1) (Version: 2.0.32.60 - Dominating Bytes Design)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TenLittleIndians (HKLM-x32\...\{12BA5DFC-4BE2-4F07-BE38-5BDC50789B35}) (Version: 1.3.0.0 - Vitware)
The Witcher 3: Wild Hunt (HKLM\...\Steam App 292030) (Version: - CD PROJEKT RED)
Thrustmaster Force Feedback Driver (HKLM-x32\...\{8F5A0981-5CDC-41D0-BCA2-AD3B777FC358}) (Version: 4.FFD.2016 - Thrustmaster)
Thrustmaster TARGET (HKLM-x32\...\{8036A569-CA02-4D33-A7E9-E9BC8A482E91}) (Version: 3.0.16.615 - Thrustmaster)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52a - Ghisler Software GmbH)
UK2000 Gatwick Xtreme FSX (HKLM-x32\...\UK2000 Gatwick Xtreme FSX) (Version: 3.00 - UK2000 Scenery)
UK2000 Stansted Xtreme FSX (HKLM-x32\...\UK2000 Stansted Xtreme FSX) (Version: 3.31 - UK2000 Scenery)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Viber (HKLM-x32\...\{A2493BD0-D9CC-4818-BA08-23A1D61D5083}) (Version: 6.8.5.1318 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-1489680871-105870493-2040455859-1001\...\{91f70fae-0d33-4d99-9dc6-82bc860c483d}) (Version: 6.8.5.1318 - Viber Media Inc.)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
War Thunder Launcher 1.0.1.737 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
webiums modpack 0.9.20.0 v04 (HKLM-x32\...\{B64D8CE9-11B2-469D-A347-9A13C2BCA423}_is1) (Version: 04 - myWOTmods.com)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
World of Tanks (HKU\S-1-5-21-1489680871-105870493-2040455859-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
Xtreme FSX PC (HKLM-x32\...\{9B4A616D-0E58-4EDD-A75E-6F0FB60BBBF0}) (Version: 3.0.0.0 - FSPS)
Základní software zařízení HP Deskjet 4640 series (HKLM\...\{1E6B798E-3376-4F34-A80C-4729A9D0ADCB}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1489680871-105870493-2040455859-1001_Classes\CLSID\{3D3B1846-CC43-42AE-BFF9-D914083C2BA3}\InprocServer32 -> C:\Program Files\SumatraPDF\PdfPreview.dll ()
CustomCLSID: HKU\S-1-5-21-1489680871-105870493-2040455859-1001_Classes\CLSID\{55808EA8-81FE-43c6-AAE8-1D8149F941D3}\InprocServer32 -> C:\Program Files\SumatraPDF\PdfFilter.dll ()
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-09-22] (ESET)
ContextMenuHandlers1: [OODefrag] -> {48EAD1E1-ECF2-4a85-AA09-1C44FBEED451} => C:\Program Files\OO Software\Defrag\oodsh.dll [2011-01-12] (O&O Software GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2009-06-02] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-08-16] ()
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-09-22] (ESET)
ContextMenuHandlers2: [OODefrag] -> {48EAD1E1-ECF2-4a85-AA09-1C44FBEED451} => C:\Program Files\OO Software\Defrag\oodsh.dll [2011-01-12] (O&O Software GmbH)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2009-06-02] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-08-16] ()
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-07-19] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-05-21] (Igor Pavlov)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-09-22] (ESET)
ContextMenuHandlers6: [OODefrag] -> {48EAD1E1-ECF2-4a85-AA09-1C44FBEED451} => C:\Program Files\OO Software\Defrag\oodsh.dll [2011-01-12] (O&O Software GmbH)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2010-08-12] (VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2009-06-02] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2009-08-16] ()
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1567A14A-BB97-4B69-AF5E-B2AAF448F8BB} - System32\Tasks\HPCustParticipation HP Deskjet 4640 series => C:\Program Files\HP\HP Deskjet 4640 series\Bin\HPCustPartic.exe [2014-03-06] (Hewlett-Packard Co.)
Task: {3465D331-6356-4A07-86EB-A5A129DECB9A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd)
Task: {63E7B13B-5D54-4018-A303-C7591BE9B46C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-24] (Google Inc.)
Task: {7703845E-0203-4844-A4EA-B6BFE5571A55} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-24] (Google Inc.)
Task: {77B5E608-CCEE-471B-90DE-76DC9AA56CD7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-09-19] (NVIDIA Corporation)
Task: {79F2630A-E505-4987-89BF-A8516DBAB841} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-09-19] (NVIDIA Corporation)
Task: {7B542751-1C5D-4BA1-B79B-57A53F49AC5F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {81212440-E18F-44B4-B881-F4C7B1925669} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-09-10] (Overwolf LTD)
Task: {85FA6AE7-6607-418A-8640-BC8B8550D0BF} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-09-19] (NVIDIA Corporation)
Task: {9BBB6673-3609-43DD-980F-8E505FE73D85} - System32\Tasks\S-1-5-21-1489680871-105870493-2040455859-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-03-18] (Microsoft Corporation)
Task: {9CA21F78-9845-414E-AAD3-F645B4A77974} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-09-19] (NVIDIA Corporation)
Task: {A5F68901-91E0-46AD-BFA0-8146D90B5BB1} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-09-19] (NVIDIA Corporation)
Task: {BD37F398-4BF7-4CA0-825D-AB61EF97DED5} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-09-19] (NVIDIA Corporation)
Task: {D93E2D9C-B0F1-4EEB-801A-F3B7E3E57113} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-09-19] (NVIDIA Corporation)
Task: {F8A98F2E-89F6-49CB-8549-BE9D6F8DDC91} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-09-19] (NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\tata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Unit Converter.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=fbiicdapcioonpclifmhmcnhhdegnpke
==================== Loaded Modules (Whitelisted) ==============
2017-07-11 21:16 - 2017-07-19 01:24 - 000133568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-01-04 12:19 - 2017-09-19 09:23 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-07-25 17:52 - 2009-06-02 01:15 - 000051200 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2017-03-18 22:59 - 2017-03-20 06:45 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-08-23 09:06 - 2017-08-23 09:06 - 000074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-08-23 09:06 - 2017-08-23 09:06 - 000203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-08-23 09:06 - 2017-08-23 09:06 - 036162048 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-08-23 09:06 - 2017-08-23 09:06 - 002237952 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\skypert.dll
2017-09-25 20:52 - 2017-09-21 09:29 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libglesv2.dll
2017-09-25 20:52 - 2017-09-21 09:29 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libegl.dll
2017-01-04 12:19 - 2017-09-19 09:23 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-10-30 09:24 - 2015-10-30 09:21 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1489680871-105870493-2040455859-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\tata\Pictures\Prepar3D v2 Files\2017-9-18_20-33-24-285.bmp
DNS Servers: 79.127.176.42
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-1489680871-105870493-2040455859-1001\...\StartupApproved\Run: => "Overwolf"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{A23DF4B8-C06B-4E7E-BBF5-794EA6B4EC22}] => (Allow) G:\Eagle Dynamics\DCS World\bin\DCS.exe
FirewallRules: [{3499B5ED-8D67-404D-AF90-C82F951F17E8}] => (Allow) G:\Eagle Dynamics\DCS World\bin\DCS.exe
FirewallRules: [{BB3265DA-9A9A-446A-9A53-B10895D7996F}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\umi.exe
FirewallRules: [{DC26B3F7-BE4D-4C54-B7DC-468935060C3E}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\umi.exe
FirewallRules: [{97F699C4-3CE6-4B97-8499-830D0C9DFE78}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe
FirewallRules: [{E8E6BF37-3ABC-482F-A62B-F8A7E8D1F6BF}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe
FirewallRules: [{22EB4A79-5C74-42EC-84CC-3CA8945C0D46}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\RM.exe
FirewallRules: [{E2F12230-C451-455B-A728-9EB87EC8C671}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\RM.exe
FirewallRules: [UDP Query User{2EA4F822-3D7C-4D2F-9A0A-BF90DDE1E10E}J:\microsoft games\microsoft flight simulator x\fsx.exe] => (Allow) J:\microsoft games\microsoft flight simulator x\fsx.exe
FirewallRules: [TCP Query User{5FC90490-7616-43B1-BBD3-3515E4074C36}J:\microsoft games\microsoft flight simulator x\fsx.exe] => (Allow) J:\microsoft games\microsoft flight simulator x\fsx.exe
FirewallRules: [UDP Query User{43EEE7E3-134C-48AC-8A6C-AAACC0FB1DC2}J:\microsoft games\microsoft flight simulator x\aerosoft\airbus a318_a319\airbusxconnectextended.exe] => (Allow) J:\microsoft games\microsoft flight simulator x\aerosoft\airbus a318_a319\airbusxconnectextended.exe
FirewallRules: [TCP Query User{4CDEDA34-DC80-40F1-B8CF-9749DAA5F7A4}J:\microsoft games\microsoft flight simulator x\aerosoft\airbus a318_a319\airbusxconnectextended.exe] => (Allow) J:\microsoft games\microsoft flight simulator x\aerosoft\airbus a318_a319\airbusxconnectextended.exe
FirewallRules: [{FE5121AA-ACFE-4C2B-8A85-266C1076A490}] => (Allow) F:\Games\Steam\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{E766A9A6-5CC1-497A-AE57-99778F0442CF}] => (Allow) F:\Games\Steam\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{A3331AF4-166E-40E3-B4CE-05893980BC97}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8CE39660-8781-4BC9-BC28-04B7B6E6B124}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{0A52BC6B-A12E-4D85-8777-2CDEEABE0DA2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{D009C3E3-A9D4-4A9F-9E71-D463A8B2D9F9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{F05879FF-68BF-4AEB-9AAD-FFE207FDDF61}] => (Allow) F:\Games\Steam\SteamApps\common\Rocksmith2014\Rocksmith2014.exe
FirewallRules: [{E3421EF9-C240-4D25-B19F-B9E79F13D7DE}] => (Allow) F:\Games\Steam\SteamApps\common\Rocksmith2014\Rocksmith2014.exe
FirewallRules: [UDP Query User{E2F40D3E-76D6-4D34-BCA8-6BFD4E69D3F1}D:\warthunder\win64\aces.exe] => (Allow) D:\warthunder\win64\aces.exe
FirewallRules: [TCP Query User{67EA84BD-412F-41D1-A448-8E4267EBE98B}D:\warthunder\win64\aces.exe] => (Allow) D:\warthunder\win64\aces.exe
FirewallRules: [{8E366639-61A1-41C1-A422-F8B8F8FF606A}] => (Allow) D:\WarThunder\run.exe
FirewallRules: [{0AA61C96-6F79-4F58-ADD1-CF8FB4C30F5B}] => (Allow) D:\WarThunder\run.exe
FirewallRules: [{A5E1CA43-F4F3-4201-A2C8-2FF582FEAAFD}] => (Allow) D:\WarThunder\launcher.exe
FirewallRules: [{89FAB3BE-C749-4C40-B446-8FAA5D768C2E}] => (Allow) D:\WarThunder\launcher.exe
FirewallRules: [{0A1ECBAC-4384-46D4-97C3-EAFA79DDBD22}] => (Allow) F:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{0DFA84E1-DD03-4BDD-A663-E1F65F36CBAC}] => (Allow) F:\Games\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [UDP Query User{0B99AAC6-C2A7-4597-9A63-23BBC48BCC06}G:\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe] => (Allow) G:\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe
FirewallRules: [TCP Query User{7CDD9D25-B6FA-4275-AEFB-B4E56150CC36}G:\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe] => (Allow) G:\eagle dynamics\dcs world 2 openalpha\bin\dcs_updater.exe
FirewallRules: [UDP Query User{16183B89-066D-408C-B41C-352886A9CA6C}G:\eagle dynamics\dcs world\bin\dcs_updater.exe] => (Allow) G:\eagle dynamics\dcs world\bin\dcs_updater.exe
FirewallRules: [TCP Query User{119D8E50-AC43-4ECE-88B8-FFA61575F554}G:\eagle dynamics\dcs world\bin\dcs_updater.exe] => (Allow) G:\eagle dynamics\dcs world\bin\dcs_updater.exe
FirewallRules: [UDP Query User{89498AB8-8696-476C-9F46-B62AC6CB8488}C:\program files (x86)\ivao\ivap v2\ivap_dllhost.exe] => (Allow) C:\program files (x86)\ivao\ivap v2\ivap_dllhost.exe
FirewallRules: [TCP Query User{BBEC4A2B-538D-452F-9B92-97663AC79133}C:\program files (x86)\ivao\ivap v2\ivap_dllhost.exe] => (Allow) C:\program files (x86)\ivao\ivap v2\ivap_dllhost.exe
FirewallRules: [{32C9184C-2CED-40EF-9226-9958BFCAAA72}] => (Allow) F:\Games\Steam\SteamApps\common\DCSWorld\Run.exe
FirewallRules: [{DD0EA405-1244-4214-AF2F-A3848C998C42}] => (Allow) F:\Games\Steam\SteamApps\common\DCSWorld\Run.exe
FirewallRules: [{47F310B2-3705-4FBB-9BC8-5A1DD94CEFD3}] => (Allow) F:\Games\Steam\SteamApps\common\Elite Dangerous\EDLaunch.exe
FirewallRules: [{C668C644-1AD2-4B94-ADB2-C61A3CCBFB59}] => (Allow) F:\Games\Steam\SteamApps\common\Elite Dangerous\EDLaunch.exe
FirewallRules: [{2B485CB2-3899-4BD3-8DE8-07AE2DC82C52}] => (Allow) h:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{7B4DF7A1-3BC6-4E00-8701-D6D220F03126}] => (Allow) h:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{CF286F40-1443-4157-AB9C-8D846654ECEA}] => (Allow) h:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{D7509B76-9479-4FBF-B401-18903CB9DDFC}] => (Allow) h:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{47FBDCCE-37B2-40A5-BB7C-A682DAFCA8E2}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\bin\FaxApplications.exe
FirewallRules: [{87B77A57-64ED-48BC-89E0-5EC78BF632AF}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\bin\DigitalWizards.exe
FirewallRules: [{72E00770-29D6-4537-A18A-688727024A41}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\bin\SendAFax.exe
FirewallRules: [{23910DED-9DC1-4E6E-B140-724FC7E0FD93}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\Bin\DeviceSetup.exe
FirewallRules: [{390ABE9E-4329-4E68-9113-6D5EE56FD531}] => (Allow) LPort=5357
FirewallRules: [{343ECE9F-CDC5-43F7-9D25-D30B5D99F336}] => (Allow) C:\Program Files\HP\HP Deskjet 4640 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{DC22243C-DB3A-43DB-AEE0-F6F4BF827BBC}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [{592143F0-27EF-44DF-B039-F3B594661952}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [{44E8DB8A-7957-46A9-8632-AC592811E821}] => (Allow) F:\Steam\bin\steamwebhelper.exe
FirewallRules: [{59CF9FAC-5765-409D-AB94-023E40199893}] => (Allow) F:\Steam\bin\steamwebhelper.exe
FirewallRules: [{59D85A46-C68E-4AF1-A15E-FF953CDEF7D2}] => (Allow) F:\Steam\SteamApps\common\DCSWorld\Run.exe
FirewallRules: [{094E0CC2-05BA-4F6B-B993-EEC033C2A9A0}] => (Allow) F:\Steam\SteamApps\common\DCSWorld\Run.exe
FirewallRules: [{A8830FC5-4B87-492B-A7B0-7168A5BB3590}] => (Allow) F:\Games\Steam\Steam.exe
FirewallRules: [{1721EB4B-D8F0-46E6-A9A8-C7951CE7C812}] => (Allow) F:\Games\Steam\Steam.exe
FirewallRules: [{CB0E6961-0FF6-46B3-B6A7-B02567C462A8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{7CF2A4CC-ABCE-4C02-90C0-8143436DAE2A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{EBA1D1C4-2AB6-4E35-98D6-A1E4A1E3BD3D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{553398DE-EB3B-403A-A7E0-D68068F320C4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{62FC2DB2-2D51-429A-9592-A19AACB5F247}] => (Allow) J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
FirewallRules: [{C6D21D65-D7F8-477F-A298-DCC74095AC9E}] => (Allow) J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
FirewallRules: [TCP Query User{A75B8D74-27AF-428C-8595-2CE1A231B742}J:\microsoft games\microsoft flight simulator x\fsx.exe] => (Allow) J:\microsoft games\microsoft flight simulator x\fsx.exe
FirewallRules: [UDP Query User{C4CCA545-D5CD-4A63-959D-DA9027A037B4}J:\microsoft games\microsoft flight simulator x\fsx.exe] => (Allow) J:\microsoft games\microsoft flight simulator x\fsx.exe
FirewallRules: [TCP Query User{B2731DDE-2BAE-4FBD-B4E8-203F8E410364}D:\lockheed martin\prepar3d v4\prepar3d.exe] => (Allow) D:\lockheed martin\prepar3d v4\prepar3d.exe
FirewallRules: [UDP Query User{4B7D66AE-225E-4DBC-AE11-95A56E349931}D:\lockheed martin\prepar3d v4\prepar3d.exe] => (Allow) D:\lockheed martin\prepar3d v4\prepar3d.exe
FirewallRules: [{DB3E09E2-6777-45DC-A838-7FBD1ECF578A}] => (Allow) J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
FirewallRules: [{C13C7BA5-438E-48B0-97E7-98EAC9629E26}] => (Allow) J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
FirewallRules: [TCP Query User{0A18E72A-B695-4D5E-A55E-8BEEF3FAD3FD}D:\x-plane 11\x-plane.exe] => (Allow) D:\x-plane 11\x-plane.exe
FirewallRules: [UDP Query User{3C4446F0-BDCF-4D18-BBE1-30972DB3B264}D:\x-plane 11\x-plane.exe] => (Allow) D:\x-plane 11\x-plane.exe
FirewallRules: [{BCF2C280-8CEB-47E0-96F4-7D72AABFE91A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{D43101FB-2AE9-4A58-AD56-2ECCCB2CA965}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Restore Points =========================
ATTENTION: System Restore is disabled
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (10/01/2017 03:14:03 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FSXPC)
Description: Aplikaci Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App se nepovedlo aktivovat, protože došlo k chybě: -2147023170. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (10/01/2017 03:14:02 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FSXPC)
Description: Aplikaci Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App se nepovedlo aktivovat, protože došlo k chybě: -2147023170. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.
Error: (10/01/2017 09:52:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fsx.exe, verze: 10.0.61472.0, časové razítko: 0x475e17d3
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc000041d
Posun chyby: 0x04e3eee0
ID chybujícího procesu: 0x23b8
Čas spuštění chybující aplikace: 0x01d33a7ddb5253c8
Cesta k chybující aplikaci: J:\Microsoft Games\Microsoft Flight Simulator X\fsx.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 5965c0b9-a6ca-4773-a54e-61e77f814dbe
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/01/2017 09:52:20 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: fsx.exe, verze: 10.0.61472.0, časové razítko: 0x475e17d3
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x04e3eee0
ID chybujícího procesu: 0x23b8
Čas spuštění chybující aplikace: 0x01d33a7ddb5253c8
Cesta k chybující aplikaci: J:\Microsoft Games\Microsoft Flight Simulator X\fsx.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: d572e012-24a7-4962-bbe3-cce64bec6ebf
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/30/2017 10:31:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Prepar3D.exe, verze: 2.5.12946.0, časové razítko: 0x555f2e54
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc000041d
Posun chyby: 0x1c78b230
ID chybujícího procesu: 0x298c
Čas spuštění chybující aplikace: 0x01d339c615508c59
Cesta k chybující aplikaci: J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 88c8284e-19e9-4035-b928-29c83cc803d7
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/30/2017 10:31:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Prepar3D.exe, verze: 2.5.12946.0, časové razítko: 0x555f2e54
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x1c78b230
ID chybujícího procesu: 0x298c
Čas spuštění chybující aplikace: 0x01d339c615508c59
Cesta k chybující aplikaci: J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 762fafc8-feb3-4dce-aa37-abd2f3ff9044
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/30/2017 10:31:40 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: Prepar3D.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: kód výjimky c0000005, adresa výjimky 1C78B230
Zásobník:
Error: (09/30/2017 10:27:52 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Prepar3D.exe, verze: 2.5.12946.0, časové razítko: 0x555f2e54
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc000041d
Posun chyby: 0x0aafdd00
ID chybujícího procesu: 0x1d94
Čas spuštění chybující aplikace: 0x01d339c599988ba6
Cesta k chybující aplikaci: J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 40fafa2a-05a3-46f0-ab4e-2b79d40d60ad
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/30/2017 10:27:47 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Prepar3D.exe, verze: 2.5.12946.0, časové razítko: 0x555f2e54
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x0aafdd00
ID chybujícího procesu: 0x1d94
Čas spuštění chybující aplikace: 0x01d339c599988ba6
Cesta k chybující aplikaci: J:\Lockheed Martin\Prepar3D v2\Prepar3D.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: c904d2a2-8a0f-4816-ad92-8356bb8cc23d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/30/2017 10:27:47 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Aplikace: Prepar3D.exe
Verze Framework: v4.0.30319
Popis: Proces byl ukončen z důvodu neošetřené výjimky.
Informace o výjimce: kód výjimky c0000005, adresa výjimky 0AAFDD00
Zásobník:
na MS.Win32.UnsafeNativeMethods.IntGetMessageW(System.Windows.Interop.MSG ByRef, System.Runtime.InteropServices.HandleRef, Int32, Int32)
na MS.Win32.UnsafeNativeMethods.GetMessageW(System.Windows.Interop.MSG ByRef, System.Runtime.InteropServices.HandleRef, Int32, Int32)
na System.Windows.Threading.Dispatcher.GetMessage(System.Windows.Interop.MSG ByRef, IntPtr, Int32, Int32)
na System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
na System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
na Views.AlertBox.P3DAlertBox.ProcessPendingWorkItems()
na Views.AlertBox.P3DAlertBox.OnProgressPercentChanged(System.Object)
na MenuModels.AlertBox.AlertData.set_ProgressCurrent(Double)
na <Module>.P3DAlert.SetCurrent(P3DAlert*, Int32)
na <Module>.P3DAlertSystem.UpdateModeless(Void*, Int32)
System errors:
=============
Error: (10/02/2017 05:40:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba CldFlt neuspěla při spuštění v důsledku následující chyby:
Požadavek není podporován.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA LocalSystem Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 6000 milisekund: Restartovat službu.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Thrustmaster FAST service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Thrustmaster® General Accessories Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Telemetry Container byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba O&O Defrag byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/02/2017 05:38:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba NVIDIA Display Container LS byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1000 milisekund: Restartovat službu.
CodeIntegrity:
===================================
Date: 2017-10-02 19:19:40.319
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-02 19:19:39.638
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-02 19:19:35.643
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-02 19:19:33.912
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-02 19:19:33.064
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-02 19:19:32.741
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-02 19:19:32.600
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume1\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-10-01 13:40:18.670
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-09-30 09:42:40.302
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-09-29 18:52:07.186
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz
Percentage of memory in use: 18%
Total physical RAM: 15836.84 MB
Available physical RAM: 12985.33 MB
Total Virtual: 18268.84 MB
Available Virtual: 15278.79 MB
==================== Drives ================================
Drive c: (Data_SSD_128GB) (Fixed) (Total:119.23 GB) (Free:32.45 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Nový svazek) (Fixed) (Total:886.33 GB) (Free:498.11 GB) NTFS
Drive e: (Nový svazek) (Fixed) (Total:976.56 GB) (Free:228.75 GB) NTFS
Drive f: () (Fixed) (Total:303.48 GB) (Free:127.78 GB) NTFS
Drive g: () (Fixed) (Total:309.26 GB) (Free:15.39 GB) NTFS
Drive h: () (Fixed) (Total:318.76 GB) (Free:99.26 GB) NTFS
Drive i: (Moje soubory) (CDROM) (Total:0.04 GB) (Free:0 GB) UDF
Drive j: (Nový svazek) (Fixed) (Total:232.88 GB) (Free:32.97 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: FFFFFFFF)
Partition 1: (Active) - (Size=119.2 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 98134E45)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: DEDA7A36)
Partition 1: (Active) - (Size=931.5 GB) - (Type=05)
==================== End of Addition.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vytížený procesor
Ještě potřebuji vidět vlastní FRST. Toto je pouze Additional.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vytížený procesor
Doplňuji:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-10-2017
Ran by tata (administrator) on FSXPC (02-10-2017 19:22:11)
Running from C:\Users\tata\Desktop
Loaded Profiles: tata (Available Profiles: tata)
Platform: Windows 10 Home Version 1703 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Thrustmaster®) C:\Program Files (x86)\Thrustmaster\Thrustmaster FFB Driver\64bits\tmGAInstall.exe
(Guillemot Corporation) C:\Program Files (x86)\Thrustmaster\TARGET\TmService.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\tata\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [4012360 2011-01-12] (O&O Software GmbH)
HKLM\...\Run: [egui] => cmd /c /q ""C:\Program Files\ESET\ESET Security\ecmd.exe"" "/launch /hide"
BootExecute: autocheck autochk * OODBS
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 79.127.176.42
Tcpip\..\Interfaces\{2df02f22-0070-420d-8d24-d156534266e4}: [NameServer] 79.127.176.42
Tcpip\..\Interfaces\{2df02f22-0070-420d-8d24-d156534266e4}: [DhcpNameServer] 79.127.176.42
Internet Explorer:
==================
HKU\S-1-5-21-1489680871-105870493-2040455859-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-02-07] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-07] (Oracle Corporation)
Edge:
======
Edge Extension: (AdBlock) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.2.0.0_neutral__c1wakc4j0nefm [2017-07-13]
FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-07] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-07-19] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-07-19] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.flightsim.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/ig/redirectdomain?brand=ASUT&bmod=ASUT"
CHR NewTab: Default -> Not-active:"chrome-extension://ikgjglmlehllifdekcggaapkaplbdpje/stubby.html", Not-active:"chrome-extension://bhloflhklmhfpedakmangadcdofhnnoh/index.html"
CHR Profile: C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default [2017-10-02]
CHR Extension: (Překladač Google) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2016-07-26]
CHR Extension: (Prezentace Google) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-24]
CHR Extension: (Dokumenty Google) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-24]
CHR Extension: (Disk Google) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-24]
CHR Extension: (TV) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2016-07-26]
CHR Extension: (Brushed) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfjgbcjfpbbfepcccpaffkjofcmglifg [2016-07-26]
CHR Extension: (Earth View from Google Earth) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhloflhklmhfpedakmangadcdofhnnoh [2017-09-22]
CHR Extension: (YouTube) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-24]
CHR Extension: (Search by Image (by Google)) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2016-10-20]
CHR Extension: (Java API Search) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\dphfngjamcomlehblpblaacingmaojnm [2017-09-01]
CHR Extension: (Unit Converter) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbiicdapcioonpclifmhmcnhhdegnpke [2016-08-19]
CHR Extension: (Tabulky Google) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-24]
CHR Extension: (AdBlock) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-09-20]
CHR Extension: (Komponenta pro aplikaci SERVIS 24) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\gincjcoomijeeoddomaaimknmflggfnb [2016-07-26]
CHR Extension: (Translator by Dictionary.com) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\glacllipodbjfijgkcdifnlhmoddlkon [2016-07-26]
CHR Extension: (Oogle) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnldbiikfjheppkbnjbnkgimnfejifpf [2016-07-26]
CHR Extension: (Bubble Translate) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhlebbhengjlhmcjebbkambaekglhkf [2016-07-26]
CHR Extension: (Translate For All) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkobpplcnbicdniipmndjknbnlggmjdk [2016-07-26]
CHR Extension: (Mapy Google) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2016-07-26]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2017-07-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Gmail) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-24]
CHR Extension: (Chrome Media Router) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-26]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-06-22] (Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [1933872 2017-09-22] (ESET)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-07-19] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-09-19] (NVIDIA Corporation)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [3134792 2011-01-12] (O&O Software GmbH)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1450824 2017-09-10] (Overwolf LTD)
R2 tmGAInstall; C:\Program Files (x86)\Thrustmaster\Thrustmaster FFB Driver\64bits\tmGAInstall.exe [32256 2016-03-23] (Thrustmaster®) [File not signed]
R2 TmWinService; C:\Program Files (x86)\Thrustmaster\TARGET\TmService.exe [315944 2016-10-31] (Guillemot Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-11] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-07-25] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-07-25] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [133360 2017-07-25] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [107336 2017-09-19] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15392 2017-07-25] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [180096 2017-09-19] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50744 2017-09-19] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81888 2017-09-19] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [106312 2017-09-19] (ESET)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_24ddebfb518b5a55\nvlddmkm.sys [15668664 2017-07-19] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-09-19] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48248 2017-08-22] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-07-19] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [196152 2016-07-25] (Duplex Secure Ltd)
R3 TmBusEn; C:\WINDOWS\System32\drivers\TmBusEn.sys [30208 2011-01-26] (Guillemot Corporation)
R3 TmBusEn; C:\Windows\SysWOW64\drivers\TmBusEn.sys [30208 2011-01-26] (Guillemot Corporation)
S3 TmFilter; C:\WINDOWS\System32\drivers\TmFilter.sys [24576 2011-01-26] (Guillemot Corporation)
S3 TmFilter; C:\Windows\SysWOW64\drivers\TmFilter.sys [24576 2011-01-26] (Guillemot Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-10-02 19:22 - 2017-10-02 19:22 - 000015438 _____ C:\Users\tata\Desktop\FRST.txt
2017-10-02 19:21 - 2017-10-02 19:22 - 000000000 ____D C:\FRST
2017-10-02 19:19 - 2017-10-02 19:19 - 000112640 _____ (forum.viry.cz) C:\Users\tata\Desktop\FRSTLauncher.exe
2017-10-02 19:05 - 2017-10-02 19:05 - 000112640 _____ (forum.viry.cz) C:\Users\tata\Downloads\Nepotvrzeno 774579.crdownload
2017-10-02 19:04 - 2017-10-02 19:04 - 002399744 _____ (Farbar) C:\Users\tata\Desktop\FRST64.exe
2017-10-02 19:04 - 2017-10-02 19:04 - 000112640 _____ (forum.viry.cz) C:\Users\tata\Downloads\Nepotvrzeno 279508.crdownload
2017-10-02 17:36 - 2017-10-02 17:38 - 000000000 ____D C:\AdwCleaner
2017-10-02 17:35 - 2017-10-02 17:35 - 008250832 _____ (Malwarebytes) C:\Users\tata\Desktop\adwcleaner_7.0.3.1.exe
2017-10-01 17:55 - 2017-10-01 17:55 - 000000000 ____D C:\rsit
2017-10-01 17:55 - 2017-10-01 17:55 - 000000000 ____D C:\Program Files\trend micro
2017-10-01 17:39 - 2017-10-01 17:39 - 001222144 _____ C:\Users\tata\Downloads\RSITx64.exe
2017-10-01 14:03 - 2017-10-01 14:03 - 000011376 _____ C:\Users\tata\Documents\cc_20171001_140310.reg
2017-10-01 13:39 - 2017-10-01 13:39 - 000002030 _____ C:\Users\Public\Desktop\ESET Banking & Payment protection.lnk
2017-10-01 13:39 - 2017-10-01 13:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2017-10-01 13:39 - 2017-10-01 13:39 - 000000000 ____D C:\ProgramData\ESET
2017-10-01 13:39 - 2017-10-01 13:39 - 000000000 ____D C:\Program Files\ESET
2017-10-01 12:12 - 2017-10-01 12:12 - 000000000 ____D C:\WINDOWS\LastGood
2017-10-01 12:12 - 2017-10-01 12:12 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-10-01 12:12 - 2017-07-19 00:38 - 000135800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-10-01 12:12 - 2017-03-10 23:17 - 000536864 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-10-01 12:12 - 2017-03-10 23:17 - 000525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-10-01 12:12 - 2017-03-10 23:17 - 000254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-10-01 12:12 - 2017-03-10 23:17 - 000233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-10-01 12:10 - 2017-07-19 02:40 - 040239736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 035844728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 035314296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 028960376 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 013655672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 012451424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 012133112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 011591576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 010487760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 009982968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 004163520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 003595896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 001988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438494.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 001598072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438494.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 001278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 001068152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 001004992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000996760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000972920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000924280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000781544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000725112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000689992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000617416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000609912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000584312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000578056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000499136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-10-01 12:10 - 2017-07-19 02:40 - 000000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-10-01 12:07 - 2017-10-01 12:08 - 453037816 _____ (NVIDIA Corporation) C:\Users\tata\Downloads\384.94-desktop-win10-64bit-international-whql.exe
2017-10-01 12:01 - 2017-10-01 12:01 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-1489680871-105870493-2040455859-1001
2017-10-01 11:57 - 2017-10-01 11:57 - 004256376 _____ (ESET) C:\Users\tata\Downloads\eset_internet_security_live_installer.exe
2017-10-01 10:52 - 2017-10-01 13:39 - 000000000 ____D C:\Users\tata\AppData\Local\ESET
2017-10-01 10:52 - 2017-10-01 10:52 - 006753408 _____ (ESET spol. s r.o.) C:\Users\tata\Downloads\esetonlinescanner_csy.exe
2017-10-01 10:45 - 2017-10-01 10:45 - 000007597 _____ C:\Users\tata\AppData\Local\Resmon.ResmonCfg
2017-10-01 10:44 - 2017-10-01 10:44 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2017-10-01 10:03 - 2017-10-01 10:03 - 000007314 _____ C:\Users\tata\Downloads\pmdg_77w_ezdok.zip
2017-10-01 10:00 - 2017-10-01 10:00 - 000011390 _____ C:\Users\tata\Downloads\738_ngx_ezdok.zip
2017-09-30 20:31 - 2017-09-30 20:36 - 000000000 ____D C:\Program Files (x86)\EZCA
2017-09-30 20:31 - 2017-09-30 20:33 - 000001088 _____ C:\Users\Public\Desktop\English Manual.pdf.lnk
2017-09-30 20:31 - 2017-09-30 20:33 - 000001046 _____ C:\Users\Public\Desktop\EZCA Config.exe.lnk
2017-09-30 20:31 - 2017-09-30 20:31 - 000000000 ____D C:\Users\tata\AppData\Roaming\EZCA
2017-09-30 20:31 - 2017-09-30 20:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EZCA
2017-09-30 20:29 - 2017-09-30 20:29 - 006068442 _____ C:\Users\tata\Downloads\EZCA_1187.zip
2017-09-29 19:43 - 2017-09-29 19:43 - 000000000 ____D C:\Users\tata\Downloads\LKPR_12-30_v1.2
2017-09-29 18:25 - 2017-09-29 18:25 - 005434821 _____ C:\Users\tata\Desktop\Protokol dokontrola Nevrlý.zip
2017-09-29 18:22 - 2017-09-29 18:20 - 000177097 _____ C:\Users\tata\Desktop\Státní potravinářská zemědělská inspekce.pdf
2017-09-29 18:20 - 2017-09-29 18:20 - 000177097 _____ C:\Users\tata\Downloads\Státní potravinářská zemědělská inspekce.pdf
2017-09-29 18:19 - 2017-09-29 18:19 - 000000000 ____D C:\Users\tata\Desktop\Protokol dokontrola Nevrlý
2017-09-29 18:14 - 2017-09-29 18:14 - 009108741 _____ C:\Users\tata\Desktop\Protokol a inspekce Nevrlý.zip
2017-09-29 18:03 - 2017-09-29 18:13 - 000000000 ____D C:\Users\tata\Desktop\Protokol a inspekce Nevrlý
2017-09-26 21:24 - 2017-09-26 21:24 - 000177097 _____ C:\Users\tata\Downloads\SŘ-178-8-2017-Příkaz.pdf
2017-09-25 21:19 - 2017-09-25 21:19 - 000084992 _____ C:\Users\tata\Downloads\rozvrhkssocped.xls
2017-09-24 12:52 - 2017-09-30 20:46 - 000000033 _____ C:\Users\tata\Desktop\msconfig.txt
2017-09-24 12:50 - 2017-09-16 21:27 - 001988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438569.dll
2017-09-24 12:50 - 2017-09-16 21:27 - 001606592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438569.dll
2017-09-24 12:42 - 2017-09-24 12:48 - 456765712 _____ (NVIDIA Corporation) C:\Users\tata\Downloads\385.69-desktop-win10-64bit-international-whql.exe
2017-09-24 12:28 - 2017-10-01 10:37 - 000000000 ____D C:\WINDOWS\pss
2017-09-23 20:05 - 2017-09-23 20:06 - 000000015 _____ C:\Users\tata\AppData\Local\X-Plane_drm_11.prf
2017-09-23 20:05 - 2017-09-23 20:05 - 000000037 _____ C:\Users\tata\AppData\Local\X-Plane Installer.prf
2017-09-23 19:06 - 2017-09-23 19:06 - 000000016 _____ C:\Users\tata\AppData\Local\x-plane_install_11.txt
2017-09-23 19:05 - 2017-09-23 20:05 - 000015747 _____ C:\Users\tata\Desktop\X-Plane Installer Log.txt
2017-09-22 18:27 - 2017-09-22 18:27 - 000011639 _____ C:\Users\tata\Desktop\scenery_brno.cfg.txt
2017-09-21 19:10 - 2017-09-21 19:10 - 000000000 ____D C:\Users\tata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FPR Converter
2017-09-21 19:10 - 2017-09-21 19:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FPR Converter
2017-09-21 19:10 - 2017-09-21 19:10 - 000000000 ____D C:\ProgramData\Bernd's Homebrew
2017-09-21 19:10 - 2017-09-21 19:10 - 000000000 ____D C:\Program Files (x86)\Bernd's Homebrew
2017-09-21 18:24 - 2017-09-21 18:24 - 006910458 _____ C:\Users\tata\Downloads\X-Plane11InstallerWindows.zip
2017-09-19 10:05 - 2017-09-19 10:05 - 000180096 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2017-09-19 10:05 - 2017-09-19 10:05 - 000107336 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2017-09-19 10:05 - 2017-09-19 10:05 - 000106312 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2017-09-19 10:05 - 2017-09-19 10:05 - 000081888 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2017-09-19 10:05 - 2017-09-19 10:05 - 000050744 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2017-09-18 18:51 - 2017-09-18 18:51 - 000097795 _____ C:\Users\tata\Downloads\Přiznání k DPFO vz. 23(1).pdf
2017-09-18 18:49 - 2017-09-18 18:49 - 000141436 _____ C:\Users\tata\Downloads\výplatní páska podrobná.pdf
2017-09-17 16:19 - 2017-09-17 16:19 - 000081500 _____ C:\Users\tata\Desktop\Guide to install IVAP on Prepar3D V3.html
2017-09-17 16:19 - 2017-09-17 16:19 - 000000000 ____D C:\Users\tata\Desktop\Guide to install IVAP on Prepar3D V3_files
2017-09-17 15:43 - 2017-09-17 15:43 - 000000000 ____D C:\Users\tata\Downloads\geetrr
2017-09-17 15:42 - 2017-09-17 15:43 - 001127300 _____ C:\Users\tata\Downloads\geetrr.zip
2017-09-17 08:43 - 2017-09-17 08:43 - 000000000 ____D C:\WINDOWS\Panther
2017-09-16 20:56 - 2017-09-16 20:56 - 000000043 _____ C:\Users\tata\Desktop\nvidia.txt
2017-09-16 17:53 - 2017-09-16 17:53 - 000000000 ____D C:\Users\tata\AppData\Roaming\.ndp-chartcloud
2017-09-16 17:53 - 2017-09-16 17:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft - Mega Airport Zurich V2.0 Professional
2017-09-16 17:22 - 2017-09-16 17:22 - 000000000 ____D C:\Program Files\Lockheed Martin
2017-09-16 15:24 - 2017-09-19 19:23 - 000000000 ____D C:\Users\tata\Documents\Prepar3D v4 Files
2017-09-16 15:24 - 2017-09-19 17:26 - 000000000 ____D C:\Users\tata\Documents\Prepar3D v4 Add-ons
2017-09-16 15:11 - 2017-09-16 15:11 - 000001703 _____ C:\Users\Public\Desktop\Prepar3D v4.lnk
2017-09-16 09:00 - 2017-09-16 09:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft - Airbus A320-A321 - PREPAR3D V2.x
2017-09-16 08:52 - 2017-09-16 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft - Airbus A318-A319 - PREPAR3D V2.x
2017-09-15 18:44 - 2017-09-15 18:49 - 000000000 ____D C:\Users\tata\Documents\A2A
2017-09-15 18:07 - 2017-09-15 18:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A2A Simulations
2017-09-15 08:18 - 2017-09-17 15:54 - 000000000 ____D C:\Users\tata\AppData\Roaming\Lockheed Martin
2017-09-15 08:18 - 2017-09-16 15:11 - 000000000 ____D C:\Users\tata\AppData\Local\Lockheed Martin
2017-09-15 08:15 - 2017-09-17 15:54 - 000000000 ____D C:\ProgramData\Lockheed Martin
2017-09-14 21:26 - 2017-09-14 21:27 - 002205242 _____ C:\Users\tata\Documents\cc_20170914_212612.reg
2017-09-14 10:46 - 2017-09-14 10:46 - 000000000 ____D C:\Users\tata\ansel
2017-09-14 10:15 - 2017-09-14 10:15 - 000109222 _____ C:\Users\tata\Documents\cc_20170914_101527.reg
2017-09-14 10:00 - 2017-09-14 10:00 - 000000000 ____D C:\Users\tata\AppData\Roaming\Orbx systems
2017-09-14 09:56 - 2017-09-14 09:56 - 000115720 _____ C:\Users\tata\Downloads\Doklad_SIPO_201709_6090083383.pdf
2017-09-13 19:12 - 2017-09-16 19:55 - 000000000 ____D C:\Users\tata\AppData\Local\Orbx
2017-09-13 19:12 - 2017-09-13 19:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orbx
2017-09-13 17:39 - 2017-09-21 21:04 - 000000000 ____D C:\Users\tata\Documents\Prepar3D v2 Files
2017-09-13 12:24 - 2017-09-13 12:24 - 000000000 ____D C:\WINDOWS\PCHEALTH
2017-09-13 12:23 - 2017-09-05 07:30 - 000287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-09-13 12:23 - 2017-09-05 07:27 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-09-13 12:23 - 2017-09-05 07:27 - 000136096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-09-13 12:23 - 2017-09-05 07:25 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-13 12:23 - 2017-09-05 07:24 - 000519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-09-13 12:23 - 2017-09-05 07:23 - 001242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-09-13 12:23 - 2017-09-05 07:21 - 000189344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-09-13 12:23 - 2017-09-05 07:18 - 000820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-09-13 12:23 - 2017-09-05 07:17 - 000316320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-09-13 12:23 - 2017-09-05 07:16 - 000724200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-09-13 12:23 - 2017-09-05 07:16 - 000546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-09-13 12:23 - 2017-09-05 07:16 - 000410168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-09-13 12:23 - 2017-09-05 07:16 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-09-13 12:23 - 2017-09-05 07:14 - 004708504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-09-13 12:23 - 2017-09-05 07:14 - 001146176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-09-13 12:23 - 2017-09-05 07:14 - 000958664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2017-09-13 12:23 - 2017-09-05 07:14 - 000254176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-09-13 12:23 - 2017-09-05 07:14 - 000094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-09-13 12:23 - 2017-09-05 07:12 - 001409048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-09-13 12:23 - 2017-09-05 07:12 - 001292880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-09-13 12:23 - 2017-09-05 07:12 - 000627080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-09-13 12:23 - 2017-09-05 07:12 - 000081176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2017-09-13 12:23 - 2017-09-05 07:11 - 002675104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-09-13 12:23 - 2017-09-05 07:11 - 000610720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2017-09-13 12:23 - 2017-09-05 07:11 - 000387936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-09-13 12:23 - 2017-09-05 06:53 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-09-13 12:23 - 2017-09-05 06:53 - 001620880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-09-13 12:23 - 2017-09-05 06:52 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-09-13 12:23 - 2017-09-05 06:50 - 004330920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2017-09-13 12:23 - 2017-09-05 06:46 - 004471888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-09-13 12:23 - 2017-09-05 06:45 - 023679488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-09-13 12:23 - 2017-09-05 06:45 - 005821496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-09-13 12:23 - 2017-09-05 06:45 - 002476712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-09-13 12:23 - 2017-09-05 06:45 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-09-13 12:23 - 2017-09-05 06:45 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-09-13 12:23 - 2017-09-05 06:45 - 000085784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialUIBroker.exe
2017-09-13 12:23 - 2017-09-05 06:44 - 000569264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-09-13 12:23 - 2017-09-05 06:43 - 000611096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-09-13 12:23 - 2017-09-05 06:43 - 000359560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-09-13 12:23 - 2017-09-05 06:43 - 000280480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-09-13 12:23 - 2017-09-05 06:43 - 000169376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-09-13 12:23 - 2017-09-05 06:43 - 000042456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2017-09-13 12:23 - 2017-09-05 06:42 - 002330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-09-13 12:23 - 2017-09-05 06:42 - 000703056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-09-13 12:23 - 2017-09-05 06:42 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-09-13 12:23 - 2017-09-05 06:42 - 000291904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2017-09-13 12:23 - 2017-09-05 06:42 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-09-13 12:23 - 2017-09-05 06:41 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-09-13 12:23 - 2017-09-05 06:41 - 006761560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-13 12:23 - 2017-09-05 06:41 - 004671832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-09-13 12:23 - 2017-09-05 06:41 - 001106904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-09-13 12:23 - 2017-09-05 06:41 - 001013912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2017-09-13 12:23 - 2017-09-05 06:40 - 000052768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-09-13 12:23 - 2017-09-05 06:37 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-09-13 12:23 - 2017-09-05 06:29 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrPS.dll
2017-09-13 12:23 - 2017-09-05 06:28 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2017-09-13 12:23 - 2017-09-05 06:28 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2017-09-13 12:23 - 2017-09-05 06:27 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-09-13 12:23 - 2017-09-05 06:27 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2017-09-13 12:23 - 2017-09-05 06:27 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-09-13 12:23 - 2017-09-05 06:27 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-09-13 12:23 - 2017-09-05 06:26 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-09-13 12:23 - 2017-09-05 06:26 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-09-13 12:23 - 2017-09-05 06:26 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2017-09-13 12:23 - 2017-09-05 06:26 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-09-13 12:23 - 2017-09-05 06:26 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.exe
2017-09-13 12:23 - 2017-09-05 06:26 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2017-09-13 12:23 - 2017-09-05 06:25 - 013844480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-09-13 12:23 - 2017-09-05 06:25 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-09-13 12:23 - 2017-09-05 06:25 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-09-13 12:23 - 2017-09-05 06:25 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-09-13 12:23 - 2017-09-05 06:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2017-09-13 12:23 - 2017-09-05 06:24 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-09-13 12:23 - 2017-09-05 06:24 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-09-13 12:23 - 2017-09-05 06:24 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2017-09-13 12:23 - 2017-09-05 06:24 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-09-13 12:23 - 2017-09-05 06:24 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcrecovery.dll
2017-09-13 12:23 - 2017-09-05 06:24 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-09-13 12:23 - 2017-09-05 06:23 - 020509184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-09-13 12:23 - 2017-09-05 06:23 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-09-13 12:23 - 2017-09-05 06:23 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-09-13 12:23 - 2017-09-05 06:23 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 023684608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-09-13 12:23 - 2017-09-05 06:22 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 006728704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 001178624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000946688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.exe
2017-09-13 12:23 - 2017-09-05 06:20 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-09-13 12:23 - 2017-09-05 06:20 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-09-13 12:23 - 2017-09-05 06:20 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 012801536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-09-13 12:23 - 2017-09-05 06:18 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-13 12:23 - 2017-09-05 06:18 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2017-09-13 12:23 - 2017-09-05 06:17 - 008213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-09-13 12:23 - 2017-09-05 06:17 - 008207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-09-13 12:23 - 2017-09-05 06:17 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2017-09-13 12:23 - 2017-09-05 06:17 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-09-13 12:23 - 2017-09-05 06:17 - 000757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-09-13 12:23 - 2017-09-05 06:17 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-09-13 12:23 - 2017-09-05 06:17 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-09-13 12:23 - 2017-09-05 06:16 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-09-13 12:23 - 2017-09-05 06:16 - 000844288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2017-09-13 12:23 - 2017-09-05 06:16 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2017-09-13 12:23 - 2017-09-05 06:16 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-09-13 12:23 - 2017-09-05 06:16 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-09-13 12:23 - 2017-09-05 06:16 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 001143296 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-09-13 12:23 - 2017-09-05 06:15 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 011887104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 001657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 001583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2017-09-13 12:23 - 2017-09-05 06:13 - 007598080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-09-13 12:23 - 2017-09-05 06:13 - 002009600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-09-13 12:23 - 2017-09-05 06:13 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-09-13 12:23 - 2017-09-05 06:12 - 006265856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-09-13 12:23 - 2017-09-05 06:12 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-09-13 12:23 - 2017-09-05 06:12 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-09-13 12:23 - 2017-09-05 06:12 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 003654656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 001463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 001355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-09-13 12:23 - 2017-09-05 06:10 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-09-13 12:23 - 2017-09-05 06:10 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-09-13 12:23 - 2017-09-05 06:10 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-09-13 12:23 - 2017-09-05 06:10 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthHFSrv.dll
2017-09-13 12:23 - 2017-09-05 06:06 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2017-09-13 12:23 - 2017-09-05 06:06 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-09-13 12:23 - 2017-09-05 06:06 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-09-13 12:23 - 2017-09-05 06:04 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2017-09-13 12:23 - 2017-09-05 06:04 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-09-13 12:22 - 2017-09-05 07:31 - 001596592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-09-13 12:22 - 2017-09-05 07:31 - 001346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-09-13 12:22 - 2017-09-05 07:31 - 001147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-09-13 12:22 - 2017-09-05 07:31 - 001024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-09-13 12:22 - 2017-09-05 07:31 - 000821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-09-13 12:22 - 2017-09-05 07:31 - 000750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-09-13 12:22 - 2017-09-05 07:31 - 000115792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2017-09-13 12:22 - 2017-09-05 07:26 - 008319904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-09-13 12:22 - 2017-09-05 07:26 - 001930840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-09-13 12:22 - 2017-09-05 07:25 - 000159648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-09-13 12:22 - 2017-09-05 07:24 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-09-13 12:22 - 2017-09-05 07:23 - 004462120 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2017-09-13 12:22 - 2017-09-05 07:20 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-09-13 12:22 - 2017-09-05 07:19 - 004848960 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-09-13 12:22 - 2017-09-05 07:19 - 002443168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-09-13 12:22 - 2017-09-05 07:18 - 007326128 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-09-13 12:22 - 2017-09-05 07:18 - 005477096 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-09-13 12:22 - 2017-09-05 07:18 - 002972552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-09-13 12:22 - 2017-09-05 07:18 - 002647224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-09-13 12:22 - 2017-09-05 07:18 - 001668344 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2017-09-13 12:22 - 2017-09-05 07:18 - 000685512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-09-13 12:22 - 2017-09-05 07:18 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-09-13 12:22 - 2017-09-05 07:16 - 001320344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-09-13 12:22 - 2017-09-05 07:16 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-09-13 12:22 - 2017-09-05 07:16 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-09-13 12:22 - 2017-09-05 07:16 - 000228256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-09-13 12:22 - 2017-09-05 07:16 - 000049720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2017-09-13 12:22 - 2017-09-05 07:15 - 003116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-09-13 12:22 - 2017-09-05 07:15 - 000871448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-09-13 12:22 - 2017-09-05 07:15 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-09-13 12:22 - 2017-09-05 07:15 - 000381824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-09-13 12:22 - 2017-09-05 07:15 - 000257440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-09-13 12:22 - 2017-09-05 07:14 - 021352656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-09-13 12:22 - 2017-09-05 07:14 - 007907344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-13 12:22 - 2017-09-05 07:13 - 001619816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-09-13 12:22 - 2017-09-05 07:13 - 000064680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-09-13 12:22 - 2017-09-05 06:31 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-09-13 12:22 - 2017-09-05 06:30 - 001639936 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-09-13 12:22 - 2017-09-05 06:30 - 001275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-09-13 12:22 - 2017-09-05 06:30 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-13 12:22 - 2017-09-05 06:30 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-09-13 12:22 - 2017-09-05 06:30 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-09-13 12:22 - 2017-09-05 06:30 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-09-13 12:22 - 2017-09-05 06:30 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-09-13 12:22 - 2017-09-05 06:30 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-09-13 12:22 - 2017-09-05 06:30 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-09-13 12:22 - 2017-09-05 06:28 - 017371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-13 12:22 - 2017-09-05 06:28 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-09-13 12:22 - 2017-09-05 06:27 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-09-13 12:22 - 2017-09-05 06:27 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-09-13 12:22 - 2017-09-05 06:27 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-09-13 12:22 - 2017-09-05 06:27 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll
2017-09-13 12:22 - 2017-09-05 06:27 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-09-13 12:22 - 2017-09-05 06:26 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2017-09-13 12:22 - 2017-09-05 06:26 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\csplte.dll
2017-09-13 12:22 - 2017-09-05 06:26 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2017-09-13 12:22 - 2017-09-05 06:26 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2017-09-13 12:22 - 2017-09-05 06:26 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-09-13 12:22 - 2017-09-05 06:25 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-09-13 12:22 - 2017-09-05 06:25 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-09-13 12:22 - 2017-09-05 06:25 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-09-13 12:22 - 2017-09-05 06:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-09-13 12:22 - 2017-09-05 06:24 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-09-13 12:22 - 2017-09-05 06:24 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-09-13 12:22 - 2017-09-05 06:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2017-09-13 12:22 - 2017-09-05 06:24 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2017-09-13 12:22 - 2017-09-05 06:23 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2017-09-13 12:22 - 2017-09-05 06:23 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-09-13 12:22 - 2017-09-05 06:23 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-09-13 12:22 - 2017-09-05 06:23 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2017-09-13 12:22 - 2017-09-05 06:23 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-09-13 12:22 - 2017-09-05 06:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2017-09-13 12:22 - 2017-09-05 06:22 - 000556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-09-13 12:22 - 2017-09-05 06:22 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-09-13 12:22 - 2017-09-05 06:22 - 000413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2017-09-13 12:22 - 2017-09-05 06:22 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2017-09-13 12:22 - 2017-09-05 06:22 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2017-09-13 12:22 - 2017-09-05 06:21 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-09-13 12:22 - 2017-09-05 06:21 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2017-09-13 12:22 - 2017-09-05 06:20 - 007337472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-13 12:22 - 2017-09-05 06:20 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-13 12:22 - 2017-09-05 06:20 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-13 12:22 - 2017-09-05 06:20 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-09-13 12:22 - 2017-09-05 06:20 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-09-13 12:22 - 2017-09-05 06:20 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-09-13 12:22 - 2017-09-05 06:19 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-09-13 12:22 - 2017-09-05 06:19 - 001085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-09-13 12:22 - 2017-09-05 06:19 - 001028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-09-13 12:22 - 2017-09-05 06:19 - 000996864 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-09-13 12:22 - 2017-09-05 06:19 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-09-13 12:22 - 2017-09-05 06:19 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-09-13 12:22 - 2017-09-05 06:19 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 004175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-09-13 12:22 - 2017-09-05 06:17 - 002765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-09-13 12:22 - 2017-09-05 06:17 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-09-13 12:22 - 2017-09-05 06:17 - 001397760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-09-13 12:22 - 2017-09-05 06:16 - 002805248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-13 12:22 - 2017-09-05 06:16 - 002680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2017-09-13 12:22 - 2017-09-05 06:16 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-09-13 12:22 - 2017-09-05 06:16 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 003059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 002503680 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 002055680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-09-13 12:22 - 2017-09-05 06:15 - 001736704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 001460224 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 001077248 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-09-13 12:22 - 2017-09-05 06:14 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-09-13 12:22 - 2017-09-05 06:14 - 002445824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-09-13 12:22 - 2017-09-05 06:14 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-09-13 12:22 - 2017-09-05 06:14 - 002006528 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-09-13 12:22 - 2017-09-05 06:14 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-09-13 12:22 - 2017-09-05 06:14 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-09-13 12:22 - 2017-09-05 06:13 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-09-13 12:22 - 2017-09-05 06:13 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-09-13 12:22 - 2017-09-05 06:12 - 002153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-09-13 12:22 - 2017-09-05 06:11 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-09-13 12:22 - 2017-09-05 06:09 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2017-09-13 12:22 - 2017-09-05 06:07 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-09-13 12:22 - 2017-09-05 06:07 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-09-13 12:22 - 2017-09-01 07:55 - 000031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-09-13 08:40 - 2017-09-13 08:40 - 000000374 _____ C:\Users\tata\Documents\lepalemd.fpl
2017-09-11 19:14 - 2017-09-24 13:10 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-11 19:14 - 2017-09-24 13:10 - 000004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-11 19:14 - 2017-09-18 23:29 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-09-11 19:13 - 2017-08-22 03:01 - 000512960 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-09-11 19:13 - 2017-08-22 03:01 - 000418752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-09-11 19:12 - 2017-08-22 03:01 - 001988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438541.dll
2017-09-11 19:12 - 2017-08-22 03:01 - 001597888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438541.dll
2017-09-11 19:12 - 2017-08-22 03:01 - 000045976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-09-11 19:12 - 2017-07-19 02:40 - 003711328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-09-11 19:12 - 2017-07-19 02:40 - 000057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-09-11 19:10 - 2017-09-11 19:17 - 000000191 _____ C:\Users\tata\Documents\FSX.nip
2017-09-11 19:09 - 2017-09-11 19:09 - 000000671 _____ C:\Users\tata\Documents\prepar3d nvidia.nip
2017-09-11 18:37 - 2017-09-11 18:37 - 000063104 _____ C:\Users\tata\Documents\cc_20170911_183701.reg
2017-09-11 18:37 - 2017-09-11 18:37 - 000004304 _____ C:\Users\tata\Documents\cc_20170911_183717.reg
2017-09-08 18:37 - 2017-09-30 10:23 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2017-09-04 19:02 - 2017-09-04 19:02 - 001058210 _____ C:\Users\tata\Downloads\681-810-LE_AD_.pdf
2017-09-04 19:01 - 2017-09-04 19:01 - 000949029 _____ C:\Users\tata\Downloads\54-301-LE_AD_2.pdf
2017-09-03 10:47 - 2017-09-03 10:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft - Mega Airport Rome - FSX
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-10-02 17:49 - 2017-07-11 21:28 - 005231064 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-10-02 17:49 - 2017-03-20 06:43 - 002503406 _____ C:\WINDOWS\system32\perfh005.dat
2017-10-02 17:49 - 2017-03-20 06:43 - 000691004 _____ C:\WINDOWS\system32\perfc005.dat
2017-10-02 17:43 - 2017-07-11 21:16 - 000000000 ____D C:\ProgramData\NVIDIA
2017-10-02 17:41 - 2017-07-11 21:17 - 000000000 ____D C:\Users\tata
2017-10-02 17:40 - 2017-07-11 21:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-10-02 17:40 - 2017-03-18 13:40 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-10-02 17:40 - 2016-07-25 18:35 - 000812812 _____ C:\WINDOWS\system32\oodbs.lor
2017-10-02 17:36 - 2017-08-28 18:11 - 000000000 ____D C:\Users\tata\Downloads\LittleNavmap-win-1.4.4
2017-10-02 17:26 - 2017-07-11 21:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-10-01 19:31 - 2017-01-28 22:07 - 000000000 ____D C:\Users\tata\Documents\The Witcher 3
2017-10-01 13:39 - 2017-03-18 23:03 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-10-01 13:39 - 2017-03-18 23:01 - 000000000 ____D C:\WINDOWS\INF
2017-10-01 12:12 - 2017-07-11 21:16 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-10-01 12:12 - 2017-01-04 12:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-10-01 12:12 - 2016-01-29 18:16 - 000000000 ____D C:\temp
2017-10-01 10:46 - 2016-08-06 16:21 - 000000000 ____D C:\Users\tata\AppData\Local\Frontier_Developments
2017-10-01 10:04 - 2016-09-10 09:34 - 000000000 ____D C:\Users\tata\Documents\Flight Simulator X Files
2017-10-01 09:52 - 2016-07-28 19:21 - 000000000 ____D C:\Users\tata\AppData\Local\CrashDumps
2017-09-30 13:02 - 2017-03-18 22:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-09-30 10:23 - 2016-09-10 09:32 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-09-30 10:21 - 2016-09-11 10:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMDG Simulations
2017-09-29 18:18 - 2017-01-18 18:47 - 000000000 ___RD C:\Users\tata\Documents\Scanned Documents
2017-09-29 18:04 - 2017-03-18 23:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-29 18:04 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-09-25 20:52 - 2016-07-24 19:24 - 000002286 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-24 14:37 - 2016-09-29 18:04 - 000000000 ____D C:\Users\tata\Documents\Plan-G Files
2017-09-24 14:36 - 2017-07-11 21:16 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-09-24 13:16 - 2016-07-28 16:22 - 000000000 ____D C:\Users\tata\AppData\Local\NVIDIA Corporation
2017-09-24 13:10 - 2017-07-11 21:22 - 000003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-24 13:10 - 2017-07-11 21:22 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-24 13:10 - 2017-07-11 21:22 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-24 13:10 - 2017-07-11 21:22 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-24 13:10 - 2017-07-11 21:22 - 000003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-24 13:10 - 2017-07-11 21:22 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-24 13:10 - 2017-07-11 21:16 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-09-24 09:49 - 2016-09-21 20:31 - 000000000 ___RD C:\Users\tata\Desktop\P3D
2017-09-22 17:19 - 2017-07-27 18:06 - 000003354 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1489680871-105870493-2040455859-1001
2017-09-22 17:19 - 2016-07-24 19:10 - 000002435 _____ C:\Users\tata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-22 17:19 - 2016-07-24 19:10 - 000000000 ___RD C:\Users\tata\OneDrive
2017-09-21 19:41 - 2016-07-24 20:17 - 000000000 ____D C:\Users\tata\AppData\Roaming\KeePass
2017-09-19 09:23 - 2017-01-04 12:19 - 001923008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-09-19 09:23 - 2017-01-04 12:19 - 001755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-09-19 09:23 - 2017-01-04 12:19 - 001505728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-09-19 09:23 - 2017-01-04 12:19 - 001317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-09-19 09:23 - 2017-01-04 12:19 - 000121280 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-09-19 09:23 - 2017-01-04 12:17 - 000179136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-09-19 09:23 - 2017-01-04 12:17 - 000146368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-09-16 20:22 - 2016-07-24 20:17 - 000000000 ____D C:\Users\tata\AppData\Local\GHISLER
2017-09-16 18:05 - 2016-09-10 09:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiFi
2017-09-16 18:04 - 2016-09-10 09:49 - 000000000 ____D C:\Program Files (x86)\HiFi
2017-09-16 17:22 - 2016-09-12 21:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lockheed Martin
2017-09-16 15:10 - 2016-07-28 16:21 - 000000000 ____D C:\ProgramData\Package Cache
2017-09-16 13:55 - 2016-07-24 20:17 - 000046350 _____ C:\Users\tata\Documents\lastnoaco.kdbx
2017-09-16 09:10 - 2016-09-11 08:45 - 000000000 ____D C:\Users\tata\AppData\Roaming\RAASPRO
2017-09-15 10:13 - 2016-09-11 11:14 - 000000000 ____D C:\Users\tata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orbx
2017-09-15 08:24 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\rescache
2017-09-14 16:30 - 2016-07-28 16:33 - 000000000 ____D C:\Users\tata\Documents\My Games
2017-09-14 16:23 - 2016-09-11 10:50 - 000000000 ____D C:\Program Files (x86)\PMDG Operations Center
2017-09-14 09:22 - 2016-08-24 21:21 - 000000000 ____D C:\Program Files (x86)\Overwolf
2017-09-13 17:37 - 2016-09-21 20:31 - 000000000 ____D C:\Users\tata\Desktop\FSX
2017-09-13 17:03 - 2016-07-29 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\webium's modpack
2017-09-13 13:41 - 2016-02-13 15:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-09-13 13:40 - 2017-07-11 21:15 - 002423448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-09-13 13:39 - 2017-03-20 06:43 - 000000000 ____D C:\WINDOWS\system32\cs
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\setup
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-09-13 12:27 - 2016-07-24 19:36 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-09-13 12:26 - 2016-07-24 19:36 - 138202976 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-09-12 18:48 - 2016-09-16 10:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Majestic Software
2017-09-07 21:14 - 2017-05-27 15:09 - 000000342 _____ C:\Users\tata\Desktop\VPA mission.txt
2017-09-05 06:54 - 2015-10-30 10:13 - 000395228 __RSH C:\bootmgr
2017-09-02 17:15 - 2017-03-18 23:06 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-09-02 17:15 - 2017-03-18 23:06 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2017-03-07 12:27 - 2017-05-29 18:33 - 000000028 _____ () C:\Users\tata\AppData\Roaming\PanelUpdater.cfg
2017-10-01 10:45 - 2017-10-01 10:45 - 000007597 _____ () C:\Users\tata\AppData\Local\Resmon.ResmonCfg
2017-09-23 20:05 - 2017-09-23 20:05 - 000000037 _____ () C:\Users\tata\AppData\Local\X-Plane Installer.prf
2017-09-23 20:05 - 2017-09-23 20:06 - 000000015 _____ () C:\Users\tata\AppData\Local\X-Plane_drm_11.prf
2017-09-23 19:06 - 2017-09-23 19:06 - 000000016 _____ () C:\Users\tata\AppData\Local\x-plane_install_11.txt
2016-07-25 17:13 - 2016-07-25 17:13 - 000000057 _____ () C:\ProgramData\Ament.ini
2016-09-29 18:04 - 2016-10-01 16:29 - 000000167 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
Some files in TEMP:
====================
2017-09-08 19:15 - 2017-09-08 19:15 - 007850088 _____ (Microsoft Corporation) C:\Users\tata\AppData\Local\Temp\BingBarSetup-Partner.exe
2017-09-29 19:41 - 2017-09-29 19:42 - 078636182 _____ () C:\Users\tata\AppData\Local\Temp\Common_Library_p3d.exe
2017-02-10 20:32 - 2017-09-16 19:17 - 000873320 _____ (NVIDIA Corporation) C:\Users\tata\AppData\Local\Temp\nvSCPAPI64.dll
2017-09-11 19:12 - 2017-09-16 19:17 - 000368760 _____ (NVIDIA Corporation) C:\Users\tata\AppData\Local\Temp\nvStInst.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-09-24 09:09
==================== End of FRST.txt ============================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (Data_SSD_128GB) (Fixed) (Total:119.23 GB) (Free:32.45 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Nový svazek) (Fixed) (Total:886.33 GB) (Free:498.11 GB) NTFS
Drive e: (Nový svazek) (Fixed) (Total:976.56 GB) (Free:228.75 GB) NTFS
Drive f: () (Fixed) (Total:303.48 GB) (Free:127.78 GB) NTFS
Drive g: () (Fixed) (Total:309.26 GB) (Free:15.39 GB) NTFS
Drive h: () (Fixed) (Total:318.76 GB) (Free:99.26 GB) NTFS
Drive i: (Moje soubory) (CDROM) (Total:0.04 GB) (Free:0 GB) UDF
Drive j: (Nový svazek) (Fixed) (Total:232.88 GB) (Free:32.97 GB) NTFS
Available physical RAM: 12985.33 MB
Total physical RAM: 15836.84 MB
Percentage of memory in use: 18%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: FFFFFFFF)
Partition 1: (Active) - (Size=119.2 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 98134E45)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: DEDA7A36)
Partition 1: (Active) - (Size=931.5 GB) - (Type=05)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Internet Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Internet Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\tata\Desktop" je 215 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-10-2017
Ran by tata (administrator) on FSXPC (02-10-2017 19:22:11)
Running from C:\Users\tata\Desktop
Loaded Profiles: tata (Available Profiles: tata)
Platform: Windows 10 Home Version 1703 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Thrustmaster®) C:\Program Files (x86)\Thrustmaster\Thrustmaster FFB Driver\64bits\tmGAInstall.exe
(Guillemot Corporation) C:\Program Files (x86)\Thrustmaster\TARGET\TmService.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ESET) C:\Program Files\ESET\ESET Security\egui.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\tata\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [4012360 2011-01-12] (O&O Software GmbH)
HKLM\...\Run: [egui] => cmd /c /q ""C:\Program Files\ESET\ESET Security\ecmd.exe"" "/launch /hide"
BootExecute: autocheck autochk * OODBS
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 79.127.176.42
Tcpip\..\Interfaces\{2df02f22-0070-420d-8d24-d156534266e4}: [NameServer] 79.127.176.42
Tcpip\..\Interfaces\{2df02f22-0070-420d-8d24-d156534266e4}: [DhcpNameServer] 79.127.176.42
Internet Explorer:
==================
HKU\S-1-5-21-1489680871-105870493-2040455859-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-02-07] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-02-07] (Oracle Corporation)
Edge:
======
Edge Extension: (AdBlock) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.2.0.0_neutral__c1wakc4j0nefm [2017-07-13]
FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-02-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-02-07] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-07-19] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-07-19] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.flightsim.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/ig/redirectdomain?brand=ASUT&bmod=ASUT"
CHR NewTab: Default -> Not-active:"chrome-extension://ikgjglmlehllifdekcggaapkaplbdpje/stubby.html", Not-active:"chrome-extension://bhloflhklmhfpedakmangadcdofhnnoh/index.html"
CHR Profile: C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default [2017-10-02]
CHR Extension: (Překladač Google) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2016-07-26]
CHR Extension: (Prezentace Google) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-24]
CHR Extension: (Dokumenty Google) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-24]
CHR Extension: (Disk Google) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-24]
CHR Extension: (TV) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2016-07-26]
CHR Extension: (Brushed) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfjgbcjfpbbfepcccpaffkjofcmglifg [2016-07-26]
CHR Extension: (Earth View from Google Earth) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhloflhklmhfpedakmangadcdofhnnoh [2017-09-22]
CHR Extension: (YouTube) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-24]
CHR Extension: (Search by Image (by Google)) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm [2016-10-20]
CHR Extension: (Java API Search) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\dphfngjamcomlehblpblaacingmaojnm [2017-09-01]
CHR Extension: (Unit Converter) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbiicdapcioonpclifmhmcnhhdegnpke [2016-08-19]
CHR Extension: (Tabulky Google) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-24]
CHR Extension: (AdBlock) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-09-20]
CHR Extension: (Komponenta pro aplikaci SERVIS 24) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\gincjcoomijeeoddomaaimknmflggfnb [2016-07-26]
CHR Extension: (Translator by Dictionary.com) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\glacllipodbjfijgkcdifnlhmoddlkon [2016-07-26]
CHR Extension: (Oogle) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnldbiikfjheppkbnjbnkgimnfejifpf [2016-07-26]
CHR Extension: (Bubble Translate) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhlebbhengjlhmcjebbkambaekglhkf [2016-07-26]
CHR Extension: (Translate For All) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkobpplcnbicdniipmndjknbnlggmjdk [2016-07-26]
CHR Extension: (Mapy Google) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2016-07-26]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2017-07-24]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Gmail) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-24]
CHR Extension: (Chrome Media Router) - C:\Users\tata\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-26]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-06-22] (Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [1933872 2017-09-22] (ESET)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-07-19] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-09-19] (NVIDIA Corporation)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [3134792 2011-01-12] (O&O Software GmbH)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1450824 2017-09-10] (Overwolf LTD)
R2 tmGAInstall; C:\Program Files (x86)\Thrustmaster\Thrustmaster FFB Driver\64bits\tmGAInstall.exe [32256 2016-03-23] (Thrustmaster®) [File not signed]
R2 TmWinService; C:\Program Files (x86)\Thrustmaster\TARGET\TmService.exe [315944 2016-10-31] (Guillemot Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-07-11] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-07-25] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-07-25] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [133360 2017-07-25] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [107336 2017-09-19] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15392 2017-07-25] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [180096 2017-09-19] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50744 2017-09-19] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [81888 2017-09-19] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [106312 2017-09-19] (ESET)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_24ddebfb518b5a55\nvlddmkm.sys [15668664 2017-07-19] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-09-19] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48248 2017-08-22] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-07-19] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2017-03-18] (Realtek )
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [196152 2016-07-25] (Duplex Secure Ltd)
R3 TmBusEn; C:\WINDOWS\System32\drivers\TmBusEn.sys [30208 2011-01-26] (Guillemot Corporation)
R3 TmBusEn; C:\Windows\SysWOW64\drivers\TmBusEn.sys [30208 2011-01-26] (Guillemot Corporation)
S3 TmFilter; C:\WINDOWS\System32\drivers\TmFilter.sys [24576 2011-01-26] (Guillemot Corporation)
S3 TmFilter; C:\Windows\SysWOW64\drivers\TmFilter.sys [24576 2011-01-26] (Guillemot Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-10-02 19:22 - 2017-10-02 19:22 - 000015438 _____ C:\Users\tata\Desktop\FRST.txt
2017-10-02 19:21 - 2017-10-02 19:22 - 000000000 ____D C:\FRST
2017-10-02 19:19 - 2017-10-02 19:19 - 000112640 _____ (forum.viry.cz) C:\Users\tata\Desktop\FRSTLauncher.exe
2017-10-02 19:05 - 2017-10-02 19:05 - 000112640 _____ (forum.viry.cz) C:\Users\tata\Downloads\Nepotvrzeno 774579.crdownload
2017-10-02 19:04 - 2017-10-02 19:04 - 002399744 _____ (Farbar) C:\Users\tata\Desktop\FRST64.exe
2017-10-02 19:04 - 2017-10-02 19:04 - 000112640 _____ (forum.viry.cz) C:\Users\tata\Downloads\Nepotvrzeno 279508.crdownload
2017-10-02 17:36 - 2017-10-02 17:38 - 000000000 ____D C:\AdwCleaner
2017-10-02 17:35 - 2017-10-02 17:35 - 008250832 _____ (Malwarebytes) C:\Users\tata\Desktop\adwcleaner_7.0.3.1.exe
2017-10-01 17:55 - 2017-10-01 17:55 - 000000000 ____D C:\rsit
2017-10-01 17:55 - 2017-10-01 17:55 - 000000000 ____D C:\Program Files\trend micro
2017-10-01 17:39 - 2017-10-01 17:39 - 001222144 _____ C:\Users\tata\Downloads\RSITx64.exe
2017-10-01 14:03 - 2017-10-01 14:03 - 000011376 _____ C:\Users\tata\Documents\cc_20171001_140310.reg
2017-10-01 13:39 - 2017-10-01 13:39 - 000002030 _____ C:\Users\Public\Desktop\ESET Banking & Payment protection.lnk
2017-10-01 13:39 - 2017-10-01 13:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2017-10-01 13:39 - 2017-10-01 13:39 - 000000000 ____D C:\ProgramData\ESET
2017-10-01 13:39 - 2017-10-01 13:39 - 000000000 ____D C:\Program Files\ESET
2017-10-01 12:12 - 2017-10-01 12:12 - 000000000 ____D C:\WINDOWS\LastGood
2017-10-01 12:12 - 2017-10-01 12:12 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-10-01 12:12 - 2017-07-19 00:38 - 000135800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2017-10-01 12:12 - 2017-03-10 23:17 - 000536864 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-10-01 12:12 - 2017-03-10 23:17 - 000525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-10-01 12:12 - 2017-03-10 23:17 - 000254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-10-01 12:12 - 2017-03-10 23:17 - 000233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-10-01 12:10 - 2017-07-19 02:40 - 040239736 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 035844728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 035314296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 028960376 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 013655672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 012451424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 012133112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 011591576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 010487760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 009982968 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 004163520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 003595896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 001988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438494.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 001598072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438494.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 001278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 001068152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 001004992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000996760 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000972920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000924280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000781544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000725112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000689992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000617416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000609912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000584312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000578056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000499136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-10-01 12:10 - 2017-07-19 02:40 - 000000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-10-01 12:10 - 2017-07-19 02:40 - 000000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-10-01 12:07 - 2017-10-01 12:08 - 453037816 _____ (NVIDIA Corporation) C:\Users\tata\Downloads\384.94-desktop-win10-64bit-international-whql.exe
2017-10-01 12:01 - 2017-10-01 12:01 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-1489680871-105870493-2040455859-1001
2017-10-01 11:57 - 2017-10-01 11:57 - 004256376 _____ (ESET) C:\Users\tata\Downloads\eset_internet_security_live_installer.exe
2017-10-01 10:52 - 2017-10-01 13:39 - 000000000 ____D C:\Users\tata\AppData\Local\ESET
2017-10-01 10:52 - 2017-10-01 10:52 - 006753408 _____ (ESET spol. s r.o.) C:\Users\tata\Downloads\esetonlinescanner_csy.exe
2017-10-01 10:45 - 2017-10-01 10:45 - 000007597 _____ C:\Users\tata\AppData\Local\Resmon.ResmonCfg
2017-10-01 10:44 - 2017-10-01 10:44 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2017-10-01 10:03 - 2017-10-01 10:03 - 000007314 _____ C:\Users\tata\Downloads\pmdg_77w_ezdok.zip
2017-10-01 10:00 - 2017-10-01 10:00 - 000011390 _____ C:\Users\tata\Downloads\738_ngx_ezdok.zip
2017-09-30 20:31 - 2017-09-30 20:36 - 000000000 ____D C:\Program Files (x86)\EZCA
2017-09-30 20:31 - 2017-09-30 20:33 - 000001088 _____ C:\Users\Public\Desktop\English Manual.pdf.lnk
2017-09-30 20:31 - 2017-09-30 20:33 - 000001046 _____ C:\Users\Public\Desktop\EZCA Config.exe.lnk
2017-09-30 20:31 - 2017-09-30 20:31 - 000000000 ____D C:\Users\tata\AppData\Roaming\EZCA
2017-09-30 20:31 - 2017-09-30 20:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EZCA
2017-09-30 20:29 - 2017-09-30 20:29 - 006068442 _____ C:\Users\tata\Downloads\EZCA_1187.zip
2017-09-29 19:43 - 2017-09-29 19:43 - 000000000 ____D C:\Users\tata\Downloads\LKPR_12-30_v1.2
2017-09-29 18:25 - 2017-09-29 18:25 - 005434821 _____ C:\Users\tata\Desktop\Protokol dokontrola Nevrlý.zip
2017-09-29 18:22 - 2017-09-29 18:20 - 000177097 _____ C:\Users\tata\Desktop\Státní potravinářská zemědělská inspekce.pdf
2017-09-29 18:20 - 2017-09-29 18:20 - 000177097 _____ C:\Users\tata\Downloads\Státní potravinářská zemědělská inspekce.pdf
2017-09-29 18:19 - 2017-09-29 18:19 - 000000000 ____D C:\Users\tata\Desktop\Protokol dokontrola Nevrlý
2017-09-29 18:14 - 2017-09-29 18:14 - 009108741 _____ C:\Users\tata\Desktop\Protokol a inspekce Nevrlý.zip
2017-09-29 18:03 - 2017-09-29 18:13 - 000000000 ____D C:\Users\tata\Desktop\Protokol a inspekce Nevrlý
2017-09-26 21:24 - 2017-09-26 21:24 - 000177097 _____ C:\Users\tata\Downloads\SŘ-178-8-2017-Příkaz.pdf
2017-09-25 21:19 - 2017-09-25 21:19 - 000084992 _____ C:\Users\tata\Downloads\rozvrhkssocped.xls
2017-09-24 12:52 - 2017-09-30 20:46 - 000000033 _____ C:\Users\tata\Desktop\msconfig.txt
2017-09-24 12:50 - 2017-09-16 21:27 - 001988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438569.dll
2017-09-24 12:50 - 2017-09-16 21:27 - 001606592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438569.dll
2017-09-24 12:42 - 2017-09-24 12:48 - 456765712 _____ (NVIDIA Corporation) C:\Users\tata\Downloads\385.69-desktop-win10-64bit-international-whql.exe
2017-09-24 12:28 - 2017-10-01 10:37 - 000000000 ____D C:\WINDOWS\pss
2017-09-23 20:05 - 2017-09-23 20:06 - 000000015 _____ C:\Users\tata\AppData\Local\X-Plane_drm_11.prf
2017-09-23 20:05 - 2017-09-23 20:05 - 000000037 _____ C:\Users\tata\AppData\Local\X-Plane Installer.prf
2017-09-23 19:06 - 2017-09-23 19:06 - 000000016 _____ C:\Users\tata\AppData\Local\x-plane_install_11.txt
2017-09-23 19:05 - 2017-09-23 20:05 - 000015747 _____ C:\Users\tata\Desktop\X-Plane Installer Log.txt
2017-09-22 18:27 - 2017-09-22 18:27 - 000011639 _____ C:\Users\tata\Desktop\scenery_brno.cfg.txt
2017-09-21 19:10 - 2017-09-21 19:10 - 000000000 ____D C:\Users\tata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FPR Converter
2017-09-21 19:10 - 2017-09-21 19:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FPR Converter
2017-09-21 19:10 - 2017-09-21 19:10 - 000000000 ____D C:\ProgramData\Bernd's Homebrew
2017-09-21 19:10 - 2017-09-21 19:10 - 000000000 ____D C:\Program Files (x86)\Bernd's Homebrew
2017-09-21 18:24 - 2017-09-21 18:24 - 006910458 _____ C:\Users\tata\Downloads\X-Plane11InstallerWindows.zip
2017-09-19 10:05 - 2017-09-19 10:05 - 000180096 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2017-09-19 10:05 - 2017-09-19 10:05 - 000107336 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2017-09-19 10:05 - 2017-09-19 10:05 - 000106312 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2017-09-19 10:05 - 2017-09-19 10:05 - 000081888 _____ (ESET) C:\WINDOWS\system32\Drivers\epfw.sys
2017-09-19 10:05 - 2017-09-19 10:05 - 000050744 _____ (ESET) C:\WINDOWS\system32\Drivers\ekbdflt.sys
2017-09-18 18:51 - 2017-09-18 18:51 - 000097795 _____ C:\Users\tata\Downloads\Přiznání k DPFO vz. 23(1).pdf
2017-09-18 18:49 - 2017-09-18 18:49 - 000141436 _____ C:\Users\tata\Downloads\výplatní páska podrobná.pdf
2017-09-17 16:19 - 2017-09-17 16:19 - 000081500 _____ C:\Users\tata\Desktop\Guide to install IVAP on Prepar3D V3.html
2017-09-17 16:19 - 2017-09-17 16:19 - 000000000 ____D C:\Users\tata\Desktop\Guide to install IVAP on Prepar3D V3_files
2017-09-17 15:43 - 2017-09-17 15:43 - 000000000 ____D C:\Users\tata\Downloads\geetrr
2017-09-17 15:42 - 2017-09-17 15:43 - 001127300 _____ C:\Users\tata\Downloads\geetrr.zip
2017-09-17 08:43 - 2017-09-17 08:43 - 000000000 ____D C:\WINDOWS\Panther
2017-09-16 20:56 - 2017-09-16 20:56 - 000000043 _____ C:\Users\tata\Desktop\nvidia.txt
2017-09-16 17:53 - 2017-09-16 17:53 - 000000000 ____D C:\Users\tata\AppData\Roaming\.ndp-chartcloud
2017-09-16 17:53 - 2017-09-16 17:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft - Mega Airport Zurich V2.0 Professional
2017-09-16 17:22 - 2017-09-16 17:22 - 000000000 ____D C:\Program Files\Lockheed Martin
2017-09-16 15:24 - 2017-09-19 19:23 - 000000000 ____D C:\Users\tata\Documents\Prepar3D v4 Files
2017-09-16 15:24 - 2017-09-19 17:26 - 000000000 ____D C:\Users\tata\Documents\Prepar3D v4 Add-ons
2017-09-16 15:11 - 2017-09-16 15:11 - 000001703 _____ C:\Users\Public\Desktop\Prepar3D v4.lnk
2017-09-16 09:00 - 2017-09-16 09:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft - Airbus A320-A321 - PREPAR3D V2.x
2017-09-16 08:52 - 2017-09-16 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft - Airbus A318-A319 - PREPAR3D V2.x
2017-09-15 18:44 - 2017-09-15 18:49 - 000000000 ____D C:\Users\tata\Documents\A2A
2017-09-15 18:07 - 2017-09-15 18:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A2A Simulations
2017-09-15 08:18 - 2017-09-17 15:54 - 000000000 ____D C:\Users\tata\AppData\Roaming\Lockheed Martin
2017-09-15 08:18 - 2017-09-16 15:11 - 000000000 ____D C:\Users\tata\AppData\Local\Lockheed Martin
2017-09-15 08:15 - 2017-09-17 15:54 - 000000000 ____D C:\ProgramData\Lockheed Martin
2017-09-14 21:26 - 2017-09-14 21:27 - 002205242 _____ C:\Users\tata\Documents\cc_20170914_212612.reg
2017-09-14 10:46 - 2017-09-14 10:46 - 000000000 ____D C:\Users\tata\ansel
2017-09-14 10:15 - 2017-09-14 10:15 - 000109222 _____ C:\Users\tata\Documents\cc_20170914_101527.reg
2017-09-14 10:00 - 2017-09-14 10:00 - 000000000 ____D C:\Users\tata\AppData\Roaming\Orbx systems
2017-09-14 09:56 - 2017-09-14 09:56 - 000115720 _____ C:\Users\tata\Downloads\Doklad_SIPO_201709_6090083383.pdf
2017-09-13 19:12 - 2017-09-16 19:55 - 000000000 ____D C:\Users\tata\AppData\Local\Orbx
2017-09-13 19:12 - 2017-09-13 19:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orbx
2017-09-13 17:39 - 2017-09-21 21:04 - 000000000 ____D C:\Users\tata\Documents\Prepar3D v2 Files
2017-09-13 12:24 - 2017-09-13 12:24 - 000000000 ____D C:\WINDOWS\PCHEALTH
2017-09-13 12:23 - 2017-09-05 07:30 - 000287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-09-13 12:23 - 2017-09-05 07:27 - 002399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-09-13 12:23 - 2017-09-05 07:27 - 000136096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2017-09-13 12:23 - 2017-09-05 07:25 - 002969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-09-13 12:23 - 2017-09-05 07:24 - 000519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-09-13 12:23 - 2017-09-05 07:23 - 001242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-09-13 12:23 - 2017-09-05 07:21 - 000189344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-09-13 12:23 - 2017-09-05 07:18 - 000820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2017-09-13 12:23 - 2017-09-05 07:17 - 000316320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-09-13 12:23 - 2017-09-05 07:16 - 000724200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-09-13 12:23 - 2017-09-05 07:16 - 000546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-09-13 12:23 - 2017-09-05 07:16 - 000410168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-09-13 12:23 - 2017-09-05 07:16 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-09-13 12:23 - 2017-09-05 07:14 - 004708504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-09-13 12:23 - 2017-09-05 07:14 - 001146176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2017-09-13 12:23 - 2017-09-05 07:14 - 000958664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2017-09-13 12:23 - 2017-09-05 07:14 - 000254176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2017-09-13 12:23 - 2017-09-05 07:14 - 000094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2017-09-13 12:23 - 2017-09-05 07:12 - 001409048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2017-09-13 12:23 - 2017-09-05 07:12 - 001292880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2017-09-13 12:23 - 2017-09-05 07:12 - 000627080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2017-09-13 12:23 - 2017-09-05 07:12 - 000081176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2017-09-13 12:23 - 2017-09-05 07:11 - 002675104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-09-13 12:23 - 2017-09-05 07:11 - 000610720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2017-09-13 12:23 - 2017-09-05 07:11 - 000387936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2017-09-13 12:23 - 2017-09-05 06:53 - 001839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2017-09-13 12:23 - 2017-09-05 06:53 - 001620880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-09-13 12:23 - 2017-09-05 06:52 - 002259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2017-09-13 12:23 - 2017-09-05 06:50 - 004330920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2017-09-13 12:23 - 2017-09-05 06:46 - 004471888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2017-09-13 12:23 - 2017-09-05 06:45 - 023679488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-09-13 12:23 - 2017-09-05 06:45 - 005821496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2017-09-13 12:23 - 2017-09-05 06:45 - 002476712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2017-09-13 12:23 - 2017-09-05 06:45 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-09-13 12:23 - 2017-09-05 06:45 - 000750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2017-09-13 12:23 - 2017-09-05 06:45 - 000085784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialUIBroker.exe
2017-09-13 12:23 - 2017-09-05 06:44 - 000569264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2017-09-13 12:23 - 2017-09-05 06:43 - 000611096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-09-13 12:23 - 2017-09-05 06:43 - 000359560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2017-09-13 12:23 - 2017-09-05 06:43 - 000280480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2017-09-13 12:23 - 2017-09-05 06:43 - 000169376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-09-13 12:23 - 2017-09-05 06:43 - 000042456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2017-09-13 12:23 - 2017-09-05 06:42 - 002330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2017-09-13 12:23 - 2017-09-05 06:42 - 000703056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-09-13 12:23 - 2017-09-05 06:42 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2017-09-13 12:23 - 2017-09-05 06:42 - 000291904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2017-09-13 12:23 - 2017-09-05 06:42 - 000182688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2017-09-13 12:23 - 2017-09-05 06:41 - 020373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-09-13 12:23 - 2017-09-05 06:41 - 006761560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-09-13 12:23 - 2017-09-05 06:41 - 004671832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2017-09-13 12:23 - 2017-09-05 06:41 - 001106904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2017-09-13 12:23 - 2017-09-05 06:41 - 001013912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2017-09-13 12:23 - 2017-09-05 06:40 - 000052768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2017-09-13 12:23 - 2017-09-05 06:37 - 000583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2017-09-13 12:23 - 2017-09-05 06:29 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrPS.dll
2017-09-13 12:23 - 2017-09-05 06:28 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2017-09-13 12:23 - 2017-09-05 06:28 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2017-09-13 12:23 - 2017-09-05 06:27 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2017-09-13 12:23 - 2017-09-05 06:27 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmCx.sys
2017-09-13 12:23 - 2017-09-05 06:27 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-09-13 12:23 - 2017-09-05 06:27 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-09-13 12:23 - 2017-09-05 06:26 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-09-13 12:23 - 2017-09-05 06:26 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2017-09-13 12:23 - 2017-09-05 06:26 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2017-09-13 12:23 - 2017-09-05 06:26 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-09-13 12:23 - 2017-09-05 06:26 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.exe
2017-09-13 12:23 - 2017-09-05 06:26 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2017-09-13 12:23 - 2017-09-05 06:25 - 013844480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2017-09-13 12:23 - 2017-09-05 06:25 - 001448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2017-09-13 12:23 - 2017-09-05 06:25 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2017-09-13 12:23 - 2017-09-05 06:25 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2017-09-13 12:23 - 2017-09-05 06:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nsiproxy.sys
2017-09-13 12:23 - 2017-09-05 06:24 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-09-13 12:23 - 2017-09-05 06:24 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2017-09-13 12:23 - 2017-09-05 06:24 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2017-09-13 12:23 - 2017-09-05 06:24 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2017-09-13 12:23 - 2017-09-05 06:24 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcrecovery.dll
2017-09-13 12:23 - 2017-09-05 06:24 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-09-13 12:23 - 2017-09-05 06:23 - 020509184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-09-13 12:23 - 2017-09-05 06:23 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-09-13 12:23 - 2017-09-05 06:23 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2017-09-13 12:23 - 2017-09-05 06:23 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 023684608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000477696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-09-13 12:23 - 2017-09-05 06:22 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2017-09-13 12:23 - 2017-09-05 06:22 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 006728704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 001178624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 001051136 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000946688 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-09-13 12:23 - 2017-09-05 06:21 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.exe
2017-09-13 12:23 - 2017-09-05 06:20 - 000805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-09-13 12:23 - 2017-09-05 06:20 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-09-13 12:23 - 2017-09-05 06:20 - 000370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 019336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 000364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-09-13 12:23 - 2017-09-05 06:19 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 012801536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 002078720 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-09-13 12:23 - 2017-09-05 06:18 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2017-09-13 12:23 - 2017-09-05 06:18 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dinput8.dll
2017-09-13 12:23 - 2017-09-05 06:18 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2017-09-13 12:23 - 2017-09-05 06:17 - 008213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2017-09-13 12:23 - 2017-09-05 06:17 - 008207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-09-13 12:23 - 2017-09-05 06:17 - 000918528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2017-09-13 12:23 - 2017-09-05 06:17 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2017-09-13 12:23 - 2017-09-05 06:17 - 000757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2017-09-13 12:23 - 2017-09-05 06:17 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-09-13 12:23 - 2017-09-05 06:17 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2017-09-13 12:23 - 2017-09-05 06:16 - 005961728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-09-13 12:23 - 2017-09-05 06:16 - 000844288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2017-09-13 12:23 - 2017-09-05 06:16 - 000563200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2017-09-13 12:23 - 2017-09-05 06:16 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2017-09-13 12:23 - 2017-09-05 06:16 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2017-09-13 12:23 - 2017-09-05 06:16 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 004730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 001143296 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2017-09-13 12:23 - 2017-09-05 06:15 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-09-13 12:23 - 2017-09-05 06:15 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 011887104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 002516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 001657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 001583616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2017-09-13 12:23 - 2017-09-05 06:14 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2017-09-13 12:23 - 2017-09-05 06:13 - 007598080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2017-09-13 12:23 - 2017-09-05 06:13 - 002009600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-09-13 12:23 - 2017-09-05 06:13 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
2017-09-13 12:23 - 2017-09-05 06:12 - 006265856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-09-13 12:23 - 2017-09-05 06:12 - 005225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2017-09-13 12:23 - 2017-09-05 06:12 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-09-13 12:23 - 2017-09-05 06:12 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 003667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 003654656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 001463296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 001355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-09-13 12:23 - 2017-09-05 06:11 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2017-09-13 12:23 - 2017-09-05 06:10 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-09-13 12:23 - 2017-09-05 06:10 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-09-13 12:23 - 2017-09-05 06:10 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2017-09-13 12:23 - 2017-09-05 06:10 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthHFSrv.dll
2017-09-13 12:23 - 2017-09-05 06:06 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2017-09-13 12:23 - 2017-09-05 06:06 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2017-09-13 12:23 - 2017-09-05 06:06 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2017-09-13 12:23 - 2017-09-05 06:04 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
2017-09-13 12:23 - 2017-09-05 06:04 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2017-09-13 12:22 - 2017-09-05 07:31 - 001596592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-09-13 12:22 - 2017-09-05 07:31 - 001346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2017-09-13 12:22 - 2017-09-05 07:31 - 001147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-09-13 12:22 - 2017-09-05 07:31 - 001024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-09-13 12:22 - 2017-09-05 07:31 - 000821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-09-13 12:22 - 2017-09-05 07:31 - 000750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-09-13 12:22 - 2017-09-05 07:31 - 000115792 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2017-09-13 12:22 - 2017-09-05 07:26 - 008319904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-09-13 12:22 - 2017-09-05 07:26 - 001930840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-09-13 12:22 - 2017-09-05 07:25 - 000159648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2017-09-13 12:22 - 2017-09-05 07:24 - 000923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-09-13 12:22 - 2017-09-05 07:23 - 004462120 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2017-09-13 12:22 - 2017-09-05 07:20 - 001057824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2017-09-13 12:22 - 2017-09-05 07:19 - 004848960 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-09-13 12:22 - 2017-09-05 07:19 - 002443168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-09-13 12:22 - 2017-09-05 07:18 - 007326128 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-09-13 12:22 - 2017-09-05 07:18 - 005477096 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-09-13 12:22 - 2017-09-05 07:18 - 002972552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2017-09-13 12:22 - 2017-09-05 07:18 - 002647224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-09-13 12:22 - 2017-09-05 07:18 - 001668344 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2017-09-13 12:22 - 2017-09-05 07:18 - 000685512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2017-09-13 12:22 - 2017-09-05 07:18 - 000212384 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-09-13 12:22 - 2017-09-05 07:16 - 001320344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2017-09-13 12:22 - 2017-09-05 07:16 - 000872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-09-13 12:22 - 2017-09-05 07:16 - 000715168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-09-13 12:22 - 2017-09-05 07:16 - 000228256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-09-13 12:22 - 2017-09-05 07:16 - 000049720 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2017-09-13 12:22 - 2017-09-05 07:15 - 003116184 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-09-13 12:22 - 2017-09-05 07:15 - 000871448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-09-13 12:22 - 2017-09-05 07:15 - 000654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-09-13 12:22 - 2017-09-05 07:15 - 000381824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2017-09-13 12:22 - 2017-09-05 07:15 - 000257440 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-09-13 12:22 - 2017-09-05 07:14 - 021352656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-09-13 12:22 - 2017-09-05 07:14 - 007907344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-09-13 12:22 - 2017-09-05 07:13 - 001619816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-09-13 12:22 - 2017-09-05 07:13 - 000064680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2017-09-13 12:22 - 2017-09-05 06:31 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-09-13 12:22 - 2017-09-05 06:30 - 001639936 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2017-09-13 12:22 - 2017-09-05 06:30 - 001275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-09-13 12:22 - 2017-09-05 06:30 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-09-13 12:22 - 2017-09-05 06:30 - 000463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-09-13 12:22 - 2017-09-05 06:30 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-09-13 12:22 - 2017-09-05 06:30 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-09-13 12:22 - 2017-09-05 06:30 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-09-13 12:22 - 2017-09-05 06:30 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-09-13 12:22 - 2017-09-05 06:30 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-09-13 12:22 - 2017-09-05 06:28 - 017371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-09-13 12:22 - 2017-09-05 06:28 - 002199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-09-13 12:22 - 2017-09-05 06:27 - 007931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-09-13 12:22 - 2017-09-05 06:27 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\CfgSPCellular.dll
2017-09-13 12:22 - 2017-09-05 06:27 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAPNCsp.dll
2017-09-13 12:22 - 2017-09-05 06:27 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll
2017-09-13 12:22 - 2017-09-05 06:27 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2017-09-13 12:22 - 2017-09-05 06:26 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2017-09-13 12:22 - 2017-09-05 06:26 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\csplte.dll
2017-09-13 12:22 - 2017-09-05 06:26 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2017-09-13 12:22 - 2017-09-05 06:26 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2017-09-13 12:22 - 2017-09-05 06:26 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2017-09-13 12:22 - 2017-09-05 06:25 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
2017-09-13 12:22 - 2017-09-05 06:25 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-09-13 12:22 - 2017-09-05 06:25 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-09-13 12:22 - 2017-09-05 06:25 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2017-09-13 12:22 - 2017-09-05 06:24 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-09-13 12:22 - 2017-09-05 06:24 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-09-13 12:22 - 2017-09-05 06:24 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput.dll
2017-09-13 12:22 - 2017-09-05 06:24 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2017-09-13 12:22 - 2017-09-05 06:23 - 000739840 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2017-09-13 12:22 - 2017-09-05 06:23 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-09-13 12:22 - 2017-09-05 06:23 - 000433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-09-13 12:22 - 2017-09-05 06:23 - 000305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2017-09-13 12:22 - 2017-09-05 06:23 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2017-09-13 12:22 - 2017-09-05 06:23 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2017-09-13 12:22 - 2017-09-05 06:22 - 000556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-09-13 12:22 - 2017-09-05 06:22 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-09-13 12:22 - 2017-09-05 06:22 - 000413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2017-09-13 12:22 - 2017-09-05 06:22 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2017-09-13 12:22 - 2017-09-05 06:22 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dinput8.dll
2017-09-13 12:22 - 2017-09-05 06:21 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2017-09-13 12:22 - 2017-09-05 06:21 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2017-09-13 12:22 - 2017-09-05 06:20 - 007337472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-09-13 12:22 - 2017-09-05 06:20 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-09-13 12:22 - 2017-09-05 06:20 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-09-13 12:22 - 2017-09-05 06:20 - 000412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-09-13 12:22 - 2017-09-05 06:20 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-09-13 12:22 - 2017-09-05 06:20 - 000229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2017-09-13 12:22 - 2017-09-05 06:19 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2017-09-13 12:22 - 2017-09-05 06:19 - 001085440 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-09-13 12:22 - 2017-09-05 06:19 - 001028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-09-13 12:22 - 2017-09-05 06:19 - 000996864 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-09-13 12:22 - 2017-09-05 06:19 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2017-09-13 12:22 - 2017-09-05 06:19 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-09-13 12:22 - 2017-09-05 06:19 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 004175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2017-09-13 12:22 - 2017-09-05 06:18 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-09-13 12:22 - 2017-09-05 06:17 - 002765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-09-13 12:22 - 2017-09-05 06:17 - 001886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-09-13 12:22 - 2017-09-05 06:17 - 001397760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-09-13 12:22 - 2017-09-05 06:16 - 002805248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-09-13 12:22 - 2017-09-05 06:16 - 002680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2017-09-13 12:22 - 2017-09-05 06:16 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2017-09-13 12:22 - 2017-09-05 06:16 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 004396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 003307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 003059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 002503680 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 002055680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-09-13 12:22 - 2017-09-05 06:15 - 001736704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 001460224 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 001077248 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-09-13 12:22 - 2017-09-05 06:15 - 000706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2017-09-13 12:22 - 2017-09-05 06:14 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-09-13 12:22 - 2017-09-05 06:14 - 002445824 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-09-13 12:22 - 2017-09-05 06:14 - 002177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2017-09-13 12:22 - 2017-09-05 06:14 - 002006528 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2017-09-13 12:22 - 2017-09-05 06:14 - 000986624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-09-13 12:22 - 2017-09-05 06:14 - 000810496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2017-09-13 12:22 - 2017-09-05 06:13 - 001802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-09-13 12:22 - 2017-09-05 06:13 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-09-13 12:22 - 2017-09-05 06:12 - 002153984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2017-09-13 12:22 - 2017-09-05 06:11 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-09-13 12:22 - 2017-09-05 06:09 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2017-09-13 12:22 - 2017-09-05 06:07 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-09-13 12:22 - 2017-09-05 06:07 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
2017-09-13 12:22 - 2017-09-01 07:55 - 000031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-09-13 08:40 - 2017-09-13 08:40 - 000000374 _____ C:\Users\tata\Documents\lepalemd.fpl
2017-09-11 19:14 - 2017-09-24 13:10 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-11 19:14 - 2017-09-24 13:10 - 000004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-11 19:14 - 2017-09-18 23:29 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-09-11 19:13 - 2017-08-22 03:01 - 000512960 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2017-09-11 19:13 - 2017-08-22 03:01 - 000418752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-09-11 19:12 - 2017-08-22 03:01 - 001988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438541.dll
2017-09-11 19:12 - 2017-08-22 03:01 - 001597888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438541.dll
2017-09-11 19:12 - 2017-08-22 03:01 - 000045976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2017-09-11 19:12 - 2017-07-19 02:40 - 003711328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-09-11 19:12 - 2017-07-19 02:40 - 000057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-09-11 19:10 - 2017-09-11 19:17 - 000000191 _____ C:\Users\tata\Documents\FSX.nip
2017-09-11 19:09 - 2017-09-11 19:09 - 000000671 _____ C:\Users\tata\Documents\prepar3d nvidia.nip
2017-09-11 18:37 - 2017-09-11 18:37 - 000063104 _____ C:\Users\tata\Documents\cc_20170911_183701.reg
2017-09-11 18:37 - 2017-09-11 18:37 - 000004304 _____ C:\Users\tata\Documents\cc_20170911_183717.reg
2017-09-08 18:37 - 2017-09-30 10:23 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2017-09-04 19:02 - 2017-09-04 19:02 - 001058210 _____ C:\Users\tata\Downloads\681-810-LE_AD_.pdf
2017-09-04 19:01 - 2017-09-04 19:01 - 000949029 _____ C:\Users\tata\Downloads\54-301-LE_AD_2.pdf
2017-09-03 10:47 - 2017-09-03 10:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\aerosoft - Mega Airport Rome - FSX
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-10-02 17:49 - 2017-07-11 21:28 - 005231064 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-10-02 17:49 - 2017-03-20 06:43 - 002503406 _____ C:\WINDOWS\system32\perfh005.dat
2017-10-02 17:49 - 2017-03-20 06:43 - 000691004 _____ C:\WINDOWS\system32\perfc005.dat
2017-10-02 17:43 - 2017-07-11 21:16 - 000000000 ____D C:\ProgramData\NVIDIA
2017-10-02 17:41 - 2017-07-11 21:17 - 000000000 ____D C:\Users\tata
2017-10-02 17:40 - 2017-07-11 21:22 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-10-02 17:40 - 2017-03-18 13:40 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-10-02 17:40 - 2016-07-25 18:35 - 000812812 _____ C:\WINDOWS\system32\oodbs.lor
2017-10-02 17:36 - 2017-08-28 18:11 - 000000000 ____D C:\Users\tata\Downloads\LittleNavmap-win-1.4.4
2017-10-02 17:26 - 2017-07-11 21:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-10-01 19:31 - 2017-01-28 22:07 - 000000000 ____D C:\Users\tata\Documents\The Witcher 3
2017-10-01 13:39 - 2017-03-18 23:03 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-10-01 13:39 - 2017-03-18 23:01 - 000000000 ____D C:\WINDOWS\INF
2017-10-01 12:12 - 2017-07-11 21:16 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-10-01 12:12 - 2017-01-04 12:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-10-01 12:12 - 2016-01-29 18:16 - 000000000 ____D C:\temp
2017-10-01 10:46 - 2016-08-06 16:21 - 000000000 ____D C:\Users\tata\AppData\Local\Frontier_Developments
2017-10-01 10:04 - 2016-09-10 09:34 - 000000000 ____D C:\Users\tata\Documents\Flight Simulator X Files
2017-10-01 09:52 - 2016-07-28 19:21 - 000000000 ____D C:\Users\tata\AppData\Local\CrashDumps
2017-09-30 13:02 - 2017-03-18 22:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-09-30 10:23 - 2016-09-10 09:32 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-09-30 10:21 - 2016-09-11 10:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMDG Simulations
2017-09-29 18:18 - 2017-01-18 18:47 - 000000000 ___RD C:\Users\tata\Documents\Scanned Documents
2017-09-29 18:04 - 2017-03-18 23:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-29 18:04 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-09-25 20:52 - 2016-07-24 19:24 - 000002286 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-24 14:37 - 2016-09-29 18:04 - 000000000 ____D C:\Users\tata\Documents\Plan-G Files
2017-09-24 14:36 - 2017-07-11 21:16 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-09-24 13:16 - 2016-07-28 16:22 - 000000000 ____D C:\Users\tata\AppData\Local\NVIDIA Corporation
2017-09-24 13:10 - 2017-07-11 21:22 - 000003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-24 13:10 - 2017-07-11 21:22 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-24 13:10 - 2017-07-11 21:22 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-24 13:10 - 2017-07-11 21:22 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-24 13:10 - 2017-07-11 21:22 - 000003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-24 13:10 - 2017-07-11 21:22 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-24 13:10 - 2017-07-11 21:16 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-09-24 09:49 - 2016-09-21 20:31 - 000000000 ___RD C:\Users\tata\Desktop\P3D
2017-09-22 17:19 - 2017-07-27 18:06 - 000003354 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1489680871-105870493-2040455859-1001
2017-09-22 17:19 - 2016-07-24 19:10 - 000002435 _____ C:\Users\tata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-22 17:19 - 2016-07-24 19:10 - 000000000 ___RD C:\Users\tata\OneDrive
2017-09-21 19:41 - 2016-07-24 20:17 - 000000000 ____D C:\Users\tata\AppData\Roaming\KeePass
2017-09-19 09:23 - 2017-01-04 12:19 - 001923008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-09-19 09:23 - 2017-01-04 12:19 - 001755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-09-19 09:23 - 2017-01-04 12:19 - 001505728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-09-19 09:23 - 2017-01-04 12:19 - 001317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-09-19 09:23 - 2017-01-04 12:19 - 000121280 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-09-19 09:23 - 2017-01-04 12:17 - 000179136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-09-19 09:23 - 2017-01-04 12:17 - 000146368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-09-16 20:22 - 2016-07-24 20:17 - 000000000 ____D C:\Users\tata\AppData\Local\GHISLER
2017-09-16 18:05 - 2016-09-10 09:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HiFi
2017-09-16 18:04 - 2016-09-10 09:49 - 000000000 ____D C:\Program Files (x86)\HiFi
2017-09-16 17:22 - 2016-09-12 21:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lockheed Martin
2017-09-16 15:10 - 2016-07-28 16:21 - 000000000 ____D C:\ProgramData\Package Cache
2017-09-16 13:55 - 2016-07-24 20:17 - 000046350 _____ C:\Users\tata\Documents\lastnoaco.kdbx
2017-09-16 09:10 - 2016-09-11 08:45 - 000000000 ____D C:\Users\tata\AppData\Roaming\RAASPRO
2017-09-15 10:13 - 2016-09-11 11:14 - 000000000 ____D C:\Users\tata\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orbx
2017-09-15 08:24 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\rescache
2017-09-14 16:30 - 2016-07-28 16:33 - 000000000 ____D C:\Users\tata\Documents\My Games
2017-09-14 16:23 - 2016-09-11 10:50 - 000000000 ____D C:\Program Files (x86)\PMDG Operations Center
2017-09-14 09:22 - 2016-08-24 21:21 - 000000000 ____D C:\Program Files (x86)\Overwolf
2017-09-13 17:37 - 2016-09-21 20:31 - 000000000 ____D C:\Users\tata\Desktop\FSX
2017-09-13 17:03 - 2016-07-29 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\webium's modpack
2017-09-13 13:41 - 2016-02-13 15:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-09-13 13:40 - 2017-07-11 21:15 - 002423448 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-09-13 13:39 - 2017-03-20 06:43 - 000000000 ____D C:\WINDOWS\system32\cs
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ___SD C:\WINDOWS\system32\F12
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\setup
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2017-09-13 13:39 - 2017-03-18 23:03 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2017-09-13 12:27 - 2016-07-24 19:36 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-09-13 12:26 - 2016-07-24 19:36 - 138202976 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-09-12 18:48 - 2016-09-16 10:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Majestic Software
2017-09-07 21:14 - 2017-05-27 15:09 - 000000342 _____ C:\Users\tata\Desktop\VPA mission.txt
2017-09-05 06:54 - 2015-10-30 10:13 - 000395228 __RSH C:\bootmgr
2017-09-02 17:15 - 2017-03-18 23:06 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-09-02 17:15 - 2017-03-18 23:06 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Files in the root of some directories =======
2017-03-07 12:27 - 2017-05-29 18:33 - 000000028 _____ () C:\Users\tata\AppData\Roaming\PanelUpdater.cfg
2017-10-01 10:45 - 2017-10-01 10:45 - 000007597 _____ () C:\Users\tata\AppData\Local\Resmon.ResmonCfg
2017-09-23 20:05 - 2017-09-23 20:05 - 000000037 _____ () C:\Users\tata\AppData\Local\X-Plane Installer.prf
2017-09-23 20:05 - 2017-09-23 20:06 - 000000015 _____ () C:\Users\tata\AppData\Local\X-Plane_drm_11.prf
2017-09-23 19:06 - 2017-09-23 19:06 - 000000016 _____ () C:\Users\tata\AppData\Local\x-plane_install_11.txt
2016-07-25 17:13 - 2016-07-25 17:13 - 000000057 _____ () C:\ProgramData\Ament.ini
2016-09-29 18:04 - 2016-10-01 16:29 - 000000167 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
Some files in TEMP:
====================
2017-09-08 19:15 - 2017-09-08 19:15 - 007850088 _____ (Microsoft Corporation) C:\Users\tata\AppData\Local\Temp\BingBarSetup-Partner.exe
2017-09-29 19:41 - 2017-09-29 19:42 - 078636182 _____ () C:\Users\tata\AppData\Local\Temp\Common_Library_p3d.exe
2017-02-10 20:32 - 2017-09-16 19:17 - 000873320 _____ (NVIDIA Corporation) C:\Users\tata\AppData\Local\Temp\nvSCPAPI64.dll
2017-09-11 19:12 - 2017-09-16 19:17 - 000368760 _____ (NVIDIA Corporation) C:\Users\tata\AppData\Local\Temp\nvStInst.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-09-24 09:09
==================== End of FRST.txt ============================
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: (Data_SSD_128GB) (Fixed) (Total:119.23 GB) (Free:32.45 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Nový svazek) (Fixed) (Total:886.33 GB) (Free:498.11 GB) NTFS
Drive e: (Nový svazek) (Fixed) (Total:976.56 GB) (Free:228.75 GB) NTFS
Drive f: () (Fixed) (Total:303.48 GB) (Free:127.78 GB) NTFS
Drive g: () (Fixed) (Total:309.26 GB) (Free:15.39 GB) NTFS
Drive h: () (Fixed) (Total:318.76 GB) (Free:99.26 GB) NTFS
Drive i: (Moje soubory) (CDROM) (Total:0.04 GB) (Free:0 GB) UDF
Drive j: (Nový svazek) (Fixed) (Total:232.88 GB) (Free:32.97 GB) NTFS
Available physical RAM: 12985.33 MB
Total physical RAM: 15836.84 MB
Percentage of memory in use: 18%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: FFFFFFFF)
Partition 1: (Active) - (Size=119.2 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 98134E45)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: DEDA7A36)
Partition 1: (Active) - (Size=931.5 GB) - (Type=05)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Internet Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Internet Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\tata\Desktop" je 215 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vytížený procesor
OK. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
C:\WINDOWS\LastGood.Tmp
C:\ProgramData\Ament.ini
C:\Users\tata\AppData\Local\Temp
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vytížený procesor
Zde je log:
Fix result of Farbar Recovery Scan Tool (x64) Version: 02-10-2017 01
Ran by tata (03-10-2017 11:17:21) Run:1
Running from C:\Users\tata\Desktop
Loaded Profiles: tata (Available Profiles: tata)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
C:\WINDOWS\LastGood.Tmp
C:\ProgramData\Ament.ini
C:\Users\tata\AppData\Local\Temp
EmptyTemp:
End
*****************
Bonjour Service => Unable to stop service.
HKLM\System\CurrentControlSet\Services\Bonjour Service => key removed successfully
Bonjour Service => service removed successfully
C:\WINDOWS\LastGood.Tmp => moved successfully
C:\ProgramData\Ament.ini => moved successfully
"C:\Users\tata\AppData\Local\Temp" folder move:
Could not move "C:\Users\tata\AppData\Local\Temp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 52704562 B
Java, Flash, Steam htmlcache => 474968167 B
Windows/system/drivers => 4575561 B
Edge => 36837555 B
Chrome => 264060375 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 7322 B
NetworkService => 858936 B
tata => 1473627931 B
RecycleBin => 0 B
EmptyTemp: => 2.2 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 03-10-2017 11:19:51)
C:\Users\tata\AppData\Local\Temp => moved successfully
==== End of Fixlog 11:19:51 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 02-10-2017 01
Ran by tata (03-10-2017 11:17:21) Run:1
Running from C:\Users\tata\Desktop
Loaded Profiles: tata (Available Profiles: tata)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
C:\WINDOWS\LastGood.Tmp
C:\ProgramData\Ament.ini
C:\Users\tata\AppData\Local\Temp
EmptyTemp:
End
*****************
Bonjour Service => Unable to stop service.
HKLM\System\CurrentControlSet\Services\Bonjour Service => key removed successfully
Bonjour Service => service removed successfully
C:\WINDOWS\LastGood.Tmp => moved successfully
C:\ProgramData\Ament.ini => moved successfully
"C:\Users\tata\AppData\Local\Temp" folder move:
Could not move "C:\Users\tata\AppData\Local\Temp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 52704562 B
Java, Flash, Steam htmlcache => 474968167 B
Windows/system/drivers => 4575561 B
Edge => 36837555 B
Chrome => 264060375 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 128 B
LocalService => 7322 B
NetworkService => 858936 B
tata => 1473627931 B
RecycleBin => 0 B
EmptyTemp: => 2.2 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 03-10-2017 11:19:51)
C:\Users\tata\AppData\Local\Temp => moved successfully
==== End of Fixlog 11:19:51 ====
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vytížený procesor
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vytížený procesor
Pořád se mi to nezdá, CPU je hodně často vytížený a dřiv to tak rozhodně nebylo.
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vytížený procesor
OK. Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vytížený procesor
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 03.10.17
Čas skenování: 19:25
Logovací soubor: dac09b14-a85f-11e7-8a2b-d43d7e2c0e16.json
Správce: Ano
-Informace o softwaru-
Verze: 3.2.2.2029
Verze komponentů: 1.0.207
Aktualizovat verzi balíku komponent: 1.0.2941
Licence: Zkušební
-Systémová informace-
OS: Windows 10 (Build 15063.608)
CPU: x64
Systém souborů: NTFS
Uživatel: FSXPC\tata
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 478080
Zjištěné hrozby: 1
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 3 min, 32 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 1
HackTool.FilePatch, C:\USERS\TATA\DOWNLOADS\GEETRR.ZIP, Žádná uživatelská akce, [7553], [281135],1.0.2941
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 03.10.17
Čas skenování: 19:25
Logovací soubor: dac09b14-a85f-11e7-8a2b-d43d7e2c0e16.json
Správce: Ano
-Informace o softwaru-
Verze: 3.2.2.2029
Verze komponentů: 1.0.207
Aktualizovat verzi balíku komponent: 1.0.2941
Licence: Zkušební
-Systémová informace-
OS: Windows 10 (Build 15063.608)
CPU: x64
Systém souborů: NTFS
Uživatel: FSXPC\tata
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 478080
Zjištěné hrozby: 1
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 3 min, 32 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 1
HackTool.FilePatch, C:\USERS\TATA\DOWNLOADS\GEETRR.ZIP, Žádná uživatelská akce, [7553], [281135],1.0.2941
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vytížený procesor
Nalezenou položku smažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vytížený procesor
Položku jsem smazal a provedl ještě jeden scan, opět to něco našlo, smazáno. Další scan už nic nenašel.
Přispějete na provoz fóra?