Dobry den prajem rad by som poprosil o preventivku. Obcas mi HDD maka na 100% hlavne pri hrach .
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25.02.2019 01
Ran by Martin (administrator) on DESKTOP-TETKG5G (26-02-2019 12:19:39)
Running from C:\Users\Martin\AppData\Local\Temp\scoped_dir4916_7742
Loaded Profiles: Martin (Available Profiles: Martin & 8IKEHd8Tqd & jUpy26V5TxgBjSlKMd)
Platform: Windows 10 Pro Version 1803 17134.590 (X64) Language: Slovenčina (Slovensko)
Default browser: Opera
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\NisSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Mad Catz Inc) [File not signed] C:\Program Files\Mad Catz\RAT4\RAT4_Profiler.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\.Battle.net.exe.698.10148.temp
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.6610\Agent.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\.Battle.net.exe.698.10148.temp
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\.Battle.net.exe.698.10148.temp
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera_crashreporter.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RAT4] => C:\Program Files\Mad Catz\RAT4\RAT4_Profiler.exe [343040 2016-12-16] (Mad Catz Inc) [File not signed]
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3144480 2019-02-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Discord] => C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe [81747288 2019-01-15] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53540200 2019-02-08] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3113768 2019-01-29] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19467544 2018-10-23] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Ubisoft Game Launcher] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe [470872 2019-02-06] (Ubisoft Entertainment Sweden AB -> Ubisoft)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1098728 2019-02-26] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e1c02e96-739c-43d9-8fa4-e9e41d4eb9a8}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-3299137129-3959029366-2649080390-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
Opera:
=======
OPR Extension: (Install Chrome Extensions) - C:\Users\Martin\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2018-10-28]
OPR Extension: (Social Revealer) - C:\Users\Martin\AppData\Roaming\Opera Software\Opera Stable\Extensions\nmnnjcmpjlbbobehaikglfgpbjclcoeg [2018-10-28]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-01-29] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-01-29] (Electronic Arts, Inc. -> Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-02-23] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-02-23] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [43400 2017-03-01] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [24424 2016-08-12] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\Windows\system32\DRIVERS\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AMDPCIDev; C:\Windows\System32\drivers\AMDPCIDev.sys [31592 2018-04-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R0 amdpsp; C:\Windows\System32\drivers\amdpsp.sys [137496 2018-09-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
S3 cpuz140; C:\Users\Martin\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [43840 2019-02-25] (CPUID -> CPUID) <==== ATTENTION
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_edcffbdd101bbe5b\nvlddmkm.sys [20726016 2019-02-21] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-01-16] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek )
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [24144 2016-10-12] (Mad Catz Inc -> Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [59728 2016-10-12] (Mad Catz Inc -> Saitek)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-02-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [333792 2019-02-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [62432 2019-02-23] (Microsoft Windows -> Microsoft Corporation)
R3 _hid_0738_1731; C:\Windows\system32\DRIVERS\_hid_0738_1731.sys [210384 2016-10-12] (Mad Catz Inc -> Saitek)
R3 _usb_0738_1731; C:\Windows\System32\drivers\_usb_0738_1731.sys [46800 2016-10-12] (Mad Catz Inc -> Saitek)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-02-26 12:19 - 2019-02-26 12:19 - 000000000 ____D C:\FRST
2019-02-26 12:18 - 2019-02-26 12:18 - 002433536 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2019-02-26 12:17 - 2019-02-26 12:17 - 000000000 ____D C:\Program Files\trend micro
2019-02-25 11:59 - 2019-02-25 11:59 - 000001012 _____ C:\Users\Public\Desktop\Driver Easy.lnk
2019-02-25 11:59 - 2019-02-25 11:59 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Easeware
2019-02-25 11:59 - 2019-02-25 11:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2019-02-25 11:59 - 2019-02-25 11:59 - 000000000 ____D C:\Program Files\Easeware
2019-02-25 11:54 - 2019-02-25 11:54 - 000000000 ____D C:\Users\Martin\AppData\Local\mbamtray
2019-02-25 11:54 - 2019-02-25 11:54 - 000000000 ____D C:\Users\Martin\AppData\Local\mbam
2019-02-25 11:54 - 2019-02-25 11:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-02-25 11:54 - 2019-02-01 11:20 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2019-02-25 11:54 - 2019-01-08 15:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-02-25 11:53 - 2019-02-25 11:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-02-25 11:53 - 2019-02-25 11:53 - 000000000 ____D C:\Program Files\Malwarebytes
2019-02-22 17:17 - 2019-02-20 12:27 - 000133616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2019-02-22 17:15 - 2019-02-22 17:15 - 000000000 ____D C:\Windows\LastGood.Tmp
2019-02-22 17:13 - 2019-02-21 11:18 - 001006800 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 001006800 _____ C:\Windows\system32\vulkan-1.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000552224 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000457096 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000286416 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2019-02-22 17:13 - 2019-02-21 11:18 - 000286416 _____ C:\Windows\system32\vulkaninfo.exe
2019-02-22 17:13 - 2019-02-21 11:18 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-02-22 17:13 - 2019-02-21 11:18 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-02-22 17:13 - 2019-02-21 11:17 - 000668640 _____ C:\Windows\system32\nvofapi64.dll
2019-02-22 17:13 - 2019-02-21 11:17 - 000534544 _____ C:\Windows\SysWOW64\nvofapi.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 040234592 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 035139840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 010319504 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 005274560 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 004624832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 002031872 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001734240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441917.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001535232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001468184 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441917.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001464256 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001129920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 000752064 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 000631688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 000611720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 000521824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 008784920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001471608 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFThevc.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001462208 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001169120 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001151984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFThevc.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001145536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 000914912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 000822576 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 000794448 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 000638176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-02-22 17:13 - 2019-02-21 11:14 - 020103080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-02-22 17:13 - 2019-02-21 11:14 - 017429864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-02-22 17:13 - 2019-02-21 11:14 - 004301152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-02-19 17:01 - 2019-02-19 17:01 - 000000000 ____D C:\Users\Martin\Desktop\Info
2019-02-19 16:47 - 2019-02-19 16:47 - 000359385 _____ C:\Users\Martin\Downloads\VYPISY_42596201_20190123.zip
2019-02-16 06:20 - 2019-02-23 20:41 - 000000000 ____D C:\Users\Martin\Documents\BioWare
2019-02-14 10:12 - 2019-02-08 15:38 - 001734104 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441891.dll
2019-02-14 10:12 - 2019-02-08 15:38 - 001468048 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441891.dll
2019-02-14 09:43 - 2019-02-24 10:33 - 000001215 _____ C:\Users\Public\Desktop\Anthem™.lnk
2019-02-14 09:43 - 2019-02-14 09:43 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-02-13 12:40 - 2019-02-06 08:54 - 004527584 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2019-02-13 12:40 - 2019-02-06 08:53 - 001634704 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-02-13 12:40 - 2019-02-06 08:35 - 000058368 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-02-13 12:40 - 2019-02-06 08:32 - 003648512 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-02-13 12:40 - 2019-02-06 08:30 - 004052992 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-02-13 12:40 - 2019-02-06 08:30 - 001662464 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-02-13 12:40 - 2019-02-06 08:30 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2019-02-13 12:40 - 2019-02-06 08:11 - 001454648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-02-13 12:40 - 2019-02-06 07:57 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-02-13 12:40 - 2019-02-06 07:52 - 004053504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-02-13 12:40 - 2019-02-06 07:52 - 002891776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-02-13 12:40 - 2019-02-06 07:52 - 001470976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-02-13 12:40 - 2019-02-06 04:01 - 001989040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-02-13 12:40 - 2019-02-06 04:01 - 001221432 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-02-13 12:40 - 2019-02-06 04:01 - 001029944 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-02-13 12:40 - 2019-02-06 04:01 - 000720480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2019-02-13 12:40 - 2019-02-06 04:01 - 000566568 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2019-02-13 12:40 - 2019-02-06 04:01 - 000134968 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2019-02-13 12:40 - 2019-02-06 04:01 - 000076088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2019-02-13 12:40 - 2019-02-06 04:01 - 000033576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NtlmShared.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 009084432 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-02-13 12:40 - 2019-02-06 04:00 - 007520112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 006572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 002719760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-02-13 12:40 - 2019-02-06 04:00 - 002465792 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 002421264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-02-13 12:40 - 2019-02-06 04:00 - 001257904 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-02-13 12:40 - 2019-02-06 04:00 - 001140680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-02-13 12:40 - 2019-02-06 04:00 - 001130568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 001098272 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 000945680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys
2019-02-13 12:40 - 2019-02-06 04:00 - 000899728 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 000466960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-02-13 12:40 - 2019-02-06 04:00 - 000376120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2019-02-13 12:40 - 2019-02-06 04:00 - 000043536 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2019-02-13 12:40 - 2019-02-06 04:00 - 000038792 _____ (Microsoft Corporation) C:\Windows\system32\NtlmShared.dll
2019-02-13 12:40 - 2019-02-06 03:59 - 001922064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2019-02-13 12:40 - 2019-02-06 03:59 - 001457248 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-02-13 12:40 - 2019-02-06 03:59 - 000983128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-02-13 12:40 - 2019-02-06 03:59 - 000144288 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-02-13 12:40 - 2019-02-06 03:52 - 022014464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-02-13 12:40 - 2019-02-06 03:45 - 019404288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-02-13 12:40 - 2019-02-06 03:42 - 003711488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-02-13 12:40 - 2019-02-06 03:41 - 025853952 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-02-13 12:40 - 2019-02-06 03:41 - 005307392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2019-02-13 12:40 - 2019-02-06 03:40 - 005792256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-02-13 12:40 - 2019-02-06 03:40 - 000021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2019-02-13 12:40 - 2019-02-06 03:38 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2019-02-13 12:40 - 2019-02-06 03:38 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-02-13 12:40 - 2019-02-06 03:37 - 004515840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-02-13 12:40 - 2019-02-06 03:37 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2019-02-13 12:40 - 2019-02-06 03:33 - 022714880 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-02-13 12:40 - 2019-02-06 03:29 - 004865536 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-02-13 12:40 - 2019-02-06 03:28 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2019-02-13 12:40 - 2019-02-06 03:28 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2019-02-13 12:40 - 2019-02-06 03:27 - 000894464 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2019-02-13 12:40 - 2019-02-06 03:27 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2019-02-13 12:40 - 2019-02-06 03:27 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2019-02-13 12:40 - 2019-02-06 03:27 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-02-13 12:40 - 2019-02-06 03:26 - 007599616 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-02-13 12:40 - 2019-02-06 03:26 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-02-13 12:40 - 2019-02-06 03:26 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2019-02-13 12:40 - 2019-02-06 03:26 - 000174592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2019-02-13 12:40 - 2019-02-06 03:26 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-02-13 12:40 - 2019-02-06 03:25 - 000736256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-02-13 12:40 - 2019-02-06 03:25 - 000507392 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2019-02-13 12:40 - 2019-02-06 03:24 - 004937728 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-02-13 12:40 - 2019-02-06 03:24 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2019-02-13 12:40 - 2019-02-06 03:23 - 000393216 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2019-02-13 12:40 - 2019-02-06 03:22 - 000960512 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2019-02-13 12:40 - 2019-02-06 03:22 - 000885760 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2019-02-13 12:40 - 2019-02-06 03:21 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2019-02-13 12:40 - 2019-02-06 02:04 - 000001314 _____ C:\Windows\system32\tcbres.wim
2019-02-13 12:40 - 2019-01-12 09:56 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MixedRealityCapture.dll
2019-02-13 12:40 - 2019-01-12 03:28 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-02-13 12:40 - 2019-01-09 19:08 - 000309560 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-02-13 12:40 - 2019-01-09 18:57 - 000720536 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-02-13 12:40 - 2019-01-09 18:42 - 004716032 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2019-02-13 12:40 - 2019-01-09 18:41 - 012730368 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-02-13 12:40 - 2019-01-09 18:41 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2019-02-13 12:40 - 2019-01-09 18:40 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2019-02-13 12:40 - 2019-01-09 18:36 - 001054720 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2019-02-13 12:40 - 2019-01-09 18:35 - 002919936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2019-02-13 12:40 - 2019-01-09 11:14 - 000607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-02-13 12:40 - 2019-01-09 10:55 - 011919872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-02-13 12:40 - 2019-01-09 10:55 - 000150016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2019-02-13 12:40 - 2019-01-09 09:55 - 001285432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2019-02-13 12:40 - 2019-01-09 09:48 - 000527368 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-02-13 12:40 - 2019-01-09 06:59 - 000611848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2019-02-13 12:40 - 2019-01-09 06:44 - 000078688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 006043496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 004789944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 002253480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 001981280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 001620264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000607376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000581592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000287640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000129088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000127744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rmclient.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000071456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
2019-02-13 12:40 - 2019-01-09 06:42 - 001035232 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-02-13 12:40 - 2019-01-09 06:42 - 000092704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2019-02-13 12:40 - 2019-01-09 06:40 - 002765336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-02-13 12:40 - 2019-01-09 06:40 - 001063224 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2019-02-13 12:40 - 2019-01-09 06:40 - 000432952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2019-02-13 12:40 - 2019-01-09 06:40 - 000226104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-02-13 12:40 - 2019-01-09 06:40 - 000090872 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 007436016 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 004404720 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 002571632 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 001943128 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000789696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000713264 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000349656 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000269624 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000260800 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000175416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
2019-02-13 12:40 - 2019-01-09 06:39 - 000164192 _____ (Microsoft Corporation) C:\Windows\system32\rmclient.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000085472 _____ (Microsoft Corporation) C:\Windows\system32\svchost.exe
2019-02-13 12:40 - 2019-01-09 06:33 - 016597504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2019-02-13 12:40 - 2019-01-09 06:32 - 013878272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2019-02-13 12:40 - 2019-01-09 06:29 - 008188928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-02-13 12:40 - 2019-01-09 06:29 - 002500096 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2019-02-13 12:40 - 2019-01-09 06:27 - 004710912 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2019-02-13 12:40 - 2019-01-09 06:27 - 004384256 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2019-02-13 12:40 - 2019-01-09 06:27 - 001587712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2019-02-13 12:40 - 2019-01-09 06:26 - 006661632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-02-13 12:40 - 2019-01-09 06:26 - 003396608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-02-13 12:40 - 2019-01-09 06:26 - 002966016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2019-02-13 12:40 - 2019-01-09 06:25 - 000161792 _____ (Microsoft Corporation) C:\Windows\system32\spacebridge.dll
2019-02-13 12:40 - 2019-01-09 06:24 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2019-02-13 12:40 - 2019-01-09 06:24 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2019-02-13 12:40 - 2019-01-09 06:24 - 000157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spacebridge.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 002368000 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 001361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 001189888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 000898560 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 000067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CapabilityAccessManagerClient.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 001551360 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 001395200 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000624640 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll
2019-02-13 12:40 - 2019-01-09 06:21 - 002173440 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-02-13 12:40 - 2019-01-09 06:21 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
2019-02-13 12:40 - 2019-01-09 06:21 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-13 12:40 - 2019-01-09 06:20 - 001000448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2019-02-13 12:40 - 2019-01-09 06:20 - 000916480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2019-02-13 12:40 - 2019-01-09 06:20 - 000607232 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2019-02-13 12:40 - 2019-01-09 06:20 - 000135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll
2019-02-13 12:40 - 2019-01-09 06:19 - 000678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-02-13 12:40 - 2019-01-09 06:19 - 000507392 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2019-02-13 12:40 - 2019-01-09 06:19 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2019-02-13 12:40 - 2019-01-09 06:19 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2019-02-13 12:40 - 2019-01-09 06:18 - 000195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2019-02-13 12:40 - 2019-01-09 05:34 - 000806320 _____ C:\Windows\SysWOW64\locale.nls
2019-02-13 12:40 - 2019-01-09 05:34 - 000806320 _____ C:\Windows\system32\locale.nls
2019-02-13 12:40 - 2019-01-08 10:08 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-02-13 12:40 - 2019-01-08 04:06 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-02-13 12:40 - 2019-01-08 04:06 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-02-13 12:40 - 2019-01-08 04:06 - 000000072 _____ C:\Windows\system32\edgehtmlpluginpolicy.bin
2019-02-07 13:31 - 2019-02-01 22:36 - 000047592 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2019-02-07 13:31 - 2019-02-01 02:38 - 001734560 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441881.dll
2019-02-07 13:31 - 2019-02-01 02:38 - 001467864 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441881.dll
2019-02-07 13:19 - 2019-02-07 17:34 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2019-02-07 13:19 - 2019-02-07 13:19 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2019-02-06 13:22 - 2019-02-26 11:00 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-01-31 16:29 - 2019-01-31 16:36 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Wargaming.net
2019-01-31 16:28 - 2019-01-31 16:28 - 000000000 ____D C:\ProgramData\Wargaming.net
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-02-26 12:20 - 2018-10-07 17:22 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Origin
2019-02-26 12:20 - 2018-08-10 12:52 - 000000000 ____D C:\Users\Martin\AppData\Local\Battle.net
2019-02-26 12:18 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-02-26 11:27 - 2018-08-10 12:37 - 000000000 ____D C:\Program Files (x86)\Steam
2019-02-26 11:02 - 2018-08-10 12:25 - 000000000 ____D C:\ProgramData\NVIDIA
2019-02-26 11:01 - 2018-08-10 12:52 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-02-26 11:00 - 2018-10-07 17:22 - 000000000 ____D C:\ProgramData\Origin
2019-02-25 19:50 - 2018-08-10 18:15 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-02-25 14:11 - 2018-08-10 18:16 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-02-25 14:10 - 2018-04-11 22:04 - 000524288 _____ C:\Windows\system32\config\BBI
2019-02-25 11:54 - 2018-04-12 00:38 - 000000000 ___HD C:\Windows\ELAMBKUP
2019-02-24 15:45 - 2018-08-10 12:24 - 000000000 ____D C:\Users\Martin\AppData\Local\ElevatedDiagnostics
2019-02-24 15:45 - 2018-04-12 00:36 - 000000000 ____D C:\Windows\INF
2019-02-24 14:55 - 2018-08-10 12:27 - 000000000 ____D C:\Program Files (x86)\Opera
2019-02-24 08:13 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\AppReadiness
2019-02-23 20:10 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-02-23 20:00 - 2018-12-24 19:18 - 000048658 _____ C:\Windows\system32\perfh01B.dat
2019-02-23 20:00 - 2018-12-24 19:18 - 000011800 _____ C:\Windows\system32\perfc01B.dat
2019-02-23 20:00 - 2018-08-10 12:22 - 000882154 _____ C:\Windows\system32\PerfStringBackup.INI
2019-02-23 17:48 - 2018-08-10 18:16 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-02-22 17:18 - 2018-11-08 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-02-22 17:18 - 2018-08-10 12:25 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-02-22 17:18 - 2018-08-10 12:25 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-02-22 17:18 - 2018-08-10 12:21 - 000000000 ____D C:\Users\Martin\AppData\Local\VirtualStore
2019-02-22 14:54 - 2018-08-10 12:27 - 000004198 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1533900461
2019-02-22 14:54 - 2018-08-10 12:27 - 000001243 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2019-02-21 11:14 - 2017-11-09 03:25 - 005042392 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-02-20 16:15 - 2018-08-10 12:53 - 000000000 ____D C:\Program Files (x86)\Overwatch
2019-02-20 16:10 - 2018-08-10 12:23 - 000000000 ____D C:\Users\Martin\AppData\Local\PlaceholderTileLogoFolder
2019-02-20 14:19 - 2018-08-10 20:09 - 000001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2019-02-20 14:19 - 2017-11-09 02:57 - 000049634 _____ C:\Windows\system32\nvinfo.pb
2019-02-20 12:14 - 2018-08-10 12:25 - 005365128 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 002624368 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 001767632 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 000651472 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 000450600 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 000125240 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 000083440 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2019-02-19 16:35 - 2018-08-10 12:21 - 000000000 ____D C:\Users\Martin\AppData\Local\Packages
2019-02-17 14:01 - 2018-08-10 12:57 - 000000000 ____D C:\Users\Martin\AppData\Local\D3DSCache
2019-02-16 06:11 - 2018-08-10 12:56 - 000000000 ____D C:\Users\Martin\AppData\Roaming\discord
2019-02-15 13:14 - 2018-08-10 12:25 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2019-02-15 08:44 - 2018-11-16 17:14 - 000000000 ____D C:\Program Files\rempl
2019-02-14 09:43 - 2018-08-10 20:07 - 000000000 ____D C:\ProgramData\Package Cache
2019-02-14 09:25 - 2018-09-14 15:52 - 000001383 _____ C:\Users\Public\Desktop\Skype.lnk
2019-02-14 09:25 - 2018-09-14 15:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-02-14 09:14 - 2018-08-10 18:15 - 000234112 _____ C:\Windows\system32\FNTCACHE.DAT
2019-02-13 22:28 - 2018-08-10 12:25 - 008504452 _____ C:\Windows\system32\nvcoproc.bin
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ___SD C:\Windows\SysWOW64\F12
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ___SD C:\Windows\system32\F12
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\TextInput
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\ShellExperiences
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\bcastdvr
2019-02-13 12:43 - 2018-04-12 00:30 - 000000000 ____D C:\Windows\CbsTemp
2019-02-13 12:40 - 2018-08-10 16:44 - 000000000 ____D C:\Windows\system32\MRT
2019-02-13 12:38 - 2018-08-10 16:43 - 129330784 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-02-11 13:04 - 2018-12-14 17:27 - 000000000 ____D C:\Users\Martin\AppData\Local\Ubisoft Game Launcher
2019-02-10 19:26 - 2018-08-10 12:24 - 000003380 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3299137129-3959029366-2649080390-1001
2019-02-10 19:26 - 2018-08-10 12:23 - 000000000 ___RD C:\Users\Martin\OneDrive
2019-02-10 19:26 - 2018-08-10 12:20 - 000002374 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-02-09 22:00 - 2018-08-10 12:20 - 000000000 ____D C:\Users\Martin
2019-02-09 21:26 - 2018-08-10 20:09 - 000000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
2019-02-09 12:43 - 2018-11-24 14:37 - 000000000 ____D C:\Users\Martin\Desktop\client_cf
2019-02-08 13:32 - 2018-08-10 12:37 - 000000000 ____D C:\ProgramData\Packages
2019-02-07 13:21 - 2018-11-21 08:46 - 000004308 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:21 - 2018-11-21 08:46 - 000004106 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:21 - 2018-11-21 08:46 - 000003976 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:21 - 2018-11-21 08:46 - 000003940 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:21 - 2018-11-21 08:46 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2019-02-07 13:21 - 2018-08-10 12:25 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-02-07 13:20 - 2018-08-10 20:09 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003858 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003654 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-06 13:23 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\LiveKernelReports
2019-02-05 13:27 - 2018-08-13 15:47 - 000000000 ____D C:\Program Files\CCleaner
2019-02-02 23:53 - 2018-08-11 07:56 - 000835480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-02-02 23:53 - 2018-08-11 07:56 - 000179600 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-02-01 22:36 - 2017-11-09 03:38 - 001682392 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2019-02-01 22:36 - 2017-11-09 03:38 - 000228768 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2019-01-30 21:17 - 2018-11-21 08:46 - 002741640 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2019-01-30 21:17 - 2018-11-21 08:46 - 002124680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2019-01-30 21:17 - 2018-11-21 08:46 - 001323400 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2019-01-29 14:50 - 2018-10-07 17:23 - 000000000 ____D C:\Program Files (x86)\Origin
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\SysWOW64\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-08-10 18:15
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25.02.2019 01
Ran by Martin (26-02-2019 12:21:03)
Running from C:\Users\Martin\AppData\Local\Temp\scoped_dir4916_7742
Windows 10 Pro Version 1803 17134.590 (X64) (2018-08-10 11:18:41)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
8IKEHd8Tqd (S-1-5-21-3299137129-3959029366-2649080390-1002 - Limited - Enabled) => C:\Users\8IKEHd8Tqd
Administrator (S-1-5-21-3299137129-3959029366-2649080390-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3299137129-3959029366-2649080390-503 - Limited - Disabled)
Guest (S-1-5-21-3299137129-3959029366-2649080390-501 - Limited - Disabled)
jUpy26V5TxgBjSlKMd (S-1-5-21-3299137129-3959029366-2649080390-1003 - Limited - Enabled) => C:\Users\jUpy26V5TxgBjSlKMd
Martin (S-1-5-21-3299137129-3959029366-2649080390-1001 - Administrator - Enabled) => C:\Users\Martin
WDAGUtilityAccount (S-1-5-21-3299137129-3959029366-2649080390-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Aktualizácie NVIDIA 35.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 35.0.0.0 - NVIDIA Corporation) Hidden
Anthem™ (HKLM-x32\...\{57b4eaa0-f1f5-407e-afbd-2db397381ad8}) (Version: 1.0.57.12816 - Electronic Arts)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.48 - Piriform)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Discord) (Version: 0.0.304 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.17 - NVIDIA Corporation) Hidden
Driver Easy 5.6.9 (HKLM\...\DriverEasy_is1) (Version: 5.6.9 - Easeware)
Malwarebytes verzia 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\OneDriveSetup.exe) (Version: 19.002.0107.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision radič ovládača 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
NVIDIA Grafický ovládač 419.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.17 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 419.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.17 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
Opera Stable 58.0.3135.68 (HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Opera 58.0.3135.68) (Version: 58.0.3135.68 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.34.21025 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Ovládací panel NVIDIA 419.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 419.17 - NVIDIA Corporation) Hidden
RAT4 (HKLM\...\{2B2EE1F4-8309-418D-BFDB-38AFC9CC70A3}) (Version: 7.0.60.3 - Mad Catz Inc)
Skype verzia 8.39 (HKLM-x32\...\Skype_is1) (Version: 8.39 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C99F4AFA-B32C-4063-865C-D7B5CC0A78FB}) (Version: 2.54.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 77.1 - Ubisoft)
WinRAR 5.60 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3299137129-3959029366-2649080390-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0975CBCE-E5B9-4A32-AA86-F2AB8FA9BE10} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {117A09F2-4CD7-422C-8E2D-B334D0D0F9F9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5313AC6F-0851-4F8B-BD35-EAA0D80D6FCF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {59A06A71-307E-435A-9968-B3CF7B073CB7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Ltd)
Task: {5EDD141B-A2FE-428C-97E3-EDD860A83556} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {81778E76-389D-4DB6-B41F-408FADBA97EC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {823BFBF3-144A-48D0-BF35-1C08513FF0F2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {84BCDD05-8573-4473-BE6B-39B7756A7A96} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8DABA75C-C67F-4FC0-BFE3-20F5782D5341} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {9820B3AC-E491-47CD-AA05-A3F17EC527E8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {B89F8570-9245-456A-84AA-9DCF32AB3154} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BA0003D7-7630-4EAA-9E14-21C929F09155} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C34DCD10-B5D6-4948-9AAE-57DFD6BC09B4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {CA45DE0F-524E-4B18-9AD8-BCC36DEDC60A} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CEDFCA59-BFA1-4173-8D65-33A263095300} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E61367C0-C981-4F51-B654-0BF2C86A8F49} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E936089C-9E67-4041-AFFA-51D6A01FA594} - System32\Tasks\Opera scheduled Autoupdate 1533900461 => C:\Program Files (x86)\Opera\launcher.exe (Opera Software AS -> Opera Software)
Task: {FABAAFEB-498E-407C-977C-CC1B58B48614} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-12-16 11:50 - 2016-12-16 11:50 - 000343040 _____ (Mad Catz Inc) [File not signed] C:\Program Files\Mad Catz\RAT4\RAT4_Profiler.exe
2018-10-07 17:24 - 2019-01-29 14:49 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 001177600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000116224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000211456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000068096 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000709120 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 001252864 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icuuc58.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\SSLEAY32.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 003515904 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Qml.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 003390976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Quick.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 054063616 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000207360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000002560 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icudt58.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Origin\libEGL.DLL
2018-10-07 17:23 - 2019-01-29 14:49 - 003090944 _____ () [File not signed] C:\Program Files (x86)\Origin\libGLESv2.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qico.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000256512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000305152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000278016 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\mediaservice\dsengine.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000626176 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Multimedia.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 005022208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Gui.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 004943360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Core.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 003078656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Quick.dll
2019-02-08 13:28 - 2019-02-08 13:28 - 000439296 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5WinExtras.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 002908672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Qml.dll
2019-02-08 13:27 - 2019-02-08 13:28 - 004718080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Widgets.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000877056 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Network.dll
2019-02-08 13:28 - 2019-02-08 13:28 - 000159232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Xml.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 085602816 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\libcef.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000596992 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\chrome_elf.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 001140224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\platforms\qwindows.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qgif.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qico.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qjpeg.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000223744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qmng.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qsvg.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000259072 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Svg.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qtiff.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 001463808 _____ (Firelight Technologies) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\fmod.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000047104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\audio\qtaudio_windows.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000089600 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\libEGL.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 003841536 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\libGLESv2.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick.2\qtquick2plugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000041984 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000071680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Window.2\windowplugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000084480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000096256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5QuickControls2.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000681472 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5QuickTemplates2.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000211456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000267776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQml\Models.2\modelsplugin.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\Run32: => "RAT4"
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\StartupApproved\Run: => "Ubisoft Game Launcher"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{F8A86B43-A922-47EC-BA20-3D3EC848C23D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{0BB022AC-FBFA-4E20-9E95-C7C3D4CF6E0F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A8C32C24-3F26-4C3F-8991-258EAAEDDB8B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [{6DEDE529-D4AF-4956-978D-77CDA32124E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [TCP Query User{98608BC1-6114-49C2-8A9B-6FDD83BDBFA7}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{1A113517-423B-4FE4-B367-A4B670C861FF}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{1D8C3398-5930-4B5A-B55D-9406579FEB86}] => (Block) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{12BB9E80-1C75-45B9-9238-0F91657AAB0A}] => (Block) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{A282724E-2519-4EE9-B174-BCEF0507388F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7A57EB93-7C8F-4C0D-B698-8BA4CD45DF08}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{CA741AA7-FFA8-4A47-BADB-37BDF91C93B0}C:\diablo iii\diablo iii.exe] => (Allow) C:\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{D9B1B6E2-EACC-4DA1-BCF4-474A6901463B}C:\diablo iii\diablo iii.exe] => (Allow) C:\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{06E33030-AED3-4776-A1D6-F6CFD816EEDA}] => (Block) C:\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{0EE67BA6-C369-4000-90FA-40B463462770}] => (Block) C:\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{79E093E0-5D38-48F2-A36B-9F35123A7FB2}C:\diablo iii\x64\diablo iii64.exe] => (Allow) C:\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{C32D5837-C607-40CF-9BB0-EC4EECD002B4}C:\diablo iii\x64\diablo iii64.exe] => (Allow) C:\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{5984D5E2-B063-45BE-AA26-494DD70E874D}] => (Block) C:\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{09B144E4-EC01-4522-B297-E5B9342E7852}] => (Block) C:\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{B78C5B26-C5B3-4FCF-B619-2043017BFA98}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3240989F-A98A-4FC8-9AAC-32F06C52C022}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{56D911C5-C095-42E6-84E6-3107E4A4FE04}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4168852A-244B-4202-9817-A65E2A00A4BE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{30CC9196-07DC-4B30-8DB2-B3F0FCCCA452}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AB9ADE1B-D551-423E-B725-45AFFFEEDC3E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2719D8BC-7F79-4E0F-A664-AB30DD7CE1F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{84467FF1-DEDB-40E0-BDC6-5EBBEBE494CB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4D909DEC-7F31-48BB-8F96-BA908B706CD5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0707C218-5511-409F-8F2D-8A0FE3BD08CA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FC4A3FD8-92FD-4908-9717-9E5E47CBBBA4}] => (Allow) C:\Program Files (x86)\Opera\58.0.3135.65\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{5B2CD0C0-5FDE-4D11-BC6D-C230BD7310E2}] => (Allow) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{032AFB16-DD7D-45E4-A0E0-829451815B14}] => (Allow) C:\Program Files (x86)\Origin Games\Anthem\AnthemTrial.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A5AA3B16-61B1-41AC-876F-C2DCB62A1441}] => (Allow) C:\Program Files (x86)\Origin Games\Anthem\AnthemTrial.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{37F41C83-978B-4123-8B59-0EE3B4866FD7}] => (Allow) C:\Program Files (x86)\Origin Games\Anthem\Anthem.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{77A0FFB3-B9F0-4E44-9627-29CD03A8725E}] => (Allow) C:\Program Files (x86)\Origin Games\Anthem\Anthem.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7DB450BA-AF75-4CAB-81D4-AAD625DA4595}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
==================== Restore Points =========================
21-02-2019 14:43:04 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
23-02-2019 15:23:20 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/26/2019 11:28:49 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:28:16 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:17:16 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:17:16 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:15:59 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:00:20 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/25/2019 07:07:46 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/25/2019 02:12:57 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
System errors:
=============
Error: (02/26/2019 11:06:51 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/26/2019 11:00:27 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/25/2019 09:10:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TETKG5G)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.
Error: (02/25/2019 09:10:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TETKG5G)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.
Error: (02/25/2019 09:10:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TETKG5G)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.
Error: (02/25/2019 09:02:24 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/25/2019 07:50:18 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/25/2019 07:07:28 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Windows Defender:
===================================
Date: 2019-02-14 11:57:23.667
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {91735363-AB2C-4C1E-BC4D-8FD9C8F351ED}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-01-03 18:36:17.013
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {53966ADA-9471-417F-9CFF-2D931A53EFA6}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-01-03 16:38:13.669
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {A7AD4171-03B0-4FCB-9669-448D798E8EA6}
Scan Type: Antimalware
Scan Parameters: Quick Scan
CodeIntegrity:
===================================
Date: 2019-02-25 11:54:19.519
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Opera\58.0.3135.68\opera.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
Processor: AMD Ryzen 5 2600 Six-Core Processor
Percentage of memory in use: 49%
Total physical RAM: 8143.29 MB
Available physical RAM: 4094.5 MB
Total Virtual: 17871.29 MB
Available Virtual: 10176.04 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.91 GB) (Free:751.06 GB) NTFS
\\?\Volume{a941d7dc-fd95-48f2-9ac3-113f200cbd9c}\ (Obnovenie) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{da93c9ba-3a2d-4984-9caf-7ca6eb2af10d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivka
Dobry den.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
► Vyšla moja nová kniha BOTNETY! 
Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Preventivka
# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-02-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-26-2019
# Duration: 00:00:03
# OS: Windows 10 Pro
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1249 octets] - [26/02/2019 13:21:10]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-02-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-26-2019
# Duration: 00:00:03
# OS: Windows 10 Pro
# Cleaned: 0
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1249 octets] - [26/02/2019 13:21:10]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Re: Preventivka
Do poznamkoveho bloku skopirujte obsah dole:Kód: Vybrat vše
C:\Users\Martin\AppData\Local\Temp\cpuz140
S3 cpuz140; C:\Users\Martin\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [43840 2019-02-25] (CPUID -> CPUID) <==== ATTENTION
2019-02-13 12:40 - 2019-01-08 04:06 - 000000072 _____ C:\Windows\system32\edgehtmlpluginpolicy.binSpustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Preventivka
Fix result of Farbar Recovery Scan Tool (x64) Version: 25.02.2019 01
Ran by Martin (26-02-2019 19:31:43) Run:1
Running from C:\Users\Martin\Desktop\ff
Loaded Profiles: Martin & (Available Profiles: Martin & 8IKEHd8Tqd & jUpy26V5TxgBjSlKMd)
Boot Mode: Normal
==============================================
fixlist content:
*****************
C:\Users\Martin\AppData\Local\Temp\cpuz140
S3 cpuz140; C:\Users\Martin\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [43840 2019-02-25] (CPUID -> CPUID) <==== ATTENTION
2019-02-13 12:40 - 2019-01-08 04:06 - 000000072 _____ C:\Windows\system32\edgehtmlpluginpolicy.bin
*****************
C:\Users\Martin\AppData\Local\Temp\cpuz140 => moved successfully
HKLM\System\CurrentControlSet\Services\cpuz140 => removed successfully
cpuz140 => service removed successfully
C:\Windows\system32\edgehtmlpluginpolicy.bin => moved successfully
==== End of Fixlog 19:31:43 ====
PC sa ale nerestartoval
Ran by Martin (26-02-2019 19:31:43) Run:1
Running from C:\Users\Martin\Desktop\ff
Loaded Profiles: Martin & (Available Profiles: Martin & 8IKEHd8Tqd & jUpy26V5TxgBjSlKMd)
Boot Mode: Normal
==============================================
fixlist content:
*****************
C:\Users\Martin\AppData\Local\Temp\cpuz140
S3 cpuz140; C:\Users\Martin\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [43840 2019-02-25] (CPUID -> CPUID) <==== ATTENTION
2019-02-13 12:40 - 2019-01-08 04:06 - 000000072 _____ C:\Windows\system32\edgehtmlpluginpolicy.bin
*****************
C:\Users\Martin\AppData\Local\Temp\cpuz140 => moved successfully
HKLM\System\CurrentControlSet\Services\cpuz140 => removed successfully
cpuz140 => service removed successfully
C:\Windows\system32\edgehtmlpluginpolicy.bin => moved successfully
==== End of Fixlog 19:31:43 ====
PC sa ale nerestartoval
Re: Preventivka
log vypada dobre. odmazalo. logy su inak ciste.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Preventivka
Dakujem takze vsetko v poriadko ? Netreba uz nic ? 
Re: Preventivka
doinstalujte neake AV brzpecnostne riesenie inak je to ok
inak je to ok► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Přispějete na provoz fóra?