Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Preventívna kontrola PC

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 198
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Preventívna kontrola PC

#1 Příspěvek od Sudoku33 »

Zdravím! Je to už nejaký piatok čo som neurobil veľké čistenie PC. Tak by som poprosil jednu preventívku či sa tam nenachádza nejaký šmejd. Ďakujem :idea:
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)
Nahoru
Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 198
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: Preventívna kontrola PC

#2 Příspěvek od Sudoku33 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-08-2019
Ran by user (administrator) on USER-PC (Gigabyte Technology Co., Ltd. GA-880GA-UD3H) (30-08-2019 14:12:50)
Running from C:\Users\user\Downloads
Loaded Profiles: user (Available Profiles: user)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Elaborate Bytes AG -> Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avp.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avpui.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe
(Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksdeui.exe
(Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\WargamingErrorMonitor.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\Run: [Steam] => D:\Steam\steam.exe [3210528 2019-08-22] (Valve -> Valve Corporation)
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22588760 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\Run: [Discord] => C:\Users\user\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\Run: [Flock] => C:\Users\user\AppData\Local\Flock\Flock.exe [71106336 2019-06-28] (Flock Services Inc -> Riva FZC)
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2565496 2019-08-29] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\MountPoints2: {2950278b-bcf2-11e9-8155-1c6f65486b6d} - G:\Install.exe
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\MountPoints2: {49cb576d-a4b7-11e9-9a95-1c6f65486b6d} - G:\Setup.exe
GroupPolicy: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1D863B2D-E650-489B-829B-AC9417CE6CD5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16571320 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {5D1DC3E7-02D5-4BBE-BBB0-D161AA4FE327} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
Task: {5E6EB270-B779-4AB8-A97B-C1DAAD0CBAF4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{1657BF37-021F-4DAF-8A14-926A3FA80ACD}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{BB7A4CAF-96CD-412C-AAF8-7FC923ACF392}: [NameServer] 8.8.8.8,8.8.4.4

Internet Explorer:
==================
BHO: Kaspersky Protection -> {EC1E29BB-F56A-45D8-B023-D3EF710FA0E0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\IEExt\ie_plugin.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
BHO-x32: Kaspersky Protection -> {EC1E29BB-F56A-45D8-B023-D3EF710FA0E0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\IEExt\ie_plugin.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection Toolbar - {C500C267-63BF-451F-8797-4D720C9A2ED9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\IEExt\ie_plugin.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {C500C267-63BF-451F-8797-4D720C9A2ED9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\IEExt\ie_plugin.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-3429433729-2979033606-3696126374-1000 -> Kaspersky Protection Toolbar - {C500C267-63BF-451F-8797-4D720C9A2ED9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\IEExt\ie_plugin.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)

FireFox:
========
FF DefaultProfile: 8pe8y3kk.default
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\8pe8y3kk.default [2019-06-04]
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\kbc5ilpw.default-release [2019-08-30]
FF Extension: (Enhancer for YouTube™) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\kbc5ilpw.default-release\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2019-08-30]
FF Extension: (uBlock Origin) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\kbc5ilpw.default-release\Extensions\uBlock0@raymondhill.net.xpi [2019-07-26]
FF Extension: (Worldwide Radio) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\kbc5ilpw.default-release\Extensions\worldwide@radio.xpi [2019-07-15]
FF Extension: (Matte Black (Red)) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\kbc5ilpw.default-release\Extensions\{a7589411-c5f6-41cf-8bdc-f66527d9d930}.xpi [2019-08-05]
FF HKLM\...\Firefox\Extensions: [light_plugin_F88CEF8523DE460F9FA1D6E48BF8D340@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\FFExt\light_plugin_firefox\addon.xpi [2019-06-05]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F88CEF8523DE460F9FA1D6E48BF8D340@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-06-05] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-06-05] <==== ATTENTION

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd
CHR HKLM-x32\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avp.exe [619640 2018-02-28] (Kaspersky Lab -> AO Kaspersky Lab)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [398792 2019-02-28] (Canon Inc. -> )
S3 klvssbridge64_19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\vssbridge64.exe [414352 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE3.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [617016 2018-02-28] (Kaspersky Lab -> AO Kaspersky Lab)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2019-06-04] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [243400 2018-01-27] (Kaspersky Lab -> AO Kaspersky Lab)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [528576 2018-02-20] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [72016 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [122488 2019-08-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [86656 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [217216 2019-08-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [1093240 2019-08-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1123456 2019-08-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\Windows\System32\DRIVERS\klim6.sys [56144 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [56656 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [57464 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [49280 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [48080 2018-02-12] (AnchorFree Inc -> The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [81632 2017-11-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [177280 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [201552 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R3 RTL8167; C:\Windows\System32\DRIVERS\Rt64win7.sys [187392 2009-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Corporation )

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-30 14:12 - 2019-08-30 14:13 - 000012482 _____ C:\Users\user\Downloads\FRST.txt
2019-08-25 12:25 - 2019-08-25 12:36 - 000000000 ____D C:\Users\user\Downloads\linux
2019-08-25 09:31 - 2019-08-25 09:31 - 000000731 _____ C:\Users\user\Desktop\World of Tanks EU.lnk
2019-08-25 09:29 - 2019-08-25 11:27 - 000000000 ____D C:\Users\user\AppData\Roaming\Wargaming.net
2019-08-25 09:29 - 2019-08-25 09:31 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2019-08-25 09:29 - 2019-08-25 09:29 - 000000000 ____D C:\ProgramData\Wargaming.net
2019-08-25 09:28 - 2019-08-25 09:28 - 006341720 _____ (Wargaming.net (c) 2009-2018 ) C:\Users\user\Downloads\world_of_tanks_install_eu.exe
2019-08-23 19:34 - 2019-08-23 19:34 - 004286448 _____ (The GnuPG Project) C:\Users\user\Downloads\gnupg-w32-2.2.17_20190709.exe
2019-08-23 19:34 - 2019-08-23 19:34 - 000000000 ____D C:\Program Files (x86)\gnupg
2019-08-23 19:12 - 2019-08-23 19:12 - 000127640 _____ C:\Users\user\Desktop\fiesta.xps
2019-08-23 19:12 - 2019-08-23 19:12 - 000000000 ____D C:\Users\user\AppData\LocalLow\Temp
2019-08-22 16:17 - 2019-08-30 14:12 - 000000000 ____D C:\Users\user\Downloads\FRST-OlderVersion
2019-08-22 16:17 - 2019-08-22 16:17 - 000000000 ____D C:\FRST
2019-08-22 15:19 - 2019-08-22 15:19 - 000001812 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Uninstall.lnk
2019-08-22 15:19 - 2019-08-22 15:19 - 000000573 _____ C:\Users\Public\Desktop\MM Save Editor.lnk
2019-08-22 15:19 - 2019-08-22 15:19 - 000000000 ____D C:\Users\user\AppData\Local\MMSaveEditor
2019-08-22 15:19 - 2019-08-22 15:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorsport Manager Save Game Editor
2019-08-22 15:17 - 2019-08-22 15:17 - 006963367 _____ C:\Users\user\Downloads\installer.zip
2019-08-20 19:29 - 2019-08-30 13:45 - 000000000 ____D C:\Users\user\AppData\Roaming\Flock
2019-08-20 19:29 - 2019-08-20 19:29 - 000002078 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flock.lnk
2019-08-20 19:29 - 2019-08-20 19:29 - 000000000 ____D C:\Users\user\AppData\Local\Flock
2019-08-17 20:02 - 2019-08-25 12:38 - 000000000 ____D C:\Users\user\AppData\Roaming\gnupg
2019-08-17 10:57 - 2019-08-29 19:48 - 000000000 ____D C:\Users\user\AppData\Roaming\TS3Client
2019-08-17 10:57 - 2019-08-17 10:57 - 000000000 ____D C:\Users\user\AppData\Local\TeamSpeak 3
2019-08-17 10:56 - 2019-08-17 10:56 - 000000933 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2019-08-17 10:56 - 2019-08-17 10:56 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2019-08-17 09:55 - 2019-08-17 19:33 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-08-17 08:43 - 2019-08-21 10:36 - 000000000 ____D C:\Users\user\Downloads\rufus_files
2019-08-17 08:42 - 2019-08-25 12:56 - 000000290 __RSH C:\ProgramData\ntuser.pol
2019-08-17 08:32 - 2019-08-17 08:32 - 001136184 _____ (Akeo Consulting) C:\Users\user\Downloads\rufus-3.6.exe
2019-08-14 16:54 - 2019-08-06 00:58 - 000397432 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-08-14 16:54 - 2019-08-05 23:55 - 000348800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-08-14 16:54 - 2019-08-04 05:37 - 025754624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-08-14 16:54 - 2019-08-04 04:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-08-14 16:54 - 2019-08-04 04:16 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-08-14 16:54 - 2019-08-04 04:04 - 002909184 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-08-14 16:54 - 2019-08-04 04:03 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-08-14 16:54 - 2019-08-04 04:02 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-08-14 16:54 - 2019-08-04 04:02 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-08-14 16:54 - 2019-08-04 04:02 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-08-14 16:54 - 2019-08-04 04:01 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-08-14 16:54 - 2019-08-04 03:55 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-08-14 16:54 - 2019-08-04 03:54 - 005775872 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-08-14 16:54 - 2019-08-04 03:54 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-08-14 16:54 - 2019-08-04 03:52 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-08-14 16:54 - 2019-08-04 03:51 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-08-14 16:54 - 2019-08-04 03:51 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-08-14 16:54 - 2019-08-04 03:51 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-08-14 16:54 - 2019-08-04 03:50 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-08-14 16:54 - 2019-08-04 03:43 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-08-14 16:54 - 2019-08-04 03:40 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-08-14 16:54 - 2019-08-04 03:34 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-08-14 16:54 - 2019-08-04 03:33 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-08-14 16:54 - 2019-08-04 03:33 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-08-14 16:54 - 2019-08-04 03:30 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-08-14 16:54 - 2019-08-04 03:29 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-08-14 16:54 - 2019-08-04 03:27 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-08-14 16:54 - 2019-08-04 03:25 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-08-14 16:54 - 2019-08-04 03:21 - 020291584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-08-14 16:54 - 2019-08-04 03:16 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-08-14 16:54 - 2019-08-04 03:15 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-08-14 16:54 - 2019-08-04 03:14 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-08-14 16:54 - 2019-08-04 03:14 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-08-14 16:54 - 2019-08-04 03:12 - 002132480 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-08-14 16:54 - 2019-08-04 03:12 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-08-14 16:54 - 2019-08-04 03:11 - 015390720 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-08-14 16:54 - 2019-08-04 03:04 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-08-14 16:54 - 2019-08-04 03:03 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-08-14 16:54 - 2019-08-04 03:03 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-08-14 16:54 - 2019-08-04 03:03 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-08-14 16:54 - 2019-08-04 03:02 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-08-14 16:54 - 2019-08-04 03:01 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-08-14 16:54 - 2019-08-04 03:00 - 002301952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-08-14 16:54 - 2019-08-04 02:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-08-14 16:54 - 2019-08-04 02:57 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-08-14 16:54 - 2019-08-04 02:55 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-08-14 16:54 - 2019-08-04 02:54 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-08-14 16:54 - 2019-08-04 02:54 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-08-14 16:54 - 2019-08-04 02:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-08-14 16:54 - 2019-08-04 02:50 - 001566208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-08-14 16:54 - 2019-08-04 02:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-08-14 16:54 - 2019-08-04 02:41 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-08-14 16:54 - 2019-08-04 02:41 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-08-14 16:54 - 2019-08-04 02:40 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-08-14 16:54 - 2019-08-04 02:40 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-08-14 16:54 - 2019-08-04 02:38 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-08-14 16:54 - 2019-08-04 02:37 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-08-14 16:54 - 2019-08-04 02:36 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-08-14 16:54 - 2019-08-04 02:35 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-08-14 16:54 - 2019-08-04 02:32 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-08-14 16:54 - 2019-08-04 02:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-08-14 16:54 - 2019-08-04 02:28 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-08-14 16:54 - 2019-08-04 02:28 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-08-14 16:54 - 2019-08-04 02:27 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-08-14 16:54 - 2019-08-04 02:23 - 013791744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-08-14 16:54 - 2019-08-04 02:09 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-08-14 16:54 - 2019-08-04 02:06 - 001331200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-08-14 16:54 - 2019-08-04 02:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-08-14 16:54 - 2019-07-30 04:25 - 000627424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-08-14 16:54 - 2019-07-30 04:23 - 005552568 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-08-14 16:54 - 2019-07-30 04:23 - 000710072 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-08-14 16:54 - 2019-07-30 04:23 - 000264120 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-08-14 16:54 - 2019-07-30 04:23 - 000155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-08-14 16:54 - 2019-07-30 04:23 - 000097208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-08-14 16:54 - 2019-07-30 04:22 - 001671000 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000517632 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 004058848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-08-14 16:54 - 2019-07-30 04:19 - 003965664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-08-14 16:54 - 2019-07-30 04:19 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:17 - 001319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 03:54 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2019-08-14 16:54 - 2019-07-30 03:53 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-08-14 16:54 - 2019-07-30 03:52 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-08-14 16:54 - 2019-07-30 03:51 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-08-14 16:54 - 2019-07-30 03:51 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-08-14 16:54 - 2019-07-30 03:51 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-08-14 16:54 - 2019-07-30 03:51 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-08-14 16:54 - 2019-07-30 03:48 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-08-14 16:54 - 2019-07-30 03:48 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-08-14 16:54 - 2019-07-30 03:48 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-08-14 16:54 - 2019-07-30 03:48 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-08-14 16:54 - 2019-07-30 03:48 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-08-14 16:54 - 2019-07-30 03:48 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-08-14 16:54 - 2019-07-30 03:47 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-08-14 16:54 - 2019-07-30 03:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-08-14 16:54 - 2019-07-30 03:47 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 03:47 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 03:47 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 03:47 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 03:44 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-08-14 16:54 - 2019-07-30 03:44 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-08-14 16:54 - 2019-07-30 03:44 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-08-14 16:54 - 2019-07-30 03:44 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-08-14 16:54 - 2019-07-30 03:44 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-08-14 16:54 - 2019-07-30 03:44 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-08-14 16:54 - 2019-07-30 03:43 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-08-14 16:54 - 2019-07-30 03:43 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-08-14 16:54 - 2019-07-30 03:43 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-08-14 16:54 - 2019-07-30 03:43 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-08-14 16:54 - 2019-07-30 03:43 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-08-14 16:54 - 2019-07-30 03:43 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-08-14 16:54 - 2019-07-30 03:43 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-08-14 16:54 - 2019-07-24 02:37 - 003187712 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-08-14 16:54 - 2019-07-19 05:30 - 003231744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-08-14 16:54 - 2019-07-13 10:37 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-08-14 16:54 - 2019-07-13 10:36 - 000289720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-08-14 16:54 - 2019-07-13 10:35 - 001894840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-08-14 16:54 - 2019-07-13 10:35 - 000385464 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-08-14 16:54 - 2019-07-13 10:35 - 000378808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2019-08-14 16:54 - 2019-07-13 10:34 - 001391616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000335360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2PGraph.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000180736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ssdpapi.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2019-08-14 16:54 - 2019-07-13 10:33 - 000256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2019-08-14 16:54 - 2019-07-13 10:33 - 000194560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2019-08-14 16:54 - 2019-07-13 10:33 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-08-14 16:54 - 2019-07-13 10:33 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2019-08-14 16:54 - 2019-07-13 10:33 - 000043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2019-08-14 16:54 - 2019-07-13 10:33 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 002009600 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 001077760 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000264704 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000193024 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\Groupinghc.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\ssdpapi.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000318976 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcmonitor.dll
2019-08-14 16:54 - 2019-07-13 10:22 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-08-14 16:54 - 2019-07-13 10:22 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-08-14 16:54 - 2019-07-13 10:22 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-08-14 16:54 - 2019-07-13 10:15 - 006135808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-08-14 16:54 - 2019-07-13 10:13 - 000011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcmonitor.dll
2019-08-14 16:54 - 2019-07-13 10:07 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-08-14 16:54 - 2019-07-11 02:05 - 007082496 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-08-14 16:54 - 2019-07-04 03:56 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-08-14 16:54 - 2019-07-04 03:14 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-08-13 16:47 - 2019-08-13 17:10 - 000000000 ____D C:\Users\user\Documents\Assetto Corsa
2019-08-13 12:16 - 2019-08-13 12:16 - 000000202 _____ C:\Users\user\Desktop\Assetto Corsa.url
2019-08-13 08:00 - 2019-08-13 08:00 - 000000776 _____ C:\Users\user\Desktop\Motorsport Manager - Endurance Series.lnk
2019-08-13 08:00 - 2019-08-13 08:00 - 000000000 ____D C:\Users\user\Documents\SkidRow
2019-08-12 20:07 - 2019-08-12 20:07 - 000000000 ____D C:\Users\user\AppData\LocalLow\Playsport Games
2019-08-12 19:45 - 2019-08-12 19:45 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2019-08-12 19:15 - 2019-08-12 19:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2019-08-12 19:15 - 2019-08-12 19:15 - 000000000 ____D C:\Program Files (x86)\Elaborate Bytes
2019-08-12 13:43 - 2019-08-12 13:43 - 000000000 ____D C:\Users\user\AppData\Local\UnrealEngine
2019-08-12 13:43 - 2019-08-12 13:43 - 000000000 ____D C:\Users\user\AppData\Local\motogp19
2019-08-12 13:43 - 2019-08-12 13:43 - 000000000 ____D C:\Users\user\ansel
2019-08-12 13:43 - 2019-08-12 13:43 - 000000000 ____D C:\Users\Public\Documents\Steam
2019-08-12 13:41 - 2019-08-17 10:57 - 000000000 ____D C:\ProgramData\Package Cache
2019-08-12 13:40 - 2019-08-12 13:40 - 000000000 ____D C:\Windows\SysWOW64\directx
2019-08-03 23:00 - 2019-08-30 14:12 - 001613824 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2019-08-01 16:27 - 2019-08-01 16:27 - 001465527 _____ C:\Users\user\Downloads\zmluva.pdf
2019-07-31 15:38 - 2019-08-24 10:59 - 000007609 _____ C:\Users\user\AppData\Local\Resmon.ResmonCfg

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-30 14:12 - 2019-06-04 12:15 - 000000000 ____D C:\Users\user\AppData\LocalLow\Mozilla
2019-08-30 14:11 - 2019-06-05 16:04 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2019-08-30 14:11 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2019-08-30 13:56 - 2009-07-14 06:45 - 000028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-08-30 13:56 - 2009-07-14 06:45 - 000028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-08-30 13:46 - 2009-07-14 07:13 - 000781790 _____ C:\Windows\system32\PerfStringBackup.INI
2019-08-30 13:45 - 2019-07-13 20:37 - 000000000 ____D C:\Users\user\AppData\Roaming\Discord
2019-08-30 13:41 - 2019-06-04 12:37 - 000000000 ____D C:\ProgramData\NVIDIA
2019-08-30 13:41 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-08-30 12:10 - 2019-06-05 17:28 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-08-23 17:16 - 2019-06-06 16:02 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-08-23 17:11 - 2009-07-14 07:32 - 000000000 ____D C:\Windows\system32\FxsTmp
2019-08-22 15:18 - 2019-06-06 15:47 - 000000000 ____D C:\Users\user\AppData\Roaming\vlc
2019-08-21 15:41 - 2019-06-04 13:16 - 000765312 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2019-08-20 19:24 - 2009-07-14 07:08 - 000032562 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-08-17 19:33 - 2019-06-04 12:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-08-17 08:42 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2019-08-17 08:42 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2019-08-15 18:19 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2019-08-15 16:10 - 2009-07-14 06:45 - 000267368 _____ C:\Windows\system32\FNTCACHE.DAT
2019-08-15 16:09 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-08-14 23:03 - 2019-06-04 12:24 - 000000000 ____D C:\Windows\system32\MRT
2019-08-14 23:01 - 2019-06-04 12:24 - 134272480 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-08-07 18:58 - 2019-06-05 16:04 - 001123456 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2019-08-07 18:58 - 2019-06-05 16:04 - 000217216 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2019-08-07 18:58 - 2019-02-15 13:22 - 000122488 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klbackupflt.sys
2019-08-07 18:57 - 2019-06-05 16:04 - 000151768 _____ (AO Kaspersky Lab) C:\Windows\system32\klhkum.dll
2019-08-07 18:57 - 2019-02-15 13:22 - 001093240 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2019-08-04 18:47 - 2019-07-08 23:36 - 000000000 ____D C:\Users\user\AppData\Local\Game Dev Tycoon - Steam

==================== Files in the root of some directories ================

2019-06-07 19:03 - 2019-06-07 19:03 - 000002844 _____ () C:\Users\user\AppData\Local\recently-used.xbel
2019-07-31 15:38 - 2019-08-24 10:59 - 000007609 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-08-22 16:48
==================== End of FRST.txt ============================
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)
Nahoru
Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 198
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: Preventívna kontrola PC

#3 Příspěvek od Sudoku33 »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-08-2019
Ran by user (30-08-2019 14:14:27)
Running from C:\Users\user\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2019-06-04 07:52:45)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3429433729-2979033606-3696126374-500 - Administrator - Disabled)
Guest (S-1-5-21-3429433729-2979033606-3696126374-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3429433729-2979033606-3696126374-1003 - Limited - Enabled)
user (S-1-5-21-3429433729-2979033606-3696126374-1000 - Administrator - Enabled) => C:\Users\user

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Free (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Free (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.0.2 - Canon Inc.)
Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.00 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.57 - Piriform)
Discord (HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\Discord) (Version: 0.0.305 - Discord Inc.)
Flock (only current user) (HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\459c1ad8-698b-5cfb-9482-6624a34c58bb) (Version: 2.2.274 - Riva FZC)
GIMP 2.10.10 (HKLM\...\GIMP-2_is1) (Version: 2.10.10 - The GIMP Team)
GNU Privacy Guard (HKLM-x32\...\GnuPG) (Version: 2.2.17 - The GnuPG Project)
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Kaspersky Free (HKLM-x32\...\{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab) Hidden
Kaspersky Free (HKLM-x32\...\InstallWIX_{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{F10AA188-7166-430E-8810-FEAB2AD73DE3}) (Version: 19.0.0.1088 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{F10AA188-7166-430E-8810-FEAB2AD73DE3}) (Version: 19.0.0.1088 - Kaspersky Lab)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Motorsport Manager - Endurance Series (HKLM\...\SKIDROW - Motorsport Manager - Endurance Series) (Version: - SKIDROW)
Motorsport Manager Save Game Editor (HKLM-x32\...\{B3C48982-9099-4A29-A90C-E2888BFFDC5E}) (Version: 1.4.6536.39633 - RWSoftware)
Mozilla Firefox 68.0.2 (x64 sk) (HKLM\...\Mozilla Firefox 68.0.2 (x64 sk)) (Version: 68.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.8.0 - Mozilla)
Mozilla Thunderbird 60.8.0 (x86 sk) (HKLM-x32\...\Mozilla Thunderbird 60.8.0 (x86 sk)) (Version: 60.8.0 - Mozilla)
NVIDIA Grafický ovládač 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 430.86 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Ovládací panel NVIDIA 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 430.86 - NVIDIA Corporation) Hidden
Registrácia používateľa produktu Canon MG3600 series (HKLM-x32\...\Registrácia používateľa produktu Canon MG3600 series) (Version: - ‭Canon Inc.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.3.0 - TeamSpeak Systems GmbH)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Wargaming.net Game Center (HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\Wargaming.net Game Center) (Version: 19.5.0.6415 - Wargaming.net)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers4: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============

2019-06-16 12:05 - 2019-06-16 12:05 - 001654784 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80U.DLL

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\user\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{8A43BA9B-C67F-4DE8-8E7E-BD19D4506887}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{260414C4-21C3-43D8-9DC0-971920E939AD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{027BE12C-D6E4-4327-B797-EA75FEDDB8E1}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{1755ABFE-846A-4FC7-8397-2B779C3A9A50}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{1F6AEFD4-8EA4-4141-BBE6-7AD1A477F8F1}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{D46A7B15-2755-4CD9-AE2D-0E188A01C091}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{1C12C441-EE49-4D61-834C-C82208FE1018}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{14628A30-1EDB-4D38-BA8B-BA7810A4436F}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{5CD7174C-515E-4CB4-A2A3-07886CC4A9A3}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{3C784F7C-9AA1-47BC-A37C-48C25A11FE60}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{4719BF3A-F680-48B6-A284-24AD80B9F66B}] => (Allow) D:\Steam\steamapps\common\Game Dev Tycoon\nw.exe (Greenheart Games Pty. Ltd. -> )
FirewallRules: [{3EAD7C8F-08CB-4AFE-AEE0-CFD400EC90A8}] => (Allow) D:\Steam\steamapps\common\Game Dev Tycoon\nw.exe (Greenheart Games Pty. Ltd. -> )
FirewallRules: [TCP Query User{7B9BC834-55DB-40FA-AE9E-B5DEA19FE201}D:\games\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\games\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{351F251C-A0C2-4ED7-BDD9-DCA7A349A2EF}D:\games\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\games\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{1F3849AA-9202-4DC2-AEEC-547A49B60791}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{089A02D2-9D52-4C09-8520-EA898BE81062}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{1D5E63DB-645D-46F6-B3DB-4FCBAE37C2B8}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{255BCFD9-D697-4271-8E3C-039159C5034C}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [TCP Query User{3189C62D-FE20-41A2-A091-3C823DDAED7D}L:\hry\dfbhd.exe] => (Allow) L:\hry\dfbhd.exe No File
FirewallRules: [UDP Query User{DF074627-42B5-4A1E-8D2A-0B6EE566B9A6}L:\hry\dfbhd.exe] => (Allow) L:\hry\dfbhd.exe No File
FirewallRules: [{5AF534CF-9E11-4819-9EFA-B1EF173500B0}] => (Allow) D:\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [{488A460E-1968-45A0-8DAD-B56C11FE1A5D}] => (Allow) D:\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [TCP Query User{182D05B7-8ACF-4430-A17B-64CF7A0A340D}D:\steam\steamapps\common\assettocorsa\acs_x86.exe] => (Allow) D:\steam\steamapps\common\assettocorsa\acs_x86.exe () [File not signed]
FirewallRules: [UDP Query User{B6B44576-D864-45A5-B4CB-BACBBE604E8C}D:\steam\steamapps\common\assettocorsa\acs_x86.exe] => (Allow) D:\steam\steamapps\common\assettocorsa\acs_x86.exe () [File not signed]
FirewallRules: [TCP Query User{D77F9E8C-3049-423A-98E4-53C00BA303BB}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{B1220E1C-9600-4A90-BE6A-037A78F62233}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{88F0384E-A543-47F9-88B0-580D44555109}D:\games\world-of-tanks-eu\worldoftanks.exe] => (Allow) D:\games\world-of-tanks-eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{38E54F8A-1E9F-4541-B2A0-BEE28D6EFB2F}D:\games\world-of-tanks-eu\worldoftanks.exe] => (Allow) D:\games\world-of-tanks-eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)

==================== Restore Points =========================

17-08-2019 10:56:47 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215
17-08-2019 10:57:04 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
18-08-2019 09:18:35 Windows Update
21-08-2019 15:37:13 Windows Update
22-08-2019 15:18:58 Installed Motorsport Manager Save Game Editor
29-08-2019 17:22:41 Windows Update

==================== Faulty Device Manager Devices =============

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Windows Defender:
===================================
Date: 2019-07-31 19:48:42.315
Description:
Windows Defender has encountered an error trying to update the engine.
New Engine Version:1.1.16200.1
Previous Engine Version:1.1.6402.0
Update Source:User
Error Code:0x8050800c
Error description:Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.

Date: 2019-07-31 18:27:35.334
Description:
Windows Defender has encountered an error trying to update the engine.
New Engine Version:1.1.16000.6
Previous Engine Version:1.1.6402.0
Update Source:Signature Update Folder
Error Code:0x8050800c
Error description:Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.

Date: 2019-07-31 18:22:33.623
Description:
Windows Defender has encountered an error trying to update the engine.
New Engine Version:1.1.16000.6
Previous Engine Version:1.1.6402.0
Update Source:Signature Update Folder
Error Code:0x8050800c
Error description:Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.

Date: 2019-07-31 15:43:55.725
Description:
Windows Defender has encountered an error trying to update the engine.
New Engine Version:1.1.16000.6
Previous Engine Version:1.1.6402.0
Update Source:Signature Update Folder
Error Code:0x8050800c
Error description:Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.

Date: 2019-07-31 15:38:53.251
Description:
Windows Defender has encountered an error trying to update the engine.
New Engine Version:1.1.16000.6
Previous Engine Version:1.1.6402.0
Update Source:Signature Update Folder
Error Code:0x8050800c
Error description:Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.

==================== Memory info ===========================

BIOS: Award Software International, Inc. F7 11/24/2010
Motherboard: Gigabyte Technology Co., Ltd. GA-880GA-UD3H
Processor: AMD Phenom(tm) II X4 965 Processor
Percentage of memory in use: 38%
Total physical RAM: 8188.54 MB
Available physical RAM: 5051.25 MB
Total Virtual: 16375.21 MB
Available Virtual: 12517.08 MB

==================== Drives ================================

Drive c: (Win7) (Fixed) (Total:111.69 GB) (Free:59.58 GB) NTFS
Drive d: (Data1) (Fixed) (Total:465.76 GB) (Free:271.78 GB) NTFS
Drive e: (Data2) (Fixed) (Total:465.75 GB) (Free:360.08 GB) NTFS

\\?\Volume{2c263753-869d-11e9-bc43-806e6f6e6963}\ (Vyhradené systémom) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 000280B3)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6C90B5D4)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventívna kontrola PC

#4 Příspěvek od Conder »

Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Nechaj zaskrtnute vsetky nalezy
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 198
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: Preventívna kontrola PC

#5 Příspěvek od Sudoku33 »

páči sa :)


# -------------------------------
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build: 07-23-2019
# Database: 2019-08-27.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-31-2019
# Duration: 00:00:00
# OS: Windows 7 Home Premium
# Cleaned: 0
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1257 octets] - [05/06/2019 17:31:36]
AdwCleaner[S01].txt - [1318 octets] - [05/06/2019 18:41:34]
AdwCleaner[S02].txt - [1379 octets] - [05/06/2019 19:26:03]
AdwCleaner[S03].txt - [1440 octets] - [05/06/2019 20:44:16]
AdwCleaner[S04].txt - [1501 octets] - [06/06/2019 14:27:59]
AdwCleaner[S05].txt - [1562 octets] - [06/06/2019 18:05:29]
AdwCleaner[S06].txt - [1623 octets] - [08/06/2019 11:05:20]
AdwCleaner[S07].txt - [1684 octets] - [22/06/2019 18:09:45]
AdwCleaner[S08].txt - [1745 octets] - [01/07/2019 18:54:38]
AdwCleaner[S09].txt - [1806 octets] - [13/07/2019 23:23:36]
AdwCleaner[S10].txt - [1867 octets] - [29/07/2019 14:31:03]
AdwCleaner[S11].txt - [2004 octets] - [29/07/2019 14:31:16]
AdwCleaner[S12].txt - [2065 octets] - [01/08/2019 16:28:09]
AdwCleaner[S13].txt - [2126 octets] - [03/08/2019 23:06:21]
AdwCleaner[S14].txt - [2187 octets] - [30/08/2019 14:22:51]
AdwCleaner[S15].txt - [2248 octets] - [31/08/2019 21:04:20]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C15].txt ##########
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventívna kontrola PC

#6 Příspěvek od Conder »

:arrow: Poprosim o obidva logy z FRST (FRST.txt a Addition.txt) podla tohto navodu: https://forum.viry.cz/viewtopic.php?f=13&t=154679
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 198
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: Preventívna kontrola PC

#7 Příspěvek od Sudoku33 »

Doteraz mi to nerobilo, len keď teraz som zapol FRST, aktualizoval sa, tak mi kaspersky vyhodil trojana.
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventívna kontrola PC

#8 Příspěvek od Conder »

Vyzera to na falosnu detekciu poslednej verzie FRST - https://www.virustotal.com/gui/file/b01 ... /detection

Skus ho pridat do vynimiek.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 198
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: Preventívna kontrola PC

#9 Příspěvek od Sudoku33 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 31-08-2019
Ran by user (administrator) on USER-PC (Gigabyte Technology Co., Ltd. GA-880GA-UD3H) (01-09-2019 17:14:07)
Running from C:\Users\user\Downloads
Loaded Profiles: user (Available Profiles: user)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG -> Elaborate Bytes AG)
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\Run: [Steam] => D:\Steam\steam.exe [3210528 2019-08-22] (Valve -> Valve Corporation)
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22588760 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\Run: [Flock] => C:\Users\user\AppData\Local\Flock\Flock.exe [71106336 2019-06-28] (Flock Services Inc -> Riva FZC)
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2565496 2019-08-29] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\MountPoints2: {2950278b-bcf2-11e9-8155-1c6f65486b6d} - G:\Install.exe
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\MountPoints2: {49cb576d-a4b7-11e9-9a95-1c6f65486b6d} - G:\Setup.exe
GroupPolicy: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1B2E4FA9-FB11-44C4-8246-2A80536CA088} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1D863B2D-E650-489B-829B-AC9417CE6CD5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16571320 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {24459257-51C0-4F22-BD14-A223F29969DF} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2D2517C7-87EF-4823-9D98-31F83092FFF7} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4D103DD1-2EC9-47EC-B40A-A03F3CD37FD4} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4F31944E-36DB-4B13-B7BF-996A8F713206} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [654136 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5D1DC3E7-02D5-4BBE-BBB0-D161AA4FE327} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [791232 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
Task: {5E6EB270-B779-4AB8-A97B-C1DAAD0CBAF4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A69361C9-4FA3-4585-997E-92F4B83FF923} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302384 2019-08-14] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CD248A1B-727C-4380-BE1B-DA5F19EFD6F3} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D1CEE3AA-015F-4964-A762-89B85FE8F984} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F9EC5148-DAA0-483B-9BC2-0358D4CE0E62} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913904 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FB6EA2DE-DE12-4CCD-ABA3-BC18D09444ED} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1133552 2019-08-13] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{1657BF37-021F-4DAF-8A14-926A3FA80ACD}: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{BB7A4CAF-96CD-412C-AAF8-7FC923ACF392}: [NameServer] 8.8.8.8,8.8.4.4

Internet Explorer:
==================
BHO: Kaspersky Protection -> {EC1E29BB-F56A-45D8-B023-D3EF710FA0E0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\IEExt\ie_plugin.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
BHO-x32: Kaspersky Protection -> {EC1E29BB-F56A-45D8-B023-D3EF710FA0E0} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\IEExt\ie_plugin.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM - Kaspersky Protection Toolbar - {C500C267-63BF-451F-8797-4D720C9A2ED9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\IEExt\ie_plugin.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {C500C267-63BF-451F-8797-4D720C9A2ED9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\IEExt\ie_plugin.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-3429433729-2979033606-3696126374-1000 -> Kaspersky Protection Toolbar - {C500C267-63BF-451F-8797-4D720C9A2ED9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\IEExt\ie_plugin.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)

FireFox:
========
FF DefaultProfile: 8pe8y3kk.default
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\8pe8y3kk.default [2019-06-04]
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\kbc5ilpw.default-release [2019-09-01]
FF Extension: (Enhancer for YouTube™) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\kbc5ilpw.default-release\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2019-08-30]
FF Extension: (uBlock Origin) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\kbc5ilpw.default-release\Extensions\uBlock0@raymondhill.net.xpi [2019-07-26]
FF Extension: (Matte Black (Red)) - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\kbc5ilpw.default-release\Extensions\{a7589411-c5f6-41cf-8bdc-f66527d9d930}.xpi [2019-09-01]
FF HKLM\...\Firefox\Extensions: [light_plugin_F88CEF8523DE460F9FA1D6E48BF8D340@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\FFExt\light_plugin_firefox\addon.xpi [2019-06-05]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F88CEF8523DE460F9FA1D6E48BF8D340@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-06-05] <==== ATTENTION (Points to *.cfg file)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-06-05] <==== ATTENTION

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd
CHR HKLM-x32\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AVP19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avp.exe [619640 2018-02-28] (Kaspersky Lab -> AO Kaspersky Lab)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [398792 2019-02-28] (Canon Inc. -> )
S3 klvssbridge64_19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\vssbridge64.exe [414352 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R2 KSDE3.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [617016 2018-02-28] (Kaspersky Lab -> AO Kaspersky Lab)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [860016 2019-08-05] (NVIDIA Corporation -> NVIDIA Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2019-06-04] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
S2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [243400 2018-01-27] (Kaspersky Lab -> AO Kaspersky Lab)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [528576 2018-02-20] (Kaspersky Lab -> AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [72016 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [122488 2019-08-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [86656 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [217216 2019-08-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [1093240 2019-08-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1123456 2019-08-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klim6; C:\Windows\System32\DRIVERS\klim6.sys [56144 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [56656 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [57464 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [49280 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [48080 2018-02-12] (AnchorFree Inc -> The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [81632 2017-11-07] (Kaspersky Lab -> AO Kaspersky Lab)
R1 klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [177280 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [201552 2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-07-23] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [69840 2019-08-25] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [75600 2019-08-25] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RTL8167; C:\Windows\System32\DRIVERS\Rt64win7.sys [187392 2009-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Corporation )

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-01 17:14 - 2019-09-01 17:14 - 000014051 _____ C:\Users\user\Downloads\FRST.txt
2019-09-01 17:13 - 2019-09-01 17:13 - 001615360 _____ (Farbar) C:\Users\user\Downloads\FRST64.exe
2019-09-01 14:26 - 2019-09-01 14:26 - 000000202 _____ C:\Users\user\Desktop\F1 2018.url
2019-09-01 10:58 - 2019-09-01 11:26 - 000000000 ____D C:\Users\user\AppData\Local\DigitalEntitlements
2019-08-30 21:48 - 2019-08-30 21:48 - 000000000 ____D C:\Users\user\Documents\My Games
2019-08-30 18:54 - 2019-08-30 18:54 - 000000202 _____ C:\Users\user\Desktop\DiRT Rally.url
2019-08-30 17:17 - 2019-08-30 17:17 - 000000000 ____D C:\Users\user\AppData\Local\NVIDIA
2019-08-30 17:16 - 2019-08-30 17:22 - 000000000 ____D C:\Users\user\AppData\Local\NVIDIA Corporation
2019-08-30 17:15 - 2019-08-30 17:19 - 000004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-08-30 17:15 - 2019-08-30 17:19 - 000003940 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-08-30 17:15 - 2019-08-30 17:19 - 000003798 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-08-30 17:15 - 2019-08-30 17:19 - 000003790 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-08-30 17:15 - 2019-08-30 17:19 - 000003704 _____ C:\Windows\System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-08-30 17:15 - 2019-08-30 17:19 - 000003704 _____ C:\Windows\System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-08-30 17:15 - 2019-08-30 17:19 - 000003704 _____ C:\Windows\System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-08-30 17:15 - 2019-08-30 17:19 - 000003704 _____ C:\Windows\System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-08-30 17:15 - 2019-08-30 17:18 - 000003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-08-30 17:15 - 2019-08-30 17:18 - 000003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-08-30 17:15 - 2019-08-30 17:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-08-30 17:15 - 2019-08-25 07:37 - 000001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2019-08-30 17:15 - 2019-08-13 15:58 - 002842480 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2019-08-30 17:15 - 2019-08-13 15:58 - 002206248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2019-08-30 17:15 - 2019-08-13 15:58 - 001321968 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2019-08-30 17:15 - 2019-07-22 20:36 - 000179000 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2019-08-30 17:15 - 2019-07-22 20:36 - 000154424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2019-08-30 17:13 - 2019-08-26 12:12 - 001012432 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2019-08-30 17:13 - 2019-08-26 12:12 - 001012432 _____ C:\Windows\system32\vulkan-1.dll
2019-08-30 17:13 - 2019-08-26 12:12 - 000876240 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2019-08-30 17:13 - 2019-08-26 12:12 - 000876240 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-08-30 17:13 - 2019-08-26 12:12 - 000447368 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-08-30 17:13 - 2019-08-26 12:12 - 000351168 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-08-30 17:13 - 2019-08-26 12:12 - 000301264 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2019-08-30 17:13 - 2019-08-26 12:12 - 000301264 _____ C:\Windows\system32\vulkaninfo.exe
2019-08-30 17:13 - 2019-08-26 12:12 - 000273104 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-08-30 17:13 - 2019-08-26 12:12 - 000273104 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-08-30 17:13 - 2019-08-26 12:11 - 135215496 _____ (NVIDIA Corp.) C:\Windows\system32\nvoptix.dll
2019-08-30 17:13 - 2019-08-26 12:11 - 026854272 _____ (NVIDIA Corporation) C:\Windows\system32\nvrtum64.dll
2019-08-30 17:13 - 2019-08-26 12:11 - 011562192 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2019-08-30 17:13 - 2019-08-26 12:11 - 009936640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2019-08-30 17:13 - 2019-08-26 12:11 - 000424328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 039782792 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 029712832 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl64.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 029171920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 025076424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl32.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 021984512 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2019-08-30 17:13 - 2019-08-26 12:10 - 002050256 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 001549760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 001491336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6443615.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 001477000 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 001247168 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 001140616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 000959880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 000633224 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 000545480 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 000523976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 000473856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 000428288 _____ C:\Windows\system32\nvofapi64.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 000379328 _____ C:\Windows\SysWOW64\nvofapi.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 000190160 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 000171912 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 000167816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2019-08-30 17:13 - 2019-08-26 12:10 - 000149896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2019-08-30 17:13 - 2019-08-26 12:09 - 040441728 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-08-30 17:13 - 2019-08-26 12:09 - 035331008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-08-30 17:13 - 2019-08-26 12:09 - 017294080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-08-30 17:13 - 2019-08-26 12:09 - 014917000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-08-30 17:13 - 2019-08-26 12:09 - 004968840 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-08-30 17:13 - 2019-08-26 12:09 - 004430032 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2019-08-30 17:13 - 2019-08-26 12:09 - 001726856 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6443615.dll
2019-08-30 17:13 - 2019-08-26 12:09 - 000526272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcbl64.dll
2019-08-30 17:13 - 2019-08-26 09:08 - 034107056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2019-08-30 17:13 - 2019-08-26 09:08 - 021840256 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2019-08-30 17:13 - 2019-08-26 09:08 - 004295728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-08-30 17:13 - 2019-08-25 07:37 - 000228792 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2019-08-30 17:13 - 2019-08-25 07:37 - 000075600 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys
2019-08-30 17:13 - 2019-08-25 07:37 - 000069840 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2019-08-30 17:13 - 2019-08-25 07:37 - 000047272 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2019-08-30 17:13 - 2019-08-25 07:37 - 000000671 _____ C:\Windows\SysWOW64\nv-vk32.json
2019-08-30 17:13 - 2019-08-25 07:37 - 000000671 _____ C:\Windows\system32\nv-vk64.json
2019-08-25 09:31 - 2019-08-25 09:31 - 000000731 _____ C:\Users\user\Desktop\World of Tanks EU.lnk
2019-08-25 09:29 - 2019-08-25 11:27 - 000000000 ____D C:\Users\user\AppData\Roaming\Wargaming.net
2019-08-25 09:29 - 2019-08-25 09:31 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wargaming.net
2019-08-25 09:29 - 2019-08-25 09:29 - 000000000 ____D C:\ProgramData\Wargaming.net
2019-08-23 19:12 - 2019-08-23 19:12 - 000127640 _____ C:\Users\user\Desktop\fiesta.xps
2019-08-23 19:12 - 2019-08-23 19:12 - 000000000 ____D C:\Users\user\AppData\LocalLow\Temp
2019-08-22 16:17 - 2019-09-01 17:14 - 000000000 ____D C:\FRST
2019-08-22 15:19 - 2019-08-22 15:19 - 000001812 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Uninstall.lnk
2019-08-22 15:19 - 2019-08-22 15:19 - 000000573 _____ C:\Users\Public\Desktop\MM Save Editor.lnk
2019-08-22 15:19 - 2019-08-22 15:19 - 000000000 ____D C:\Users\user\AppData\Local\MMSaveEditor
2019-08-22 15:19 - 2019-08-22 15:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorsport Manager Save Game Editor
2019-08-22 15:17 - 2019-08-22 15:17 - 006963367 _____ C:\Users\user\Downloads\installer.zip
2019-08-20 19:29 - 2019-09-01 12:31 - 000000000 ____D C:\Users\user\AppData\Roaming\Flock
2019-08-20 19:29 - 2019-08-20 19:29 - 000002078 _____ C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flock.lnk
2019-08-20 19:29 - 2019-08-20 19:29 - 000000000 ____D C:\Users\user\AppData\Local\Flock
2019-08-17 20:02 - 2019-08-25 12:38 - 000000000 ____D C:\Users\user\AppData\Roaming\gnupg
2019-08-17 10:57 - 2019-09-01 11:03 - 000000000 ____D C:\Users\user\AppData\Roaming\TS3Client
2019-08-17 10:57 - 2019-08-17 10:57 - 000000000 ____D C:\Users\user\AppData\Local\TeamSpeak 3
2019-08-17 10:56 - 2019-08-30 16:56 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2019-08-17 10:56 - 2019-08-17 10:56 - 000000933 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2019-08-17 09:55 - 2019-08-17 19:33 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-08-17 08:42 - 2019-08-25 12:56 - 000000290 __RSH C:\ProgramData\ntuser.pol
2019-08-14 16:54 - 2019-08-06 00:58 - 000397432 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-08-14 16:54 - 2019-08-05 23:55 - 000348800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-08-14 16:54 - 2019-08-04 05:37 - 025754624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-08-14 16:54 - 2019-08-04 04:16 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-08-14 16:54 - 2019-08-04 04:16 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-08-14 16:54 - 2019-08-04 04:04 - 002909184 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-08-14 16:54 - 2019-08-04 04:03 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-08-14 16:54 - 2019-08-04 04:02 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-08-14 16:54 - 2019-08-04 04:02 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-08-14 16:54 - 2019-08-04 04:02 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-08-14 16:54 - 2019-08-04 04:01 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-08-14 16:54 - 2019-08-04 03:55 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-08-14 16:54 - 2019-08-04 03:54 - 005775872 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-08-14 16:54 - 2019-08-04 03:54 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-08-14 16:54 - 2019-08-04 03:52 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-08-14 16:54 - 2019-08-04 03:51 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-08-14 16:54 - 2019-08-04 03:51 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-08-14 16:54 - 2019-08-04 03:51 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-08-14 16:54 - 2019-08-04 03:50 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-08-14 16:54 - 2019-08-04 03:43 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-08-14 16:54 - 2019-08-04 03:40 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-08-14 16:54 - 2019-08-04 03:34 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-08-14 16:54 - 2019-08-04 03:33 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-08-14 16:54 - 2019-08-04 03:33 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-08-14 16:54 - 2019-08-04 03:30 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-08-14 16:54 - 2019-08-04 03:29 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-08-14 16:54 - 2019-08-04 03:27 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-08-14 16:54 - 2019-08-04 03:25 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-08-14 16:54 - 2019-08-04 03:21 - 020291584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-08-14 16:54 - 2019-08-04 03:16 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-08-14 16:54 - 2019-08-04 03:15 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-08-14 16:54 - 2019-08-04 03:14 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-08-14 16:54 - 2019-08-04 03:14 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-08-14 16:54 - 2019-08-04 03:12 - 002132480 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-08-14 16:54 - 2019-08-04 03:12 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-08-14 16:54 - 2019-08-04 03:11 - 015390720 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-08-14 16:54 - 2019-08-04 03:04 - 000496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-08-14 16:54 - 2019-08-04 03:03 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-08-14 16:54 - 2019-08-04 03:03 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-08-14 16:54 - 2019-08-04 03:03 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-08-14 16:54 - 2019-08-04 03:02 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-08-14 16:54 - 2019-08-04 03:01 - 004859392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-08-14 16:54 - 2019-08-04 03:00 - 002301952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-08-14 16:54 - 2019-08-04 02:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-08-14 16:54 - 2019-08-04 02:57 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-08-14 16:54 - 2019-08-04 02:55 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-08-14 16:54 - 2019-08-04 02:54 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-08-14 16:54 - 2019-08-04 02:54 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-08-14 16:54 - 2019-08-04 02:53 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-08-14 16:54 - 2019-08-04 02:50 - 001566208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-08-14 16:54 - 2019-08-04 02:45 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-08-14 16:54 - 2019-08-04 02:41 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-08-14 16:54 - 2019-08-04 02:41 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-08-14 16:54 - 2019-08-04 02:40 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-08-14 16:54 - 2019-08-04 02:40 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-08-14 16:54 - 2019-08-04 02:38 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-08-14 16:54 - 2019-08-04 02:37 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-08-14 16:54 - 2019-08-04 02:36 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-08-14 16:54 - 2019-08-04 02:35 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-08-14 16:54 - 2019-08-04 02:32 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-08-14 16:54 - 2019-08-04 02:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-08-14 16:54 - 2019-08-04 02:28 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-08-14 16:54 - 2019-08-04 02:28 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-08-14 16:54 - 2019-08-04 02:27 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-08-14 16:54 - 2019-08-04 02:23 - 013791744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-08-14 16:54 - 2019-08-04 02:09 - 004387840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-08-14 16:54 - 2019-08-04 02:06 - 001331200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-08-14 16:54 - 2019-08-04 02:04 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-08-14 16:54 - 2019-07-30 04:25 - 000627424 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-08-14 16:54 - 2019-07-30 04:23 - 005552568 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-08-14 16:54 - 2019-07-30 04:23 - 000710072 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-08-14 16:54 - 2019-07-30 04:23 - 000264120 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-08-14 16:54 - 2019-07-30 04:23 - 000155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-08-14 16:54 - 2019-07-30 04:23 - 000097208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-08-14 16:54 - 2019-07-30 04:22 - 001671000 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000517632 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-08-14 16:54 - 2019-07-30 04:20 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 004058848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-08-14 16:54 - 2019-07-30 04:19 - 003965664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-08-14 16:54 - 2019-07-30 04:19 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:17 - 001319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000261632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-08-14 16:54 - 2019-07-30 04:16 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 04:15 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 03:54 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2019-08-14 16:54 - 2019-07-30 03:53 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-08-14 16:54 - 2019-07-30 03:52 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-08-14 16:54 - 2019-07-30 03:51 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-08-14 16:54 - 2019-07-30 03:51 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-08-14 16:54 - 2019-07-30 03:51 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-08-14 16:54 - 2019-07-30 03:51 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-08-14 16:54 - 2019-07-30 03:48 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-08-14 16:54 - 2019-07-30 03:48 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-08-14 16:54 - 2019-07-30 03:48 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-08-14 16:54 - 2019-07-30 03:48 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-08-14 16:54 - 2019-07-30 03:48 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-08-14 16:54 - 2019-07-30 03:48 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-08-14 16:54 - 2019-07-30 03:47 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-08-14 16:54 - 2019-07-30 03:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-08-14 16:54 - 2019-07-30 03:47 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 03:47 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 03:47 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 03:47 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-08-14 16:54 - 2019-07-30 03:44 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-08-14 16:54 - 2019-07-30 03:44 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-08-14 16:54 - 2019-07-30 03:44 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-08-14 16:54 - 2019-07-30 03:44 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-08-14 16:54 - 2019-07-30 03:44 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-08-14 16:54 - 2019-07-30 03:44 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-08-14 16:54 - 2019-07-30 03:43 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-08-14 16:54 - 2019-07-30 03:43 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-08-14 16:54 - 2019-07-30 03:43 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-08-14 16:54 - 2019-07-30 03:43 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-08-14 16:54 - 2019-07-30 03:43 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-08-14 16:54 - 2019-07-30 03:43 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-08-14 16:54 - 2019-07-30 03:43 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-08-14 16:54 - 2019-07-24 02:37 - 003187712 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2019-08-14 16:54 - 2019-07-19 05:30 - 003231744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-08-14 16:54 - 2019-07-13 10:37 - 000311008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-08-14 16:54 - 2019-07-13 10:36 - 000289720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-08-14 16:54 - 2019-07-13 10:35 - 001894840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-08-14 16:54 - 2019-07-13 10:35 - 000385464 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-08-14 16:54 - 2019-07-13 10:35 - 000378808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2019-08-14 16:54 - 2019-07-13 10:34 - 001391616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000836608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000335360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2PGraph.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000180736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ssdpapi.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2019-08-14 16:54 - 2019-07-13 10:34 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2019-08-14 16:54 - 2019-07-13 10:33 - 000256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll
2019-08-14 16:54 - 2019-07-13 10:33 - 000194560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2019-08-14 16:54 - 2019-07-13 10:33 - 000071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-08-14 16:54 - 2019-07-13 10:33 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc.dll
2019-08-14 16:54 - 2019-07-13 10:33 - 000043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2019-08-14 16:54 - 2019-07-13 10:33 - 000010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 002009600 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 001077760 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000408576 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000327168 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000264704 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000193024 _____ (Microsoft Corporation) C:\Windows\system32\ssdpsrv.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000101376 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000071680 _____ (Microsoft Corporation) C:\Windows\system32\Groupinghc.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000051200 _____ (Microsoft Corporation) C:\Windows\system32\ssdpapi.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2019-08-14 16:54 - 2019-07-13 10:32 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000318976 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2019-08-14 16:54 - 2019-07-13 10:31 - 000013824 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcmonitor.dll
2019-08-14 16:54 - 2019-07-13 10:22 - 000353280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-08-14 16:54 - 2019-07-13 10:22 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2019-08-14 16:54 - 2019-07-13 10:22 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-08-14 16:54 - 2019-07-13 10:15 - 006135808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2019-08-14 16:54 - 2019-07-13 10:13 - 000011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcmonitor.dll
2019-08-14 16:54 - 2019-07-13 10:07 - 000034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2019-08-14 16:54 - 2019-07-11 02:05 - 007082496 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-08-14 16:54 - 2019-07-04 03:56 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-08-14 16:54 - 2019-07-04 03:14 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-08-13 16:47 - 2019-08-13 17:10 - 000000000 ____D C:\Users\user\Documents\Assetto Corsa
2019-08-13 08:00 - 2019-08-13 08:00 - 000000776 _____ C:\Users\user\Desktop\Motorsport Manager - Endurance Series.lnk
2019-08-13 08:00 - 2019-08-13 08:00 - 000000000 ____D C:\Users\user\Documents\SkidRow
2019-08-12 20:07 - 2019-08-12 20:07 - 000000000 ____D C:\Users\user\AppData\LocalLow\Playsport Games
2019-08-12 19:45 - 2019-08-12 19:45 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2019-08-12 19:15 - 2019-08-12 19:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
2019-08-12 19:15 - 2019-08-12 19:15 - 000000000 ____D C:\Program Files (x86)\Elaborate Bytes
2019-08-12 13:43 - 2019-08-12 13:43 - 000000000 ____D C:\Users\user\AppData\Local\UnrealEngine
2019-08-12 13:43 - 2019-08-12 13:43 - 000000000 ____D C:\Users\user\ansel
2019-08-12 13:43 - 2019-08-12 13:43 - 000000000 ____D C:\Users\Public\Documents\Steam
2019-08-12 13:41 - 2019-08-17 10:57 - 000000000 ____D C:\ProgramData\Package Cache
2019-08-12 13:40 - 2019-08-12 13:40 - 000000000 ____D C:\Windows\SysWOW64\directx

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-09-01 17:14 - 2019-06-04 12:15 - 000000000 ____D C:\Users\user\AppData\LocalLow\Mozilla
2019-09-01 17:13 - 2019-06-05 16:04 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2019-09-01 14:28 - 2019-07-13 20:37 - 000000000 ____D C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2019-09-01 14:28 - 2019-07-13 20:37 - 000000000 ____D C:\Users\user\AppData\Local\Discord
2019-09-01 14:27 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2019-09-01 12:39 - 2009-07-14 06:45 - 000028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-09-01 12:39 - 2009-07-14 06:45 - 000028352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-09-01 12:37 - 2009-07-14 07:13 - 000781790 _____ C:\Windows\system32\PerfStringBackup.INI
2019-09-01 12:33 - 2019-06-04 12:37 - 000000000 ____D C:\ProgramData\NVIDIA
2019-09-01 12:31 - 2019-07-13 20:37 - 000000000 ____D C:\Users\user\AppData\Roaming\Discord
2019-09-01 12:31 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-08-31 14:36 - 2019-06-06 15:47 - 000000000 ____D C:\Users\user\AppData\Roaming\vlc
2019-08-30 21:48 - 2019-06-07 20:54 - 000000000 ____D C:\ProgramData\Codemasters
2019-08-30 18:24 - 2019-07-31 15:38 - 000007609 _____ C:\Users\user\AppData\Local\Resmon.ResmonCfg
2019-08-30 17:21 - 2019-06-04 12:36 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-08-30 17:19 - 2019-06-04 12:37 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-08-30 17:19 - 2019-06-04 12:35 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-08-30 12:10 - 2019-06-05 17:28 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-08-26 12:11 - 2019-06-04 12:37 - 000507592 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2019-08-26 09:08 - 2019-06-04 12:37 - 039531984 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2019-08-26 09:08 - 2019-06-04 12:37 - 018192008 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2019-08-26 09:08 - 2019-06-04 12:37 - 004848536 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-08-25 07:37 - 2019-06-04 12:37 - 001683032 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2019-08-25 07:37 - 2019-06-04 12:37 - 000051568 _____ C:\Windows\system32\nvinfo.pb
2019-08-25 05:58 - 2019-06-04 12:38 - 005469552 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-08-25 05:58 - 2019-06-04 12:38 - 002635248 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-08-25 05:58 - 2019-06-04 12:38 - 001767736 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-08-25 05:58 - 2019-06-04 12:38 - 000654136 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2019-08-25 05:58 - 2019-06-04 12:38 - 000451056 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-08-25 05:58 - 2019-06-04 12:38 - 000125240 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-08-25 05:58 - 2019-06-04 12:38 - 000083440 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2019-08-24 04:36 - 2019-06-04 12:38 - 008691082 _____ C:\Windows\system32\nvcoproc.bin
2019-08-23 17:16 - 2019-06-06 16:02 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-08-23 17:11 - 2009-07-14 07:32 - 000000000 ____D C:\Windows\system32\FxsTmp
2019-08-21 15:41 - 2019-06-04 13:16 - 000765312 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2019-08-20 19:24 - 2009-07-14 07:08 - 000032562 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-08-17 19:33 - 2019-06-04 12:15 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-08-17 08:42 - 2009-07-14 05:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2019-08-17 08:42 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2019-08-15 18:19 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2019-08-15 16:10 - 2009-07-14 06:45 - 000267368 _____ C:\Windows\system32\FNTCACHE.DAT
2019-08-15 16:09 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-08-14 23:03 - 2019-06-04 12:24 - 000000000 ____D C:\Windows\system32\MRT
2019-08-14 23:01 - 2019-06-04 12:24 - 134272480 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-08-07 18:58 - 2019-06-05 16:04 - 001123456 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2019-08-07 18:58 - 2019-06-05 16:04 - 000217216 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2019-08-07 18:58 - 2019-02-15 13:22 - 000122488 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klbackupflt.sys
2019-08-07 18:57 - 2019-06-05 16:04 - 000151768 _____ (AO Kaspersky Lab) C:\Windows\system32\klhkum.dll
2019-08-07 18:57 - 2019-02-15 13:22 - 001093240 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2019-08-05 10:59 - 2019-06-04 12:37 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2019-08-04 18:47 - 2019-07-08 23:36 - 000000000 ____D C:\Users\user\AppData\Local\Game Dev Tycoon - Steam

==================== Files in the root of some directories ================

2019-06-07 19:03 - 2019-06-07 19:03 - 000002844 _____ () C:\Users\user\AppData\Local\recently-used.xbel
2019-07-31 15:38 - 2019-08-30 18:24 - 000007609 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-09-01 13:11
==================== End of FRST.txt ============================
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)
Nahoru
Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 198
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: Preventívna kontrola PC

#10 Příspěvek od Sudoku33 »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-08-2019
Ran by user (01-09-2019 17:14:45)
Running from C:\Users\user\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2019-06-04 07:52:45)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3429433729-2979033606-3696126374-500 - Administrator - Disabled)
Guest (S-1-5-21-3429433729-2979033606-3696126374-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3429433729-2979033606-3696126374-1003 - Limited - Enabled)
user (S-1-5-21-3429433729-2979033606-3696126374-1000 - Administrator - Enabled) => C:\Users\user

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Free (Disabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Free (Disabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Aktualizácie NVIDIA 38.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.0.0 - NVIDIA Corporation) Hidden
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.0.2 - Canon Inc.)
Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.00 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.57 - Piriform)
Flock (only current user) (HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\459c1ad8-698b-5cfb-9482-6624a34c58bb) (Version: 2.2.274 - Riva FZC)
GIMP 2.10.10 (HKLM\...\GIMP-2_is1) (Version: 2.10.10 - The GIMP Team)
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Kaspersky Free (HKLM-x32\...\{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab) Hidden
Kaspersky Free (HKLM-x32\...\InstallWIX_{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{F10AA188-7166-430E-8810-FEAB2AD73DE3}) (Version: 19.0.0.1088 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{F10AA188-7166-430E-8810-FEAB2AD73DE3}) (Version: 19.0.0.1088 - Kaspersky Lab)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Motorsport Manager - Endurance Series (HKLM\...\SKIDROW - Motorsport Manager - Endurance Series) (Version: - SKIDROW)
Motorsport Manager Save Game Editor (HKLM-x32\...\{B3C48982-9099-4A29-A90C-E2888BFFDC5E}) (Version: 1.4.6536.39633 - RWSoftware)
Mozilla Firefox 68.0.2 (x64 sk) (HKLM\...\Mozilla Firefox 68.0.2 (x64 sk)) (Version: 68.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.8.0 - Mozilla)
Mozilla Thunderbird 60.8.0 (x86 sk) (HKLM-x32\...\Mozilla Thunderbird 60.8.0 (x86 sk)) (Version: 60.8.0 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.0.105 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.0.105 - NVIDIA Corporation)
NVIDIA Grafický ovládač 436.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 436.15 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Ovládací panel NVIDIA 436.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 436.15 - NVIDIA Corporation) Hidden
Registrácia používateľa produktu Canon MG3600 series (HKLM-x32\...\Registrácia používateľa produktu Canon MG3600 series) (Version: - ‭Canon Inc.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.3.0 - TeamSpeak Systems GmbH)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Wargaming.net Game Center (HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\Wargaming.net Game Center) (Version: 19.5.0.6415 - Wargaming.net)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
World of Tanks EU (HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\WOT.EU.PRODUCTION) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers4: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-08-25] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2019-06-05] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============


==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\user\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{8A43BA9B-C67F-4DE8-8E7E-BD19D4506887}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{260414C4-21C3-43D8-9DC0-971920E939AD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{027BE12C-D6E4-4327-B797-EA75FEDDB8E1}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{1755ABFE-846A-4FC7-8397-2B779C3A9A50}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{1F6AEFD4-8EA4-4141-BBE6-7AD1A477F8F1}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{D46A7B15-2755-4CD9-AE2D-0E188A01C091}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{1C12C441-EE49-4D61-834C-C82208FE1018}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{14628A30-1EDB-4D38-BA8B-BA7810A4436F}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{5CD7174C-515E-4CB4-A2A3-07886CC4A9A3}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{3C784F7C-9AA1-47BC-A37C-48C25A11FE60}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{7B9BC834-55DB-40FA-AE9E-B5DEA19FE201}D:\games\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\games\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{351F251C-A0C2-4ED7-BDD9-DCA7A349A2EF}D:\games\rockstar games\grand theft auto v\gta5.exe] => (Allow) D:\games\rockstar games\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{1F3849AA-9202-4DC2-AEEC-547A49B60791}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{089A02D2-9D52-4C09-8520-EA898BE81062}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{1D5E63DB-645D-46F6-B3DB-4FCBAE37C2B8}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{255BCFD9-D697-4271-8E3C-039159C5034C}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [TCP Query User{3189C62D-FE20-41A2-A091-3C823DDAED7D}L:\hry\dfbhd.exe] => (Allow) L:\hry\dfbhd.exe No File
FirewallRules: [UDP Query User{DF074627-42B5-4A1E-8D2A-0B6EE566B9A6}L:\hry\dfbhd.exe] => (Allow) L:\hry\dfbhd.exe No File
FirewallRules: [TCP Query User{182D05B7-8ACF-4430-A17B-64CF7A0A340D}D:\steam\steamapps\common\assettocorsa\acs_x86.exe] => (Allow) D:\steam\steamapps\common\assettocorsa\acs_x86.exe No File
FirewallRules: [UDP Query User{B6B44576-D864-45A5-B4CB-BACBBE604E8C}D:\steam\steamapps\common\assettocorsa\acs_x86.exe] => (Allow) D:\steam\steamapps\common\assettocorsa\acs_x86.exe No File
FirewallRules: [TCP Query User{D77F9E8C-3049-423A-98E4-53C00BA303BB}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{B1220E1C-9600-4A90-BE6A-037A78F62233}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{88F0384E-A543-47F9-88B0-580D44555109}D:\games\world-of-tanks-eu\worldoftanks.exe] => (Allow) D:\games\world-of-tanks-eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [UDP Query User{38E54F8A-1E9F-4541-B2A0-BEE28D6EFB2F}D:\games\world-of-tanks-eu\worldoftanks.exe] => (Allow) D:\games\world-of-tanks-eu\worldoftanks.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{64AB31D0-2C7D-45BB-9C11-DD9B03D3C229}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{76AA9EF4-2DE8-4E36-8475-01C59D9B1F1D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{ACCD947A-4241-4E3C-9618-C6B199F6953A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9EFC5DE3-AE4D-49FE-80DF-D080B4092ED2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D3246CC7-4320-43BF-BAD4-10BA3D4B40EE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D75F96E4-2E54-401F-9405-062B99DE7AE9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{7D38AE24-79C2-4C9A-BD23-0BFAEABA745A}] => (Allow) D:\Steam\steamapps\common\DiRT Rally\drt.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{B2E943D1-D8FD-4D6D-B1D4-D6E8B411912E}] => (Allow) D:\Steam\steamapps\common\DiRT Rally\drt.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{68E2E8ED-70F6-4191-BF87-5DEB2D0F5740}] => (Allow) D:\Steam\steamapps\common\F1 2018\F1_2018.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{A60AA8B5-054F-4EC9-8303-9B462FD0D937}] => (Allow) D:\Steam\steamapps\common\F1 2018\F1_2018.exe (Codemasters Software Company Limited) [File not signed]

==================== Restore Points =========================

17-08-2019 10:56:47 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215
17-08-2019 10:57:04 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
18-08-2019 09:18:35 Windows Update
21-08-2019 15:37:13 Windows Update
22-08-2019 15:18:58 Installed Motorsport Manager Save Game Editor
29-08-2019 17:22:41 Windows Update

==================== Faulty Device Manager Devices =============

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Windows Defender:
===================================
Date: 2019-07-31 19:48:42.315
Description:
Windows Defender has encountered an error trying to update the engine.
New Engine Version:1.1.16200.1
Previous Engine Version:1.1.6402.0
Update Source:User
Error Code:0x8050800c
Error description:Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.

Date: 2019-07-31 18:27:35.334
Description:
Windows Defender has encountered an error trying to update the engine.
New Engine Version:1.1.16000.6
Previous Engine Version:1.1.6402.0
Update Source:Signature Update Folder
Error Code:0x8050800c
Error description:Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.

Date: 2019-07-31 18:22:33.623
Description:
Windows Defender has encountered an error trying to update the engine.
New Engine Version:1.1.16000.6
Previous Engine Version:1.1.6402.0
Update Source:Signature Update Folder
Error Code:0x8050800c
Error description:Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.

Date: 2019-07-31 15:43:55.725
Description:
Windows Defender has encountered an error trying to update the engine.
New Engine Version:1.1.16000.6
Previous Engine Version:1.1.6402.0
Update Source:Signature Update Folder
Error Code:0x8050800c
Error description:Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.

Date: 2019-07-31 15:38:53.251
Description:
Windows Defender has encountered an error trying to update the engine.
New Engine Version:1.1.16000.6
Previous Engine Version:1.1.6402.0
Update Source:Signature Update Folder
Error Code:0x8050800c
Error description:Vyskytol sa neočakávaný problém. Nainštalujte všetky dostupné aktualizácie a potom znova skúste spustiť program. Informácie o inštalácii programov nájdete v Pomoci a technickej podpore.

==================== Memory info ===========================

BIOS: Award Software International, Inc. F7 11/24/2010
Motherboard: Gigabyte Technology Co., Ltd. GA-880GA-UD3H
Processor: AMD Phenom(tm) II X4 965 Processor
Percentage of memory in use: 44%
Total physical RAM: 8188.54 MB
Available physical RAM: 4517.5 MB
Total Virtual: 16375.21 MB
Available Virtual: 12087.7 MB

==================== Drives ================================

Drive c: (Win7) (Fixed) (Total:111.69 GB) (Free:56.75 GB) NTFS
Drive d: (Data1) (Fixed) (Total:465.76 GB) (Free:231.56 GB) NTFS
Drive e: (Data2) (Fixed) (Total:465.75 GB) (Free:360.08 GB) NTFS

\\?\Volume{2c263753-869d-11e9-bc43-806e6f6e6963}\ (Vyhradené systémom) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 000280B3)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6C90B5D4)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventívna kontrola PC

#11 Příspěvek od Conder »

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
CMD: type "C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js"
CMD: type "C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg"

FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\MountPoints2: {2950278b-bcf2-11e9-8155-1c6f65486b6d} - G:\Install.exe
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\MountPoints2: {49cb576d-a4b7-11e9-9a95-1c6f65486b6d} - G:\Setup.exe

Hosts:
EmptyTemp:
End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 198
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: Preventívna kontrola PC

#12 Příspěvek od Sudoku33 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 04-09-2019
Ran by user (04-09-2019 17:42:57) Run:1
Running from C:\Users\user\Desktop
Loaded Profiles: user (Available Profiles: user)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

PowerShell: Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum
CMD: type "C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js"
CMD: type "C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg"

FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\MountPoints2: {2950278b-bcf2-11e9-8155-1c6f65486b6d} - G:\Install.exe
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\...\MountPoints2: {49cb576d-a4b7-11e9-9a95-1c6f65486b6d} - G:\Setup.exe

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========= Get-ChildItem -Path "$ENV:USERPROFILE\Desktop" -Recurse -Force | Measure-Object -Property Length -Sum =========



Count : 12
Average :
Sum : 1762499
Maximum :
Minimum :
Property : Length


========= End of Powershell: =========


========= type "C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js" =========

// kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js
pref("general.config.obscure_value", 0);
pref("general.config.filename", "kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg");

========= End of CMD: =========


========= type "C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg" =========

// kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg
lockPref("security.enterprise_roots.enabled", true);

========= End of CMD: =========

HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2950278b-bcf2-11e9-8155-1c6f65486b6d} => removed successfully
HKLM\Software\Classes\CLSID\{2950278b-bcf2-11e9-8155-1c6f65486b6d} => not found
HKU\S-1-5-21-3429433729-2979033606-3696126374-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{49cb576d-a4b7-11e9-9a95-1c6f65486b6d} => removed successfully
HKLM\Software\Classes\CLSID\{49cb576d-a4b7-11e9-9a95-1c6f65486b6d} => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9458772 B
Java, Flash, Steam htmlcache => 69649850 B
Windows/system/drivers => 15638 B
Edge => 0 B
Chrome => 0 B
Firefox => 25164310 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 58558406 B
systemprofile32 => 68332 B
LocalService => 66228 B
NetworkService => 5242 B
user => 2013565257 B

RecycleBin => 0 B
EmptyTemp: => 2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 17:43:19 ====




Páči sa, dokonca ste mi aj uvolnili 5-6GB miesta na SSD :P
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventívna kontrola PC

#13 Příspěvek od Conder »

Ako to vyzera s PC? Su nejake problemy?
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 198
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: Preventívna kontrola PC

#14 Příspěvek od Sudoku33 »

Ak mám pravdu povedať tak asi nie je veľmi zdravý, dnes som na ňom bol a napr. Mi prehodil o 2 hodinky späť čas, antivirus nič nenašiel, avšak ak by som mohol, poslal by som znova log, (nebudem pri tomto PC istý čas a bude sa na nom robiť internetbanking a tak, tak aby to bolo tip-top) :P
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)
Nahoru
Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Preventívna kontrola PC

#15 Příspěvek od Conder »

:arrow: Toto velmi nevyzera na problem sposobeny malware, cez nastavenia casu synchronizuj cas. Ale mozme to este dalej preskenovat, ak si chces byt viac isty:

:arrow: Urob v Malwarebytes uplny sken
  • Stiahni a nainstaluj Malwarebytes (MB/MBAM): https://www.malwarebytes.com/mwb-download/thankyou/
  • Otvor Malwarebytes a vlavo klikni na "Skenovat"
  • Klikni na "Vlastne skenovanie" a potom na "Nakonfigurovat skenovanie" (Nastavit sken)
  • Vpravo oznac vsetky disky v PC a vlavo oznac moznost "Vyhladavat rootkity"
  • Klikni na Skenovat teraz a pockaj na dokoncenie
  • Po dokonceni klikni na Exportovat zhrnutie -> Skopirovat do schranky
  • Skopirovany log vloz do dalsej odpovede
  • Obrazkovy navod (bohuzial pre starsiu verziu): https://forum.viry.cz/viewtopic.php?f=29&t=144868
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!
Nahoru
Odpovědět

Zpět na „Preventivní kontroly logů“