Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

E-Mail, Phising alebo niečo podobné

http://www.hoax.cz

Moderátor: Moderátoři

Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
Zpráva
Autor
Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 204
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: E-Mail, Phising alebo niečo podobné

#16 Příspěvek od Sudoku33 »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by Viktor (29-03-2019 14:55:16)
Running from C:\Users\Viktor\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2018-06-09 08:37:36)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

HomeGroupUser$ (S-1-5-21-1175164242-2520376927-1258050692-1002 - Limited - Enabled)
Rendszergazda (S-1-5-21-1175164242-2520376927-1258050692-500 - Administrator - Disabled)
Vendég (S-1-5-21-1175164242-2520376927-1258050692-501 - Limited - Disabled)
Viktor (S-1-5-21-1175164242-2520376927-1258050692-1000 - Administrator - Enabled) => C:\Users\Viktor

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Apple Mobile Device Support (HKLM\...\{5FA8C4BE-8C74-4B9C-9B49-EBF759230189}) (Version: 12.1.0.25 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 18.3.6507 - AVAST Software)
Avast Premier (HKLM-x32\...\Avast Antivirus) (Version: 19.3.2369 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 72.0.1174.122 - AVAST Software)
Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 5.2.429 - AVAST Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.154.333 - AVAST Software) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.0.0 - Canon Inc.)
Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.00 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.55 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0455 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.35 - NVIDIA Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{E7B62E3F-0F70-4119-89A2-28DE1C3873CC}) (Version: 1.1.163.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Farming Simulator 19 (HKLM-x32\...\Farming Simulator 19_is1) (Version: - )
FIFA 19 (HKLM-x32\...\{3391E07D-8484-4124-817E-FCBDA859FD62}) (Version: 1.0.58.64628 - Electronic Arts)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.86 - Spoločnosť Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: "1.0.0.10" - Rockstar Games)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
InputMapper (HKLM-x32\...\{026D2025-A7FA-4F5C-AF8C-A6F7A9B917FC}) (Version: 1.6.10.19991 - DSDCS)
iTunes (HKLM\...\{CB6A0A57-6479-4017-B4B2-3BB85EC79CEB}) (Version: 12.9.3.3 - Apple Inc.)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.17.65.11 - JMicron Technology Corp.)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Malwarebytes verze 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET-keretrendszer 4.7.2 (magyar) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1038) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.11328.20146 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft Project Professional 2016 - cs-cz (HKLM\...\ProjectProRetail - cs-cz) (Version: 16.0.11328.20146 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Visio Professional 2016 - cs-cz (HKLM\...\VisioProRetail - cs-cz) (Version: 16.0.11328.20146 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision illesztőprogram 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.35 - NVIDIA Corporation)
NVIDIA 3D Vision vezérlő illesztőprogram 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.18.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.94 - NVIDIA Corporation)
NVIDIA Grafikus illesztőprogram 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.35 - NVIDIA Corporation)
NVIDIA HD audio-illesztőprogram 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA PhysX rendszerszoftver 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.11328.20146 - Microsoft Corporation) Hidden
Podpora Apple aplikácií (32-bit) (HKLM-x32\...\{5A659BE5-849B-484E-A83B-DCB78407F3A4}) (Version: 7.3 - Apple Inc.)
Podpora Apple aplikácií(64-bit) (HKLM\...\{F8060941-C0AB-4BCE-88AC-F2FDA2E9F286}) (Version: 7.3 - Apple Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.10-r123135-release - Raptr, Inc)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG3600 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG3600 series) (Version: - ‭Canon Inc.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.39.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.39.0 - Renesas Electronics Corporation)
RIDE 3 (HKLM-x32\...\RIDE 3_is1) (Version: - )
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
WinRAR 5.70 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-05-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-05-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0BF22179-6868-4F58-BFC1-03249D78F77D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {2B048264-3074-4BF7-A805-D7C2129CF149} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {2F0C7516-9556-486F-B692-AC2D27145742} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2F32D486-29AE-4064-9B10-1C68A8617FB9} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3160DEB3-4C4B-4453-AB87-FC9E386E6705} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {325C5D34-9820-48CE-BC1B-7D2CFD073DD3} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {328698F2-65A7-436E-8871-61FED5DFE08B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {4334B341-E97C-4130-A589-D1DC3C2349E3} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5D3F15BE-3B46-4DFD-8D82-77E9AE36635A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {631E6A20-6F99-4BAA-961C-AD1420CAB7D5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {725061B5-CD86-43A6-991E-3301B2BBD2FA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {72CAE84A-AC3A-4CA3-AE21-47C72CB16C92} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {7D3E2BAB-63DD-4D52-8BEA-B9AC0922C5F0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {82E114E6-E40E-4E1A-976E-F4601485B9EC} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8D2AFFE4-1359-4DB7-898C-DC524E38C617} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A605200D-2593-41AF-8D27-75668DC0D346} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {AEA01DD7-4507-4DC8-AFFC-AC28E11B8B03} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe (Apple Inc. -> Apple Inc.)
Task: {B060D05A-FF5C-45EA-899D-EFA2D02C6040} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0B58CD5-F7D6-4482-AE98-0E11E616DE34} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {BAA3073F-5FE2-4392-9E9E-BCDE5FFEA7FA} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C440CE86-7DF3-4042-8508-008FE82F3F63} - System32\Tasks\Avast Cleanup Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {D90E2B64-9381-45AE-9DD8-B454BF580555} - System32\Tasks\ExclusiveTool => C:\Program Files (x86)\DSDCS\InputMapper\ExclusiveModeTool.exe (InputMapper) [File not signed]
Task: {DC0544A0-49BE-4869-8B6A-188AAA208670} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {DCBF4D19-D888-44B9-819E-227ED32C88F7} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E1979F22-AC41-444D-96E6-C7146F6262DF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {E621CBB0-80D9-461B-8011-DA7E4ED660AB} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {EFFA179D-BA73-4FAE-83EE-5948E72F4D82} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {F4E7E975-A150-4217-9ED8-02FE0F174136} - System32\Tasks\Avast SecureLine Update => C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {F5719E86-1A79-4A27-B0DE-7CE79096EE6B} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FA7453B7-E991-4CB9-860A-661FFFFD15A5} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FAF009A9-A8E7-466A-92C1-1DBBA5B9F4B6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============

2018-06-15 15:30 - 2018-06-15 15:30 - 001654784 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80U.DLL
2019-03-15 10:07 - 2018-09-05 21:32 - 002095104 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\AVAST Software\SecureLine\libcrypto-1_1.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000035328 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll
2019-03-15 10:06 - 2016-09-12 14:53 - 048936448 _____ () [File not signed] C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [472]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-03-15 09:55 - 000000989 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1 75.126.120.203
127.0.0.1 46.4.58.71
127.0.0.1 46.4.62.150
127.0.0.1 46.4.28.80

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{55E6FCC7-BDD1-4D3A-8464-6D154940C5B9}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{CB18DB7F-4D39-409C-AE7F-88BB0E9B28CD}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe (Raptr, Inc -> Raptr, Inc)
FirewallRules: [{0A4B937A-9B94-45DE-9DC0-59CF7A94E92B}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe (Raptr, Inc -> Raptr, Inc)
FirewallRules: [{BD41C21F-0036-4B03-9B64-DC7167FF3AFF}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe (Raptr, Inc -> Raptr, Inc)
FirewallRules: [{AC75B514-F75C-4A95-AB36-2DD377B15E58}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe (Raptr, Inc -> Raptr, Inc)
FirewallRules: [{ADDABA70-A98D-4C05-97C5-63226CA6F892}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{4AD63772-F31F-4ACD-90E6-74B6A4A00811}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{E2FE2926-910D-4F32-8B05-16391F5C2A2E}C:\users\viktor\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\viktor\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{CE46DF89-9794-47E3-A094-8790F478D845}C:\users\viktor\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\viktor\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{1F012BA9-42D4-4F0A-BD17-0F0CCEEE0D5E}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{496DE04C-B8B4-42B6-AD3D-F95B8960CFE6}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{1639FA8C-2AAE-458F-9DF8-0134A567E303}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6403B8C2-B463-439D-B079-35077688EF9C}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{EB97F3A1-9D80-469D-92BC-60EEA319EE8B}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{082598CF-3BCC-4661-82ED-A62E60997A96}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{871320C9-6D89-45E8-A841-F47DAA9DDC01}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E523C78F-A61E-4B56-A080-423F0CBF375B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{51046E20-852D-4B10-8EB8-E972899B8511}D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{0F2578C5-A5A0-4E1C-896C-43E71AC41B51}D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{FDB0B730-8BE4-46E0-ABF3-02E30170549A}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{DE0106BA-400B-44C3-B659-DDD2D79F8442}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{C956C541-FC7A-44FA-BEEC-F8EBAB788947}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{BA090821-8B7B-44CE-B817-3C7355CB6815}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{0A19775B-DAB0-40DA-A4B5-A50F4E8A1C47}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{7C1CDFE7-3D07-4F45-8575-ED3E3AA328E1}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{3D0C3FC1-0320-4FE4-95C2-42D3C7FCC203}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A7C6D03C-221A-4677-8031-22F664915E74}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{DD6B381B-3A59-4373-B84B-24E1CC2E6A74}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{032DAEAC-BE1D-4ABF-9D04-6BB213D8200B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{44EB9DC9-6110-4750-9623-E91B0BF36544}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{24185B9A-C596-4930-A339-9984115E3D0A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{504154C6-C5FE-4D0C-B463-B97C7D5237D3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2FDAC441-489B-4FCD-8E51-CBD402B42F7C}] => (Allow) D:\Steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B4EF9E1E-40F1-4BA7-8186-B21CADB09E3B}] => (Allow) D:\Steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{023E2FAD-6B24-4448-8623-C5316E82EA11}D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{FDB88B4F-51A8-4D8A-A319-3918F4F6A2E3}D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{DD3FE26B-F4D1-4FAF-A75F-930DAD5C008C}C:\users\viktor\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\viktor\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{5F6DB0CC-8962-4EEF-BF2E-30E65DE8BFE6}C:\users\viktor\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\viktor\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{E04942D5-5008-48E9-908B-A17959004A0C}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{21CF4554-F257-4653-99DA-0DAA02BB6A0E}] => (Allow) D:\Games\FIFA19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{422C0476-8C1E-4BE6-9820-AB01BB76366D}] => (Allow) D:\Games\FIFA19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{205B37C5-71CB-4B70-8B86-D1EEBF3ABA17}] => (Allow) D:\Steam\steamapps\common\F1 2018\F1_2018.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{D8FD513A-5A7E-4357-A61C-EB1E8A984995}] => (Allow) D:\Steam\steamapps\common\F1 2018\F1_2018.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{E28ACE11-2DB0-4F29-9E21-0036CBABBCA9}] => (Allow) D:\Games\Rockstar Games\Grand Theft Auto V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{5943D331-95FE-4668-9A30-EBBA6C836435}] => (Allow) D:\Games\Rockstar Games\Grand Theft Auto V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{A17AFA0B-405C-49D8-8E51-0817B648DAB8}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{78DF17F7-DBBD-4441-9D6B-B38E17BA15F3}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{30E60EB6-2DB8-4647-80F5-641C332B79CF}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{0F080F7C-79C9-4DC7-AB88-F19A66170DCC}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [TCP Query User{409552C2-8EC6-496F-8F12-9A98E62B7C6D}D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{1123DCD4-1F31-43C3-9275-C8F981D24E18}D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [{E2EFD6C7-68BE-425A-AF14-A6B08024D370}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{48AA51A6-CD1A-462F-8A12-D8C956637F04}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{74A07F98-20B6-49B2-BF71-065D8BE9D965}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{479F6F8A-8F0F-4051-950B-9666827747CF}] => (Allow) C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{342F646E-33A9-4BB0-9459-ADFECE5D7F57}] => (Allow) C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{2CE74C34-5A38-44A0-890C-D680866D422F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{53177BDA-6A02-4A16-A826-DB7412BCEA65}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4B71B6B3-1FC9-48DB-9BE4-2CFA7328156E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{74BFB939-67A6-49F0-B505-3A456610AA8B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B938C96B-C820-4902-A30A-2EC58C227077}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{8F4C8F9B-30BD-4611-9EE7-1871199E3F46}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6178AA92-591F-48A7-9665-69092CA414E7}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{5322154A-B1CC-4BF9-9097-AAF2CE592B32}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{02C48A0D-BE09-46FE-B856-7A0B8764B086}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================

24-03-2019 19:05:37 Removed 7-Zip 19.00 (x64 edition)
24-03-2019 19:05:54 Removed Java 8 Update 201 (64-bit)
24-03-2019 19:15:56 Installed Avast Driver Updater

==================== Faulty Device Manager Devices =============

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/29/2019 02:43:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (03/26/2019 07:15:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (03/25/2019 05:15:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: A hibát okozó alkalmazás neve: mbamtray.exe, verzió: 3.1.0.1763, időbélyeg: 0x5c892aad
A hibát okozó modul neve: Qt5Core.dll, verzió: 5.11.1.0, időbélyeg: 0x5c6c73ee
Kivételkód: 0xc0000005
Hiba pozíciója: 0x0018dc19
A hibát okozó folyamat azonosítója: 0x7b8
A hibát okozó alkalmazás indításának időpontja: 0x01d4e325eb7cedfa
A hibát okozó alkalmazás elérési útja: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
A hibát okozó modul elérési útja: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
Jelentés azonosítója: 2bd70529-4f19-11e9-8efb-1c6f65486b6d

Error: (03/25/2019 05:13:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (03/24/2019 07:05:01 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (03/24/2019 05:35:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (03/24/2019 01:38:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: A hibát okozó alkalmazás neve: F1_2018.exe, verzió: 1.0.49.1330, időbélyeg: 0x5c65c197
A hibát okozó modul neve: F1_2018.exe, verzió: 1.0.49.1330, időbélyeg: 0x5c65c197
Kivételkód: 0x40000015
Hiba pozíciója: 0x00000000012a7d82
A hibát okozó folyamat azonosítója: 0x9f4
A hibát okozó alkalmazás indításának időpontja: 0x01d4e23e0891344c
A hibát okozó alkalmazás elérési útja: D:\Steam\steamapps\common\F1 2018\F1_2018.exe
A hibát okozó modul elérési útja: D:\Steam\steamapps\common\F1 2018\F1_2018.exe
Jelentés azonosítója: b9cca56f-4e31-11e9-90a5-1c6f65486b6d

Error: (03/24/2019 12:26:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============

Windows Defender:
===================================
Date: 2018-06-17 07:47:22.331
Description:
A(z) Windows Defender vizsgálata a befejezés előtt leállt.
Vizsgálat azonosítója:{6621B7F2-FE62-4661-AEA2-AEF36896F871}
Vizsgálat típusa:Kémprogram-elhárító
Vizsgálati paraméterek:Gyors ellenőrzés
Felhasználó:NT AUTHORITY\HÁLÓZATI SZOLGÁLTATÁS

Date: 2018-07-04 09:18:44.734
Description:
A(z) Windows Defender hibát észlelt az aláírások frissítése során.
Új aláírás-verzió:1.271.442.0
Korábbi aláírás-verzió:1.269.1075.0
Frissítés forrása:Felhasználó
Aláírás típusa:Kémprogram-elhárító
Frissítés típusa:Növekményes
Felhasználó:NT AUTHORITY\SYSTEM
Jelenlegi motorverzió:1.1.15000.2
Korábbi motorverzió:1.1.14901.4
Hibakód:0x80070666
Hiba leírása:A termék egy másik verziója már telepítve van. A jelenlegi verzió telepítése nem folytatható. A létező verzió konfigurálásához használja a Vezérlőpult Programtelepítés alkalmazását

Date: 2018-07-04 09:18:44.734
Description:
A(z) Windows Defender hibát észlelt a motor frissítése közben.
Új motorverzió:1.1.15000.2
Korábbi motorverzió:1.1.14901.4
Frissítés forrása:Felhasználó
Felhasználó:NT AUTHORITY\SYSTEM
Hibakód:0x80070666
Hiba leírása:A termék egy másik verziója már telepítve van. A jelenlegi verzió telepítése nem folytatható. A létező verzió konfigurálásához használja a Vezérlőpult Programtelepítés alkalmazását

==================== Memory info ===========================

Processor: AMD Phenom(tm) II X4 965 Processor
Percentage of memory in use: 41%
Total physical RAM: 8188.54 MB
Available physical RAM: 4750.73 MB
Total Virtual: 16375.21 MB
Available Virtual: 12059.18 MB

==================== Drives ================================

Drive c: (Win7) (Fixed) (Total:111.69 GB) (Free:33.75 GB) NTFS
Drive d: (Data1) (Fixed) (Total:465.76 GB) (Free:207 GB) NTFS
Drive e: (Data2) (Fixed) (Total:465.75 GB) (Free:306.16 GB) NTFS

\\?\Volume{96be5efa-6bbf-11e8-9ca4-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6C90B5D4)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119586
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: E-Mail, Phising alebo niečo podobné

#17 Příspěvek od Rudy »

Jazyk systému nemá vliv na možnost kontroly a vyčištění. Teď spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 204
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: E-Mail, Phising alebo niečo podobné

#18 Příspěvek od Sudoku33 »

# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-03-25.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 03-29-2019
# Duration: 00:00:01
# OS: Windows 7 Ultimate
# Cleaned: 4
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Users\Viktor\AppData\Local\slimware utilities inc

***** [ Files ] *****

Deleted C:\Windows\System32\drivers\swdumon.sys

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\softwareupdate.exe
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\softwareupdate.exe

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1592 octets] - [29/03/2019 16:13:02]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)

Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 204
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: E-Mail, Phising alebo niečo podobné

#19 Příspěvek od Sudoku33 »

Páči sa, nachádzal/a sa tam vírus, poprípade tam niečo bolo?
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119586
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: E-Mail, Phising alebo niečo podobné

#20 Příspěvek od Rudy »

Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 204
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: E-Mail, Phising alebo niečo podobné

#21 Příspěvek od Sudoku33 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
Ran by Viktor (administrator) on VIKTOR-PC (29-03-2019 17:12:53)
Running from C:\Users\Viktor\Desktop
Loaded Profiles: Viktor (Available Profiles: Viktor)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: magyar (Magyarország)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\SecureLine\Vpn.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.154.333\AvastBrowserCrashHandler64.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18381792 2017-06-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-01-18] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation -> Renesas Electronics Corporation)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [43608 2010-09-07] (JMicron Technology Corp. -> )
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58584 2017-05-30] (Raptr, Inc -> Raptr, Inc)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [260488 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [729704 2018-05-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\Run: [EpicGamesLauncher] => D:\Games\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35254672 2019-03-22] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\Run: [Discord] => C:\Users\Viktor\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\Run: [Steam] => D:\Steam\steam.exe [3146016 2019-03-06] (Valve -> Valve Corporation)
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22488952 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\Run: [AvastBrowserAutoLaunch_78EBD3881198E1143544D15F8FE848C0] => C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe [1942968 2019-03-06] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\MountPoints2: G - G:\setup.exe
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\MountPoints2: {625923b7-289d-11e9-9dcc-1c6f65486b6d} - G:\Lenovo_Suite.exe
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\MountPoints2: {a14debbf-70c3-11e8-8e54-1c6f65486b6d} - H:\setup.exe
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\MountPoints2: {bb3e40e6-a093-11e8-8261-806e6f6e6963} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\SharkCollection.html
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\Installer\chrmstp.exe [2019-03-26] (Google LLC -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{A8504530-742B-42BC-895D-2BAD6406F698}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\72.0.1174.122\Installer\chrmstp.exe [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast Cleanup Premium.lnk [2019-03-15]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software s.r.o. -> AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine.lnk [2019-03-15]
ShortcutTarget: Avast SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\Vpn.exe (AVAST Software s.r.o. -> AVAST Software)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 195.146.128.62
Tcpip\..\Interfaces\{99316D65-C6A6-4B4F-A1E6-E647AEE1A796}: [DhcpNameServer] 192.168.1.1 195.146.128.62

Internet Explorer:
==================
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [File not signed]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-03-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-29] (Google Inc -> Google LLC)

Chrome:
=======
CHR Profile: C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default [2019-03-29]
CHR Extension: (Prezentácie) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-06-09]
CHR Extension: (Dokumenty) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-09]
CHR Extension: (Disk Google) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-06-09]
CHR Extension: (YouTube) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-06-09]
CHR Extension: (Avast SafePrice | Porovnanie, ponuky, kupóny) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-03-16]
CHR Extension: (Tabuľky) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-06-09]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-17]
CHR Extension: (AdBlock) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-03-23]
CHR Extension: (Avast Online Security) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-03-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-09]
CHR Extension: (Gmail) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-06-09]
CHR Extension: (Chrome Media Router) - C:\Users\Viktor\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-26]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [85304 2018-10-16] (Apple Inc. -> Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6570352 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [360440 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [371824 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\72.0.1174.122\elevation_service.exe [1070600 2019-03-06] (AVAST Software s.r.o. -> AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-02-15] (BattlEye Innovations e.K. -> )
R2 CleanupPSvc; C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [9874528 2019-01-17] (AVAST Software s.r.o. -> AVAST Software)
S4 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11129928 2019-03-01] (Microsoft Corporation -> Microsoft Corporation)
S4 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3638888 2018-05-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S4 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-06-22] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S4 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [397472 2018-03-15] (Canon Inc. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [6688232 2019-03-29] (AVAST Software s.r.o. -> AVAST Software)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-03-25] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [23960064 2015-11-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [671232 2015-11-18] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amd_sata; C:\Windows\System32\DRIVERS\amd_sata.sys [83656 2014-09-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\Windows\System32\DRIVERS\amd_xata.sys [43720 2014-09-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205608 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [254408 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [196304 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\Windows\System32\drivers\aswblog.sys [320904 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [58168 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42496 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [169104 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswNetSec; C:\Windows\System32\drivers\aswNetSec.sys [518784 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [112520 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [88152 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [1034640 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [476256 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [220632 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [53904 2018-09-05] (AVAST Software s.r.o. -> The OpenVPN Project)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [380160 2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2018-06-15] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2018-06-15] (Disc Soft Ltd -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [198512 2019-03-24] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMFarflt; C:\Windows\System32\DRIVERS\farflt.sys [127136 2019-03-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [73912 2019-03-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [274416 2019-03-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\Windows\System32\DRIVERS\mwac.sys [104784 2019-03-29] (Malwarebytes Corporation -> Malwarebytes)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-02-26] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 RTL8167; C:\Windows\System32\DRIVERS\Rt64win7.sys [187392 2009-03-01] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Corporation )
R3 ScpVBus; C:\Windows\System32\DRIVERS\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2018-05-04] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 SWDUMon; system32\DRIVERS\SWDUMon.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-29 16:17 - 2019-03-29 16:17 - 000073912 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2019-03-29 16:16 - 2019-03-29 16:16 - 000274416 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-03-29 16:16 - 2019-03-29 16:16 - 000127136 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2019-03-29 16:16 - 2019-03-29 16:16 - 000104784 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2019-03-29 16:12 - 2019-03-29 16:15 - 000000000 ____D C:\AdwCleaner
2019-03-29 16:11 - 2019-03-29 16:12 - 007316688 _____ (Malwarebytes) C:\Users\Viktor\Downloads\adwcleaner_7.2.7.0.exe
2019-03-29 14:54 - 2019-03-29 17:13 - 000021998 _____ C:\Users\Viktor\Desktop\FRST.txt
2019-03-29 14:54 - 2019-03-29 17:12 - 000000000 ____D C:\FRST
2019-03-29 14:53 - 2019-03-29 14:53 - 002434048 _____ (Farbar) C:\Users\Viktor\Desktop\FRST64.exe
2019-03-25 17:26 - 2019-03-25 17:26 - 000036773 _____ C:\Users\Viktor\Desktop\technicka.pdf
2019-03-25 17:25 - 2019-03-25 17:25 - 000036969 _____ C:\Users\Viktor\Desktop\eu-studia.pdf
2019-03-24 18:18 - 2019-03-24 18:18 - 000000000 ____D C:\Users\Viktor\AppData\Local\mbam
2019-03-24 18:17 - 2019-03-24 18:17 - 000198512 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2019-03-24 18:17 - 2019-03-24 18:17 - 000001871 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-03-24 18:17 - 2019-03-24 18:17 - 000000000 ____D C:\Users\Viktor\AppData\Local\mbamtray
2019-03-24 18:17 - 2019-03-24 18:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-03-24 18:17 - 2019-03-24 18:17 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-03-24 18:17 - 2019-03-24 18:17 - 000000000 ____D C:\Program Files\Malwarebytes
2019-03-24 18:17 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-03-24 18:16 - 2019-03-24 18:16 - 062402408 _____ (Malwarebytes ) C:\Users\Viktor\Downloads\mb3-setup-consumer-3.7.1.2839-1.0.563-1.0.9800.exe
2019-03-24 18:15 - 2019-03-24 18:15 - 000113023 _____ C:\Users\Viktor\Downloads\file (2).pdf
2019-03-24 18:14 - 2019-03-24 18:14 - 000134065 _____ C:\Users\Viktor\Downloads\file.pdf
2019-03-24 18:14 - 2019-03-24 18:14 - 000134065 _____ C:\Users\Viktor\Downloads\file (1).pdf
2019-03-23 11:09 - 2019-03-23 11:15 - 000000000 ____D C:\Users\Viktor\AppData\Roaming\CitizenFX
2019-03-23 11:04 - 2019-03-24 12:38 - 000000000 ____D C:\Users\Viktor\AppData\Local\DigitalEntitlements
2019-03-23 09:59 - 2019-03-23 09:59 - 000002067 _____ C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM Singleplayer.lnk
2019-03-23 09:59 - 2019-03-23 09:59 - 000002059 _____ C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FiveM.lnk
2019-03-23 09:51 - 2019-03-23 09:51 - 000000000 ____D C:\Users\Viktor\AppData\Roaming\SmartSteamEmu
2019-03-23 09:34 - 2019-03-23 09:34 - 000446889 _____ C:\Users\Viktor\Downloads\[CzT]Workers_And_Resources_Soviet_Republic_2019_SK_.torrent
2019-03-22 17:48 - 2019-03-22 17:48 - 000016275 _____ C:\Users\Viktor\Downloads\[nCore][hdser]The_Grand_Tour_S03E11_720p.torrent
2019-03-17 10:59 - 2019-03-17 10:59 - 000076246 _____ C:\Users\Viktor\Downloads\GP 4x.pdf
2019-03-17 10:59 - 2019-03-17 10:59 - 000012513 _____ C:\Users\Viktor\Downloads\ZPMZ2 2x.pdf
2019-03-16 18:32 - 2019-03-16 18:32 - 000979890 _____ C:\Users\Viktor\Downloads\Listenbee - Save Me (mp3cut.net).m4r
2019-03-16 18:31 - 2019-03-16 18:31 - 000985424 _____ C:\Users\Viktor\Downloads\Crade - All Good (mp3cut.net).m4r
2019-03-16 18:20 - 2019-03-16 18:20 - 000014501 _____ C:\Users\Viktor\Downloads\[CzT]We_Are_Your_Friends_2015_CZ_.torrent
2019-03-16 10:13 - 2019-03-16 10:13 - 000013044 _____ C:\Users\Viktor\Downloads\[CzT]Minecraft_1_8_0_CZ_SK_.torrent
2019-03-15 15:29 - 2019-03-15 15:29 - 000438216 _____ C:\Windows\system32\FNTCACHE.DAT
2019-03-15 13:17 - 2019-03-15 13:17 - 000044349 _____ C:\Users\Viktor\Downloads\[nCore][hdser]The.Grand.Tour.S03E10.1080p.WEB.H264-AMCON.torrent
2019-03-15 10:07 - 2019-03-23 09:14 - 000004180 _____ C:\Windows\System32\Tasks\Avast SecureLine Update
2019-03-15 10:07 - 2019-03-15 10:07 - 000000972 _____ C:\Users\Public\Desktop\Avast SecureLine.lnk
2019-03-15 10:07 - 2018-09-05 21:01 - 000053904 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\aswTap.sys
2019-03-15 10:06 - 2019-03-23 09:14 - 000004194 _____ C:\Windows\System32\Tasks\Avast Cleanup Update
2019-03-15 10:06 - 2019-03-15 10:06 - 000001147 _____ C:\Users\Public\Desktop\Avast Cleanup Premium.lnk
2019-03-15 10:05 - 2019-03-06 04:18 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-03-15 10:05 - 2019-03-06 04:18 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-03-15 10:05 - 2019-03-06 04:14 - 000708328 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-03-15 10:05 - 2019-03-06 04:14 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-03-15 10:05 - 2019-03-06 04:13 - 005552872 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-03-15 10:05 - 2019-03-06 04:13 - 000262376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-03-15 10:05 - 2019-03-06 04:12 - 001664360 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 001472512 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 001211392 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 001162752 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000733184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:10 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:04 - 004055784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2019-03-15 10:05 - 2019-03-06 04:04 - 003960552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2019-03-15 10:05 - 2019-03-06 04:02 - 001314104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000556032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-03-15 10:05 - 2019-03-06 04:01 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 04:00 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 03:45 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-03-15 10:05 - 2019-03-06 03:45 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-03-15 10:05 - 2019-03-06 03:45 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-03-15 10:05 - 2019-03-06 03:44 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-03-15 10:05 - 2019-03-06 03:42 - 003228160 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-03-15 10:05 - 2019-03-06 03:42 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-03-15 10:05 - 2019-03-06 03:41 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-03-15 10:05 - 2019-03-06 03:41 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-03-15 10:05 - 2019-03-06 03:41 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2019-03-15 10:05 - 2019-03-06 03:40 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2019-03-15 10:05 - 2019-03-06 03:38 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-03-15 10:05 - 2019-03-06 03:38 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-03-15 10:05 - 2019-03-06 03:38 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-03-15 10:05 - 2019-03-06 03:38 - 000169984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-03-15 10:05 - 2019-03-06 03:38 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-03-15 10:05 - 2019-03-06 03:38 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-03-15 10:05 - 2019-03-06 03:37 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-03-15 10:05 - 2019-03-06 03:37 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-03-15 10:05 - 2019-03-06 03:37 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-03-15 10:05 - 2019-03-06 03:37 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-03-15 10:05 - 2019-03-06 03:37 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-03-15 10:05 - 2019-03-06 03:37 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-03-15 10:05 - 2019-03-06 03:37 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-03-15 10:05 - 2019-03-06 03:37 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2019-03-15 10:05 - 2019-03-06 03:37 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2019-03-15 10:05 - 2019-03-06 03:37 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2019-03-15 10:05 - 2019-03-06 03:37 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2019-03-15 10:05 - 2019-03-06 03:36 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2019-03-15 10:05 - 2019-03-06 03:36 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 03:36 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 03:36 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2019-03-15 10:05 - 2019-03-06 03:36 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2019-03-15 10:05 - 2019-03-05 03:44 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2019-03-15 10:05 - 2019-03-05 03:44 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2019-03-15 10:05 - 2019-03-05 03:44 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2019-03-15 10:05 - 2019-02-26 23:41 - 000397104 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-03-15 10:05 - 2019-02-26 22:47 - 000348984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-03-15 10:05 - 2019-02-26 08:57 - 025737216 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-03-15 10:05 - 2019-02-26 08:46 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-03-15 10:05 - 2019-02-26 08:45 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-03-15 10:05 - 2019-02-26 08:33 - 002902528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-03-15 10:05 - 2019-02-26 08:32 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-03-15 10:05 - 2019-02-26 08:31 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-03-15 10:05 - 2019-02-26 08:31 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-03-15 10:05 - 2019-02-26 08:31 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-03-15 10:05 - 2019-02-26 08:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-03-15 10:05 - 2019-02-26 08:25 - 020281856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-03-15 10:05 - 2019-02-26 08:25 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-03-15 10:05 - 2019-02-26 08:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-03-15 10:05 - 2019-02-26 08:22 - 005777920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-03-15 10:05 - 2019-02-26 08:21 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-03-15 10:05 - 2019-02-26 08:20 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-03-15 10:05 - 2019-02-26 08:20 - 000790528 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-03-15 10:05 - 2019-02-26 08:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-03-15 10:05 - 2019-02-26 08:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-03-15 10:05 - 2019-02-26 08:19 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2019-03-15 10:05 - 2019-02-26 08:12 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-03-15 10:05 - 2019-02-26 08:09 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-03-15 10:05 - 2019-02-26 08:07 - 000498176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-03-15 10:05 - 2019-02-26 08:07 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2019-03-15 10:05 - 2019-02-26 08:06 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2019-03-15 10:05 - 2019-02-26 08:06 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2019-03-15 10:05 - 2019-02-26 08:05 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2019-03-15 10:05 - 2019-02-26 08:04 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-03-15 10:05 - 2019-02-26 08:03 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-03-15 10:05 - 2019-02-26 08:02 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-03-15 10:05 - 2019-02-26 08:02 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-03-15 10:05 - 2019-02-26 08:01 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-03-15 10:05 - 2019-02-26 08:00 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2019-03-15 10:05 - 2019-02-26 07:59 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-03-15 10:05 - 2019-02-26 07:58 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-03-15 10:05 - 2019-02-26 07:58 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-03-15 10:05 - 2019-02-26 07:57 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-03-15 10:05 - 2019-02-26 07:57 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-03-15 10:05 - 2019-02-26 07:57 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2019-03-15 10:05 - 2019-02-26 07:56 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-03-15 10:05 - 2019-02-26 07:54 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-03-15 10:05 - 2019-02-26 07:49 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2019-03-15 10:05 - 2019-02-26 07:46 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-03-15 10:05 - 2019-02-26 07:44 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2019-03-15 10:05 - 2019-02-26 07:44 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2019-03-15 10:05 - 2019-02-26 07:43 - 015284224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-03-15 10:05 - 2019-02-26 07:43 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-03-15 10:05 - 2019-02-26 07:43 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-03-15 10:05 - 2019-02-26 07:43 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2019-03-15 10:05 - 2019-02-26 07:41 - 002135552 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-03-15 10:05 - 2019-02-26 07:41 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-03-15 10:05 - 2019-02-26 07:41 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2019-03-15 10:05 - 2019-02-26 07:41 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-03-15 10:05 - 2019-02-26 07:39 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-03-15 10:05 - 2019-02-26 07:38 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2019-03-15 10:05 - 2019-02-26 07:35 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-03-15 10:05 - 2019-02-26 07:33 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2019-03-15 10:05 - 2019-02-26 07:31 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2019-03-15 10:05 - 2019-02-26 07:31 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2019-03-15 10:05 - 2019-02-26 07:30 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2019-03-15 10:05 - 2019-02-26 07:29 - 013681664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-03-15 10:05 - 2019-02-26 07:29 - 004858880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-03-15 10:05 - 2019-02-26 07:18 - 001557504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-03-15 10:05 - 2019-02-26 07:12 - 004386304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-03-15 10:05 - 2019-02-26 07:09 - 001332224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-03-15 10:05 - 2019-02-26 07:07 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-03-15 10:05 - 2019-02-26 07:06 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-03-15 10:05 - 2019-02-22 04:07 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-03-15 10:05 - 2019-02-22 04:07 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\msimg32.dll
2019-03-15 10:05 - 2019-02-22 03:56 - 000004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimg32.dll
2019-03-15 10:05 - 2019-02-22 03:55 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-03-15 10:05 - 2019-02-22 03:35 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-03-15 10:05 - 2019-02-16 07:02 - 002072576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-03-15 10:05 - 2019-02-16 07:02 - 000972288 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2019-03-15 10:05 - 2019-02-16 07:02 - 000878080 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-03-15 10:05 - 2019-02-16 07:02 - 000516608 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-03-15 10:05 - 2019-02-16 07:02 - 000443904 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2019-03-15 10:05 - 2019-02-16 07:02 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-03-15 10:05 - 2019-02-16 07:01 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-03-15 10:05 - 2019-02-16 06:50 - 001425920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-03-15 10:05 - 2019-02-16 06:50 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-03-15 10:05 - 2019-02-16 06:50 - 000321536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2019-03-15 10:05 - 2019-02-16 06:50 - 000026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleres.dll
2019-03-15 10:05 - 2019-02-16 06:33 - 000007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comcat.dll
2019-03-15 10:05 - 2019-02-15 17:09 - 000485888 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-03-15 10:05 - 2019-02-15 17:09 - 000355328 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2019-03-15 10:05 - 2019-02-15 17:09 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2019-03-15 10:05 - 2019-02-15 16:58 - 000382976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-03-15 10:05 - 2019-02-15 16:58 - 000320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2019-03-15 10:05 - 2019-02-15 16:40 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2019-03-15 10:05 - 2019-02-15 16:40 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2019-03-15 10:05 - 2019-02-15 16:40 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2019-03-15 10:05 - 2019-02-15 16:38 - 000360960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2019-03-15 10:05 - 2019-02-15 16:38 - 000053760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2019-03-15 10:05 - 2019-02-15 16:38 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2019-03-15 10:05 - 2019-02-15 16:38 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2019-03-15 10:05 - 2019-02-10 17:10 - 001680104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-03-15 10:05 - 2019-02-10 16:36 - 000328192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2019-03-15 10:05 - 2019-02-10 16:36 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2019-03-15 10:05 - 2019-02-10 16:36 - 000195584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2019-03-15 10:05 - 2019-02-10 16:35 - 000092672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2019-03-15 10:05 - 2019-02-08 17:08 - 002009088 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-03-15 10:05 - 2019-02-08 17:08 - 001889280 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2019-03-15 10:05 - 2019-02-08 17:08 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2019-03-15 10:05 - 2019-02-08 17:08 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2019-03-15 10:05 - 2019-02-08 17:07 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2019-03-15 10:05 - 2019-02-08 16:59 - 001391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-03-15 10:05 - 2019-02-08 16:59 - 001241088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2019-03-15 10:05 - 2019-02-08 16:59 - 000805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2019-03-15 10:05 - 2019-02-08 16:59 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2019-03-15 10:05 - 2019-02-08 16:59 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2019-03-15 10:05 - 2019-02-07 17:06 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\brdgcfg.dll
2019-03-15 10:05 - 2019-02-07 17:06 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\bridgeres.dll
2019-03-15 10:05 - 2019-02-07 17:01 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2019-03-15 10:05 - 2019-02-07 16:46 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\bridgeunattend.exe
2019-03-15 10:05 - 2019-02-03 16:36 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys
2019-03-15 10:05 - 2019-01-04 17:13 - 000143592 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-03-15 10:05 - 2019-01-04 17:07 - 000727040 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-03-15 10:05 - 2019-01-04 15:05 - 002862592 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-03-15 10:05 - 2019-01-04 15:05 - 001635328 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-03-15 10:05 - 2019-01-04 15:05 - 000799744 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-03-15 10:05 - 2019-01-04 15:05 - 000623104 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-03-15 10:05 - 2019-01-04 15:05 - 000495616 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2019-03-15 10:05 - 2019-01-04 15:05 - 000451584 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-03-15 10:05 - 2019-01-04 15:05 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-03-15 10:05 - 2019-01-04 15:05 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-03-15 10:05 - 2019-01-03 17:10 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-03-15 10:05 - 2019-01-03 16:55 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-03-15 09:54 - 2019-03-15 09:54 - 000362888 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2019-03-15 09:52 - 2019-03-29 16:56 - 000000000 ____D C:\Windows\System32\Tasks\Avast Software
2019-03-15 09:52 - 2019-03-23 09:14 - 000004168 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2019-03-15 09:52 - 2019-03-15 10:21 - 000000000 ____D C:\Users\Viktor\AppData\Roaming\AVAST Software
2019-03-15 09:52 - 2019-03-15 10:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2019-03-15 09:52 - 2019-03-15 09:52 - 000002499 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-03-15 09:52 - 2019-03-15 09:52 - 000002456 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2019-03-15 09:52 - 2019-03-15 09:52 - 000001926 _____ C:\Users\Public\Desktop\Avast Premier.lnk
2019-03-15 09:51 - 2019-03-15 10:06 - 000000000 ____D C:\Program Files (x86)\AVAST Software
2019-03-15 09:51 - 2019-03-15 09:54 - 001034640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2019-03-15 09:51 - 2019-03-15 09:54 - 000518784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2019-03-15 09:51 - 2019-03-15 09:54 - 000476256 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2019-03-15 09:51 - 2019-03-15 09:54 - 000380160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2019-03-15 09:51 - 2019-03-15 09:54 - 000320904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswblog.sys
2019-03-15 09:51 - 2019-03-15 09:54 - 000254408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2019-03-15 09:51 - 2019-03-15 09:54 - 000220632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2019-03-15 09:51 - 2019-03-15 09:54 - 000205608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2019-03-15 09:51 - 2019-03-15 09:54 - 000196304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2019-03-15 09:51 - 2019-03-15 09:54 - 000169104 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2019-03-15 09:51 - 2019-03-15 09:54 - 000112520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2019-03-15 09:51 - 2019-03-15 09:54 - 000088152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2019-03-15 09:51 - 2019-03-15 09:54 - 000058168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2019-03-15 09:51 - 2019-03-15 09:54 - 000042496 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2019-03-15 09:51 - 2019-03-15 09:51 - 000003504 _____ C:\Windows\System32\Tasks\AvastUpdateTaskMachineUA
2019-03-15 09:51 - 2019-03-15 09:51 - 000003376 _____ C:\Windows\System32\Tasks\AvastUpdateTaskMachineCore
2019-03-15 09:50 - 2019-03-15 10:07 - 000000000 ____D C:\Program Files\AVAST Software
2019-03-15 09:50 - 2019-03-15 09:50 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2019-03-15 09:42 - 2019-03-15 09:42 - 000028043 _____ C:\Users\Viktor\Downloads\[CzT]Avast_Internet_Security_Premier_Antivirus_2019_v_19_2_2364_CZ_.torrent
2019-03-14 16:12 - 2019-02-16 06:32 - 000142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2019-03-14 16:12 - 2019-02-16 06:30 - 000123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2019-03-14 16:12 - 2019-02-10 17:41 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2019-03-14 16:12 - 2019-02-10 17:41 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 003207168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 001329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 001177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 001005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000195072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll
2019-03-14 16:12 - 2019-02-10 17:41 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2019-03-14 16:12 - 2019-02-10 17:29 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2019-03-14 16:12 - 2019-02-10 17:29 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2019-03-14 16:12 - 2019-02-10 17:29 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2019-03-14 16:12 - 2019-02-10 17:28 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2019-03-14 16:12 - 2019-02-10 17:28 - 000023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2019-03-14 16:12 - 2019-02-10 17:10 - 000094440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2019-03-14 16:12 - 2019-02-10 17:09 - 014635520 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2019-03-14 16:12 - 2019-02-10 17:09 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2019-03-14 16:12 - 2019-02-10 17:09 - 001574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2019-03-14 16:12 - 2019-02-10 17:09 - 000782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2019-03-14 16:12 - 2019-02-10 17:09 - 000499712 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2019-03-14 16:12 - 2019-02-10 17:09 - 000371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2019-03-14 16:12 - 2019-02-10 17:09 - 000229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-03-14 16:12 - 2019-02-10 17:09 - 000187904 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-03-14 16:12 - 2019-02-10 17:09 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2019-03-14 16:12 - 2019-02-10 17:09 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2019-03-14 16:12 - 2019-02-10 17:09 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2019-03-14 16:12 - 2019-02-10 17:09 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2019-03-14 16:12 - 2019-02-10 17:09 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 004120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 001484800 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 001202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 001068544 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 000641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 000632320 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 000325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 000141824 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 000081920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2019-03-14 16:12 - 2019-02-10 17:08 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2019-03-14 16:12 - 2019-02-10 17:07 - 000842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2019-03-14 16:12 - 2019-02-10 17:07 - 000680448 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-03-14 16:12 - 2019-02-10 17:07 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-03-14 16:12 - 2019-02-10 17:07 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-03-14 16:12 - 2019-02-10 17:02 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2019-03-14 16:12 - 2019-02-10 16:50 - 000055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2019-03-14 16:12 - 2019-02-10 16:49 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-03-14 16:12 - 2019-02-10 16:49 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2019-03-14 16:12 - 2019-02-10 16:38 - 000011264 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2019-03-14 16:12 - 2019-02-10 16:38 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2019-03-10 10:50 - 2019-03-10 10:50 - 000014471 _____ C:\Users\Viktor\Downloads\[nCore][xvidser_hun]House.of.Cards.S03.COMPLETE.BDRip.x264.HUN-SLN.torrent
2019-03-10 10:50 - 2019-03-10 10:50 - 000014251 _____ C:\Users\Viktor\Downloads\[nCore][xvidser_hun]House.of.Cards.S02.COMPLETE.BDRip.x264.HUN-SLN.torrent
2019-03-10 10:50 - 2019-03-10 10:50 - 000014051 _____ C:\Users\Viktor\Downloads\[nCore][xvidser_hun]House.of.Cards.S05.COMPLETE.BDRip.x264.HUN-SLN.torrent
2019-03-10 10:50 - 2019-03-10 10:50 - 000013731 _____ C:\Users\Viktor\Downloads\[nCore][xvidser_hun]House.of.Cards.S04.COMPLETE.BDRip.x264.HUN-SLN.torrent
2019-03-10 10:49 - 2019-03-10 10:49 - 000033191 _____ C:\Users\Viktor\Downloads\[nCore][xvidser_hun]House.of.Cards.S01.COMPLETE.BDRip.x264.HUN-SLN.torrent
2019-03-10 10:46 - 2019-03-01 08:14 - 000133432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2019-03-10 10:44 - 2019-03-02 03:31 - 035481992 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl64.dll
2019-03-10 10:44 - 2019-03-02 03:31 - 032004560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2019-03-10 10:44 - 2019-03-02 03:31 - 029988272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl32.dll
2019-03-10 10:44 - 2019-03-02 03:31 - 010319696 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2019-03-10 10:44 - 2019-03-02 03:31 - 008784920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2019-03-10 10:44 - 2019-03-02 03:31 - 000419960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2019-03-10 10:44 - 2019-03-02 03:31 - 000163184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2019-03-10 10:44 - 2019-03-02 03:30 - 020687200 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2019-03-10 10:44 - 2019-03-02 03:30 - 020102416 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-03-10 10:44 - 2019-03-02 03:30 - 017430376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-03-10 10:44 - 2019-03-02 03:30 - 017148648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2019-03-10 10:44 - 2019-03-02 03:30 - 004317080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-03-10 10:44 - 2019-03-02 03:30 - 001168936 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2019-03-10 10:44 - 2019-03-02 03:30 - 000915096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2019-03-10 10:44 - 2019-03-02 03:30 - 000524248 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2019-03-10 10:44 - 2019-03-02 03:30 - 000450648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-03-10 10:44 - 2019-03-02 03:30 - 000182040 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2019-03-10 10:44 - 2019-03-02 03:30 - 000159480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2019-03-10 10:44 - 2019-03-02 03:30 - 000141568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2019-03-10 10:44 - 2019-03-01 23:34 - 020898688 _____ (NVIDIA Corporation) C:\Windows\system32\nvrtum64.dll
2019-03-10 10:44 - 2019-03-01 23:34 - 001006800 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2019-03-10 10:44 - 2019-03-01 23:34 - 001006800 _____ C:\Windows\system32\vulkan-1.dll
2019-03-10 10:44 - 2019-03-01 23:34 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2019-03-10 10:44 - 2019-03-01 23:34 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-03-10 10:44 - 2019-03-01 23:34 - 000551624 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-03-10 10:44 - 2019-03-01 23:34 - 000456904 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-03-10 10:44 - 2019-03-01 23:34 - 000286416 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2019-03-10 10:44 - 2019-03-01 23:34 - 000286416 _____ C:\Windows\system32\vulkaninfo.exe
2019-03-10 10:44 - 2019-03-01 23:34 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-03-10 10:44 - 2019-03-01 23:34 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-03-10 10:44 - 2019-03-01 23:33 - 071477352 _____ (NVIDIA Corp.) C:\Windows\system32\nvoptix.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 040336288 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 030017440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 020436624 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2019-03-10 10:44 - 2019-03-01 23:33 - 004870256 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 004340824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 002032032 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 001734560 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441935.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 001535392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 001468040 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441935.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 001464304 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 001130400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 000631896 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 000522168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 000419832 _____ C:\Windows\system32\nvofapi64.dll
2019-03-10 10:44 - 2019-03-01 23:33 - 000369000 _____ C:\Windows\SysWOW64\nvofapi.dll
2019-03-10 10:44 - 2019-03-01 23:32 - 040234912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-03-10 10:44 - 2019-03-01 23:32 - 035140696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-03-10 10:44 - 2019-03-01 23:32 - 000496384 _____ (NVIDIA Corporation) C:\Windows\system32\nvcbl64.dll
2019-03-09 08:13 - 2019-03-09 08:13 - 000181059 _____ C:\Users\Viktor\Downloads\[nCore][hdser]Formula_1_Drive_to_Survive_S01_1080p.torrent
2019-03-09 08:12 - 2019-03-09 08:12 - 000118463 _____ C:\Users\Viktor\Downloads\[nCore][hdser]Formula_1_Drive_to_Survive_S01_720p.torrent
2019-03-08 17:42 - 2019-03-08 17:42 - 000105223 _____ C:\Users\Viktor\Downloads\[nCore][hdser]The.Grand.Tour.S03E09.720p.WEB.H264-MEMENTO.torrent
2019-03-08 17:40 - 2019-03-08 17:40 - 000028851 _____ C:\Users\Viktor\Downloads\[CzT]Lovci_zlocincu_Person_of_Interest_5_serie_CZ_TvRip_.torrent
2019-03-07 17:48 - 2019-03-07 17:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2019-03-03 15:40 - 2019-03-03 15:40 - 000982313 _____ C:\Users\Viktor\Downloads\David Bowie Let's Dance (mp3cut.net).m4r
2019-03-02 15:24 - 2019-03-02 15:24 - 000863709 _____ C:\Users\Viktor\Downloads\Black Sabbath - Paranoid (HQ) (mp3cut.net) (1).m4r
2019-03-02 15:18 - 2019-03-02 15:18 - 000857467 _____ C:\Users\Viktor\Downloads\Black Sabbath - Paranoid (HQ) (mp3cut.net).m4r
2019-03-02 10:12 - 2019-03-02 10:12 - 000035569 _____ C:\Users\Viktor\Downloads\[CzT]Lovci_zlocincu_Person_of_Interest_4_serie_CZ_720p_.torrent
2019-03-01 17:49 - 2019-03-01 17:49 - 000072377 _____ C:\Users\Viktor\Downloads\[nCore][hdser]The.Grand.Tour.S03E08.720p.WEB.H264-AMCON.torrent
2019-02-28 19:22 - 2019-02-28 19:22 - 000973447 _____ C:\Users\Viktor\Downloads\Chase & Status - All Goes Wrong ft. Tom Grennan (mp3cut.net).m4r
2019-02-28 19:19 - 2019-02-28 19:19 - 000981094 _____ C:\Users\Viktor\Downloads\Hybrid Minds - Touch (ft. Tiffani Juno) (mp3cut.net).m4r
2019-02-28 19:13 - 2019-02-28 19:13 - 000733008 _____ C:\Users\Viktor\Downloads\Childish Gambino - This Is America (Official Music Video) (mp3cut.net).m4r

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-29 17:02 - 2009-07-14 05:45 - 000021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-03-29 17:02 - 2009-07-14 05:45 - 000021280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-03-29 16:56 - 2018-08-16 11:43 - 000004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-29 16:56 - 2018-08-16 11:43 - 000003940 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-29 16:56 - 2018-08-16 11:43 - 000003798 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-29 16:56 - 2018-08-16 11:43 - 000003792 _____ C:\Windows\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-29 16:56 - 2018-08-16 11:43 - 000003792 _____ C:\Windows\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-29 16:56 - 2018-08-16 11:43 - 000003792 _____ C:\Windows\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-29 16:56 - 2018-08-16 11:43 - 000003790 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-29 16:56 - 2018-08-16 11:43 - 000003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-29 16:56 - 2018-08-16 11:43 - 000003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-29 16:56 - 2018-08-16 11:43 - 000003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-29 16:56 - 2018-08-16 11:43 - 000003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-29 16:56 - 2018-06-23 11:16 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2019-03-29 16:56 - 2018-06-23 11:16 - 000002794 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2019-03-29 16:56 - 2018-06-09 09:44 - 000003368 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-29 16:56 - 2018-06-09 09:44 - 000003240 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-29 16:23 - 2011-04-12 11:42 - 000675348 _____ C:\Windows\system32\perfh00E.dat
2019-03-29 16:23 - 2011-04-12 11:42 - 000170932 _____ C:\Windows\system32\perfc00E.dat
2019-03-29 16:23 - 2009-07-14 06:13 - 001627988 _____ C:\Windows\system32\PerfStringBackup.INI
2019-03-29 16:23 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-03-29 16:18 - 2018-08-15 15:52 - 000000000 ____D C:\ProgramData\NVIDIA
2019-03-29 16:16 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-03-26 19:27 - 2018-06-09 09:45 - 000002240 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-26 19:27 - 2018-06-09 09:45 - 000002199 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-03-25 17:15 - 2018-08-27 15:49 - 000000000 ____D C:\Users\Viktor\AppData\Local\CrashDumps
2019-03-24 19:15 - 2018-08-16 11:15 - 000000000 ____D C:\Users\Viktor\Documents\My Games
2019-03-24 19:09 - 2018-10-21 15:29 - 000000000 ____D C:\Users\Viktor\Desktop\Viktor Súbory
2019-03-24 19:05 - 2018-12-15 11:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2019-03-24 08:03 - 2018-08-15 15:52 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-03-23 22:18 - 2018-08-02 21:50 - 000000000 ____D C:\Users\Viktor\AppData\Roaming\vlc
2019-03-23 22:05 - 2018-08-16 11:43 - 000001378 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2019-03-23 22:05 - 2018-08-15 15:51 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-03-23 22:05 - 2018-08-15 15:48 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-03-23 22:05 - 2018-06-09 09:38 - 000001437 _____ C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2019-03-23 09:58 - 2018-07-21 10:05 - 000000000 ____D C:\Users\Viktor\AppData\Roaming\uTorrent
2019-03-22 17:10 - 2019-02-20 17:18 - 000003134 _____ C:\Windows\System32\Tasks\ExclusiveTool
2019-03-22 16:40 - 2018-07-29 09:32 - 000000000 ____D C:\Users\Viktor\AppData\Roaming\discord
2019-03-22 16:40 - 2018-06-22 06:28 - 000000000 ____D C:\ProgramData\Epic
2019-03-18 16:11 - 2018-08-16 11:43 - 002769904 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2019-03-18 16:11 - 2018-08-16 11:43 - 002149872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2019-03-18 16:11 - 2018-08-16 11:43 - 001323504 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2019-03-18 15:31 - 2018-08-15 15:53 - 000001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2019-03-17 15:24 - 2018-10-21 15:28 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-03-16 19:33 - 2018-06-27 11:02 - 000000000 ____D C:\Users\Viktor\AppData\Roaming\TS3Client
2019-03-16 12:23 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2019-03-16 09:34 - 2018-06-23 09:21 - 000000000 ____D C:\Users\Viktor\AppData\Roaming\Raptr
2019-03-15 11:19 - 2018-09-25 12:38 - 000000000 ____D C:\Users\Viktor\AppData\Roaming\Sony
2019-03-15 11:19 - 2018-06-10 09:02 - 000000000 ____D C:\ProgramData\DriverGenius
2019-03-15 11:19 - 2018-06-09 10:31 - 000000000 ____D C:\Windows\Panther
2019-03-15 11:17 - 2018-06-10 09:01 - 000000000 ___HD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\~Driver Genius
2019-03-15 10:29 - 2018-06-09 12:27 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-03-15 10:29 - 2018-06-09 12:27 - 000000000 ____D C:\Windows\system32\appraiser
2019-03-15 10:13 - 2018-06-23 11:18 - 000000000 ____D C:\Users\Viktor\AppData\Local\AVAST Software
2019-03-15 10:07 - 2018-06-23 11:16 - 000000000 ____D C:\ProgramData\AVAST Software
2019-03-15 10:00 - 2018-06-23 11:16 - 000000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-03-15 10:00 - 2018-06-23 11:16 - 000000000 ____D C:\Program Files\CCleaner
2019-03-15 10:00 - 2018-06-15 18:50 - 000000000 ____D C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-03-15 10:00 - 2018-06-15 18:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-03-15 10:00 - 2018-06-15 18:49 - 000000000 ____D C:\Program Files (x86)\WinRAR
2019-03-15 08:24 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\Dism
2019-03-15 08:24 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\Dism
2019-03-14 21:51 - 2018-06-09 11:45 - 127411920 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-03-14 21:51 - 2018-06-09 11:45 - 000000000 ____D C:\Windows\system32\MRT
2019-03-14 16:06 - 2018-07-29 09:32 - 000002174 _____ C:\Users\Viktor\Desktop\Discord.lnk
2019-03-14 16:06 - 2018-07-29 09:32 - 000000000 ____D C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2019-03-14 16:06 - 2018-07-29 09:32 - 000000000 ____D C:\Users\Viktor\AppData\Local\Discord
2019-03-10 13:27 - 2018-08-16 10:06 - 000000000 ____D C:\Users\Viktor\AppData\Local\NVIDIA
2019-03-10 10:46 - 2018-08-15 15:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-03-07 17:50 - 2018-10-07 12:22 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-03-07 17:49 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2019-03-07 17:48 - 2018-11-15 18:55 - 000002468 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visio 2016.lnk
2019-03-07 17:48 - 2018-11-15 18:55 - 000002438 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2019-03-07 17:48 - 2018-11-15 18:55 - 000002420 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project 2016.lnk
2019-03-07 17:48 - 2018-11-15 18:55 - 000002415 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2019-03-07 17:48 - 2018-11-15 18:55 - 000002410 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2019-03-07 17:48 - 2018-11-15 18:55 - 000002332 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2019-03-07 17:48 - 2018-10-07 12:21 - 000000000 ____D C:\Program Files\Microsoft Office
2019-03-02 03:31 - 2018-08-15 15:51 - 037299944 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2019-03-02 03:31 - 2018-08-15 15:51 - 000506024 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2019-03-02 03:30 - 2018-08-15 15:51 - 004874744 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-03-01 11:27 - 2019-02-07 15:47 - 000047135 _____ C:\Windows\system32\nvinfo.pb
2019-03-01 08:15 - 2018-08-15 15:52 - 005364592 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-03-01 08:15 - 2018-08-15 15:52 - 002625008 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-03-01 08:15 - 2018-08-15 15:52 - 001767920 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-03-01 08:15 - 2018-08-15 15:52 - 000651248 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2019-03-01 08:15 - 2018-08-15 15:52 - 000450872 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-03-01 08:15 - 2018-08-15 15:52 - 000125424 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-03-01 08:15 - 2018-08-15 15:52 - 000082800 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2019-02-27 17:40 - 2018-08-15 15:52 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2019-02-27 16:51 - 2018-08-16 11:48 - 000000000 ____D C:\Users\Viktor\Documents\Euro Truck Simulator 2

==================== Files in the root of some directories =======

2018-10-13 10:09 - 2018-10-13 10:09 - 000000112 _____ () C:\Users\Viktor\AppData\Roaming\Předvolby CS6 pro JP2K
2018-10-13 09:57 - 2018-10-30 11:13 - 000002088 _____ () C:\Users\Viktor\AppData\Roaming\Startup.Profile_ImageEngine

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\SysWOW64\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2019-03-26 19:44

==================== End of FRST.txt ============================
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)

Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 204
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: E-Mail, Phising alebo niečo podobné

#22 Příspěvek od Sudoku33 »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by Viktor (29-03-2019 17:14:14)
Running from C:\Users\Viktor\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2018-06-09 08:37:36)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

HomeGroupUser$ (S-1-5-21-1175164242-2520376927-1258050692-1002 - Limited - Enabled)
Rendszergazda (S-1-5-21-1175164242-2520376927-1258050692-500 - Administrator - Disabled)
Vendég (S-1-5-21-1175164242-2520376927-1258050692-501 - Limited - Disabled)
Viktor (S-1-5-21-1175164242-2520376927-1258050692-1000 - Administrator - Enabled) => C:\Users\Viktor

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Apple Mobile Device Support (HKLM\...\{5FA8C4BE-8C74-4B9C-9B49-EBF759230189}) (Version: 12.1.0.25 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 18.3.6507 - AVAST Software)
Avast Premier (HKLM-x32\...\Avast Antivirus) (Version: 19.3.2369 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 72.0.1174.122 - AVAST Software)
Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 5.2.429 - AVAST Software)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.154.333 - AVAST Software) Hidden
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.0.0 - Canon Inc.)
Canon MG3600 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3600_series) (Version: 1.00 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.55 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0455 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.35 - NVIDIA Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{E7B62E3F-0F70-4119-89A2-28DE1C3873CC}) (Version: 1.1.163.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Farming Simulator 19 (HKLM-x32\...\Farming Simulator 19_is1) (Version: - )
FIFA 19 (HKLM-x32\...\{3391E07D-8484-4124-817E-FCBDA859FD62}) (Version: 1.0.58.64628 - Electronic Arts)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.86 - Spoločnosť Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: "1.0.0.10" - Rockstar Games)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
InputMapper (HKLM-x32\...\{026D2025-A7FA-4F5C-AF8C-A6F7A9B917FC}) (Version: 1.6.10.19991 - DSDCS)
iTunes (HKLM\...\{CB6A0A57-6479-4017-B4B2-3BB85EC79CEB}) (Version: 12.9.3.3 - Apple Inc.)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.17.65.11 - JMicron Technology Corp.)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Malwarebytes verze 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET-keretrendszer 4.7.2 (magyar) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1038) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.11328.20146 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft Project Professional 2016 - cs-cz (HKLM\...\ProjectProRetail - cs-cz) (Version: 16.0.11328.20146 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Visio Professional 2016 - cs-cz (HKLM\...\VisioProRetail - cs-cz) (Version: 16.0.11328.20146 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision illesztőprogram 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.35 - NVIDIA Corporation)
NVIDIA 3D Vision vezérlő illesztőprogram 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.18.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.94 - NVIDIA Corporation)
NVIDIA Grafikus illesztőprogram 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.35 - NVIDIA Corporation)
NVIDIA HD audio-illesztőprogram 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA PhysX rendszerszoftver 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20146 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.11328.20146 - Microsoft Corporation) Hidden
Podpora Apple aplikácií (32-bit) (HKLM-x32\...\{5A659BE5-849B-484E-A83B-DCB78407F3A4}) (Version: 7.3 - Apple Inc.)
Podpora Apple aplikácií(64-bit) (HKLM\...\{F8060941-C0AB-4BCE-88AC-F2FDA2E9F286}) (Version: 7.3 - Apple Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.10-r123135-release - Raptr, Inc)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG3600 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG3600 series) (Version: - ‭Canon Inc.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.39.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.39.0 - Renesas Electronics Corporation)
RIDE 3 (HKLM-x32\...\RIDE 3_is1) (Version: - )
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.21a - Ghisler Software GmbH)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
WinRAR 5.70 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-05-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-05-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-03-15] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0BF22179-6868-4F58-BFC1-03249D78F77D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {2B048264-3074-4BF7-A805-D7C2129CF149} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {2F0C7516-9556-486F-B692-AC2D27145742} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2F32D486-29AE-4064-9B10-1C68A8617FB9} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {3160DEB3-4C4B-4453-AB87-FC9E386E6705} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {325C5D34-9820-48CE-BC1B-7D2CFD073DD3} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {328698F2-65A7-436E-8871-61FED5DFE08B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {4334B341-E97C-4130-A589-D1DC3C2349E3} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5D3F15BE-3B46-4DFD-8D82-77E9AE36635A} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {631E6A20-6F99-4BAA-961C-AD1420CAB7D5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {725061B5-CD86-43A6-991E-3301B2BBD2FA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {72CAE84A-AC3A-4CA3-AE21-47C72CB16C92} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {7D3E2BAB-63DD-4D52-8BEA-B9AC0922C5F0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {82E114E6-E40E-4E1A-976E-F4601485B9EC} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8D2AFFE4-1359-4DB7-898C-DC524E38C617} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A605200D-2593-41AF-8D27-75668DC0D346} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {AEA01DD7-4507-4DC8-AFFC-AC28E11B8B03} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe (Apple Inc. -> Apple Inc.)
Task: {B060D05A-FF5C-45EA-899D-EFA2D02C6040} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0B58CD5-F7D6-4482-AE98-0E11E616DE34} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {BAA3073F-5FE2-4392-9E9E-BCDE5FFEA7FA} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C440CE86-7DF3-4042-8508-008FE82F3F63} - System32\Tasks\Avast Cleanup Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {D90E2B64-9381-45AE-9DD8-B454BF580555} - System32\Tasks\ExclusiveTool => C:\Program Files (x86)\DSDCS\InputMapper\ExclusiveModeTool.exe (InputMapper) [File not signed]
Task: {DC0544A0-49BE-4869-8B6A-188AAA208670} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {DCBF4D19-D888-44B9-819E-227ED32C88F7} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E1979F22-AC41-444D-96E6-C7146F6262DF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {E621CBB0-80D9-461B-8011-DA7E4ED660AB} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {EFFA179D-BA73-4FAE-83EE-5948E72F4D82} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {F4E7E975-A150-4217-9ED8-02FE0F174136} - System32\Tasks\Avast SecureLine Update => C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {F5719E86-1A79-4A27-B0DE-7CE79096EE6B} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FA7453B7-E991-4CB9-860A-661FFFFD15A5} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FAF009A9-A8E7-466A-92C1-1DBBA5B9F4B6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Loaded Modules (Whitelisted) ==============

2018-06-15 15:30 - 2018-06-15 15:30 - 001654784 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\amd64_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8448b2bd328df189\MFC80U.DLL
2019-03-15 10:07 - 2018-09-05 21:32 - 002095104 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\AVAST Software\SecureLine\libcrypto-1_1.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 003084800 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 005139968 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 005010944 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 002950144 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 002234880 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 004571648 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000438272 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 001181184 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000124928 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000259584 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000729088 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000073216 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000179712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-03-24 18:17 - 2019-03-13 09:22 - 000101888 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2019-03-15 10:06 - 2016-09-12 14:53 - 048936448 _____ () [File not signed] C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\AppData:CSM [472]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-03-15 09:55 - 000000989 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1 75.126.120.203
127.0.0.1 46.4.58.71
127.0.0.1 46.4.62.150
127.0.0.1 46.4.28.80

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Viktor\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1 - 195.146.128.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{55E6FCC7-BDD1-4D3A-8464-6D154940C5B9}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{CB18DB7F-4D39-409C-AE7F-88BB0E9B28CD}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe (Raptr, Inc -> Raptr, Inc)
FirewallRules: [{0A4B937A-9B94-45DE-9DC0-59CF7A94E92B}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe (Raptr, Inc -> Raptr, Inc)
FirewallRules: [{BD41C21F-0036-4B03-9B64-DC7167FF3AFF}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe (Raptr, Inc -> Raptr, Inc)
FirewallRules: [{AC75B514-F75C-4A95-AB36-2DD377B15E58}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe (Raptr, Inc -> Raptr, Inc)
FirewallRules: [{ADDABA70-A98D-4C05-97C5-63226CA6F892}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{4AD63772-F31F-4ACD-90E6-74B6A4A00811}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{E2FE2926-910D-4F32-8B05-16391F5C2A2E}C:\users\viktor\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\viktor\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{CE46DF89-9794-47E3-A094-8790F478D845}C:\users\viktor\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\viktor\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{1F012BA9-42D4-4F0A-BD17-0F0CCEEE0D5E}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{496DE04C-B8B4-42B6-AD3D-F95B8960CFE6}] => (Allow) D:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{1639FA8C-2AAE-458F-9DF8-0134A567E303}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6403B8C2-B463-439D-B079-35077688EF9C}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{EB97F3A1-9D80-469D-92BC-60EEA319EE8B}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{082598CF-3BCC-4661-82ED-A62E60997A96}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{871320C9-6D89-45E8-A841-F47DAA9DDC01}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E523C78F-A61E-4B56-A080-423F0CBF375B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{51046E20-852D-4B10-8EB8-E972899B8511}D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{0F2578C5-A5A0-4E1C-896C-43E71AC41B51}D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{FDB0B730-8BE4-46E0-ABF3-02E30170549A}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{DE0106BA-400B-44C3-B659-DDD2D79F8442}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{C956C541-FC7A-44FA-BEEC-F8EBAB788947}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{BA090821-8B7B-44CE-B817-3C7355CB6815}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{0A19775B-DAB0-40DA-A4B5-A50F4E8A1C47}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{7C1CDFE7-3D07-4F45-8575-ED3E3AA328E1}D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\games\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{3D0C3FC1-0320-4FE4-95C2-42D3C7FCC203}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A7C6D03C-221A-4677-8031-22F664915E74}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{DD6B381B-3A59-4373-B84B-24E1CC2E6A74}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{032DAEAC-BE1D-4ABF-9D04-6BB213D8200B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{44EB9DC9-6110-4750-9623-E91B0BF36544}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{24185B9A-C596-4930-A339-9984115E3D0A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{504154C6-C5FE-4D0C-B463-B97C7D5237D3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2FDAC441-489B-4FCD-8E51-CBD402B42F7C}] => (Allow) D:\Steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B4EF9E1E-40F1-4BA7-8186-B21CADB09E3B}] => (Allow) D:\Steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{023E2FAD-6B24-4448-8623-C5316E82EA11}D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{FDB88B4F-51A8-4D8A-A319-3918F4F6A2E3}D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe] => (Allow) D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.178\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [TCP Query User{DD3FE26B-F4D1-4FAF-A75F-930DAD5C008C}C:\users\viktor\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\viktor\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{5F6DB0CC-8962-4EEF-BF2E-30E65DE8BFE6}C:\users\viktor\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\viktor\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{E04942D5-5008-48E9-908B-A17959004A0C}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{21CF4554-F257-4653-99DA-0DAA02BB6A0E}] => (Allow) D:\Games\FIFA19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{422C0476-8C1E-4BE6-9820-AB01BB76366D}] => (Allow) D:\Games\FIFA19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{205B37C5-71CB-4B70-8B86-D1EEBF3ABA17}] => (Allow) D:\Steam\steamapps\common\F1 2018\F1_2018.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{D8FD513A-5A7E-4357-A61C-EB1E8A984995}] => (Allow) D:\Steam\steamapps\common\F1 2018\F1_2018.exe (Codemasters Software Company Limited) [File not signed]
FirewallRules: [{E28ACE11-2DB0-4F29-9E21-0036CBABBCA9}] => (Allow) D:\Games\Rockstar Games\Grand Theft Auto V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{5943D331-95FE-4668-9A30-EBBA6C836435}] => (Allow) D:\Games\Rockstar Games\Grand Theft Auto V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{A17AFA0B-405C-49D8-8E51-0817B648DAB8}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{78DF17F7-DBBD-4441-9D6B-B38E17BA15F3}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{30E60EB6-2DB8-4647-80F5-641C332B79CF}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{0F080F7C-79C9-4DC7-AB88-F19A66170DCC}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [TCP Query User{409552C2-8EC6-496F-8F12-9A98E62B7C6D}D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [UDP Query User{1123DCD4-1F31-43C3-9275-C8F981D24E18}D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe] => (Allow) D:\games\riot games\league of legends\rads\projects\league_client\releases\0.0.0.192\deploy\leagueclient.exe (Riot Games, Inc. -> )
FirewallRules: [{E2EFD6C7-68BE-425A-AF14-A6B08024D370}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{48AA51A6-CD1A-462F-8A12-D8C956637F04}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{74A07F98-20B6-49B2-BF71-065D8BE9D965}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{479F6F8A-8F0F-4051-950B-9666827747CF}] => (Allow) C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{342F646E-33A9-4BB0-9459-ADFECE5D7F57}] => (Allow) C:\Program Files\AVAST Software\SecureLine\VpnUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{2CE74C34-5A38-44A0-890C-D680866D422F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{53177BDA-6A02-4A16-A826-DB7412BCEA65}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4B71B6B3-1FC9-48DB-9BE4-2CFA7328156E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{74BFB939-67A6-49F0-B505-3A456610AA8B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B938C96B-C820-4902-A30A-2EC58C227077}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{8F4C8F9B-30BD-4611-9EE7-1871199E3F46}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{6178AA92-591F-48A7-9665-69092CA414E7}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{5322154A-B1CC-4BF9-9097-AAF2CE592B32}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{02C48A0D-BE09-46FE-B856-7A0B8764B086}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================

24-03-2019 19:05:37 Removed 7-Zip 19.00 (x64 edition)
24-03-2019 19:05:54 Removed Java 8 Update 201 (64-bit)
24-03-2019 19:15:56 Installed Avast Driver Updater

==================== Faulty Device Manager Devices =============

Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/29/2019 05:13:21 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Nem sikerült kibontani a külső féltől származó legfelső szintű listát az automatikus frissítési kabinetfájlból: <http://ctldl.windowsupdate.com/msdownlo ... ootstl.cab>. Hiba: A tanúsítvány nem érvényes a kért használathoz.
.

Error: (03/29/2019 05:13:21 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Nem sikerült kibontani a külső féltől származó legfelső szintű listát az automatikus frissítési kabinetfájlból: <http://ctldl.windowsupdate.com/msdownlo ... ootstl.cab>. Hiba: A tanúsítvány nem érvényes a kért használathoz.
.

Error: (03/29/2019 05:13:21 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Nem sikerült kibontani a külső féltől származó legfelső szintű listát az automatikus frissítési kabinetfájlból: <http://ctldl.windowsupdate.com/msdownlo ... ootstl.cab>. Hiba: A tanúsítvány nem érvényes a kért használathoz.
.

Error: (03/29/2019 05:13:20 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Nem sikerült kibontani a külső féltől származó legfelső szintű listát az automatikus frissítési kabinetfájlból: <http://ctldl.windowsupdate.com/msdownlo ... ootstl.cab>. Hiba: A tanúsítvány nem érvényes a kért használathoz.
.

Error: (03/29/2019 05:13:20 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Nem sikerült kibontani a külső féltől származó legfelső szintű listát az automatikus frissítési kabinetfájlból: <http://ctldl.windowsupdate.com/msdownlo ... ootstl.cab>. Hiba: A tanúsítvány nem érvényes a kért használathoz.
.

Error: (03/29/2019 05:13:20 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Nem sikerült kibontani a külső féltől származó legfelső szintű listát az automatikus frissítési kabinetfájlból: <http://ctldl.windowsupdate.com/msdownlo ... ootstl.cab>. Hiba: A tanúsítvány nem érvényes a kért használathoz.
.

Error: (03/29/2019 05:13:20 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Nem sikerült kibontani a külső féltől származó legfelső szintű listát az automatikus frissítési kabinetfájlból: <http://ctldl.windowsupdate.com/msdownlo ... ootstl.cab>. Hiba: A tanúsítvány nem érvényes a kért használathoz.
.

Error: (03/29/2019 05:13:10 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: )
Description: Nem sikerült kibontani a külső féltől származó legfelső szintű listát az automatikus frissítési kabinetfájlból: <http://ctldl.windowsupdate.com/msdownlo ... ootstl.cab>. Hiba: A tanúsítvány nem érvényes a kért használathoz.
.


System errors:
=============
Error: (03/29/2019 04:15:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: A(z) Avast Cleanup Premium szolgáltatás váratlanul leállt. Ez a(z) 1. alkalommal fordult elő. 5000 milliszekundumon belül a következő ellenintézkedés történik: A szolgáltatás újraindítása.

Error: (03/29/2019 04:15:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: A(z) A Windows Media Player hálózatmegosztási szolgáltatása szolgáltatás váratlanul leállt. Ez a(z) 1. alkalommal fordult elő. 30000 milliszekundumon belül a következő ellenintézkedés történik: A szolgáltatás újraindítása.

Error: (03/29/2019 04:15:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: A(z) NVIDIA Telemetry Container szolgáltatás váratlanul leállt. Ez a(z) 1. alkalommal fordult elő. 1000 milliszekundumon belül a következő ellenintézkedés történik: A szolgáltatás újraindítása.

Error: (03/29/2019 04:15:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: A(z) NVIDIA LocalSystem Container szolgáltatás váratlanul leállt. Ez a(z) 1. alkalommal fordult elő. 6000 milliszekundumon belül a következő ellenintézkedés történik: A szolgáltatás újraindítása.

Error: (03/29/2019 04:15:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: A(z) NVIDIA Display Container LS szolgáltatás váratlanul leállt. Ez a(z) 1. alkalommal fordult elő. 6000 milliszekundumon belül a következő ellenintézkedés történik: A szolgáltatás újraindítása.


Windows Defender:
===================================
Date: 2018-06-17 07:47:22.331
Description:
A(z) Windows Defender vizsgálata a befejezés előtt leállt.
Vizsgálat azonosítója:{6621B7F2-FE62-4661-AEA2-AEF36896F871}
Vizsgálat típusa:Kémprogram-elhárító
Vizsgálati paraméterek:Gyors ellenőrzés
Felhasználó:NT AUTHORITY\HÁLÓZATI SZOLGÁLTATÁS

Date: 2018-07-04 09:18:44.734
Description:
A(z) Windows Defender hibát észlelt az aláírások frissítése során.
Új aláírás-verzió:1.271.442.0
Korábbi aláírás-verzió:1.269.1075.0
Frissítés forrása:Felhasználó
Aláírás típusa:Kémprogram-elhárító
Frissítés típusa:Növekményes
Felhasználó:NT AUTHORITY\SYSTEM
Jelenlegi motorverzió:1.1.15000.2
Korábbi motorverzió:1.1.14901.4
Hibakód:0x80070666
Hiba leírása:A termék egy másik verziója már telepítve van. A jelenlegi verzió telepítése nem folytatható. A létező verzió konfigurálásához használja a Vezérlőpult Programtelepítés alkalmazását

Date: 2018-07-04 09:18:44.734
Description:
A(z) Windows Defender hibát észlelt a motor frissítése közben.
Új motorverzió:1.1.15000.2
Korábbi motorverzió:1.1.14901.4
Frissítés forrása:Felhasználó
Felhasználó:NT AUTHORITY\SYSTEM
Hibakód:0x80070666
Hiba leírása:A termék egy másik verziója már telepítve van. A jelenlegi verzió telepítése nem folytatható. A létező verzió konfigurálásához használja a Vezérlőpult Programtelepítés alkalmazását

==================== Memory info ===========================

Processor: AMD Phenom(tm) II X4 965 Processor
Percentage of memory in use: 40%
Total physical RAM: 8188.54 MB
Available physical RAM: 4878.33 MB
Total Virtual: 16375.21 MB
Available Virtual: 12167.2 MB

==================== Drives ================================

Drive c: (Win7) (Fixed) (Total:111.69 GB) (Free:33.14 GB) NTFS
Drive d: (Data1) (Fixed) (Total:465.76 GB) (Free:207 GB) NTFS
Drive e: (Data2) (Fixed) (Total:465.75 GB) (Free:306.16 GB) NTFS

\\?\Volume{96be5efa-6bbf-11e8-9ca4-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 6C90B5D4)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119586
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: E-Mail, Phising alebo niečo podobné

#23 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
ContextMenuHandlers1: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> No File
ContextMenuHandlers4: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> No File
ContextMenuHandlers6: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> No File
Task: {725061B5-CD86-43A6-991E-3301B2BBD2FA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {A605200D-2593-41AF-8D27-75668DC0D346} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
AlternateDataStreams: C:\Users\Public\AppData:CSM [472]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\MountPoints2: G - G:\setup.exe
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\MountPoints2: {625923b7-289d-11e9-9dcc-1c6f65486b6d} - G:\Lenovo_Suite.exe
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\MountPoints2: {a14debbf-70c3-11e8-8e54-1c6f65486b6d} - H:\setup.exe
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\MountPoints2: {bb3e40e6-a093-11e8-8261-806e6f6e6963} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\SharkCollection.html
GroupPolicy: Restriction ? <==== ATTENTION
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
Hosts:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 204
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: E-Mail, Phising alebo niečo podobné

#24 Příspěvek od Sudoku33 »

Idem nato, zistili ste čo v tom je? Ak áno, čo prosím?
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119586
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: E-Mail, Phising alebo niečo podobné

#25 Příspěvek od Rudy »

OK. V PC jsou víceméně jen zbytečnosti, které by neměly uvedený problém způsobovat. Zřejmě si vás někdo vybral a zkouší na co mu skočíte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 204
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: E-Mail, Phising alebo niečo podobné

#26 Příspěvek od Sudoku33 »

Čiže sa nemusím o seba a svoj PC báť, však? VÍRUS v tom teda nebol?

https://tech.sme.sk/c/22032249/uniklo-o ... udaje.html

Vyzera to tak ze odtialto mali moj mail a moje heslo (samozrejme staré)
Naposledy upravil(a) Sudoku33 dne 29 bře 2019 18:24, celkem upraveno 2 x.
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)

Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 204
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: E-Mail, Phising alebo niečo podobné

#27 Příspěvek od Sudoku33 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by Viktor (29-03-2019 18:19:26) Run:1
Running from C:\Users\Viktor\Desktop
Loaded Profiles: Viktor (Available Profiles: Viktor)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers1: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> No File
ContextMenuHandlers4: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> No File
ContextMenuHandlers6: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> No File
Task: {725061B5-CD86-43A6-991E-3301B2BBD2FA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {A605200D-2593-41AF-8D27-75668DC0D346} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
AlternateDataStreams: C:\Users\Public\AppData:CSM [472]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [474]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\MountPoints2: G - G:\setup.exe
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\MountPoints2: {625923b7-289d-11e9-9dcc-1c6f65486b6d} - G:\Lenovo_Suite.exe
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\MountPoints2: {a14debbf-70c3-11e8-8e54-1c6f65486b6d} - H:\setup.exe
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\...\MountPoints2: {bb3e40e6-a093-11e8-8261-806e6f6e6963} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL F:\SharkCollection.html
GroupPolicy: Restriction ? <==== ATTENTION
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\MagicISO => removed successfully
HKLM\Software\Classes\CLSID\{DB85C504-C730-49DD-BEC1-7B39C6103B7A} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MagicISO => removed successfully
HKLM\Software\Classes\CLSID\{DB85C504-C730-49DD-BEC1-7B39C6103B7A} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\MagicISO => removed successfully
HKLM\Software\Classes\CLSID\{DB85C504-C730-49DD-BEC1-7B39C6103B7A} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{725061B5-CD86-43A6-991E-3301B2BBD2FA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{725061B5-CD86-43A6-991E-3301B2BBD2FA}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A605200D-2593-41AF-8D27-75668DC0D346}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A605200D-2593-41AF-8D27-75668DC0D346}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
C:\Users\Public\AppData => ":CSM" ADS removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G => removed successfully
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{625923b7-289d-11e9-9dcc-1c6f65486b6d} => removed successfully
HKLM\Software\Classes\CLSID\{625923b7-289d-11e9-9dcc-1c6f65486b6d} => not found
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a14debbf-70c3-11e8-8e54-1c6f65486b6d} => removed successfully
HKLM\Software\Classes\CLSID\{a14debbf-70c3-11e8-8e54-1c6f65486b6d} => not found
HKU\S-1-5-21-1175164242-2520376927-1258050692-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{bb3e40e6-a093-11e8-8261-806e6f6e6963} => removed successfully
HKLM\Software\Classes\CLSID\{bb3e40e6-a093-11e8-8261-806e6f6e6963} => not found
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 21307076 B
Java, Flash, Steam htmlcache => 320034534 B
Windows/system/drivers => 278719518 B
Edge => 0 B
Chrome => 380866533 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 83703 B
systemprofile32 => 65954 B
LocalService => 66228 B
NetworkService => 66228 B
Viktor => 5844958 B

RecycleBin => 360292 B
EmptyTemp: => 968.7 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:19:46 ====
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119586
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: E-Mail, Phising alebo niečo podobné

#28 Příspěvek od Rudy »

Smazáno. Bylo tam jen pár AdWarů a zbytečnosti. Žádný virus v pravém slova smyslu. Log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Uživatelský avatar
Sudoku33
Návštěvník
Návštěvník
Příspěvky: 204
Registrován: 24 bře 2019 20:36
Bydliště: Slovensko

Re: E-Mail, Phising alebo niečo podobné

#29 Příspěvek od Sudoku33 »

Takže žiadny keylogger ani nič podobné čo by mi mohlo uškodiť? :) nemusím sa báť? :D


Bombá! Ďakujem Vám veľmi pekne pán Rudy! Ste šéf, posielam v priebehu pár dní určite nejakú tú korunku na chod fóra :|
PC: Intel Core i5-11600k (3,9GHz)
16GB DDR4 Ram
120GB SSD Kingston + 1TB WD Blue
MSI GeForce RTX 2060 VENTUS 12G OC
Windows 10 Pro

Som jednoduchý človek ktorý má rád techniku a prírodu :)

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119586
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: E-Mail, Phising alebo niečo podobné

#30 Příspěvek od Rudy »

Ne, žádný keylogger, ani nic podobného. Nemáte zač a za příspěvek děkujeme! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět