Právě je 18 říj 2019 03:35

Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Všechny časy jsou v UTC + 1 hodina


Pravidla fóra


Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.



Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 37 ]  Přejít na stránku Předchozí  1, 2, 3  Další
Autor Zpráva
PříspěvekNapsal: 30 kvě 2019 16:57 
Offline
Site Admin
Site Admin
Uživatelský avatar

Registrován: 30 říj 2003 13:42
Příspěvky: 109644
Bydliště: Plzeň
Já také nevím, proč by pouhé upgrade mělo změnit nějak systém takto zásadním způsobem. Nikdy nikdo so na něco podobné ho nestěžoval. Dejte tedy logy FRST+Addition: http://forum.viry.cz/viewtopic.php?f=24&t=132509 . Pokud na nic nepřijdu, budete muset použít tu starou zálohu. Jinak se toho nezbavíte.

_________________
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.


Nahoru
 Profil  
 
PříspěvekNapsal: 31 kvě 2019 13:32 
Offline
Návštěvník
Návštěvník

Registrován: 21 zář 2010 16:37
Příspěvky: 205
Díky za ochotu - zkusím v nejbližší době. Manželka jede na týden se školou do zahraničí, tak jestli si nevezme NTB, budu na to mít víc času. Jinak asi až "časem" :thumbsup:


Nahoru
 Profil  
 
PříspěvekNapsal: 31 kvě 2019 17:44 
Offline
Site Admin
Site Admin
Uživatelský avatar

Registrován: 30 říj 2003 13:42
Příspěvky: 109644
Bydliště: Plzeň
OK, nemáte zač! :)

_________________
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.


Nahoru
 Profil  
 
PříspěvekNapsal: 04 čer 2019 14:09 
Offline
Návštěvník
Návštěvník

Registrován: 21 zář 2010 16:37
Příspěvky: 205
Rudy, vložím přímo sem... diky


Přílohy:
Addition.rar [11.03 KiB]
15 krát
Nahoru
 Profil  
 
PříspěvekNapsal: 04 čer 2019 14:10 
Offline
Návštěvník
Návštěvník

Registrován: 21 zář 2010 16:37
Příspěvky: 205
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 01-06-2019
Ran by Coobik (administrator) on POCITAC (ASUSTeK COMPUTER INC. X550VB) (04-06-2019 15:02:47)
Running from C:\Users\Coobik\Desktop\frst
Loaded Profiles: Coobik (Available Profiles: mlcola & Gm666buc & Coobik)
Platform: Windows 10 Pro Version 1903 18362.116 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ASUSTeK Computer Inc. -> ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUSTeK Computer Inc. -> ASUSTeK COMPUTER INC.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\ASUSBluetoothRadio.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\afwServ.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Windows -> ) C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\Office\SMARTInk-SBSDKProxy.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInk.exe
(SMART Technologies Ulc -> SMART Technologies) C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInkPrivilegedAccess.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391120 2019-05-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2018-04-23] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [WinZip PreLoader] => C:\Program Files\WinZip\WzPreloader.exe [124032 2018-04-23] (Corel Corporation -> WinZip Computing)
HKLM\...\Run: [WinZip FAH] => C:\Program Files\WinZip\FAHConsole.exe [436416 2018-04-23] (WinZip Computing LLC -> WinZip Computing, S.L.)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [309680 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291280 2012-12-20] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [406328 2015-03-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [213816 2015-03-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
HKLM-x32\...\Run: [SMARTNotification] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTNotification.exe [198040 2017-09-04] (SMART Technologies Ulc -> SMART Technologies)
HKLM-x32\...\Run: [SMART Board Service] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTBoardService.exe [2619800 2017-09-04] (SMART Technologies Ulc -> SMART Technologies)
HKLM-x32\...\Run: [SMART Tray Tools] => C:\Program Files (x86)\Common Files\SMART Technologies\SystemMenu\SMARTSystemMenu.exe [661400 2017-08-09] (SMART Technologies Ulc -> SMART Technologies)
HKLM-x32\...\Run: [sbsdk-server] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\sbsdk-server\NodeLauncher.exe [67488 2017-05-23] (SMART Technologies ULC -> SMART Technologies)
HKLM-x32\...\Run: [SMART Ink] => C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTInk.exe [288152 2017-09-15] (SMART Technologies Ulc -> SMART Technologies)
HKU\S-1-5-21-2258785963-2703257343-4062654024-1000\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Coobik\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-2258785963-2703257343-4062654024-1000\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Coobik\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-2258785963-2703257343-4062654024-1000\...\RunOnce: [Uninstall 19.062.0331.0006\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Coobik\AppData\Local\Microsoft\OneDrive\19.062.0331.0006\amd64"
HKU\S-1-5-21-2258785963-2703257343-4062654024-1000\...\RunOnce: [Uninstall 19.062.0331.0006] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Coobik\AppData\Local\Microsoft\OneDrive\19.062.0331.0006"
HKU\S-1-5-21-2258785963-2703257343-4062654024-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\Installer\chrmstp.exe [2019-05-23] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinZip Preloader.lnk [2016-12-25]
ShortcutTarget: WinZip Preloader.lnk -> C:\Program Files\WinZip\WzPreloader.exe (Corel Corporation -> WinZip Computing)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01034597-5554-472D-B5E2-2E88F1A84796} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2314008 2019-06-04] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {082314F1-342B-43A5-8E5B-76E446873AD5} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {083F3813-82BC-4622-A1B0-070C619B7D11} - System32\Tasks\Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner => C:\WINDOWS\system32\mitigationscanner.exe [58880 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {13D83E1E-A88F-436D-BFD6-268274D2134C} - System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\WINDOWS\system32\gpupdate.exe [29696 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {143CAF98-2049-4104-B523-9F341F442570} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-12-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {16200838-99E3-495E-9C47-0327399B84B7} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506384 2019-05-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {1C36231B-A92C-4F98-AECD-85DAE699345D} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {1CECF6CC-4D35-4C1D-968E-74C61A85D076} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-12-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {224E6ABD-5B25-412B-AF87-33B9AA80BDC1} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {245BBB94-C781-4D42-9A12-1962F122F444} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2018-04-23] (Corel Corporation -> Corel Corporation)
Task: {2F9CE603-626C-40C9-876C-EAE79EB2E51E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {37A15B01-4D7C-4710-820A-65BB93A54387} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18392 2017-12-12] (ASUSTeK Computer Inc. -> AsusTek)
Task: {37E36825-44CF-45F5-9CE3-BA6874377C13} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {37E44697-B9AD-4FA4-89AF-177344732C7E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_192_Plugin.exe [1457208 2019-05-28] (Adobe Inc. -> Adobe)
Task: {3D6C30BF-6D64-4D23-A210-312AA357DF23} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {42E480D1-3425-4CAD-95B5-B092D6C41115} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {47BA4730-50E4-4D2F-A2DE-540636DB1058} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4A986E25-CEF6-460F-851B-4E94D1FD5393} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4BB7C9B0-E013-49CA-A31D-46D94CF09242} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {4CB9E878-48F0-4401-B811-3F5FED6B7F6F} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4EF849C3-8B03-4DC2-9245-9C0AFB3AD68A} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_171_pepper.exe [1452600 2019-04-21] (Adobe Inc. -> Adobe)
Task: {4F2FB8C1-D15E-4A3A-A358-862D885EE8A4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {51624377-AD2E-42F6-86AA-F82EE6FCC3A1} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {520B8572-CFEA-435F-BFBE-A25BE4260412} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {547E075F-E7C8-4726-9990-B4B15E357150} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506384 2019-05-10] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {57260DEE-3437-4976-BD41-16F894D4A6AB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {598F75A7-8184-4FAB-8FAE-925DF1E31770} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5E734DFC-A5CB-4ED8-AAE8-81CE453BC44F} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {613A083C-17CD-47F4-AC35-96FC308E59CF} - System32\Tasks\Microsoft\Windows\Workplace Join\Device-Sync => {C662D912-E4D6-44A3-89A0-20550514951D} C:\Windows\System32\dsregtask.dll [23040 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {6382EFCB-25C1-49DA-A4FE-A0B0BDB42F9A} - System32\Tasks\AdobeAAMUpdater-1.0-Pocitac-Coobik => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {658CE522-CA7D-4E73-AC52-20005DCDDBE0} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6A7645CB-FFBE-4867-AD2C-A595B329392C} - System32\Tasks\ASUS Wireless Console 3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2355904 2012-11-28] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {7E2B6FA7-ABAC-465B-B870-0FB873BB8C8D} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-12-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {86E07811-F5DA-4C39-979B-30A6653CCD37} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {88C2CA32-D1AB-48E9-AF28-2F85A2BDB667} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [657856 2017-12-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8FC94B03-C8D3-43FA-A2DF-A7A8E71D589B} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 => {429BC048-379E-45E0-80E4-EB1977941B5C} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [29232 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {90C28B5C-2A50-48E1-9579-EEE75F1B1F2E} - System32\Tasks\Microsoft\Windows\StateRepository\MaintenanceTasks => %windir%\system32\rundll32.exe %windir%\system32\Windows.StateRepositoryClient.dll,StateRepositoryDoMaintenanceTasks
Task: {92545912-56D2-4651-8C99-4E6C753A1A3C} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {96473EC0-9573-41C6-BA13-7DD8A01423FA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A2A19641-BE2B-47CE-8B66-1F663845E262} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [964544 2017-12-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A6028421-7C7A-42F0-AD27-CB3D7D821391} - System32\Tasks\Adobe Uninstaller => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2384984 2016-12-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {A83FF239-A0E7-49D0-BAD4-FB22139CECED} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A8468678-F06B-4C42-B1C6-0C7BBA8E2771} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask => {7C83C056-1D0D-4C8E-A6B0-89E79C213559} C:\WINDOWS\system32\oobe\SetupCleanupTask.dll [299520 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {AEA7CBA9-87BE-43F0-BB73-C6DB2359A49E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16571320 2019-05-09] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AEE7A6B9-DC5B-4F83-9ACF-C6CD73908927} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1864640 2017-12-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {BA80AF4E-46C5-4FB1-8FD3-56F614F7FD6E} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 Critical => {DE434264-8FE9-4C0B-A83B-89EBEEBFF78E} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [29232 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {BCBEF8E6-AD24-4DD4-B264-EDFE416FC827} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {C46E793F-EA13-4CEE-9D16-32867D76FADD} - System32\Tasks\WinZipBackGroundToolsTask => C:\Program Files\WinZip\WzBGTools.exe [232064 2018-04-23] (Corel Corporation -> WinZip Computing)
Task: {C7291699-A29D-49C7-8F31-7F7E7B9DBAFE} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [657856 2017-12-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C8676415-807D-49AE-8288-A8F0FA0354BB} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [521152 2017-12-16] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE21D418-E684-4ECA-88D6-453879CF4D30} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {CEFF05D5-1C96-4B74-B8FA-CC2D747DE4F4} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2018-04-23] (Corel Corporation -> Corel Corporation)
Task: {CFA175B3-4A15-4937-9428-669BE15E2265} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {CFABDC2A-31E5-4043-9776-FD61D83E4927} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D48B08A0-3384-4F8F-B65A-B07596C9904E} - System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\WINDOWS\system32\gpupdate.exe [29696 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {D55670CD-F345-4DAF-8F06-620E23D463C7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {D8F41670-A870-4E9F-8028-0B7D30FCD942} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-05-28] (Adobe Inc. -> Adobe)
Task: {DE21CB45-0B3F-488E-827B-11ABEF354251} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 64 Critical => {613FBA38-A3DF-4AB8-9674-5604984A299A} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [29232 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {E1F7D16A-D660-48C2-9329-D712180DEFF9} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E2987794-4709-4DC8-9E9D-12D620F90E1F} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [406328 2015-03-25] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
Task: {E2B8D3BD-FAAF-496E-BC39-3121A178C6AC} - System32\Tasks\Microsoft\Windows\.NET Framework\.NET Framework NGEN v4.0.30319 => {84F0FAE1-C27B-4F6F-807B-28CF6F96287D} C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll [29232 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {EB1F64F6-107D-4296-9595-9B1EDBA2C8DF} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2018-04-23] (Corel Corporation -> Corel Corporation)
Task: {EB80FD6C-9F7F-4FFD-87B8-5AB075785B3D} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EBE6CCF5-8F1B-4C1B-81C2-C130D83ADE55} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {EC766323-ECBE-42F7-A18D-03E1388B4000} - System32\Tasks\WinZip Update Notifier => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2018-04-23] (Corel Corporation -> Corel Corporation)
Task: {EC8B0738-24A3-4C8C-998F-BAAF97B696A5} - System32\Tasks\Microsoft\OneCore\DirectX\DirectXDatabaseUpdater => C:\WINDOWS\system32\directxdatabaseupdater.exe [252928 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {FAA4EF13-7068-47C9-8C88-EEA62787526F} - System32\Tasks\Antivirus Emergency Update => C:\Program Files\AVG\Antivirus\AvEmUpdate.exe [2981808 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [S-1-5-21-2258785963-2703257343-4062654024-1000] => Proxy is enabled.
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 212.80.66.7 192.168.1.1
Tcpip\..\Interfaces\{086f68f5-f445-473c-b3ef-63b84b479e04}: [DhcpNameServer] 212.80.66.7 192.168.1.1
Tcpip\..\Interfaces\{9220ed03-5738-44c7-bbc8-bf7a40c9f415}: [DhcpNameServer] 192.168.168.2
Tcpip\..\Interfaces\{a0652a8b-4d72-4714-90ed-55fb8666d297}: [DhcpNameServer] 192.168.168.2

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2258785963-2703257343-4062654024-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKLM -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL =
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2258785963-2703257343-4062654024-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2258785963-2703257343-4062654024-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-05-22] (IObit Information Technology -> IObit)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\ssv.dll [2016-02-16] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-16] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_192.dll [2019-05-28] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-12-09] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_192.dll [2019-05-28] (Adobe Inc. -> )
FF Plugin-x32: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files (x86)\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-12-09] (Adobe Systems Incorporated -> Adobe Systems)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Coobik\AppData\Local\Google\Chrome\User Data\Default [2019-06-04]
CHR Extension: (Adobe Acrobat) - C:\Users\Coobik\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-05-19]
CHR Extension: (AVG SafePrice | Comparison, deals, coupons) - C:\Users\Coobik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbckjcfnjmoiinpgddefodcighgikkgn [2019-03-23]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Coobik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-30]
CHR Extension: (Chrome Media Router) - C:\Users\Coobik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-28]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AarSvc; C:\WINDOWS\System32\AarSvc.dll [148992 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [753240 2016-12-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 AtherosSvc; C:\WINDOWS\System32\drivers\AdminService.exe [409456 2019-05-10] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
S3 autotimesvc; C:\WINDOWS\System32\autotimesvc.dll [116224 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [409280 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 AVG Firewall; C:\Program Files\AVG\Antivirus\afwServ.exe [416568 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\aswidsagent.exe [6893160 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110048 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S3 CredentialEnrollmentManagerUserSvc; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [380120 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 CredentialEnrollmentManagerUserSvc_6b24353; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [380120 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\WINDOWS\System32\deviceaccess.dll [231912 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 DeviceAssociationBrokerSvc; C:\WINDOWS\SysWOW64\deviceaccess.dll [185944 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R2 DispBrokerDesktopSvc; C:\WINDOWS\System32\DispBroker.Desktop.dll [396288 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
S4 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [206112 2017-06-14] (IObit Information Technology -> IObit)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-12-16] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-12-16] (NVIDIA Corporation -> NVIDIA Corporation)
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [60416 2009-06-22] (Microsoft Windows Hardware Compatibility Publisher -> Hewlett-Packard)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5773592 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SMARTHelperService; C:\Program Files (x86)\SMART Technologies\SMART Product Drivers\SMARTHelperService.exe [625048 2017-09-04] (SMART Technologies Ulc -> SMART Technologies)
S3 TroubleshootingSvc; C:\WINDOWS\system32\MitigationClient.dll [394752 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R2 UsoSvc; C:\WINDOWS\system32\usosvc.dll [509952 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Acx01000; C:\WINDOWS\System32\drivers\Acx01000.sys [337920 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [18432 2019-03-19] (Microsoft Windows -> Advanced Micro Devices, Inc)
S3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [37888 2019-03-19] (Microsoft Windows -> Advanced Micro Devices, Inc)
R3 AsusTP; C:\WINDOWS\System32\drivers\AsusTP.sys [110544 2017-12-12] (ASUSTeK Computer Inc. -> ASUS Corporation)
R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4321160 2019-05-10] (Qualcomm Atheros -> Qualcomm Atheros Communications, Inc.)
R1 avgArPot; C:\WINDOWS\System32\drivers\avgArPot.sys [207496 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\WINDOWS\System32\drivers\avgbidsdriver.sys [263056 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\WINDOWS\System32\drivers\avgbidsh.sys [206408 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\WINDOWS\System32\drivers\avgbuniv.sys [61520 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgElam; C:\WINDOWS\System32\drivers\avgElam.sys [15280 2019-01-09] (Microsoft Windows Early Launch Anti-malware Publisher -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\WINDOWS\System32\drivers\avgKbd.sys [42336 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\WINDOWS\System32\drivers\avgMonFlt.sys [167920 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgNetSec; C:\WINDOWS\System32\drivers\avgNetSec.sys [549248 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\WINDOWS\System32\drivers\avgRdr2.sys [112360 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\WINDOWS\System32\drivers\avgRvrt.sys [87992 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\WINDOWS\System32\drivers\avgSnx.sys [1030832 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\WINDOWS\System32\drivers\avgSP.sys [477632 2019-05-28] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
S2 avgStm; C:\WINDOWS\System32\drivers\avgStm.sys [225656 2019-06-04] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\WINDOWS\System32\drivers\avgVmm.sys [385904 2019-05-30] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 BtAudioBusSrv; C:\WINDOWS\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (Ralink Technology Corporation -> IVT Corporation)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [146856 2013-06-04] (BoiseTest -> Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [21928 2013-06-04] (BoiseTest -> Windows (R) Win 7 DDK provider)
S3 dot4usb; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [43944 2013-06-04] (BoiseTest -> Microsoft Corporation)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2018-12-10] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2018-12-10] (Disc Soft Ltd -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77408 2017-02-24] (Malwarebytes Corporation -> )
S3 genericusbfn; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_dbcdd1a51a139f61\genericusbfn.sys [20992 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [34184 2019-05-10] (ASUSTeK Computer Inc. -> ASUS)
S3 intelpmax; C:\WINDOWS\System32\drivers\intelpmax.sys [28672 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [39904 2017-06-06] (IObit Information Technology -> IObit.com)
S3 IURegProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IURegProcessFilter.sys [39792 2017-09-28] (IObit Information Technology -> IObit.com)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [186304 2017-03-13] (Malwarebytes Corporation -> Malwarebytes)
S3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [111544 2017-03-13] (Malwarebytes Corporation -> Malwarebytes)
S3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [43968 2017-03-13] (Malwarebytes Corporation -> Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [251840 2017-03-13] (Malwarebytes Corporation -> Malwarebytes)
S3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [82208 2017-03-13] (Malwarebytes Corporation -> Malwarebytes)
S3 NDKPing; C:\WINDOWS\System32\drivers\NDKPing.sys [63488 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvam.inf_amd64_20c0bba34ffd86ca\nvlddmkm.sys [17036560 2018-02-13] (NVIDIA Corporation -> NVIDIA Corporation)
R0 nvpciflt; C:\WINDOWS\System32\DriverStore\FileRepository\nvam.inf_amd64_20c0bba34ffd86ca\nvpciflt.sys [47880 2018-02-13] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-12-16] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2019-05-10] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-12-16] (NVIDIA Corporation -> NVIDIA Corporation)
S3 portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [25600 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1137928 2019-05-10] (Realtek Semiconductor Corp. -> Realtek )
R3 SMARTMouseFilterx64; C:\WINDOWS\System32\drivers\SMARTMouseFilterx64.sys [18952 2017-09-04] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SMARTVHidMiniVistaAmd64; C:\WINDOWS\System32\drivers\SMARTVHidMiniVistaAmd64.sys [28168 2017-09-04] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies)
R3 SMARTVTabletPCx64; C:\WINDOWS\System32\drivers\SMARTVTabletPCx64.sys [28680 2017-09-04] (Microsoft Windows Hardware Compatibility Publisher -> SMART Technologies ULC)
S3 UEFI; C:\WINDOWS\System32\DriverStore\FileRepository\uefi.inf_amd64_245b553a99d0abd8\UEFI.sys [32776 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 UfxChipidea; C:\WINDOWS\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_a4b229fb37a19c3f\UfxChipidea.sys [108344 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 umbus; C:\WINDOWS\System32\DriverStore\FileRepository\umbus.inf_amd64_0a69be6a385b49f7\umbus.sys [57856 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 UrsChipidea; C:\WINDOWS\System32\DriverStore\FileRepository\urschipidea.inf_amd64_5bdb369042347ad7\urschipidea.sys [30008 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 UrsSynopsys; C:\WINDOWS\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_38704576f04a98fd\urssynopsys.sys [28472 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 usbaudio2; C:\WINDOWS\System32\drivers\usbaudio2.sys [257024 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [213080 2018-08-14] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WiseHDInfo; C:\Windows\WiseHDInfo64.dll [33864 2019-05-02] (Beijing Lang Xingda Network Technology Co., Ltd -> wisecleaner.com)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: TroubleshootingSvc -> C:\Windows\system32\MitigationClient.dll (Microsoft Corporation)

==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-06-04 15:02 - 2019-06-04 15:02 - 000000000 ____D C:\FRST
2019-06-04 15:01 - 2019-06-04 15:02 - 000000000 ____D C:\Users\Coobik\Desktop\frst
2019-05-31 07:53 - 2019-05-30 18:20 - 000000204 ___SH C:\Users\mlcola\ntuser.ini
2019-05-30 12:23 - 2019-05-30 12:23 - 000000000 ____D C:\WINDOWS\LastGood
2019-05-30 09:44 - 2019-06-03 08:59 - 000038912 _____ C:\Users\mlcola\Desktop\výkaz 05-2019.xls
2019-05-29 10:57 - 2019-05-29 10:57 - 000000000 ____D C:\Users\mlcola\.gstreamer-0.10
2019-05-29 08:16 - 2019-05-23 12:43 - 000002401 _____ C:\Users\mlcola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-05-28 19:04 - 2019-05-28 18:23 - 000000000 ____D C:\Windows.old
2019-05-28 18:35 - 2019-05-28 18:36 - 011543640 _____ (Adobe) C:\Users\Coobik\Downloads\AdobeAIRInstaller.exe
2019-05-28 18:29 - 2019-05-28 19:04 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2019-05-28 18:29 - 2019-05-28 18:29 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2019-05-28 18:28 - 2019-05-28 18:29 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2019-05-28 18:28 - 2019-05-28 18:28 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2019-05-28 18:27 - 2019-05-28 18:27 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-05-28 18:24 - 2019-05-28 18:24 - 025444864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-05-28 18:24 - 2019-05-28 18:24 - 005499904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-05-28 18:24 - 2019-05-28 18:24 - 004306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-05-28 18:24 - 2019-05-28 18:24 - 004128904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-05-28 18:24 - 2019-05-28 18:24 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-05-28 18:24 - 2019-05-28 18:24 - 001603584 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-05-28 18:24 - 2019-05-28 18:24 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-05-28 18:24 - 2019-05-28 18:24 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2019-05-28 18:24 - 2019-05-28 18:24 - 000420152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2019-05-28 18:24 - 2019-05-28 18:24 - 000000020 ___SH C:\Users\Coobik\ntuser.ini
2019-05-28 18:23 - 2019-05-28 18:24 - 007006720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 025903104 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 022611456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 019849728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 018007040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 009917968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-28 18:23 - 2019-05-28 18:23 - 008010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 007887104 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 007831368 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 007759872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 007636608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 007275008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 006538848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 006068328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 005939712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 005924864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 004867584 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 004576768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 004562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-05-28 18:23 - 2019-05-28 18:23 - 004537344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 003947520 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 003837440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 003771392 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 003734456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 003726336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 003682304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 003591184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 003485696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 002990600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 002769976 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 002762472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 002724352 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 002699280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 002550584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 002449216 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 002420736 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 002281472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 002256592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 002081464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001999656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001954960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001853952 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001830416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001784832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001753000 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-28 18:23 - 2019-05-28 18:23 - 001745408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001709056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001689600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001633648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001608704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001562640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001537024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001508912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-28 18:23 - 2019-05-28 18:23 - 001505808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001478656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001458176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001435136 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2019-05-28 18:23 - 2019-05-28 18:23 - 001418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 001395600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001392136 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-28 18:23 - 2019-05-28 18:23 - 001356800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001321472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001271808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001258496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001213456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001149928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-28 18:23 - 2019-05-28 18:23 - 001079296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001071928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-28 18:23 - 2019-05-28 18:23 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001042944 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-05-28 18:23 - 2019-05-28 18:23 - 001007160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001007104 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 001006592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000879576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-05-28 18:23 - 2019-05-28 18:23 - 000864768 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000811192 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-05-28 18:23 - 2019-05-28 18:23 - 000811192 _____ C:\WINDOWS\system32\locale.nls
2019-05-28 18:23 - 2019-05-28 18:23 - 000804664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000797112 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000781096 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-28 18:23 - 2019-05-28 18:23 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000680760 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000679368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000673080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000628616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000613688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-05-28 18:23 - 2019-05-28 18:23 - 000568120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000531456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-05-28 18:23 - 2019-05-28 18:23 - 000515896 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-05-28 18:23 - 2019-05-28 18:23 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2019-05-28 18:23 - 2019-05-28 18:23 - 000466624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000451896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-05-28 18:23 - 2019-05-28 18:23 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000404392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000358944 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2019-05-28 18:23 - 2019-05-28 18:23 - 000279624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000274128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-05-28 18:23 - 2019-05-28 18:23 - 000223248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000220472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-05-28 18:23 - 2019-05-28 18:23 - 000208184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000201256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000199688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000199184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-05-28 18:23 - 2019-05-28 18:23 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-05-28 18:23 - 2019-05-28 18:23 - 000180536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000146744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000136720 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2019-05-28 18:23 - 2019-05-28 18:23 - 000093712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-05-28 18:23 - 2019-05-28 18:23 - 000066360 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000056008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2019-05-28 18:23 - 2019-05-28 18:23 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-05-28 18:23 - 2019-05-28 18:23 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2019-05-28 18:22 - 2019-06-04 14:53 - 000003366 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2258785963-2703257343-4062654024-1000
2019-05-28 18:22 - 2019-06-03 07:43 - 000004266 _____ C:\WINDOWS\System32\Tasks\Antivirus Emergency Update
2019-05-28 18:22 - 2019-05-29 11:31 - 000003830 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-05-28 18:22 - 2019-05-29 11:31 - 000003818 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-05-28 18:22 - 2019-05-29 11:31 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-05-28 18:22 - 2019-05-29 11:31 - 000003406 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-05-28 18:22 - 2019-05-29 11:31 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-28 18:22 - 2019-05-29 11:31 - 000003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-05-28 18:22 - 2019-05-29 11:31 - 000003176 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-05-28 18:22 - 2019-05-29 11:31 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-28 18:22 - 2019-05-29 11:31 - 000002988 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-05-28 18:22 - 2019-05-29 11:31 - 000002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-05-28 18:22 - 2019-05-29 11:31 - 000002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-05-28 18:22 - 2019-05-29 11:31 - 000002914 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-05-28 18:22 - 2019-05-29 11:31 - 000002866 _____ C:\WINDOWS\System32\Tasks\ASUS Smart Gesture Launcher
2019-05-28 18:22 - 2019-05-29 11:31 - 000002858 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1227916955-939082405-1478766342-3418
2019-05-28 18:22 - 2019-05-29 11:31 - 000002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-05-28 18:22 - 2019-05-29 11:31 - 000002786 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-05-28 18:22 - 2019-05-29 11:31 - 000002766 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-Pocitac-Coobik
2019-05-28 18:22 - 2019-05-29 11:31 - 000002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-05-28 18:22 - 2019-05-29 11:31 - 000002684 _____ C:\WINDOWS\System32\Tasks\WinZip Update Notifier 2
2019-05-28 18:22 - 2019-05-29 11:31 - 000002682 _____ C:\WINDOWS\System32\Tasks\WinZip Update Notifier 3
2019-05-28 18:22 - 2019-05-29 11:31 - 000002682 _____ C:\WINDOWS\System32\Tasks\WinZip Update Notifier 1
2019-05-28 18:22 - 2019-05-29 11:31 - 000002668 _____ C:\WINDOWS\System32\Tasks\WinZipBackGroundToolsTask
2019-05-28 18:22 - 2019-05-29 11:31 - 000002566 _____ C:\WINDOWS\System32\Tasks\WinZip Update Notifier
2019-05-28 18:22 - 2019-05-29 11:31 - 000002408 _____ C:\WINDOWS\System32\Tasks\ASUS Wireless Console 3
2019-05-28 18:22 - 2019-05-29 11:31 - 000002346 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2019-05-28 18:22 - 2019-05-29 11:31 - 000002314 _____ C:\WINDOWS\System32\Tasks\Adobe Uninstaller
2019-05-28 18:22 - 2019-05-29 11:31 - 000002302 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2019-05-28 18:22 - 2019-05-29 11:31 - 000002246 _____ C:\WINDOWS\System32\Tasks\ATKOSD2
2019-05-28 18:22 - 2019-05-29 11:31 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-05-28 18:22 - 2019-05-29 11:31 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2019-05-28 18:22 - 2019-05-28 20:28 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-05-28 18:22 - 2019-05-28 18:22 - 000000000 ____D C:\WINDOWS\System32\Tasks\WPD
2019-05-28 18:22 - 2019-05-28 18:22 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-1227916955-939082405-1478766342-3418
2019-05-28 18:22 - 2019-05-28 18:22 - 000000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2019-05-28 18:22 - 2019-05-28 18:22 - 000000000 ____D C:\WINDOWS\System32\Tasks\Games
2019-05-28 18:22 - 2019-05-28 18:22 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVG
2019-05-28 18:21 - 2019-05-28 18:22 - 000015243 _____ C:\WINDOWS\diagwrn.xml
2019-05-28 18:21 - 2019-05-28 18:22 - 000015243 _____ C:\WINDOWS\diagerr.xml
2019-05-28 18:19 - 2019-05-28 18:19 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2019-05-28 18:19 - 2019-05-28 18:19 - 000000000 ____D C:\WINDOWS\system32\msmq
2019-05-28 18:19 - 2019-05-28 18:19 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2019-05-28 18:19 - 2019-05-28 18:19 - 000000000 ____D C:\inetpub
2019-05-28 18:18 - 2019-05-29 11:54 - 001843064 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-28 18:18 - 2019-05-28 18:18 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-05-28 18:18 - 2019-05-28 18:18 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-05-28 18:18 - 2019-05-28 18:18 - 000903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2019-05-28 18:18 - 2019-05-28 18:18 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2019-05-28 18:18 - 2019-05-28 18:18 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2019-05-28 18:18 - 2019-05-28 18:18 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2019-05-28 18:18 - 2019-05-28 18:18 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2019-05-28 18:18 - 2019-05-28 18:18 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2019-05-28 18:18 - 2019-05-28 18:18 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-05-28 18:18 - 2019-05-28 18:18 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-05-28 18:18 - 2019-05-28 18:18 - 000000000 ____D C:\Program Files\MSBuild
2019-05-28 18:18 - 2019-05-28 18:18 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-05-28 18:18 - 2019-05-28 18:18 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-05-28 18:17 - 2019-05-28 18:18 - 001166488 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-05-28 18:17 - 2019-05-28 18:18 - 000778912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2019-05-28 18:17 - 2019-05-28 18:18 - 000124568 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-05-28 18:17 - 2019-05-28 18:18 - 000103072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-05-28 18:17 - 2019-05-28 18:18 - 000035592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2019-05-28 18:17 - 2019-05-28 18:18 - 000035592 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2019-05-28 18:17 - 2019-05-28 18:17 - 006359552 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2019-05-28 18:17 - 2019-05-28 18:17 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2019-05-28 18:17 - 2019-05-28 18:17 - 005496832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2019-05-28 18:17 - 2019-05-28 18:17 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2019-05-28 18:08 - 2019-06-04 14:53 - 000002405 _____ C:\Users\Coobik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-05-28 18:08 - 2019-05-31 07:53 - 000000000 ____D C:\Users\mlcola
2019-05-28 18:08 - 2019-05-28 18:24 - 000000000 ____D C:\Users\Coobik
2019-05-28 18:08 - 2019-05-28 18:12 - 000000000 ____D C:\Users\Gm666buc
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\mlcola\Šablony
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\mlcola\Soubory cookie
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\mlcola\Poslední
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\mlcola\Okolní tiskárny
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\mlcola\Okolní síť
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\mlcola\Nabídka Start
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\mlcola\Dokumenty
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\mlcola\Documents\Obrázky
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\mlcola\Documents\Hudba
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\mlcola\Documents\Filmy
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\mlcola\Data aplikací
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\mlcola\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\mlcola\AppData\Local\Data aplikací
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Gm666buc\Šablony
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Gm666buc\Soubory cookie
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Gm666buc\Poslední
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Gm666buc\Okolní tiskárny
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Gm666buc\Okolní síť
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Gm666buc\Nabídka Start
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Gm666buc\Dokumenty
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Gm666buc\Documents\Obrázky
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Gm666buc\Documents\Hudba
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Gm666buc\Documents\Filmy
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Gm666buc\Data aplikací
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Gm666buc\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Gm666buc\AppData\Local\Data aplikací
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Coobik\Šablony
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Coobik\Soubory cookie
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Coobik\Poslední
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Coobik\Okolní tiskárny
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Coobik\Okolní síť
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Coobik\Nabídka Start
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Coobik\Dokumenty
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Coobik\Documents\Obrázky
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Coobik\Documents\Hudba
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Coobik\Documents\Filmy
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Coobik\Data aplikací
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Coobik\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 _SHDL C:\Users\Coobik\AppData\Local\Data aplikací
2019-05-28 18:08 - 2019-05-28 18:08 - 000000000 ____D C:\ProgramData\USOShared
2019-05-28 18:08 - 2019-03-19 06:46 - 000001105 _____ C:\Users\Gm666buc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-05-28 18:06 - 2019-03-19 06:43 - 002873856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-05-28 18:06 - 2016-05-03 23:30 - 000081416 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2019-05-28 18:05 - 2019-05-31 13:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-05-28 18:05 - 2019-05-28 18:11 - 000443888 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-28 16:13 - 2019-05-28 16:13 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2019-05-28 15:44 - 2019-05-28 20:38 - 000000000 ___DC C:\WINDOWS\Panther
2019-05-28 14:51 - 2019-05-28 18:24 - 000000000 ____D C:\Windows10Upgrade
2019-05-28 14:51 - 2019-05-28 14:51 - 006134256 _____ (Microsoft Corporation) C:\Users\Coobik\Downloads\Windows10Upgrade9252.exe
2019-05-28 14:51 - 2019-05-28 14:51 - 000000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pomocník s aktualizací Windows 10.lnk
2019-05-28 11:54 - 2019-05-28 11:54 - 000363440 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\avgBoot.exe
2019-05-23 12:40 - 2019-04-21 14:24 - 000000000 ____D C:\Users\mlcola\Desktop\fot
2019-05-19 18:42 - 2019-05-19 18:42 - 021315608 _____ (Piriform Software Ltd) C:\Users\mlcola\Downloads\ccsetup557.exe
2019-05-10 22:37 - 2019-06-04 14:49 - 000000000 ____D C:\ProgramData\ASUS Smart Gesture
2019-05-10 22:34 - 2019-05-10 22:34 - 000059960 _____ C:\WINDOWS\system32\ASGCoInstaller_x64.dll
2019-05-10 22:32 - 2019-05-28 18:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Realtek
2019-05-10 22:31 - 2019-05-10 22:31 - 072520816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2019-05-10 22:31 - 2019-05-10 22:31 - 024335604 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2019-05-10 22:31 - 2019-05-10 22:31 - 007178576 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 007101832 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 006486608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2019-05-10 22:31 - 2019-05-10 22:31 - 003762704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 003677264 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2019-05-10 22:31 - 2019-05-10 22:31 - 003319520 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 003159512 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 002930256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 001971472 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 001788064 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 001598504 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 001516376 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 001382320 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 001353424 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000964920 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000873552 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000751408 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000734880 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000715752 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000692264 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000541208 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000511752 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000453384 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000452840 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000448712 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000392976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000343600 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000333112 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000327376 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000327376 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000278376 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000261344 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000261304 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000260312 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000231808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000230792 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000220496 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000218360 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000193088 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000175032 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000158784 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000157448 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000139856 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000122408 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000116648 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000094008 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000090808 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000090272 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000088216 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000083520 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000075624 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2019-05-10 22:31 - 2019-05-10 22:31 - 000023800 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2019-05-10 22:26 - 2019-05-10 22:26 - 000186424 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys
2019-05-10 22:25 - 2019-05-10 22:25 - 000070024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2019-05-10 22:04 - 2019-05-10 22:04 - 001137928 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2019-05-10 22:04 - 2019-05-10 22:04 - 000034184 _____ (ASUS) C:\WINDOWS\system32\Drivers\AsRadioControl.sys
2019-05-10 22:03 - 2019-05-10 22:03 - 004321160 _____ (Qualcomm Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\athw10x.sys
2019-05-10 22:01 - 2019-05-10 22:01 - 009900032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll
2019-05-10 22:01 - 2019-05-10 22:01 - 000348096 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsBaStor.sys
2019-05-10 21:57 - 2019-05-10 21:57 - 000409456 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\AdminService.exe
2019-05-10 21:57 - 2019-05-10 21:57 - 000065904 _____ (Qualcomm) C:\WINDOWS\system32\Drivers\btfilter.sys
2019-05-10 21:57 - 2019-05-10 21:57 - 000046908 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x31010000.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000045380 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x31010100.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000040684 _____ C:\WINDOWS\system32\Drivers\AthrBT_0x31010000_ss01.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000001926 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0xf0.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000001926 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x21.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000001926 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x11.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000001926 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000001922 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010100_40.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000001516 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_SS01.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000001516 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_LV01.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000001516 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0xf1.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000001516 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x22.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000001516 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x12.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000001516 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010000_40_0x01.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000001512 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010100_40_0xf1.dfu
2019-05-10 21:57 - 2019-05-10 21:57 - 000001512 _____ C:\WINDOWS\system32\Drivers\ramps_0x31010100_40_0x01.dfu
2019-05-09 11:13 - 2019-05-09 11:13 - 000044658 _____ C:\Users\mlcola\Downloads\Motivate 1 test 8.odt
2019-05-06 09:06 - 2019-05-06 09:12 - 000000000 ____D C:\Users\mlcola\Desktop\z flashky
2019-05-06 07:55 - 2019-04-23 11:23 - 000000000 ____D C:\Users\mlcola\AppData\Roaming\Google

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-06-04 14:54 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-06-04 14:52 - 2017-05-30 18:05 - 000000000 ___RD C:\Users\Coobik\OneDrive
2019-06-04 14:52 - 2017-05-30 17:00 - 000000000 ____D C:\ProgramData\NVIDIA
2019-06-04 14:52 - 2013-12-03 18:08 - 000000000 ____D C:\Users\Coobik\AppData\Local\Adobe
2019-06-04 14:49 - 2018-09-22 08:27 - 000225656 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys
2019-06-04 14:49 - 2017-05-30 18:13 - 000000000 __SHD C:\Users\Coobik\IntelGraphicsProfiles
2019-06-03 09:56 - 2017-05-02 11:06 - 000000120 _____ C:\WINDOWS\system32\config\netlogon.ftl
2019-05-31 10:30 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-05-31 07:56 - 2018-06-26 08:08 - 000000000 __SHD C:\Users\mlcola\IntelGraphicsProfiles
2019-05-30 12:23 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2019-05-30 12:03 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2019-05-30 12:03 - 2018-06-21 08:09 - 000000000 ____D C:\ProgramData\Packages
2019-05-30 11:54 - 2018-09-22 08:27 - 000385904 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgVmm.sys
2019-05-29 11:54 - 2019-03-19 13:57 - 000752474 _____ C:\WINDOWS\system32\perfh005.dat
2019-05-29 11:54 - 2019-03-19 13:57 - 000162914 _____ C:\WINDOWS\system32\perfc005.dat
2019-05-29 10:17 - 2017-11-23 13:20 - 000000000 ____D C:\Users\mlcola\AppData\Local\PlaceholderTileLogoFolder
2019-05-29 10:17 - 2017-11-10 10:03 - 000000000 ____D C:\Users\mlcola\AppData\Local\Packages
2019-05-29 09:39 - 2017-05-02 11:09 - 000002604 __RSH C:\ProgramData\ntuser.pol
2019-05-29 08:34 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ServiceState
2019-05-29 08:16 - 2017-11-10 11:30 - 000000000 ___RD C:\Users\mlcola\3D Objects
2019-05-29 08:16 - 2017-05-30 17:58 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-05-29 08:11 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-29 08:08 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\appcompat
2019-05-28 20:47 - 2014-08-14 23:11 - 000000000 ____D C:\Users\Coobik\AppData\Roaming\vlc
2019-05-28 20:37 - 2017-11-10 10:01 - 000000000 ____D C:\Users\Coobik\AppData\Local\Packages
2019-05-28 20:27 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-05-28 20:26 - 2019-03-19 06:56 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-05-28 20:26 - 2019-03-19 06:56 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-05-28 19:04 - 2019-03-19 06:52 - 000000000 __SHD C:\Program Files\Windows Sidebar
2019-05-28 19:04 - 2019-03-19 06:52 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2019-05-28 19:04 - 2019-03-19 06:52 - 000000000 __RHD C:\Users\Public\Libraries
2019-05-28 19:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2019-05-28 19:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-05-28 19:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\spool
2019-05-28 19:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-05-28 19:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\IME
2019-05-28 19:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\schemas
2019-05-28 19:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-05-28 19:04 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-05-28 19:04 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-05-28 19:04 - 2019-03-19 06:49 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2019-05-28 19:04 - 2019-03-19 06:37 - 000008192 _____ C:\WINDOWS\system32\config\ELAM
2019-05-28 19:04 - 2018-09-13 21:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-05-28 19:04 - 2018-09-13 21:19 - 000000000 ____D C:\WINDOWS\SysWOW64\Adobe
2019-05-28 19:04 - 2018-08-02 11:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
2019-05-28 19:04 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2019-05-28 19:04 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2019-05-28 19:04 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-05-28 19:04 - 2018-03-22 13:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2019-05-28 19:04 - 2018-01-11 09:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMART Technologies
2019-05-28 19:04 - 2017-12-26 20:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2019-05-28 19:04 - 2017-12-25 22:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-05-28 19:04 - 2017-08-30 07:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Applied Vision 4
2019-05-28 19:04 - 2017-08-27 16:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HARDiNFO 8 PRO
2019-05-28 19:04 - 2017-05-30 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-05-28 19:04 - 2017-05-30 17:01 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2019-05-28 19:04 - 2017-05-30 16:59 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-05-28 19:04 - 2017-03-13 19:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2019-05-28 19:04 - 2016-12-25 11:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip 21.0
2019-05-28 19:04 - 2015-02-11 11:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-05-28 19:04 - 2014-11-27 17:52 - 000000000 ____D C:\WINDOWS\SysWOW64\vbox
2019-05-28 19:04 - 2014-11-27 17:52 - 000000000 ____D C:\WINDOWS\system32\vbox
2019-05-28 19:04 - 2014-04-09 08:38 - 000000000 ____D C:\WINDOWS\SysWOW64\bitstreams
2019-05-28 19:04 - 2014-02-12 15:55 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2019-05-28 19:04 - 2013-12-09 18:36 - 000000000 ___HD C:\WINDOWS\system32\CanonMF Uninstaller Information
2019-05-28 19:04 - 2013-12-07 10:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2019-05-28 19:04 - 2013-12-06 18:39 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-05-28 19:04 - 2013-12-03 18:39 - 000000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2019-05-28 19:04 - 2013-12-03 18:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-05-28 19:04 - 2013-12-03 17:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2019-05-28 19:04 - 2010-11-21 11:38 - 000000000 ____D C:\WINDOWS\ShellNew
2019-05-28 19:04 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2019-05-28 18:34 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-05-28 18:34 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-05-28 18:29 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Resources
2019-05-28 18:29 - 2017-05-30 17:51 - 000000000 ____D C:\Program Files\Intel
2019-05-28 18:29 - 2017-05-30 17:01 - 000000000 ____D C:\Program Files\Realtek
2019-05-28 18:29 - 2013-12-09 18:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon
2019-05-28 18:29 - 2009-07-14 07:32 - 000000000 ____D C:\Program Files\Microsoft Games
2019-05-28 18:26 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-05-28 18:26 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-05-28 18:26 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-05-28 18:26 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-28 18:24 - 2018-06-03 16:30 - 000002336 _____ C:\Users\Coobik\Desktop\Google Chrome.lnk
2019-05-28 18:24 - 2017-11-17 09:37 - 000000000 ___RD C:\Users\Coobik\3D Objects
2019-05-28 18:24 - 2017-05-30 18:13 - 000000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2019-05-28 18:23 - 2019-04-21 20:02 - 000000000 ___HD C:\$GetCurrent
2019-05-28 18:23 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\USOPrivate
2019-05-28 18:22 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows NT
2019-05-28 18:20 - 2019-03-19 13:59 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-05-28 18:20 - 2019-03-19 13:59 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-05-28 18:20 - 2019-03-19 13:59 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-05-28 18:20 - 2019-03-19 13:57 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2019-05-28 18:20 - 2019-03-19 13:57 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2019-05-28 18:20 - 2019-03-19 13:57 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2019-05-28 18:20 - 2019-03-19 13:57 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2019-05-28 18:20 - 2019-03-19 13:57 - 000000000 ____D C:\WINDOWS\system32\winrm
2019-05-28 18:20 - 2019-03-19 13:57 - 000000000 ____D C:\WINDOWS\system32\WCN
2019-05-28 18:20 - 2019-03-19 13:57 - 000000000 ____D C:\WINDOWS\system32\slmgr
2019-05-28 18:20 - 2019-03-19 13:57 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2019-05-28 18:20 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2019-05-28 18:20 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2019-05-28 18:20 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2019-05-28 18:20 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-05-28 18:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2019-05-28 18:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-05-28 18:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-05-28 18:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2019-05-28 18:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-05-28 18:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2019-05-28 18:20 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Registration
2019-05-28 18:20 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows Defender
2019-05-28 18:20 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-05-28 18:20 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing
2019-05-28 18:18 - 2019-03-19 13:59 - 000000000 ____D C:\WINDOWS\OCR
2019-05-28 18:18 - 2019-03-19 07:00 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2019-05-28 18:18 - 2019-03-19 07:00 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqutil.dll
2019-05-28 18:18 - 2019-03-19 07:00 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.dll
2019-05-28 18:18 - 2019-03-19 07:00 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisRtl.dll
2019-05-28 18:18 - 2019-03-19 07:00 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqrt.dll
2019-05-28 18:18 - 2019-03-19 07:00 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa.tlb
2019-05-28 18:18 - 2019-03-19 07:00 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa30.tlb
2019-05-28 18:18 - 2019-03-19 07:00 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa20.tlb
2019-05-28 18:18 - 2019-03-19 07:00 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\admwprox.dll
2019-05-28 18:18 - 2019-03-19 07:00 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqoa10.tlb
2019-05-28 18:18 - 2019-03-19 07:00 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ahadmin.dll
2019-05-28 18:18 - 2019-03-19 07:00 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisreset.exe
2019-05-28 18:18 - 2019-03-19 07:00 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2019-05-28 18:18 - 2019-03-19 07:00 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wamregps.dll
2019-05-28 18:18 - 2019-03-19 07:00 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cngkeyhelper.dll
2019-05-28 18:18 - 2019-03-19 07:00 - 000009728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iisrstap.dll
2019-05-28 18:18 - 2019-03-19 07:00 - 000009096 _____ C:\WINDOWS\SysWOW64\msmqtrc.mof
2019-05-28 18:18 - 2019-03-19 06:58 - 001401344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2019-05-28 18:18 - 2019-03-19 06:58 - 000783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2019-05-28 18:18 - 2019-03-19 06:58 - 000564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2019-05-28 18:18 - 2019-03-19 06:58 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2019-05-28 18:18 - 2019-03-19 06:58 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2019-05-28 18:18 - 2019-03-19 06:58 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2019-05-28 18:18 - 2019-03-19 06:58 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2019-05-28 18:18 - 2019-03-19 06:58 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2019-05-28 18:18 - 2019-03-19 06:58 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2019-05-28 18:18 - 2019-03-19 06:58 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2019-05-28 18:18 - 2019-03-19 06:58 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2019-05-28 18:18 - 2019-03-19 06:58 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2019-05-28 18:18 - 2019-03-19 06:58 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2019-05-28 18:18 - 2019-03-19 06:58 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2019-05-28 18:18 - 2019-03-19 06:58 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2019-05-28 18:18 - 2019-03-19 06:58 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2019-05-28 18:18 - 2019-03-19 06:58 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2019-05-28 18:18 - 2019-03-19 06:58 - 000009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2019-05-28 18:18 - 2019-03-19 06:57 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2019-05-28 18:18 - 2019-03-19 06:57 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2019-05-28 18:18 - 2019-03-19 06:57 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2019-05-28 18:18 - 2019-03-19 06:57 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2019-05-28 18:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-05-28 18:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2019-05-28 18:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2019-05-28 18:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2019-05-28 18:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-05-28 18:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-05-28 18:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2019-05-28 18:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2019-05-28 18:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\et-EE
2019-05-28 18:18 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-05-28 18:17 - 2019-03-19 06:56 - 000000000 ____D C:\WINDOWS\Setup
2019-05-28 18:16 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-05-28 18:15 - 2017-05-30 17:28 - 000023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2019-05-28 18:14 - 2019-03-19 06:52 - 000000000 __RSD C:\WINDOWS\Media
2019-05-28 18:13 - 2013-12-03 17:26 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-28 18:09 - 2014-09-24 22:21 - 000000000 ____D C:\Users\Coobik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2019-05-28 18:09 - 2013-12-03 18:13 - 000000000 ____D C:\Users\Coobik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-05-28 18:07 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Help
2019-05-28 18:07 - 2017-05-30 17:01 - 000319042 _____ C:\WINDOWS\system32\Drivers\RTWAVES40.dat
2019-05-28 18:07 - 2017-05-30 17:01 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2019-05-28 18:06 - 2017-05-30 16:59 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-05-28 15:43 - 2017-05-30 15:26 - 000000036 _____ C:\WINDOWS\progress.ini
2019-05-28 11:54 - 2019-01-09 09:04 - 000263056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsdriver.sys
2019-05-28 11:54 - 2019-01-09 09:04 - 000206408 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbidsh.sys
2019-05-28 11:54 - 2019-01-09 09:04 - 000061520 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgbuniv.sys
2019-05-28 11:54 - 2018-10-19 21:55 - 000042336 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgKbd.sys
2019-05-28 11:54 - 2018-09-22 08:27 - 001030832 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSnx.sys
2019-05-28 11:54 - 2018-09-22 08:27 - 000549248 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgNetSec.sys
2019-05-28 11:54 - 2018-09-22 08:27 - 000477632 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgSP.sys
2019-05-28 11:54 - 2018-09-22 08:27 - 000225144 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgStm.sys.155965259056201
2019-05-28 11:54 - 2018-09-22 08:27 - 000207496 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgArPot.sys
2019-05-28 11:54 - 2018-09-22 08:27 - 000167920 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgMonFlt.sys
2019-05-28 11:54 - 2018-09-22 08:27 - 000112360 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRdr2.sys
2019-05-28 11:54 - 2018-09-22 08:27 - 000087992 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgRvrt.sys
2019-05-23 12:43 - 2017-05-31 08:24 - 000000000 ___RD C:\Users\mlcola\OneDrive
2019-05-19 21:37 - 2016-12-25 11:11 - 000000000 ____D C:\Users\Coobik\AppData\Local\WinZip
2019-05-19 21:21 - 2017-12-26 20:05 - 000000000 ____D C:\Program Files (x86)\IObit
2019-05-19 21:21 - 2017-03-13 16:57 - 000000000 ____D C:\Users\Coobik\AppData\Roaming\IObit
2019-05-19 21:21 - 2017-03-13 16:57 - 000000000 ____D C:\ProgramData\IObit
2019-05-19 18:43 - 2018-09-22 08:59 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-05-17 12:19 - 2018-06-12 10:05 - 000000000 ____D C:\Users\mlcola\AppData\Local\D3DSCache
2019-05-17 08:07 - 2018-11-16 09:01 - 000000000 ____D C:\Program Files\rempl
2019-05-16 11:53 - 2017-05-03 10:10 - 000000000 ____D C:\Users\mlcola\AppData\Roaming\Adobe
2019-05-16 11:43 - 2018-06-26 08:28 - 000000000 ____D C:\Users\mlcola\Desktop\avg-pc-tuneup
2019-05-15 07:58 - 2015-12-18 21:42 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-05-14 20:40 - 2013-12-06 18:39 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-05-10 22:47 - 2017-03-13 16:57 - 000000000 ____D C:\ProgramData\ProductData
2019-05-10 22:35 - 2013-12-03 17:01 - 000000000 ____D C:\Program Files (x86)\ASUS
2019-05-10 22:34 - 2017-05-30 17:56 - 000000000 ____D C:\ProgramData\SetupTPDriver

==================== Files in the root of some directories =======

2015-04-24 10:58 - 2015-04-24 10:58 - 000000094 _____ () C:\Users\Coobik\AppData\Local\fusioncache.dat
2015-02-11 19:55 - 2019-02-12 15:07 - 000007597 _____ () C:\Users\Coobik\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================


Přílohy:
FRST.rar [18.15 KiB]
16 krát
Nahoru
 Profil  
 
PříspěvekNapsal: 04 čer 2019 18:30 
Offline
Site Admin
Site Admin
Uživatelský avatar

Registrován: 30 říj 2003 13:42
Příspěvky: 109644
Bydliště: Plzeň
Spusťte tuto utilitu:

Citace:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

_________________
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.


Nahoru
 Profil  
 
PříspěvekNapsal: 04 čer 2019 18:59 
Offline
Návštěvník
Návštěvník

Registrován: 21 zář 2010 16:37
Příspěvky: 205
nic:
# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-05-27.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 06-04-2019
# Duration: 00:00:30
# OS: Windows 10 Pro
# Scanned: 27501
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [1783 octets] - [06/09/2018 20:39:34]
AdwCleaner[C00].txt - [1895 octets] - [06/09/2018 20:40:17]
AdwCleaner[S01].txt - [1558 octets] - [22/04/2019 00:16:33]
AdwCleaner[C01].txt - [1668 octets] - [22/04/2019 00:17:12]
AdwCleaner[S02].txt - [1736 octets] - [01/05/2019 23:20:52]
AdwCleaner[C02].txt - [1846 octets] - [01/05/2019 23:21:23]
AdwCleaner[S03].txt - [1657 octets] - [01/05/2019 23:58:49]
AdwCleaner[C03].txt - [1823 octets] - [01/05/2019 23:59:14]
AdwCleaner[S04].txt - [2260 octets] - [19/05/2019 21:20:13]
AdwCleaner[C04].txt - [2298 octets] - [19/05/2019 21:21:12]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S05].txt ##########


Nahoru
 Profil  
 
PříspěvekNapsal: 04 čer 2019 20:04 
Offline
Site Admin
Site Admin
Uživatelský avatar

Registrován: 30 říj 2003 13:42
Příspěvky: 109644
Bydliště: Plzeň
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:

Citace:
Start

CloseProcesses:
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {D55670CD-F345-4DAF-8F06-620E23D463C7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {42E480D1-3425-4CAD-95B5-B092D6C41115} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2258785963-2703257343-4062654024-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKLM -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL =
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2258785963-2703257343-4062654024-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2258785963-2703257343-4062654024-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
U3 idsvc; no ImagePath
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)

EmptyTemp:
Hosts:
End


Uložte do C:\Users\Coobik\Desktop\frst jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

_________________
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.


Nahoru
 Profil  
 
PříspěvekNapsal: 04 čer 2019 20:38 
Offline
Návštěvník
Návštěvník

Registrován: 21 zář 2010 16:37
Příspěvky: 205
Fix result of Farbar Recovery Scan Tool (x64) Version: 04-06-2019
Ran by Coobik (04-06-2019 21:32:40) Run:1
Running from C:\Users\Coobik\Desktop\frst
Loaded Profiles: Coobik (Available Profiles: Coobik)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {D55670CD-F345-4DAF-8F06-620E23D463C7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
Task: {42E480D1-3425-4CAD-95B5-B092D6C41115} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc -> Google Inc.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2258785963-2703257343-4062654024-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKLM -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL =
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-2258785963-2703257343-4062654024-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2258785963-2703257343-4062654024-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
U3 idsvc; no ImagePath
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{503739d0-4c5e-4cfd-b3ba-d881334f0df2}" => removed successfully
HKLM\Software\Classes\CLSID\{503739d0-4c5e-4cfd-b3ba-d881334f0df2} => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D55670CD-F345-4DAF-8F06-620E23D463C7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D55670CD-F345-4DAF-8F06-620E23D463C7}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{42E480D1-3425-4CAD-95B5-B092D6C41115}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{42E480D1-3425-4CAD-95B5-B092D6C41115}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Local Page => value restored successfully
HKU\S-1-5-21-2258785963-2703257343-4062654024-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => removed successfully
HKLM\Software\Classes\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => not found
"HKU\S-1-5-21-2258785963-2703257343-4062654024-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKU\S-1-5-21-2258785963-2703257343-4062654024-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} => removed successfully
HKLM\Software\Classes\CLSID\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} => not found
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => removed successfully
HKLM\Software\Classes\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => not found
"HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}" => removed successfully
HKLM\Software\Classes\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => not found
HKLM\Software\Classes\PROTOCOLS\Handler\skype4com => removed successfully
HKLM\Software\Classes\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} => not found
HKLM\System\CurrentControlSet\Services\idsvc => removed successfully
idsvc => service removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avg => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => removed successfully
HKLM\Software\Classes\CLSID\{6B9228DA-9C15-419e-856C-19E768A13BDC} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 23646074 B
Java, Flash, Steam htmlcache => 296634163 B
Windows/system/drivers => 8723985 B
Edge => 52736 B
Chrome => 68919097 B
Firefox => 0 B
Opera => 101376 B

Temp, IE cache, history, cookies, recent:
Default => 46574 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4532 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
mlcola => 9167513 B
Gm666buc => 84116 B
Coobik => 35065135 B

RecycleBin => 871 B
EmptyTemp: => 429.5 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:33:58 ====


Nahoru
 Profil  
 
PříspěvekNapsal: 04 čer 2019 20:51 
Offline
Site Admin
Site Admin
Uživatelský avatar

Registrován: 30 říj 2003 13:42
Příspěvky: 109644
Bydliště: Plzeň
Smazáno. Log by již měl být OK.

_________________
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.


Nahoru
 Profil  
 
PříspěvekNapsal: 12 čer 2019 07:04 
Offline
Návštěvník
Návštěvník

Registrován: 21 zář 2010 16:37
Příspěvky: 205
Rudy, tak jak to už bývá na světě, za dobrotu na žebrotu... a po zásluze potrestat za dobrý skutek.

Stav NTB je stále stejný - tj. problém se nevyřešil. Horší je, že manželka sice zálohovala data před odjezdem, ale "myslela si, že ve složce documents se nic nedokáže smazat, tak to nechala být.... Promazáním jsme jí smazali dokument s prací za měsíc - který bohužel nezálohovala nikde jinde a při pokusu o obnovu dat mi to vyhodilo chybu dokumentu, takže je už asi ztracený-přepsaný...

Trochu jsem ji poučil o zálohování a teď jdu spát, než za půl hodiny vyrazím do práce... hledal jsem dokumenty a obnovy zhruba celou noc :o


Nahoru
 Profil  
 
PříspěvekNapsal: 12 čer 2019 07:42 
Offline
Moderátor
Moderátor
Uživatelský avatar

Registrován: 29 bře 2005 13:39
Příspěvky: 13457
Bydliště: BB-SK
zaskocim:
ak bolo prevedene cistenie cez fixlist, nevidim dovod aby bolo cokolvek zmazane z dokumentov
pokial vies cestu a nazov suboru skus pouzit program Recuva na obnovu suborov

_________________
RSIT |ADWCleaner |MBAM |CCleaner |Avenger |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/


Nahoru
 Profil  
 
PříspěvekNapsal: 12 čer 2019 17:18 
Offline
Návštěvník
Návštěvník

Registrován: 21 zář 2010 16:37
Příspěvky: 205
Pokus s obnovou dat byl neúspěšný - ale napadlo mne, že vlastně proběhla ta aktualizace W10 - 1809 na 1903 - že by to ten hajzlík sám přepsal? No od začátků používání W10 už bych věřil všemu...


Nahoru
 Profil  
 
PříspěvekNapsal: 12 čer 2019 18:00 
Offline
Site Admin
Site Admin
Uživatelský avatar

Registrován: 30 říj 2003 13:42
Příspěvky: 109644
Bydliště: Plzeň
Z adresáře Documents nebylo nic mazáno, ani nebyl dán k něčemu podobnému příkaz ve skriptu. Dokumenty musely být smazány nějakým jiným způsobem, či omylem. Toto FRST nedělá, mohu se zaručit.

_________________
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.


Nahoru
 Profil  
 
PříspěvekNapsal: 13 čer 2019 12:47 
Offline
Návštěvník
Návštěvník

Registrován: 21 zář 2010 16:37
Příspěvky: 205
No já nic neříkám... jen hledám ... Nechápu, jak se to mohlo odstranit - ale ani tou aktualizací na novou verzi W10 by se přece nemělo nic podobného jako DOC, TXT a další smazat...
Když se smázne kvůli nějakým "old" cesta dokumentu, to bych pochopil, ale proč se to smazalo celé? ....
hlava mi to nebere - tak asi to vypucuju, koupím lepší NTB a tento půjde pro důchodce do světa....


Nahoru
 Profil  
 
Zobrazit příspěvky za předchozí:  Seřadit podle  
Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 37 ]  Přejít na stránku Předchozí  1, 2, 3  Další

Všechny časy jsou v UTC + 1 hodina


Kdo je online

Uživatelé procházející toto fórum: Žádní registrovaní uživatelé


Nemůžete zakládat nová témata v tomto fóru
Nemůžete odpovídat v tomto fóru
Nemůžete upravovat své příspěvky v tomto fóru
Nemůžete mazat své příspěvky v tomto fóru
Nemůžete přikládat soubory v tomto fóru

Hledat:
Přejít na:  
cron
Založeno na phpBB® Forum Software © phpBB Group
Český překlad – phpBB.cz
Přispějete na provoz fóra?