prosím o kontrolu

[s4m.f1sher]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 23-10-2019
Ran by Lukas (administrator) on DESKTOP-LVE8HP0 (Gigabyte Technology Co., Ltd. Z87-HD3) (24-10-2019 19:15:20)
Running from C:\Users\Lukas\Desktop
Loaded Profiles: Lukas (Available Profiles: defaultuser0 & Lukas)
Platform: Windows 10 Home Version 1809 17763.805 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Even Balance, Inc. -> ) C:\Windows\SysWOW64\PnkBstrA.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.302\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.302\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
(CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
(Christian Hackbart -> CM & V) C:\Program Files (x86)\DVBViewer\DVBVservice.exe
(Christian Hackbart -> CM&V Hackbart) C:\Program Files (x86)\DVBViewer\DVBVCtrl.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11910.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxApp_48.58.11001.0_x64__8wekyb3d8bbwe\XboxApp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.33.18003.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19092.399.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtHelper.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe
(Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Razer\Razer Services\GMS\SteamCmd\steamcmd.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmds.exe [177928 2018-12-13] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16418560 2016-01-27] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-10-03] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD) [File not signed]
HKLM-x32\...\Run: [RazerCortex] => "C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncher.exe" -autorun
HKLM-x32\...\Run: [GammingApp] => C:\Program Files (x86)\MSI\Gaming APP\SGamingApp.exe --min
HKLM-x32\...\Run: [AsioThk32Reg] => REGSVR32.EXE /S CTASIO.DLL
HKLM-x32\...\Run: [CTHelper] => C:\Windows\SysWOW64\CTHELPER.EXE* [29776 2018-08-14] () [File not signed]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645648 2019-10-05] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3002087409-3781809431-3002461792-1001\...\Run: [DVBV Service Ctrl] => C:\Program Files (x86)\DVBViewer\DVBVCtrl.exe [84120 2016-11-14] (Christian Hackbart -> CM&V Hackbart)
HKU\S-1-5-21-3002087409-3781809431-3002461792-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3503856 2019-10-02] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-3002087409-3781809431-3002461792-1001\...\RunOnce: [Application Restart #3] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3503856 2019-10-02] (Razer USA Ltd. -> Razer Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.120\Installer\chrmstp.exe [2019-10-15] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {11CE9C73-394F-4CBD-BEBB-7CF2DF4CBA6C} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {24F284E8-B099-45F7-8D19-9541C74C166B} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe
Task: {4966990A-59C1-49D1-9868-9B0436E88CAE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-20] (Google Inc -> Google Inc.)
Task: {910B2065-A25A-4C74-A5DF-5A8D0727C21B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9C69B432-A532-4636-8A1B-00C077C1AEA8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {B62ED03F-3E70-4FB9-B854-4314BB6D5BF9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-03-20] (Google Inc -> Google Inc.)
Task: {BB4D0DBE-C314-434A-A0D3-F1D8D288C279} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {C29DA6C7-1A83-4D0B-B31B-53344DA29395} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {DD12B221-5384-4DBF-B75F-6ACB00772FD0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [913448 2019-09-05] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{cb1e78ba-c479-49d3-81b1-89f534d0cd76}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\ssv.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)

Edge:
======
DownloadDir: C:\Users\Lukas\Downloads

FireFox:
========
FF DefaultProfile: i4a615xu.default
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\eo0hqc0v.default-release-1 [2019-09-01]
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\i4a615xu.default [2019-07-17]
FF ProfilePath: C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\1m7gjs39.default-release-1560686929530 [2019-09-01]
FF DownloadDir: F:\Nová složka
FF Extension: (Enhancer for YouTube™) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\1m7gjs39.default-release-1560686929530\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2019-07-11]
FF Extension: (uBlock Origin) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\1m7gjs39.default-release-1560686929530\Extensions\uBlock0@raymondhill.net.xpi [2019-07-10]
FF Extension: (View image) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\1m7gjs39.default-release-1560686929530\Extensions\{287dcf75-bec6-4eec-b4f6-71948a2eea29}.xpi [2019-07-14]
FF Extension: (SearchPreview) - C:\Users\Lukas\AppData\Roaming\Mozilla\Firefox\Profiles\1m7gjs39.default-release-1560686929530\Extensions\{EF522540-89F5-46b9-B6FE-1829E2B572C6}.xpi [2019-07-04]
FF Plugin-x32: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files (x86)\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-10-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-01] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.302\npGoogleUpdate3.dll [2019-10-01] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-10-11] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default [2019-10-24]
CHR Extension: (Prezentace) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-20]
CHR Extension: (Download Button) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\alakoggmijiicdlcjjeakffojoinhlpg [2019-07-20]
CHR Extension: (Dokumenty) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-20]
CHR Extension: (Disk Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-20]
CHR Extension: (YouTube) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-20]
CHR Extension: (Facebook) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2019-03-20]
CHR Extension: (uBlock Origin) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-10-23]
CHR Extension: (Google+) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlppkpafhbajpcmmoheippocdidnckmm [2019-03-20]
CHR Extension: (Strong Password Generator) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\emehklffcaphknhhfhadkjhpfapcbpco [2019-07-18]
CHR Extension: (Full Page Screen Capture) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdpohaocaechififmbbbbbknoalclacl [2019-10-12]
CHR Extension: (Tabulky) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-20]
CHR Extension: (HTTPS Everywhere) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2019-07-28]
CHR Extension: (SearchPreview) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcjdanpjacpeeppdjkppebobilhaglfo [2019-09-27]
CHR Extension: (#sorryjako: Nakupujte bez Babiše) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhohilofdfodlljeibhkdcdfcijhhmje [2019-09-18]
CHR Extension: (View image) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpcmhcelnjdmblfmjabdeclccemkghjk [2019-10-15]
CHR Extension: (Mapy Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2019-03-20]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2019-07-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-25]
CHR Extension: (Enhancer for YouTube™) - C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Default\Extensions\ponfpcnoihfmfllpaingbgckeeldkhle [2019-09-03]
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-09-16]
CHR Profile: C:\Users\Lukas\AppData\Local\Google\Chrome\User Data\System Profile [2019-09-16]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-08-26] (Apple Inc. -> Apple Inc.)
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2017-12-29] (Creative Labs) [File not signed]
R2 DVBVRecorder; C:\Program Files (x86)\DVBViewer\DVBVservice.exe [867992 2016-11-14] (Christian Hackbart -> CM & V)
R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [39616 2016-06-03] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-10-20] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2302160 2018-12-13] (ESET, spol. s r.o. -> ESET)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [791112 2019-09-27] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6841416 2019-09-27] (GOG Sp. z o.o. -> GOG.com)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel(R) pGFX -> Intel Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2348336 2019-10-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3228976 2019-10-15] (Electronic Arts, Inc. -> Electronic Arts)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2019-09-28] (Even Balance, Inc. -> )
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [449664 2018-08-29] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [942720 2018-09-12] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2019-07-03] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [287472 2019-10-01] (Razer USA Ltd. -> Razer Inc.)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [471696 2019-10-07] (Rockstar Games, Inc. -> Rockstar Games)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [532864 2019-07-11] (Razer USA Ltd. -> Razer Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3831576 2019-06-13] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [110944 2018-09-15] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AF15BDA; C:\WINDOWS\system32\DRIVERS\AF15BDA.sys [507392 2009-06-03] (Microsoft Windows Hardware Compatibility Publisher -> ITETech )
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [143448 2018-11-03] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [107896 2018-11-03] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15872 2018-02-28] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [188832 2018-11-03] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [50144 2018-11-03] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [82304 2018-11-03] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [109864 2018-11-03] (ESET, spol. s r.o. -> ESET)
R0 EUBAKUP; C:\WINDOWS\System32\drivers\eubakup.sys [60968 2015-12-10] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [48168 2015-12-10] (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
R1 EUDSKACS; C:\Windows\system32\drivers\eudskacs.sys [18472 2015-12-10] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
R1 EUFDDISK; C:\Windows\system32\drivers\EuFdDisk.sys [192552 2015-12-10] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed]
S3 hidgamemap; C:\WINDOWS\System32\drivers\hidgamemap.sys [150528 2018-12-09] (Disc Soft Ltd -> Disc Soft Ltd)
S3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (Feature Integration Technology -> FINTEK Corp.)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2016-09-29] (Logitech Inc -> Logitech Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_827405c7c65146ab\nvlddmkm.sys [22377352 2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2015-06-23] (Realtek Semiconductor Corp -> Realtek )
R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [49032 2019-01-16] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0064; C:\WINDOWS\System32\drivers\RzDev_0064.sys [51696 2018-04-22] (Razer USA Ltd. -> Razer Inc)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> )
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]
S4 nvvhci; \SystemRoot\System32\drivers\nvvhci.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-24 19:15 - 2019-10-24 19:16 - 000026480 _____ C:\Users\Lukas\Desktop\FRST.txt
2019-10-24 19:14 - 2019-10-24 19:15 - 000000000 ____D C:\FRST
2019-10-24 19:13 - 2019-10-24 19:13 - 001617920 _____ (Farbar) C:\Users\Lukas\Desktop\FRST64.exe
2019-10-23 17:34 - 2019-10-23 17:38 - 000000000 ____D C:\Users\Lukas\Documents\Assetto Corsa Competizione
2019-10-23 17:25 - 2019-10-23 17:25 - 000000653 _____ C:\Users\Lukas\Desktop\Assetto Corsa Competizione.lnk
2019-10-21 18:19 - 2019-10-21 18:19 - 000000222 _____ C:\Users\Lukas\Desktop\Assetto Corsa.url
2019-10-20 09:56 - 2019-10-24 17:49 - 000000000 ____D C:\Users\Lukas\Documents\My Games
2019-10-19 18:36 - 2019-10-19 18:36 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Aspyr Media
2019-10-19 18:36 - 2019-10-19 18:36 - 000000000 ____D C:\Users\Lukas\AppData\Local\TheObserver
2019-10-19 18:36 - 2019-10-19 18:36 - 000000000 ____D C:\Users\Lukas\AppData\Local\cache
2019-10-19 18:36 - 2019-10-19 18:36 - 000000000 ____D C:\Users\Lukas\AppData\Local\Aspyr Media
2019-10-18 21:50 - 2019-10-18 21:50 - 000000000 ____D C:\Users\Lukas\Documents\Remedy
2019-10-12 22:32 - 2019-10-14 17:11 - 000000000 ____D C:\Users\Lukas\Documents\Assetto Corsa
2019-10-12 14:34 - 2019-10-12 14:34 - 000000000 ____D C:\Users\Lukas\AppData\Local\HLL
2019-10-12 09:46 - 2019-10-12 09:46 - 000000000 ____D C:\Users\Lukas\AppData\Local\GameAnalytics
2019-10-12 09:46 - 2019-10-12 09:46 - 000000000 ____D C:\Users\Lukas\AppData\Local\AWSToolkit
2019-10-11 17:23 - 2019-10-11 17:23 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Surviving Mars
2019-10-11 15:10 - 2019-10-11 15:10 - 000001816 _____ C:\Users\Public\Desktop\iTunes.lnk
2019-10-11 15:10 - 2019-10-11 15:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2019-10-11 15:10 - 2019-10-11 15:10 - 000000000 ____D C:\Program Files\iPod
2019-10-11 15:09 - 2019-10-11 15:10 - 000000000 ____D C:\Program Files\iTunes
2019-10-11 15:08 - 2019-10-11 15:08 - 000000000 ____D C:\WINDOWS\system32\Tasks\Apple
2019-10-11 15:08 - 2019-10-11 15:08 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2019-10-09 15:01 - 2019-10-09 15:01 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-10-09 15:01 - 2019-10-09 15:01 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-10-09 15:01 - 2019-10-09 15:01 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-10-09 15:01 - 2019-10-09 15:01 - 002429768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-10-09 15:01 - 2019-10-09 15:01 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-10-09 15:01 - 2019-10-09 15:01 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-10-09 15:01 - 2019-10-09 15:01 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-10-09 15:01 - 2019-10-09 15:01 - 001289192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-10-09 15:01 - 2019-10-09 15:01 - 001201136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-10-09 15:01 - 2019-10-09 15:01 - 001024712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 026806784 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 024616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 023455744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 020816384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 019284992 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 019014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 017485312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 015220224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 012960768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 012259840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 009680400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 008903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 007872000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 006542464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 004873728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 004628992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 004057088 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 003702784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 003567104 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 002699768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 002699264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 002437344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 002421760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-10-09 15:00 - 2019-10-09 15:00 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 002110472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 002015400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001701880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-10-09 15:00 - 2019-10-09 15:00 - 001677816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001666232 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001590072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-10-09 15:00 - 2019-10-09 15:00 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 001247560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001056056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 001054928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 001048888 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000917816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000895560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000860160 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-10-09 15:00 - 2019-10-09 15:00 - 000851272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2019-10-09 15:00 - 2019-10-09 15:00 - 000843264 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000805296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000764216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000681720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Devices.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000662024 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000657408 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000605496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000604336 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000522104 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000508728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000506200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000462136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000453432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-10-09 15:00 - 2019-10-09 15:00 - 000449368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000444728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000421176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-10-09 15:00 - 2019-10-09 15:00 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000385336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000376568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000294512 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000282424 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000224568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2019-10-09 15:00 - 2019-10-09 15:00 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-10-09 15:00 - 2019-10-09 15:00 - 000213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000213304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000201736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-10-09 15:00 - 2019-10-09 15:00 - 000193336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-10-09 15:00 - 2019-10-09 15:00 - 000163232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000147944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnscmmc.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000104464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-10-09 15:00 - 2019-10-09 15:00 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2019-10-09 15:00 - 2019-10-09 15:00 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhuxgraphics.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NAPCRYPT.DLL
2019-10-09 15:00 - 2019-10-09 15:00 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-10-09 15:00 - 2019-10-09 15:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-10-09 15:00 - 2019-10-09 15:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-10-09 15:00 - 2019-10-09 15:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-10-09 15:00 - 2019-10-09 15:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-10-09 15:00 - 2019-10-09 15:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-10-09 15:00 - 2019-10-09 15:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-10-09 15:00 - 2019-10-09 15:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-10-09 15:00 - 2019-10-09 15:00 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-10-05 12:06 - 2019-10-05 12:06 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-10-05 12:06 - 2019-10-05 12:06 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-10-05 12:04 - 2019-09-27 23:15 - 011561728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-10-05 12:04 - 2019-09-27 23:15 - 009936640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2019-10-05 12:04 - 2019-09-27 23:15 - 001012640 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-10-05 12:04 - 2019-09-27 23:15 - 001012640 _____ C:\WINDOWS\system32\vulkan-1.dll
2019-10-05 12:04 - 2019-09-27 23:15 - 000876448 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2019-10-05 12:04 - 2019-09-27 23:15 - 000876448 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-10-05 12:04 - 2019-09-27 23:15 - 000447120 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-10-05 12:04 - 2019-09-27 23:15 - 000351888 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-10-05 12:04 - 2019-09-27 23:15 - 000301472 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-10-05 12:04 - 2019-09-27 23:15 - 000301472 _____ C:\WINDOWS\system32\vulkaninfo.exe
2019-10-05 12:04 - 2019-09-27 23:15 - 000273312 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-10-05 12:04 - 2019-09-27 23:15 - 000273312 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-10-05 12:04 - 2019-09-27 23:14 - 000823552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2019-10-05 12:04 - 2019-09-27 23:14 - 000676744 _____ C:\WINDOWS\system32\nvofapi64.dll
2019-10-05 12:04 - 2019-09-27 23:14 - 000633224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2019-10-05 12:04 - 2019-09-27 23:14 - 000544456 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 040445128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 035333888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 017301248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 014922440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 005358464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 004697288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 002051512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 001726720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6443648.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 001551240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 001491144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6443648.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 001477512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 001246976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 001140424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 000959416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 000812800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 000659328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2019-10-05 12:04 - 2019-09-27 23:13 - 000523520 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2019-10-05 12:04 - 2019-09-27 23:09 - 004263512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 006444544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 006316792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 005767168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 005605560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 005309080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 004344832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 003820976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-10-04 15:17 - 2019-10-04 15:17 - 003428864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 002779784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 002349056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 002279304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 002096640 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-10-04 15:17 - 2019-10-04 15:17 - 002018304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-10-04 15:17 - 2019-10-04 15:17 - 001924976 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplaySwitch.exe
2019-10-04 15:17 - 2019-10-04 15:17 - 001864704 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 001764864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 001750528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 001278808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-10-04 15:17 - 2019-10-04 15:17 - 001272120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 001155584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shellstyle.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 001155584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shellstyle.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 001006392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000993280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-10-04 15:17 - 2019-10-04 15:17 - 000840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000791864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000767800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000661096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000589824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-10-04 15:17 - 2019-10-04 15:17 - 000515448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000452992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000384272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-10-04 15:17 - 2019-10-04 15:17 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2019-10-04 15:17 - 2019-10-04 15:17 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000290616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2019-10-04 15:17 - 2019-10-04 15:17 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-10-04 15:17 - 2019-10-04 15:17 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000256704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2019-10-04 15:17 - 2019-10-04 15:17 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-10-04 15:17 - 2019-10-04 15:17 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.OneCore.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000155968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2019-10-04 15:17 - 2019-10-04 15:17 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.XamlHost.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2019-10-04 15:17 - 2019-10-04 15:17 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000082944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regapi.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000065608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2019-10-04 15:17 - 2019-10-04 15:17 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2019-10-04 15:17 - 2019-10-04 15:17 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSTheme.exe
2019-10-04 15:17 - 2019-10-04 15:17 - 000038184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PasswordOnWakeSettingFlyout.exe
2019-10-04 15:17 - 2019-10-04 15:17 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shunimpl.dll
2019-10-04 15:16 - 2019-10-04 15:17 - 002924344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 022135584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 007886848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 007698432 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 006928384 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 006058032 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 005573016 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 005299712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 004737536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 004352472 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 003634688 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 003198976 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 003000832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 002839040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 002118656 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 001966392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 001893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 001701176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 001674752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 001484896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 001390888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 001319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 001308672 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 001294272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 001205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 001170432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-10-04 15:16 - 2019-10-04 15:16 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 001052984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 001011200 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000938296 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000931328 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000888120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-10-04 15:16 - 2019-10-04 15:16 - 000863544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000821048 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000780408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000775216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000770096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000690176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000613176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000605368 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000598328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000588600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2019-10-04 15:16 - 2019-10-04 15:16 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000439096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000434952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000278416 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000234808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.OneCore.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000193704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.XamlHost.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000156512 _____ (Microsoft Corporation) C:\WINDOWS\system32\devobj.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000138552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000135816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devobj.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000131384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcl.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\regapi.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmcl.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000079032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Synth3dVsc.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000057656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dmvsc.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnppolicy.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000052536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmstorfl.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSTheme.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 000044912 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordOnWakeSettingFlyout.exe
2019-10-04 15:16 - 2019-10-04 15:16 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsc.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-10-04 15:16 - 2019-10-04 15:16 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\shunimpl.dll
2019-10-04 15:16 - 2019-10-04 15:16 - 000018744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msisadrv.sys
2019-09-24 18:37 - 2019-09-24 20:31 - 000000000 ____D C:\Users\Lukas\AppData\Local\Gears5
2019-09-24 18:37 - 2018-09-15 09:28 - 000129160 _____ (Microsoft Corporation) C:\Users\Public\Documents\winmm.cdx

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-10-24 19:12 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-10-24 18:52 - 2016-12-13 10:05 - 000000000 ____D C:\Program Files (x86)\Steam
2019-10-24 18:44 - 2018-12-22 13:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-10-24 15:07 - 2018-12-22 13:27 - 000030012 _____ C:\WINDOWS\system32\BMXBkpCtrlState-{00000005-00000000-00000001-00001102-00000008-10211102}.rfx
2019-10-24 15:07 - 2018-12-22 13:27 - 000011564 _____ C:\WINDOWS\system32\DVCState-{00000005-00000000-00000001-00001102-00000008-10211102}.rfx
2019-10-24 15:07 - 2016-12-13 00:09 - 000034072 _____ C:\WINDOWS\system32\BMXStateBkp-{00000005-00000000-00000001-00001102-00000008-10211102}.rfx
2019-10-24 15:07 - 2016-12-13 00:09 - 000034072 _____ C:\WINDOWS\system32\BMXState-{00000005-00000000-00000001-00001102-00000008-10211102}.rfx
2019-10-24 15:07 - 2016-12-13 00:09 - 000030012 _____ C:\WINDOWS\system32\BMXCtrlState-{00000005-00000000-00000001-00001102-00000008-10211102}.rfx
2019-10-24 15:03 - 2016-12-12 22:36 - 000000000 __SHD C:\Users\Lukas\IntelGraphicsProfiles
2019-10-24 15:02 - 2017-04-14 08:33 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-10-23 21:10 - 2017-04-14 08:33 - 000000000 ____D C:\ProgramData\NVIDIA
2019-10-23 20:21 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-10-23 20:21 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-10-23 17:21 - 2017-03-27 19:04 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\uTorrent
2019-10-23 17:21 - 2016-12-19 13:33 - 000000000 ____D C:\Users\Lukas\AppData\Local\CrashDumps
2019-10-22 17:39 - 2016-01-14 22:52 - 000000000 ____D C:\Program Files (x86)\MeGUI_2418_x86
2019-10-22 17:09 - 2016-12-16 23:10 - 000000000 ____D C:\Users\Lukas\AppData\Local\JDownloader 2.0
2019-10-20 12:37 - 2016-12-13 12:45 - 000000000 ____D C:\Program Files\FileUploader
2019-10-20 12:17 - 2016-12-13 19:50 - 000000000 ____D C:\Users\Lukas\AppData\Local\Ubisoft Game Launcher
2019-10-20 07:55 - 2018-12-22 13:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-10-19 22:35 - 2018-09-15 08:09 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2019-10-19 18:36 - 2018-06-28 14:44 - 000000000 ____D C:\Users\Lukas\AppData\Local\NVIDIA
2019-10-19 08:58 - 2017-01-08 12:58 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Audacity
2019-10-18 18:47 - 2016-12-21 12:57 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-10-18 16:26 - 2017-05-30 21:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-10-18 16:26 - 2017-05-30 21:06 - 000000000 ____D C:\Program Files (x86)\Java
2019-10-18 16:25 - 2017-05-30 21:07 - 000114232 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2019-10-17 18:04 - 2018-05-10 11:29 - 000000000 ____D C:\Users\Lukas\AppData\Local\D3DSCache
2019-10-16 17:13 - 2016-12-13 19:41 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\Origin
2019-10-16 17:13 - 2016-12-13 19:40 - 000000000 ____D C:\ProgramData\Origin
2019-10-16 17:13 - 2016-12-13 19:40 - 000000000 ____D C:\Program Files (x86)\Origin
2019-10-16 17:13 - 2016-12-13 19:38 - 000000000 ____D C:\Users\Lukas\AppData\Local\Battle.net
2019-10-16 17:12 - 2016-12-13 19:38 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-10-15 20:25 - 2018-08-02 20:34 - 000000000 ____D C:\Users\Lukas\AppData\LocalLow\Heroes and Generals
2019-10-15 20:23 - 2018-12-22 13:30 - 000000000 ____D C:\Users\Lukas
2019-10-15 18:55 - 2019-03-20 23:04 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-10-15 18:35 - 2018-12-22 13:35 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2019-10-14 16:39 - 2019-04-26 20:55 - 000000000 ____D C:\Users\Lukas\AppData\Local\2K Games
2019-10-14 14:54 - 2016-12-21 12:56 - 000000000 ____D C:\Users\Lukas\AppData\Local\Adobe
2019-10-12 22:10 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-10-12 22:10 - 2017-04-14 08:33 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-10-12 22:10 - 2017-04-14 08:33 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-10-12 22:10 - 2017-04-14 08:33 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-10-12 22:10 - 2016-12-12 23:35 - 000000000 ____D C:\Users\Lukas\AppData\Local\NVIDIA Corporation
2019-10-11 15:08 - 2016-12-28 22:06 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2019-10-09 17:23 - 2018-12-22 13:39 - 001693636 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-10-09 17:23 - 2018-09-15 19:32 - 000716776 _____ C:\WINDOWS\system32\perfh005.dat
2019-10-09 17:23 - 2018-09-15 19:32 - 000144856 _____ C:\WINDOWS\system32\perfc005.dat
2019-10-09 17:15 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-10-09 17:15 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-10-09 17:15 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-10-09 17:15 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-10-09 17:15 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-10-09 17:15 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-10-09 17:15 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-10-09 15:09 - 2017-07-04 14:44 - 000000000 ____D C:\Program Files\Rockstar Games
2019-10-09 15:09 - 2017-07-04 14:44 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2019-10-09 15:04 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-10-09 15:03 - 2016-12-12 22:46 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-10-09 15:02 - 2016-12-12 22:46 - 127230528 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-10-05 12:06 - 2018-01-28 12:30 - 000000000 ____D C:\temp
2019-10-05 08:23 - 2017-12-11 00:21 - 000000000 ___RD C:\Users\Lukas\3D Objects
2019-10-05 08:23 - 2016-12-12 22:31 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-10-05 08:22 - 2018-12-22 13:26 - 000498152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-10-04 22:18 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-10-04 15:18 - 2018-09-15 19:34 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2019-10-04 15:18 - 2018-09-15 19:34 - 000018002 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2019-10-03 14:56 - 2018-01-28 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2019-10-01 14:51 - 2019-03-20 23:04 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-10-01 14:51 - 2019-03-20 23:04 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-10-01 14:51 - 2016-12-12 23:24 - 000000000 ____D C:\Program Files (x86)\Google
2019-09-29 07:48 - 2017-12-11 00:16 - 000000000 ____D C:\Users\Lukas\AppData\Local\Packages
2019-09-28 21:24 - 2018-05-25 21:14 - 000298032 _____ C:\WINDOWS\SysWOW64\PnkBstrB.xtr
2019-09-28 21:24 - 2018-05-25 21:13 - 000298032 _____ C:\WINDOWS\SysWOW64\PnkBstrB.exe
2019-09-28 21:23 - 2018-05-25 21:13 - 000281872 _____ C:\WINDOWS\SysWOW64\PnkBstrB.ex0
2019-09-28 21:23 - 2018-05-25 21:13 - 000076888 _____ C:\WINDOWS\SysWOW64\PnkBstrA.exe
2019-09-28 21:13 - 2019-06-05 09:10 - 000000000 ____D C:\Users\Lukas\AppData\Roaming\HandBrake
2019-09-28 21:08 - 2018-05-25 21:13 - 003227136 _____ C:\WINDOWS\SysWOW64\pbsvc.exe
2019-09-28 15:01 - 2018-12-16 10:27 - 000000000 ____D C:\Users\Lukas\AppData\Local\BattlEye
2019-09-28 09:08 - 2016-12-12 23:33 - 000000000 ____D C:\ProgramData\Package Cache
2019-09-27 23:09 - 2019-05-30 14:07 - 005002192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2019-09-27 21:57 - 2016-12-13 19:48 - 000000000 ____D C:\Program Files (x86)\GOG Galaxy
2019-09-27 03:27 - 2019-05-30 14:07 - 000054700 _____ C:\WINDOWS\system32\nvinfo.pb
2019-09-27 01:23 - 2019-08-06 08:26 - 005468016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2019-09-27 01:23 - 2019-08-06 08:26 - 002635248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2019-09-27 01:23 - 2019-08-06 08:26 - 001767464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2019-09-27 01:23 - 2019-08-06 08:26 - 000653680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2019-09-27 01:23 - 2019-08-06 08:26 - 000451056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2019-09-27 01:23 - 2019-08-06 08:26 - 000124784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2019-09-27 01:23 - 2019-08-06 08:26 - 000083440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2019-09-26 09:55 - 2019-08-06 08:26 - 008716712 _____ C:\WINDOWS\system32\nvcoproc.bin

==================== Files in the root of some directories ================

2018-11-02 18:22 - 2018-11-02 18:37 - 000000050 _____ () C:\Users\Lukas\AppData\Roaming\~SiMPLEX.ini
2018-04-26 18:05 - 2018-04-26 18:14 - 018206861 _____ () C:\Users\Lukas\AppData\Local\OcrMap.bin
2018-09-25 16:03 - 2018-09-25 16:03 - 000002011 _____ () C:\Users\Lukas\AppData\Local\recently-used.xbel

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================


Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-10-2019
Ran by Lukas (24-10-2019 19:16:35)
Running from C:\Users\Lukas\Desktop
Windows 10 Home Version 1809 17763.805 (X64) (2018-12-22 11:35:19)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3002087409-3781809431-3002461792-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3002087409-3781809431-3002461792-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-3002087409-3781809431-3002461792-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-3002087409-3781809431-3002461792-501 - Limited - Disabled)
Lukas (S-1-5-21-3002087409-3781809431-3002461792-1001 - Administrator - Enabled) => C:\Users\Lukas
WDAGUtilityAccount (S-1-5-21-3002087409-3781809431-3002461792-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Out of date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Out of date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.021.20048 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0) (Version: 18.0.0 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{6CECF0FB-EE71-4FE5-8AE0-FA007408934A}) (Version: 13.0.0.38 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Assetto Corsa Competizione (HKLM-x32\...\Assetto Corsa Competizione_is1) (Version: - )
Audacity 2.3.2 (HKLM-x32\...\Audacity_is1) (Version: 2.3.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon MP Navigator EX 1.0 (HKLM-x32\...\MP Navigator EX 1.0) (Version: - )
Canon MP520 series (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP520_series) (Version: - )
Creative Audio Console (HKLM-x32\...\AudioCS) (Version: 1.36 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited)
Crucial Storage Executive (HKU\S-1-5-21-3002087409-3781809431-3002461792-1001\...\Crucial Storage Executive 3.38.102016.07) (Version: 3.60.082018.04 - Crucial)
CrystalDiskInfo 7.5.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.5.0 - Crystal Dew World)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
DVBViewer Pro (HKLM-x32\...\DVBViewer Pro_is1) (Version: 6.1.3 - CM&V)
DVBViewer Recording Service (HKLM-x32\...\DVBViewer Recording Service_is1) (Version: 1.33.02.01 - CM&V)
EaseUS Todo Backup Free 9.2 (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 9.2 - CHENGDU YIWO Tech Development Co., Ltd)
Emergency Download Driver (HKLM-x32\...\{3F0F5AB4-C9CE-4226-8393-E9CFF8369D9D}) (Version: 1.1.16.1526 - Microsoft)
Epic Games Launcher (HKLM-x32\...\{A398FCC0-8E8B-409E-90E9-ACF4671633F2}) (Version: 1.1.183.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESET Security (HKLM\...\{B489BC2D-0079-4631-97BF-CA2378299D43}) (Version: 11.0.159.9 - ESET, spol. s r.o.)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.120 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
HandBrake 1.2.2 (HKLM-x32\...\HandBrake) (Version: 1.2.2 - )
iMazing 2.4.2.0 (HKLM\...\iMazing_is1) (Version: 2.4.2.0 - DigiDNA)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
iTunes (HKLM\...\{14943541-6C82-4EE1-9D16-99A8170DA62F}) (Version: 12.10.1.4 - Apple Inc.)
Java 8 Update 231 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Jubler subtitle editor (HKLM\...\Jubler) (Version: 5.1 - www.jubler.org)
Kinect for Windows Speech Recognition Language Pack (de-DE) (HKLM-x32\...\{898AA67F-99B8-4C7F-9611-B11F98EF6E78}) (Version: 11.0.7413.611 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-AU) (HKLM-x32\...\{48CEC0A3-AE10-4EE3-AC62-76D3D58792E5}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-CA) (HKLM-x32\...\{9C5505DA-F9C1-46CB-9F8F-AC38F8EA518A}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-GB) (HKLM-x32\...\{A0186231-0A8B-455A-8A25-B64AABCC11A6}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-IE) (HKLM-x32\...\{998D5259-3BED-4710-98FF-D63387B5429E}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-NZ) (HKLM-x32\...\{07FC9CAD-FCEC-4186-BB83-EF7CCC9372BA}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (en-US) (HKLM-x32\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (es-ES) (HKLM-x32\...\{F49AF755-A5C3-4252-A190-5772B2669C3B}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (es-MX) (HKLM-x32\...\{E8F3B154-03CE-4120-8B9D-9E83ED5F3AD7}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (fr-CA) (HKLM-x32\...\{7D179500-CA0C-4456-B624-C15876B15F39}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (fr-FR) (HKLM-x32\...\{4CC174AA-25BC-46FF-B1E2-13B24AFB6142}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (it-IT) (HKLM-x32\...\{969D900A-3481-4A77-B888-D24160D4D727}) (Version: 11.0.7400.336 - Microsoft Corporation)
Kinect for Windows Speech Recognition Language Pack (ja-JP) (HKLM-x32\...\{EDA8693D-9E82-4FD1-98C8-0DC4F9141E0F}) (Version: 11.0.7400.336 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LAV Filters 0.71 (HKLM-x32\...\lavfilters_is1) (Version: 0.71 - Hendrik Leppkes)
LibreOffice 6.3.0.4 (HKLM\...\{235CBF9C-D3E1-4703-A729-7AC6F101C15E}) (Version: 6.3.0.4 - The Document Foundation)
Lumia UEFI Blue Driver (HKLM-x32\...\{9D2A75FE-8CE1-4297-AEC1-A097D47BACE9}) (Version: 1.1.10.1526 - Microsoft)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (pl-PL) (HKLM-x32\...\{BEFB9378-5E88-4266-8EB1-C92869449885}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (pt-BR) (HKLM-x32\...\{F6B5EB21-0ABF-487C-B9A9-D9DB259C4403}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (ru-RU) (HKLM-x32\...\{9419B7EA-6A4B-4A57-8E2A-3BDD4676118F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (zh-CN) (HKLM-x32\...\{BAD2A75A-1708-47BA-A498-20890D2C78A7}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
MKVToolNix 38.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 38.0.0 - Moritz Bunkus)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
NVIDIA Ovladač HD audia 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 436.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 436.48 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.50.31938 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 436.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 436.48 - NVIDIA Corporation) Hidden
Pazera Free Audio Extractor (32-bit) 2.9 (HKLM-x32\...\{6899C238-3E4A-4A04-B251-A0C9EDC7EDBC}_is1) (Version: 2.9 - Jacek Pazera)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{FD52A2FF-4D16-49C4-A2CD-DAC752C18BA2}) (Version: 8.0 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{9B061D60-4E2C-4987-BFFD-423E3D477660}) (Version: 8.0 - Apple Inc.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Rapture3D 2.4.11 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)
Razer Chroma SDK (HKLM-x32\...\Razer Chroma SDK) (Version: 2.22.3 - Razer Inc.)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.4.1015.100206 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7727 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.6.132 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.3.1 - Rockstar Games)
SD Card Formatter (HKLM-x32\...\{A61131DC-B92D-4AD8-A925-E2D6D5FE217C}) (Version: 5.0.1 - SD Association)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Subtitle Edit 3.5.10 (HKLM\...\SubtitleEdit_is1) (Version: 3.5.10.0 - Nikse)
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 26.1 - Ubisoft)
USB Serial Port Driver (HKLM-x32\...\{E12118B5-C66D-42A6-B2CC-B1A861B5885E}) (Version: 1.1.13.1605 - Microsoft)
WinFast Multimedia Driver Installation (HKLM-x32\...\{418EC9DD-25EE-4C3F-8827-B7AA9B26405B}) (Version: 7.5.2.4 - Leadtek Research Inc.)
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
WinUsb CoInstallers (HKLM-x32\...\{9755918A-CDF8-4F1E-8453-6359CF1A330A}) (Version: 1.1.12.1526 - Microsoft)
WinUSB Compatible ID Drivers (HKLM-x32\...\{A4A0B236-6046-4CAB-8177-1EAF61112C75}) (Version: 1.1.11.1526 - Microsoft)
WinUSB Drivers ext (HKLM-x32\...\{29BAAF65-09E5-4F52-8D15-2FAF2E23A8DC}) (Version: 1.1.24.1544 - Microsoft)

Packages:
=========
Forza Hub -> C:\Program Files\WindowsApps\Microsoft.Lucille_1.0.4.0_x64__8wekyb3d8bbwe [2018-09-09] (Microsoft Studios)
Forza Motorsport 7 -> C:\Program Files\WindowsApps\Microsoft.ApolloBaseGame_1.174.4791.2_x64__8wekyb3d8bbwe [2019-08-07] (Microsoft Studios)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-12] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-09-12] (Microsoft Corporation) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-09-25] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3002087409-3781809431-3002461792-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3002087409-3781809431-3002461792-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3002087409-3781809431-3002461792-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\Lukas\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-12-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2016-06-03] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-12-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers2: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2016-06-03] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd) [File not signed]
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers4: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2016-06-03] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-09-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-12-13] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ==================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) ==============

2017-12-29 19:22 - 2015-12-18 22:18 - 000010240 _____ (Creative Technology Ltd) [File not signed] C:\WINDOWS\System32\CTDCRES.DLL
2016-12-13 11:02 - 2016-06-03 13:12 - 000026816 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\AccountManager.dll
2016-12-13 11:02 - 2016-06-03 13:12 - 000128192 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActivationOnline.dll
2016-12-13 11:02 - 2016-06-03 13:12 - 000021184 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActiveOnline.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000020008 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidDeviceManager.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000443944 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidImage.dll
2016-12-13 11:02 - 2016-06-03 13:12 - 000040128 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\BootDriver.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000169512 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CloudInterface.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000077864 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CloudOperator.dll
2016-12-13 11:02 - 2016-06-03 13:12 - 000173760 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCAdapt.dll
2016-12-13 11:02 - 2016-06-03 13:12 - 000018112 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCNetTokenProxy.dll
2016-12-13 11:02 - 2016-06-03 13:12 - 000188608 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCPipeCenter.dll
2016-12-13 11:02 - 2016-06-03 13:12 - 000024768 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CmcTbProxy.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000080936 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CodeLog.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000089640 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Common.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000017448 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CompressFile.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000020520 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CorrectMbr.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000138792 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Device.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000027176 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\DeviceAdapter.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000353832 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\DeviceManager.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000030760 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\DiskSearchImg.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000281128 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\DsImgFile.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000193064 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBackupSize.dll
2016-12-13 11:02 - 2016-06-03 13:12 - 000220864 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBrowser.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000148008 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumDisk.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000032296 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumTapeDevice.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000769064 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExImage.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000061992 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FATFileSystemAnalyser.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000076840 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FatLib.dll
2016-12-13 11:02 - 2016-06-03 13:13 - 000114880 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileStorage.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000050216 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileSystemAnalyser.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000024616 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\GetDriverInfo.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000072232 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CheckImg.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000158248 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFile.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 001296424 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll
2016-12-13 11:02 - 2016-06-03 13:13 - 000085184 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\logsys.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000068136 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\MountImg.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000059944 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\NasOperator.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000056360 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSFileSystemAnalyser.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000207912 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSLib.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000146984 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Partition.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000064040 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\RegLib.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000224808 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\SmartBackup.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000501800 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\StorageMgr.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000043048 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbDataSwap.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000088616 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBGetRemoteNetInfo.dll
2016-12-13 11:02 - 2016-06-03 13:13 - 000056512 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBInfo.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000034856 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbTapeBrowse.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000139816 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\vhdvmdk.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000136232 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\VMConfig.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000060968 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000898088 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> Free Software Foundation) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\iconv.dll
2016-12-13 11:02 - 2016-07-19 16:38 - 000570048 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CmdManager.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000020008 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ControlPxe.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000689704 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EMail.dll
2016-12-13 11:02 - 2016-06-03 13:12 - 000045760 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EuPipe.dll
2016-12-13 11:02 - 2016-06-03 13:13 - 000220864 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlBackup.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000100904 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlBackupSize.dll
2016-12-13 11:02 - 2016-06-03 13:13 - 000593600 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlImgFile.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000044072 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlSearchImg.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000159272 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Ftp.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000017448 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FTPTest.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000079400 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImageFileInfo.dll
2016-12-13 11:02 - 2016-06-03 13:13 - 000296128 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFileHlp.dll
2016-12-13 11:02 - 2016-06-03 13:13 - 000155328 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\MatchStr.dll
2016-12-13 11:02 - 2016-06-03 13:13 - 000028864 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Options.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000093224 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\PolicyManage.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000121896 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Thread.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000077864 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Transmit.dll
2016-12-13 11:02 - 2015-12-10 07:04 - 000042536 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\XmlWrapper.dll
2016-12-13 11:02 - 2016-03-01 14:51 - 002454016 _____ (Python Software Foundation) [File not signed] C:\Program Files (x86)\EaseUS\Todo Backup\bin\python27.dll
2017-03-30 19:49 - 2018-11-05 22:55 - 000910716 _____ (SQLite Development Team) [File not signed] C:\Program Files (x86)\DVBViewer\sqlite3.dll
2016-12-13 19:40 - 2019-06-11 08:21 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2016-12-13 19:40 - 2019-06-11 08:22 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\ssleay32.dll
2016-12-13 19:40 - 2019-07-12 09:23 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2016-12-13 19:40 - 2019-07-12 09:23 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2016-12-13 19:40 - 2019-07-12 09:23 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2016-12-13 19:40 - 2019-07-12 09:23 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2016-12-13 19:40 - 2019-07-12 09:23 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2016-12-13 19:40 - 2019-07-12 09:23 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Lukas:Heroes & Generals [38]
AlternateDataStreams: C:\ProgramData\TEMP:0888F409 [272]
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47 [137]
AlternateDataStreams: C:\ProgramData\TEMP:66633281 [153]
AlternateDataStreams: C:\ProgramData\TEMP:93433455 [403]
AlternateDataStreams: C:\Users\Lukas\OneDrive:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.SyncRootIdentity [106]

==================== Safe Mode (Whitelisted) ===================

==================== Association (Whitelisted) ===============

==================== Internet Explorer trusted/restricted ===============

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 13:47 - 2016-07-16 13:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> ;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\ProgramData\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Crucial\Crucial Storage Executive;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\WindowsApps;C:\Users\Lukas\AppData\Local\Microsoft\WindowsApps;;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common
HKU\S-1-5-21-3002087409-3781809431-3002461792-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{33BFDD58-15A1-4452-88CC-53D8D9E358FB}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D4C4AB30-E464-4AD7-B866-32705E500CBB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe No File
FirewallRules: [{E9C473F5-3948-44F5-97E2-FB9623ABAFD9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7831B95F-D56A-4AC0-B01E-49E888AF1BAE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{EA778A47-A4DD-406A-9DFB-C59C1CC0B717}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{313692B1-C94B-4848-9913-07449159E4C6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{BA84874B-69AA-48D8-AAD3-6FEAA1061922}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
FirewallRules: [{493795E9-9E70-406B-8C9F-02450ED5A9CB}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
FirewallRules: [{8C3D1246-35D1-4F2C-8AE4-032850D1F823}] => (Allow) F:\Hry\SteamLibrary\steamapps\common\Bugbear Entertainment\Wreckfest_x64.exe No File
FirewallRules: [{5B936A42-83C4-48F4-AB2E-4E127A25D10D}] => (Allow) F:\Hry\SteamLibrary\steamapps\common\Bugbear Entertainment\Wreckfest_x64.exe No File
FirewallRules: [{63547625-6B15-4419-9DCC-EFD7CE535801}] => (Allow) F:\Hry\SteamLibrary\steamapps\common\Bugbear Entertainment\Wreckfest.exe No File
FirewallRules: [{7916AD29-D619-46F0-99A7-68166E7301FE}] => (Allow) F:\Hry\SteamLibrary\steamapps\common\Bugbear Entertainment\Wreckfest.exe No File
FirewallRules: [{6BD738E3-7E08-4BA8-8934-D313F98E5A8A}] => (Allow) D:\SteamLibrary\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe No File
FirewallRules: [{530E2E4E-A78C-4893-B845-56F20DA59B5A}] => (Allow) D:\SteamLibrary\steamapps\common\DmC Devil May Cry\Binaries\Win32\DMC-DevilMayCry.exe No File
FirewallRules: [{55F838C6-D2EE-43A3-9740-2C1FD96A73A7}] => (Allow) C:\Program Files (x86)\DVBViewer\DVBVservice.exe (Christian Hackbart -> CM & V)
FirewallRules: [{E8008999-2945-47BB-A966-7097F25E196E}] => (Allow) F:\Hry\SteamLibrary\steamapps\common\Cuphead\Cuphead.exe No File
FirewallRules: [{EEE2D6C3-AA56-4C61-B1FB-A20F7B9289BB}] => (Allow) F:\Hry\SteamLibrary\steamapps\common\Cuphead\Cuphead.exe No File
FirewallRules: [{F009FDF1-CBC7-4885-83EC-E5933226DFDB}] => (Allow) D:\SteamLibrary\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe No File
FirewallRules: [{969539F1-9BB1-4A91-8E51-AA0D0ED42A29}] => (Allow) D:\SteamLibrary\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe No File
FirewallRules: [{59B18F51-2759-46D0-A2D5-AF02FDA25D24}] => (Allow) D:\SteamLibrary\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe No File
FirewallRules: [{80578BFD-EBAB-4823-8270-8566D15F669C}] => (Allow) D:\SteamLibrary\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe No File
FirewallRules: [{8B9A0952-2153-41B2-9B37-75E048EF752C}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe No File
FirewallRules: [{5346241D-FAA0-48CD-AF37-BCEBDF424762}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe No File
FirewallRules: [{5C37B0EF-6AC9-47EB-8382-877130D959A9}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe No File
FirewallRules: [{D9BB06B8-9416-4C55-BC7B-6C98590F7A3B}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe No File
FirewallRules: [{A7BA1566-FF46-4EB1-B2A0-AC35F716C8BF}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe No File
FirewallRules: [{6AAEA5BC-7783-4F2A-89AD-7AFB41C459F8}] => (Allow) LPort=26789
FirewallRules: [{F5EAD3F1-AF56-4E72-9675-0E3D18138797}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{6762F188-3E20-4BF5-A651-1F58B41D3549}] => (Allow) C:\Users\Lukas\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{3D1C2BB3-907B-40AD-BD7B-183E9B1018FA}] => (Allow) D:\SteamLibrary\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe No File
FirewallRules: [{2EEA6F86-B31C-4881-AB4B-E75FEE825E70}] => (Allow) D:\SteamLibrary\steamapps\common\raceroom racing experience\Game\x64\RRRE64.exe No File
FirewallRules: [{40BC0433-E3AF-4B19-905E-49EF9A74F3E3}] => (Allow) D:\SteamLibrary\steamapps\common\raceroom racing experience\Game\RRRE.exe No File
FirewallRules: [{917943CC-E80F-42F2-8D71-DBBDD7BE5CAD}] => (Allow) D:\SteamLibrary\steamapps\common\raceroom racing experience\Game\RRRE.exe No File
FirewallRules: [{313533D8-8AD6-48E2-AE49-BF9E9490C6E8}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
FirewallRules: [{BE429511-F28D-452C-BB4B-FA07D04657F6}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [File not signed]
FirewallRules: [{D2939E5C-4DFF-462D-A5AC-DC22E096FC9C}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe No File
FirewallRules: [{F1C07EF9-EA53-4F8C-8310-9A31C7D2F0C4}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe No File
FirewallRules: [{CE7DE8C2-4B28-43B4-B54C-A0AE1B769E8A}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe No File
FirewallRules: [{6B358E35-6278-4FD5-8163-50D39914BF50}] => (Allow) C:\Program Files (x86)\Remote Mouse\RemoteMouseCore.exe No File
FirewallRules: [{1C982F64-5A04-4B8D-B565-1151D66CF2CF}] => (Allow) D:\SteamLibrary\steamapps\common\Remember Me\Binaries\Win32\RememberMe.exe No File
FirewallRules: [{3CCAFBAA-2AB8-4EF1-8DC5-48E719E3169C}] => (Allow) D:\SteamLibrary\steamapps\common\Remember Me\Binaries\Win32\RememberMe.exe No File
FirewallRules: [{B6DF0149-AC30-4DDC-B0D2-6A003DE81801}] => (Allow) D:\SteamLibrary\steamapps\common\Wreckfest\Wreckfest_x64.exe () [File not signed]
FirewallRules: [{00F3E629-7C4F-43DF-BC33-62FAF6B64983}] => (Allow) D:\SteamLibrary\steamapps\common\Wreckfest\Wreckfest_x64.exe () [File not signed]
FirewallRules: [{D1119E72-C49A-414B-8F48-6FB341E8DBB8}] => (Allow) D:\SteamLibrary\steamapps\common\Wreckfest\Wreckfest.exe () [File not signed]
FirewallRules: [{8A2C546B-1237-4D12-9618-4B3E66C25053}] => (Allow) D:\SteamLibrary\steamapps\common\Wreckfest\Wreckfest.exe () [File not signed]
FirewallRules: [{752668B5-6D21-4167-A05F-B76215A74005}] => (Allow) D:\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX11.exe No File
FirewallRules: [{0D58ED1C-8B25-434F-842C-5189855165D7}] => (Allow) D:\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX11.exe No File
FirewallRules: [{4F6E1DF1-F83E-4284-A935-4CA75427D267}] => (Allow) D:\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX9.exe No File
FirewallRules: [{8B556ED0-228C-487C-8275-12935B151986}] => (Allow) D:\Tom Clancy's Ghost Recon Future Soldier\Future Soldier DX9.exe No File
FirewallRules: [{767B4012-6457-49C0-B23F-41F620E4C38A}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{10837368-99AC-4272-BC10-5232CC02815D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{BB0946C9-7027-4983-8C09-529A81439FE3}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{C940132C-8EDC-4142-857C-9372E4D659B8}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{F9A7B06E-122F-40AA-8E36-169F97F36074}] => (Allow) D:\Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe No File
FirewallRules: [{0A745CE3-8A73-4B19-99CB-EC30217D335B}] => (Allow) D:\Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe No File
FirewallRules: [{08F2CF73-650D-4035-AA66-A3B154F94B0B}] => (Allow) D:\Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe No File
FirewallRules: [{7EE9BC68-A3DD-4CB9-93F6-60B72AD7F735}] => (Allow) D:\Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe No File
FirewallRules: [{7FD277AF-942C-4287-87AE-11A62758221B}] => (Allow) D:\SteamLibrary\steamapps\common\Cuphead\Cuphead.exe () [File not signed]
FirewallRules: [{FC41B005-AECB-4308-92CD-242FFCBC9F66}] => (Allow) D:\SteamLibrary\steamapps\common\Cuphead\Cuphead.exe () [File not signed]
FirewallRules: [{5DEEEDFA-62B5-4862-B106-D15F06B653FC}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E5D7B26E-96E7-42E0-98EB-43B09EB7599B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{D7049068-F989-4FAD-B8FA-02BC32175492}] => (Allow) D:\SteamLibrary\steamapps\common\Mafia\Mafia\Game.exe No File
FirewallRules: [{D069B81B-B7F8-4506-BF8F-25A6E4737C87}] => (Allow) D:\SteamLibrary\steamapps\common\Mafia\Mafia\Game.exe No File
FirewallRules: [{65AF460C-AB96-4A2B-9B0C-385653C95DC9}] => (Allow) D:\SteamLibrary\steamapps\common\Mafia\Mafia\Setup.exe No File
FirewallRules: [{96614579-F362-447D-A5E0-50F5F431EEB8}] => (Allow) D:\SteamLibrary\steamapps\common\Mafia\Mafia\Setup.exe No File
FirewallRules: [{207D46A4-B9D5-40A0-B781-5479DAF39FD2}] => (Allow) D:\SteamLibrary\steamapps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [File not signed]
FirewallRules: [{FE15B028-2470-4BC5-8068-21F04B92F913}] => (Allow) D:\SteamLibrary\steamapps\common\assettocorsa\AssettoCorsa.exe (Kunos Simulazioni) [File not signed]

==================== Restore Points =========================

02-10-2019 20:33:48 Nainstalováno rozhraní DirectX
09-10-2019 14:55:24 Windows Update
14-10-2019 16:30:06 Nainstalováno rozhraní DirectX
20-10-2019 09:55:10 Nainstalováno rozhraní DirectX

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/23/2019 05:21:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.17763.592, časové razítko: 0xabe94558
Kód výjimky: 0xc000041d
Posun chyby: 0x00005fc7
ID chybujícího procesu: 0x181c
Čas spuštění chybující aplikace: 0x01d589b11b8393d5
Cesta k chybující aplikaci: C:\Users\Lukas\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: efd3dbc9-5ea9-4743-9ce9-8452b8ffbff9
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/21/2019 07:20:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.17763.592, časové razítko: 0xabe94558
Kód výjimky: 0xc000041d
Posun chyby: 0x00005fc7
ID chybujícího procesu: 0x32e0
Čas spuštění chybující aplikace: 0x01d58833ac0749b8
Cesta k chybující aplikaci: C:\Users\Lukas\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: ff24eb34-cfd4-47d5-b9ce-f82c309310da
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/20/2019 08:38:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.17763.592, časové razítko: 0xabe94558
Kód výjimky: 0xc000041d
Posun chyby: 0x00005fc7
ID chybujícího procesu: 0x12a4
Čas spuštění chybující aplikace: 0x01d58710ee593927
Cesta k chybující aplikaci: C:\Users\Lukas\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 7570be79-a355-42cc-962e-d8789f70f4e3
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/19/2019 06:32:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.17763.592, časové razítko: 0xabe94558
Kód výjimky: 0xc000041d
Posun chyby: 0x00005fc7
ID chybujícího procesu: 0xea0
Čas spuštění chybující aplikace: 0x01d5869aa0ae96bd
Cesta k chybující aplikaci: C:\Users\Lukas\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 808c914a-a248-4996-8998-d4bfbb9b8831
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/18/2019 05:20:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.17763.592, časové razítko: 0xabe94558
Kód výjimky: 0xc000041d
Posun chyby: 0x00005fc7
ID chybujícího procesu: 0x31e4
Čas spuštění chybující aplikace: 0x01d585b45289cf13
Cesta k chybující aplikaci: C:\Users\Lukas\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: cc210359-c6e1-4d6d-8811-69a8e945a711
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/16/2019 09:27:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.17763.592, časové razítko: 0xabe94558
Kód výjimky: 0xc000041d
Posun chyby: 0x00005fc7
ID chybujícího procesu: 0x2674
Čas spuštění chybující aplikace: 0x01d5844f6677da0e
Cesta k chybující aplikaci: C:\Users\Lukas\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 2f1e443a-5059-455d-8668-46b658c464b8
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/16/2019 05:31:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.17763.592, časové razítko: 0xabe94558
Kód výjimky: 0xc000041d
Posun chyby: 0x00005fc7
ID chybujícího procesu: 0x26ac
Čas spuštění chybující aplikace: 0x01d584328d99b1d9
Cesta k chybující aplikaci: C:\Users\Lukas\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 3085f746-8c6e-4bfb-ba09-b475635e7269
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (10/15/2019 09:10:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: utorrent.exe, verze: 2.2.1.25534, časové razítko: 0x4e4594ce
Název chybujícího modulu: GDI32.dll, verze: 10.0.17763.592, časové razítko: 0xabe94558
Kód výjimky: 0xc000041d
Posun chyby: 0x00005fc7
ID chybujícího procesu: 0x3570
Čas spuštění chybující aplikace: 0x01d5837d2594bd12
Cesta k chybující aplikaci: C:\Users\Lukas\AppData\Roaming\uTorrent\utorrent.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\GDI32.dll
ID zprávy: 0e387cb6-027b-4942-ac68-5233d6ef8385
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:


System errors:
=============
Error: (10/24/2019 06:44:37 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-LVE8HP0)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-LVE8HP0\Lukas (SID: S-1-5-21-3002087409-3781809431-3002461792-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (10/24/2019 05:45:02 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-LVE8HP0)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-LVE8HP0\Lukas (SID: S-1-5-21-3002087409-3781809431-3002461792-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (10/24/2019 05:30:26 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-LVE8HP0)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-LVE8HP0\Lukas (SID: S-1-5-21-3002087409-3781809431-3002461792-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (10/24/2019 04:56:53 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-LVE8HP0)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-LVE8HP0\Lukas (SID: S-1-5-21-3002087409-3781809431-3002461792-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (10/24/2019 04:28:46 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-LVE8HP0)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-LVE8HP0\Lukas (SID: S-1-5-21-3002087409-3781809431-3002461792-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (10/24/2019 03:15:02 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-LVE8HP0)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-LVE8HP0\Lukas (SID: S-1-5-21-3002087409-3781809431-3002461792-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (10/24/2019 03:03:39 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-LVE8HP0)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-LVE8HP0\Lukas (SID: S-1-5-21-3002087409-3781809431-3002461792-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (10/23/2019 08:26:14 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-LVE8HP0)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli DESKTOP-LVE8HP0\Lukas (SID: S-1-5-21-3002087409-3781809431-3002461792-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


CodeIntegrity:
===================================

Date: 2019-02-09 10:29:40.240
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Smart Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-02-09 10:29:40.221
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Smart Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-02-09 10:29:40.176
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Smart Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-02-09 10:29:40.158
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Smart Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-01-09 12:06:43.506
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Smart Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-01-09 12:06:43.493
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Smart Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-01-09 12:06:41.025
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Smart Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-01-09 12:06:41.015
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\ESET\ESET Smart Security\ecmds.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: American Megatrends Inc. F8 08/12/2014
Motherboard: Gigabyte Technology Co., Ltd. Z87-HD3
Processor: Intel(R) Core(TM) i5-4670 CPU @ 3.40GHz
Percentage of memory in use: 30%
Total physical RAM: 16269.59 MB
Available physical RAM: 11366.45 MB
Total Virtual: 21773.59 MB
Available Virtual: 16003.3 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:118.27 GB) (Free:42.92 GB) NTFS
Drive d: (Hry) (Fixed) (Total:232.88 GB) (Free:171.58 GB) NTFS
Drive e: () (Fixed) (Total:1397.26 GB) (Free:997.8 GB) NTFS
Drive f: () (Fixed) (Total:931.51 GB) (Free:548.53 GB) NTFS

\\?\Volume{232ba93a-0000-0000-0000-100000000000}\ (Rezervováno systémem) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{232ba93a-0000-0000-0000-90b01d000000}\ () (Fixed) (Total:0.48 GB) (Free:0.08 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 232BA93A)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=118.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=493 MB) - (Type=27)

========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: DDA7EA37)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 1397.3 GB) (Disk ID: 8BD18470)
Partition 2: (Not Active) - (Size=1397.3 GB) - (Type=0F Extended)

========================================================
Disk: 3 (Size: 931.5 GB) (Disk ID: EA256415)
Partition 2: (Active) - (Size=931.5 GB) - (Type=05)

==================== End of Addition.txt ============================

[Conder]

Ahoj

Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/

• Uloz na plochu a ukonci vsetky programy
• Spusti AdwCleaner ako spravca
• Odsuhlas licencne podmienky
• Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
• Nechaj zaskrtnute vsetky nalezy
• Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
• Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
• Otvori sa log, jeho obsah sem skopiruj

[s4m.f1sher]

sken proběhl, ale nebylo nic nalezeno

# -------------------------------
# Malwarebytes AdwCleaner 7.4.2.0
# -------------------------------
# Build: 10-21-2019
# Database: 2019-10-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 10-24-2019
# Duration: 00:00:10
# OS: Windows 10 Home
# Scanned: 35182
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Preinstalled Software ] *****

No Preinstalled Software found.


AdwCleaner_Debug.log - [3637 octets] - [24/10/2019 20:13:44]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########

[Conder]

Poprosim o obidva nove log z FRST.