Dobrý den,
prosím o kontrolu logu. U mého notebooku dochází i při malé zátěži ke spuštění větráků. Např. spustím Chrome, či Firefox, či jinou aplikac, tak se rozeběhnou, teplota procesoru vyskočí a hned zase klesne.
Notebook Dell Precision M4700.
Teploty dle CoreTemp od 45-60. Využití procesoru na 6%, RAM cca. 4.5GB/16.
Větráky, chladič a vše uvnitř rozebráno a vyfoukáno - čisto.
Počítač se neseká, je rychlý.
Ovladače Grafiky aktualizovány na nejnovější a problém trvá.
Projeto Malwarem, Avirou, Ccleaner, Spybot atd. - nic.
Ten hluk od větráků je opravdu při nočních hodinách velice otravný.
Děkuji za případnou radu.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pracant at 2020-04-20 10:13:58
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 16 GB (7%) free of 238 GB
Total RAM: 16323 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:14:07, on 20.4.2020
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19541)
Boot mode: Normal
Running processes:
C:\Users\Pracant\AppData\Roaming\uTorrent\utorrent.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\trend micro\Pracant.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" 60
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKLM\..\Run: [Avira System Speedup User Starter] "C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Users\Pracant\AppData\Roaming\uTorrent\utorrent.exe"
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Alps HID Monitor Service (ApHidMonitorService) - Alps Electric Co., Ltd. - C:\Program Files\DellTPad\HidMonitorSvc.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Avira Optimizer Host (AviraOptimizerHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
O23 - Service: Avira Phantom VPN (AviraPhantomVPN) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
O23 - Service: Avira Security (AviraSecurity) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
O23 - Service: Avira Updater Service (AviraUpdaterService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Dell Digital Delivery Service (DellDigitalDelivery) - Unknown owner - C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.113\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA WMI Provider (NVWMI) - Unknown owner - C:\Windows\system32\nvwmi64.exe (file missing)
O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\o2flash.exe (file missing)
O23 - Service: O2SDIOAssist - Unknown owner - C:\Windows\SysWOW64\srvany.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: NTRU TSS v1.2.1.37 TCS (tcsd_win32.exe) - Unknown owner - C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 12088 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
winlogon.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 12015296
\??\C:\Windows\system32\conhost.exe "1832746455325888671877651004-806227653491431877-577886617483297695-1135300422
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\SPBA\upeksvr.exe"
taskeng.exe {16A09ECA-114E-4511-9793-34F56013AD29}
taskeng.exe {7C23C19F-160F-49E8-B15C-BC12BD61D463}
"taskhost.exe"
taskeng.exe {1CE43348-05FD-4E81-8605-9E77E1308280}
"C:\Program Files\Core Temp\Core Temp.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\DellTPad\Apoint.exe"
"C:\Users\Pracant\AppData\Roaming\uTorrent\utorrent.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe"
"C:\Windows\system32\nvwmi64.exe"
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
C:\Windows\system32\nvwmi64.exe -spawnprovider
"C:\Program Files\DellTPad\HidMonitorSvc.exe"
"C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe"
"C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe"
"C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe"
"C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Maintenance.exe" -heartbeat delayed
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_00000904
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\sppsvc.exe
"C:\Program Files\DellTPad\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files\DellTPad\HidFind.exe"
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "1793203475-533613877775879752-1320267613706032621-1891831614-1665257336-1533385754
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=81.0.4044.113 --initial-client-data=0xc0,0xc4,0xc8,0x94,0xcc,0x7fee7bfbd28,0x7fee7bfbd38,0x7fee7bfbd48
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=4780 --on-initialized-event-handle=380 --parent-handle=384 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1104,10043902770369142209,9989013072013577439,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1108 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1104,10043902770369142209,9989013072013577439,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1376 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1104,10043902770369142209,9989013072013577439,131072 --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2396 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1104,10043902770369142209,9989013072013577439,131072 --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1388 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1104,10043902770369142209,9989013072013577439,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=11 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3216 /prefetch:1
taskmgr.exe /3
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1104,10043902770369142209,9989013072013577439,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=24 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3980 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1104,10043902770369142209,9989013072013577439,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=25 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2260 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1104,10043902770369142209,9989013072013577439,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3108 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1104,10043902770369142209,9989013072013577439,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1856 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1104,10043902770369142209,9989013072013577439,131072 --lang=cs --service-sandbox-type=audio --enable-audio-service-sandbox --mojo-platform-channel-handle=4744 --ignored=" --type=renderer " /prefetch:8
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1104,10043902770369142209,9989013072013577439,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=61 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5692 /prefetch:1
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\o2flash.exe
C:\Windows\SysWOW64\srvany.exe
C:\Windows\sysWOW64\SDIOAssist.exe
"C:\Users\Pracant\Downloads\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-11 210632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-09-18 581104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2020-03-05 984672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-18 244208]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2020-03-05 687704]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2018-10-24 776224]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=C:\Users\Pracant\AppData\Roaming\uTorrent\utorrent.exe [2018-10-25 414656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Smart Cleaning]
C:\Program Files\CCleaner\CCleaner64.exe [2019-10-16 24552064]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2019-10-26 302904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Download Assistant]
C:\Windows\System32\LogiLDA.dll [2016-10-14 1841496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2019-03-19 6787856]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2019-07-04 644552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Avast Cleanup Premium.lnk]
C:\PROGRA~2\AVAST Software\Avast Cleanup\TuneupUI.exe []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-02-22 292088]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2016-05-25 136992]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2020-04-02 239520]
"Avira System Speedup User Starter"=C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [2020-01-30 331368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\spba]
C:\Program Files\Common Files\SPBA\homefus2.dll [2010-09-15 2305872]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
"SlowLinkDetectEnabled"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=153
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.X264"=x264vfw64.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-04-20 10:13:58 ----D---- C:\rsit
2020-04-20 10:13:58 ----D---- C:\Program Files\trend micro
2020-04-18 21:53:02 ----A---- C:\Windows\system32\nvwmi64.exe
2020-04-18 21:52:40 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvsvcr.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvsvc64.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvshext.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvmctray.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvcpl.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nv3dappshextr.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nv3dappshext.dll
2020-04-18 21:52:31 ----A---- C:\Windows\NvContainerRecovery.bat
2020-04-18 21:52:24 ----D---- C:\Windows\system32\drivers\NVIDIA Corporation
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvopencl32.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvofapi.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkaninfo.exe
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkan-1.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\OpenCL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvwgf2umx.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvrtum64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvptxJitCompiler.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvoptix.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvopencl64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvoglv64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvofapi64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvIFR64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvhdap64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvFBC64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvdispgenco6442632.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvdispco6442632.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvd3dumx.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvcuvid.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvcuda.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2020-04-18 21:49:01 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2020-04-18 21:49:00 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvcompiler.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvcbl64.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvapi64.dll
2020-04-18 21:47:45 ----D---- C:\NVIDIA
2020-04-18 21:30:43 ----A---- C:\Windows\system32\drivers\mbae64.sys
2020-04-18 21:30:41 ----D---- C:\ProgramData\Malwarebytes
2020-04-18 21:30:05 ----D---- C:\Program Files\Malwarebytes
2020-04-18 21:06:02 ----D---- C:\ProgramData\RogueKiller
2020-04-18 20:48:30 ----D---- C:\AdwCleaner
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avusbflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avnetflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avipbb.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avdevprot.sys
2020-04-18 20:29:11 ----D---- C:\Program Files (x86)\Avira
2020-04-18 20:29:10 ----D---- C:\ProgramData\Avira
2020-04-18 20:23:14 ----D---- C:\Program Files (x86)\Google
2020-04-13 12:49:37 ----A---- C:\Windows\system32\FNTCACHE.DAT
2020-04-12 21:32:13 ----D---- C:\Windows\pss
2020-04-12 19:47:34 ----D---- C:\Program Files (x86)\MatterControl
2020-04-12 19:46:01 ----D---- C:\Users\Pracant\AppData\Roaming\cura
2020-04-12 19:43:12 ----D---- C:\Program Files\Ultimaker Cura 4.5
2020-04-12 13:34:55 ----D---- C:\Program Files\VCG
2020-04-11 08:09:32 ----D---- C:\Users\Pracant\AppData\Roaming\Trimble Connect for SketchUp
2020-04-11 08:08:01 ----D---- C:\Users\Pracant\AppData\Roaming\SketchUp
2020-04-11 08:06:53 ----AD---- C:\ProgramData\Reprise
2020-04-11 08:06:42 ----D---- C:\ProgramData\SketchUp
2020-04-11 08:06:42 ----D---- C:\Program Files\SketchUp
2020-04-10 21:13:05 ----A---- C:\Windows\system32\drivers\Spybot3ELAM.sys
2020-04-10 21:13:03 ----A---- C:\Windows\system32\sdnclean64.exe
2020-04-10 20:04:56 ----D---- C:\Users\Pracant\AppData\Roaming\PrusaSlicer
2020-04-10 20:01:36 ----D---- C:\Program Files\Prusa3D
2020-04-09 19:04:53 ----D---- C:\Program Files\Mozilla Thunderbird
2020-04-08 09:44:19 ----D---- C:\Users\Pracant\AppData\Roaming\Fusion360
2020-04-08 09:43:46 ----D---- C:\Users\Pracant\AppData\Roaming\CadSoft
2020-04-08 09:43:28 ----D---- C:\ProgramData\Autodesk
2020-04-08 09:43:20 ----D---- C:\Users\Pracant\AppData\Roaming\Autodesk
2020-04-07 08:24:23 ----D---- C:\Program Files\Garmin GPS Plugin
2020-04-07 08:24:23 ----D---- C:\Program Files (x86)\Garmin GPS Plugin
2020-03-29 12:05:20 ----D---- C:\Program Files\Factorio_0.18.14
======List of files/folders modified in the last 1 month======
2020-04-20 10:14:04 ----D---- C:\Windows\Temp
2020-04-20 10:13:58 ----RD---- C:\Program Files
2020-04-20 10:10:20 ----D---- C:\Users\Pracant\AppData\Roaming\uTorrent
2020-04-20 10:10:18 ----D---- C:\ProgramData\NVIDIA
2020-04-19 22:47:51 ----D---- C:\Program Files (x86)\Subnautica
2020-04-19 21:31:17 ----D---- C:\Users\Pracant\AppData\Roaming\MPC-HC
2020-04-19 14:34:28 ----D---- C:\Windows\system32\config
2020-04-19 14:23:50 ----SHD---- C:\System Volume Information
2020-04-19 10:53:58 ----D---- C:\Users\Pracant\AppData\Roaming\foobar2000
2020-04-19 10:43:14 ----D---- C:\Users\Pracant\AppData\Roaming\Telegram Desktop
2020-04-19 09:08:47 ----D---- C:\ProgramData\NVIDIA Corporation
2020-04-19 07:40:46 ----D---- C:\Windows\System32
2020-04-19 07:40:46 ----D---- C:\Windows\inf
2020-04-19 07:40:46 ----A---- C:\Windows\system32\PerfStringBackup.INI
2020-04-19 07:31:54 ----D---- C:\Windows\system32\drivers
2020-04-18 21:53:05 ----D---- C:\Program Files\NVIDIA Corporation
2020-04-18 21:53:04 ----D---- C:\Windows\system32\DriverStore
2020-04-18 21:53:02 ----D---- C:\Windows\system32\wbem
2020-04-18 21:53:01 ----D---- C:\Windows\system32\Tasks
2020-04-18 21:52:45 ----D---- C:\Windows\SysWOW64
2020-04-18 21:52:44 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2020-04-18 21:52:35 ----D---- C:\Windows\Help
2020-04-18 21:52:31 ----D---- C:\Windows
2020-04-18 21:34:31 ----RD---- C:\Program Files (x86)
2020-04-18 21:34:31 ----D---- C:\ProgramData\Dell
2020-04-18 21:30:41 ----HD---- C:\ProgramData
2020-04-18 20:29:43 ----SHD---- C:\Windows\Installer
2020-04-18 20:29:24 ----D---- C:\Windows\Microsoft.NET
2020-04-18 20:29:19 ----RSD---- C:\Windows\Fonts
2020-04-18 20:29:09 ----D---- C:\ProgramData\Package Cache
2020-04-18 20:29:08 ----D---- C:\Windows\SoftwareDistribution
2020-04-16 22:25:48 ----D---- C:\Windows\system32\drivers\etc
2020-04-16 22:18:12 ----D---- C:\Users\Pracant\AppData\Roaming\AVAST Software
2020-04-16 22:18:12 ----D---- C:\ProgramData\AVAST Software
2020-04-16 22:18:11 ----D---- C:\Program Files\Common Files
2020-04-13 12:49:39 ----D---- C:\Windows\debug
2020-04-12 21:31:07 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2020-04-12 21:29:13 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2020-04-12 21:28:28 ----D---- C:\Program Files (x86)\Dell
2020-04-11 18:45:28 ----D---- C:\Program Files (x86)\Intel
2020-04-11 18:44:48 ----D---- C:\Windows\system32\catroot
2020-04-11 18:44:29 ----RSD---- C:\Windows\assembly
2020-04-11 18:36:41 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy 2
2020-04-11 18:31:59 ----D---- C:\Windows\winsxs
2020-04-10 21:13:05 ----SD---- C:\ProgramData\Microsoft
2020-04-10 21:13:01 ----D---- C:\ProgramData\Spybot - Search & Destroy
2020-04-10 20:03:21 ----D---- C:\Program Files\DIFX
2020-04-08 12:32:12 ----D---- C:\Users\Pracant\AppData\Roaming\XnView
2020-04-07 08:29:51 ----D---- C:\Users\Pracant\AppData\Roaming\Garmin
2020-04-06 19:55:25 ----D---- C:\Program Files (x86)\Garmin
2020-04-02 01:49:56 ----N---- C:\Windows\system32\MpSigStub.exe
2020-03-25 17:02:40 ----D---- C:\Program Files\Factorio.v0.18.0
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avdevprot;avdevprot; C:\Windows\system32\DRIVERS\avdevprot.sys [2019-06-07 68152]
R0 avusbflt;avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [2019-03-20 35376]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2012-05-30 569152]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-02-22 20464]
R0 PBADRV;PBADRV; C:\Windows\system32\DRIVERS\PBADRV.sys [2019-09-18 32240]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2015-01-09 23216]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2020-04-06 177376]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2019-03-20 36072]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2014-12-21 40344]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-01-07 60416]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2020-03-27 223744]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2019-03-20 78600]
R3 ALSysIO;ALSysIO; \??\C:\Users\Pracant\AppData\Local\Temp\ALSysIO64.sys []
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x64; C:\Windows\system32\DRIVERS\Apfiltr.sys [2018-10-24 612072]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2013-02-20 495888]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-02-22 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-02-22 792560]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2016-03-28 181304]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETwsw00.sys [2013-05-29 11524096]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2019-11-10 237368]
R3 O2SDJRDR;O2SDJRDR; C:\Windows\system32\DRIVERS\o2sdjw7x64.sys [2012-04-26 85336]
R3 phantomtap;Phantom TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\phantomtap.sys [2020-03-18 35664]
R3 ST_ACCEL;STMicroelectronics Accelerometer Service; C:\Windows\system32\DRIVERS\ST_Accel.sys [2015-05-21 101040]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2013-07-24 36864]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2019-09-18 165688]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2019-07-30 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2019-07-30 556032]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2019-07-30 80384]
S3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2019-09-18 598808]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2019-09-18 184144]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2019-09-18 210984]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2019-09-18 39976]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2019-09-18 21544]
S3 DDDriver;DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [2019-05-21 41608]
S3 DellProf;DellProf; C:\Windows\system32\drivers\DellProf.sys [2019-05-21 41208]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2018-09-24 3808640]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2014-01-07 166400]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2014-01-07 109568]
S3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys []
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 29696]
S3 trufos;trufos; C:\Windows\system32\drivers\trufos.sys [2020-01-02 439576]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2019-05-18 54784]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S4 nvkflt;nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys []
S4 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2020-04-01 485960]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2020-04-01 485960]
R2 ApHidMonitorService;Alps HID Monitor Service; C:\Program Files\DellTPad\HidMonitorSvc.exe [2018-10-24 104800]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2020-04-02 634896]
R2 AviraOptimizerHost;Avira Optimizer Host; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2020-01-20 2989888]
R2 AviraPhantomVPN;Avira Phantom VPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [2020-03-18 382992]
R2 AviraSecurity;Avira Security; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [2020-04-01 242448]
R2 AviraUpdaterService;Avira Updater Service; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [2020-04-09 161216]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2013-02-19 1008344]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2020-03-05 11091224]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-01-07 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-07-17 626416]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2018-09-24 317416]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2016-05-25 209184]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2016-05-25 416544]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2019-11-10 861192]
R2 NVWMI;NVIDIA WMI Provider; C:\Windows\system32\nvwmi64.exe [2019-11-13 4741024]
R2 O2FLASH;O2FLASH; C:\Windows\system32\o2flash.exe [2011-11-16 244328]
R2 O2SDIOAssist;O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [2003-04-18 8192]
R2 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2016-12-27 5132888]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-07-17 149744]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2020-04-01 1209856]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2020-03-22 573760]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2019-03-28 132792]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2019-03-28 158912]
S2 DellDigitalDelivery;Dell Digital Delivery Service; C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe []
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-04-18 156104]
S2 tcsd_win32.exe;NTRU TSS v1.2.1.37 TCS; C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [2011-10-08 1637888]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2020-02-25 88648]
S3 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2020-01-10 96056]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2014-01-07 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-28 54912]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2018-09-24 376296]
S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.113\elevation_service.exe [2020-04-14 1095664]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-04-18 156104]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-10-24 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2016-02-19 974632]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2019-10-26 658232]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [2020-04-18 6933272]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 215080]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2019-03-19 3892080]
S3 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2020-03-04 4741680]
S3 SDWSCService;Spybot Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2019-09-04 940976]
S3 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-06-16 741640]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-07 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Větráky běží i při malé zátěži NTB
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Větráky běží i při malé zátěži NTB
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Větráky běží i při malé zátěži NTB
Děkuji,
test
https://www.virustotal.com/gui/file/abd ... /detection
File published by Microsoft Corporation
test
https://www.virustotal.com/gui/file/abd ... /detection
File published by Microsoft Corporation
Re: Větráky běží i při malé zátěži NTB
odinstaluj SpyBot a zvysky Avast-u
vycisti s CCleanerom vcetne registrov
restart
vloz oba logy FRST
P.S. je ten Win legal
vycisti s CCleanerom vcetne registrov
restart
vloz oba logy FRST
P.S. je ten Win legal
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Větráky běží i při malé zátěži NTB
Vše provedeno.
WIN7 - nejsem si jistý. PC jsem dostal. Ale problém s větráky trvá cca. 3týdny. PC mám 6měsíců.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pracant at 2020-04-20 14:15:44
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 19 GB (8%) free of 238 GB
Total RAM: 16323 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:15:49, on 20.4.2020
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19541)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\trend micro\Pracant.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" 60
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKLM\..\Run: [Avira System Speedup User Starter] "C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe"
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Alps HID Monitor Service (ApHidMonitorService) - Alps Electric Co., Ltd. - C:\Program Files\DellTPad\HidMonitorSvc.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Avira Optimizer Host (AviraOptimizerHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
O23 - Service: Avira Phantom VPN (AviraPhantomVPN) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
O23 - Service: Avira Security (AviraSecurity) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
O23 - Service: Avira Updater Service (AviraUpdaterService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.113\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA WMI Provider (NVWMI) - Unknown owner - C:\Windows\system32\nvwmi64.exe (file missing)
O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\o2flash.exe (file missing)
O23 - Service: O2SDIOAssist - Unknown owner - C:\Windows\SysWOW64\srvany.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: NTRU TSS v1.2.1.37 TCS (tcsd_win32.exe) - Unknown owner - C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11350 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
winlogon.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 10366432
\??\C:\Windows\system32\conhost.exe "4732352251564156427-643371549-1391100611-456002810-1280295029-3845756321894694006
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"C:\Program Files\Common Files\SPBA\upeksvr.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
taskeng.exe {535D3AF6-AFD2-42E1-B351-B4CF81149CF7}
"C:\Program Files\Core Temp\Core Temp.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\DellTPad\Apoint.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe"
"C:\Windows\system32\nvwmi64.exe"
C:\Windows\system32\nvwmi64.exe -spawnprovider
"C:\Program Files\DellTPad\HidMonitorSvc.exe"
"C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe"
"C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe"
"C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe"
"C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\DellTPad\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files\DellTPad\HidFind.exe"
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "-14214677532115057338-3825936784369263911801956902-36881374416563342091681520267
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\o2flash.exe
C:\Windows\SysWOW64\srvany.exe
C:\Windows\sysWOW64\SDIOAssist.exe
C:\Windows\system32\msiexec.exe /V
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=81.0.4044.113 --initial-client-data=0xc0,0xc4,0xc8,0x94,0xcc,0x7fee990bd28,0x7fee990bd38,0x7fee990bd48
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=2520 --on-initialized-event-handle=380 --parent-handle=384 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1096 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1316 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2380 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2576 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3628 /prefetch:1
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_00001be4
taskeng.exe {5833D478-5A56-4FED-A9B5-156B57690E42}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3404 /prefetch:1
"C:\Windows\system32\SearchFilterHost.exe" 0 540 544 552 65536 548
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3928 /prefetch:1
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Users\Pracant\Downloads\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-11 210632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-09-18 581104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2020-04-20 984680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-18 244208]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2020-04-20 687712]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2018-10-24 776224]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2020-03-19 22245560]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Smart Cleaning]
C:\Program Files\CCleaner\CCleaner64.exe [2020-03-19 22245560]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2019-10-26 302904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Download Assistant]
C:\Windows\System32\LogiLDA.dll [2016-10-14 1841496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2019-07-04 644552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Pracant\AppData\Roaming\uTorrent\utorrent.exe [2018-10-25 414656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Avast Cleanup Premium.lnk]
C:\PROGRA~2\AVAST Software\Avast Cleanup\TuneupUI.exe []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-02-22 292088]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2016-05-25 136992]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2020-04-02 239520]
"Avira System Speedup User Starter"=C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [2020-01-30 331368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\spba]
C:\Program Files\Common Files\SPBA\homefus2.dll [2010-09-15 2305872]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
"SlowLinkDetectEnabled"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=153
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.X264"=x264vfw64.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-04-20 10:30:12 ----D---- C:\FRST
2020-04-20 10:13:58 ----D---- C:\rsit
2020-04-20 10:13:58 ----D---- C:\Program Files\trend micro
2020-04-18 21:53:02 ----A---- C:\Windows\system32\nvwmi64.exe
2020-04-18 21:52:40 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvsvcr.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvsvc64.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvshext.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvmctray.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvcpl.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nv3dappshextr.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nv3dappshext.dll
2020-04-18 21:52:31 ----A---- C:\Windows\NvContainerRecovery.bat
2020-04-18 21:52:24 ----D---- C:\Windows\system32\drivers\NVIDIA Corporation
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvopencl32.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvofapi.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkaninfo.exe
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkan-1.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\OpenCL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvwgf2umx.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvrtum64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvptxJitCompiler.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvoptix.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvopencl64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvoglv64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvofapi64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvIFR64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvhdap64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvFBC64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvdispgenco6442632.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvdispco6442632.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvd3dumx.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvcuvid.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvcuda.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2020-04-18 21:49:01 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2020-04-18 21:49:00 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvcompiler.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvcbl64.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvapi64.dll
2020-04-18 21:30:43 ----A---- C:\Windows\system32\drivers\mbae64.sys
2020-04-18 21:30:41 ----D---- C:\ProgramData\Malwarebytes
2020-04-18 21:30:05 ----D---- C:\Program Files\Malwarebytes
2020-04-18 21:06:02 ----D---- C:\ProgramData\RogueKiller
2020-04-18 20:48:30 ----D---- C:\AdwCleaner
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avusbflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avnetflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avipbb.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avdevprot.sys
2020-04-18 20:29:11 ----D---- C:\Program Files (x86)\Avira
2020-04-18 20:29:10 ----D---- C:\ProgramData\Avira
2020-04-18 20:23:14 ----D---- C:\Program Files (x86)\Google
2020-04-13 12:49:37 ----A---- C:\Windows\system32\FNTCACHE.DAT
2020-04-12 21:32:13 ----D---- C:\Windows\pss
2020-04-12 19:47:34 ----D---- C:\Program Files (x86)\MatterControl
2020-04-12 19:46:01 ----D---- C:\Users\Pracant\AppData\Roaming\cura
2020-04-12 19:43:12 ----D---- C:\Program Files\Ultimaker Cura 4.5
2020-04-12 13:34:55 ----D---- C:\Program Files\VCG
2020-04-11 08:09:32 ----D---- C:\Users\Pracant\AppData\Roaming\Trimble Connect for SketchUp
2020-04-11 08:08:01 ----D---- C:\Users\Pracant\AppData\Roaming\SketchUp
2020-04-11 08:06:53 ----AD---- C:\ProgramData\Reprise
2020-04-11 08:06:42 ----D---- C:\ProgramData\SketchUp
2020-04-11 08:06:42 ----D---- C:\Program Files\SketchUp
2020-04-10 20:04:56 ----D---- C:\Users\Pracant\AppData\Roaming\PrusaSlicer
2020-04-10 20:01:36 ----D---- C:\Program Files\Prusa3D
2020-04-09 19:04:53 ----D---- C:\Program Files\Mozilla Thunderbird
2020-04-08 09:44:19 ----D---- C:\Users\Pracant\AppData\Roaming\Fusion360
2020-04-08 09:43:46 ----D---- C:\Users\Pracant\AppData\Roaming\CadSoft
2020-04-08 09:43:28 ----D---- C:\ProgramData\Autodesk
2020-04-08 09:43:20 ----D---- C:\Users\Pracant\AppData\Roaming\Autodesk
2020-04-07 08:24:23 ----D---- C:\Program Files\Garmin GPS Plugin
2020-04-07 08:24:23 ----D---- C:\Program Files (x86)\Garmin GPS Plugin
2020-03-29 12:05:20 ----D---- C:\Program Files\Factorio_0.18.14
======List of files/folders modified in the last 1 month======
2020-04-20 14:15:49 ----D---- C:\Windows\Temp
2020-04-20 14:14:40 ----RD---- C:\Program Files (x86)
2020-04-20 14:14:21 ----HD---- C:\ProgramData
2020-04-20 14:08:57 ----D---- C:\Windows\System32
2020-04-20 14:08:57 ----D---- C:\Windows\inf
2020-04-20 14:08:57 ----A---- C:\Windows\system32\PerfStringBackup.INI
2020-04-20 14:08:36 ----D---- C:\Windows
2020-04-20 14:08:02 ----SHD---- C:\Windows\Installer
2020-04-20 14:08:02 ----D---- C:\Windows\system32\appmgmt
2020-04-20 14:03:05 ----D---- C:\ProgramData\NVIDIA
2020-04-20 14:01:33 ----D---- C:\Users\Pracant\AppData\Roaming\MPC-HC
2020-04-20 14:00:46 ----D---- C:\Windows\system32\Tasks
2020-04-20 13:59:26 ----A---- C:\Windows\wininit.ini
2020-04-20 13:59:25 ----SD---- C:\ProgramData\Microsoft
2020-04-20 13:59:25 ----D---- C:\Windows\system32\drivers
2020-04-20 12:31:40 ----D---- C:\Program Files (x86)\Subnautica
2020-04-20 11:28:00 ----D---- C:\Windows\system32\config
2020-04-20 11:17:08 ----SHD---- C:\System Volume Information
2020-04-20 10:27:07 ----D---- C:\Users\Pracant\AppData\Roaming\uTorrent
2020-04-20 10:18:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-04-20 10:17:19 ----D---- C:\Program Files (x86)\Microsoft Office
2020-04-20 10:13:58 ----RD---- C:\Program Files
2020-04-19 10:53:58 ----D---- C:\Users\Pracant\AppData\Roaming\foobar2000
2020-04-19 10:43:14 ----D---- C:\Users\Pracant\AppData\Roaming\Telegram Desktop
2020-04-19 09:08:47 ----D---- C:\ProgramData\NVIDIA Corporation
2020-04-18 21:53:05 ----D---- C:\Program Files\NVIDIA Corporation
2020-04-18 21:53:04 ----D---- C:\Windows\system32\DriverStore
2020-04-18 21:53:02 ----D---- C:\Windows\system32\wbem
2020-04-18 21:52:45 ----D---- C:\Windows\SysWOW64
2020-04-18 21:52:44 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2020-04-18 21:52:35 ----D---- C:\Windows\Help
2020-04-18 21:34:31 ----D---- C:\ProgramData\Dell
2020-04-18 20:29:24 ----D---- C:\Windows\Microsoft.NET
2020-04-18 20:29:19 ----RSD---- C:\Windows\Fonts
2020-04-18 20:29:09 ----D---- C:\ProgramData\Package Cache
2020-04-18 20:29:08 ----D---- C:\Windows\SoftwareDistribution
2020-04-16 22:25:48 ----D---- C:\Windows\system32\drivers\etc
2020-04-16 22:18:11 ----D---- C:\Program Files\Common Files
2020-04-13 12:49:39 ----D---- C:\Windows\debug
2020-04-12 21:31:07 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2020-04-12 21:29:13 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2020-04-12 21:28:28 ----D---- C:\Program Files (x86)\Dell
2020-04-11 18:45:28 ----D---- C:\Program Files (x86)\Intel
2020-04-11 18:44:48 ----D---- C:\Windows\system32\catroot
2020-04-11 18:44:29 ----RSD---- C:\Windows\assembly
2020-04-11 18:31:59 ----D---- C:\Windows\winsxs
2020-04-10 20:03:21 ----D---- C:\Program Files\DIFX
2020-04-08 12:32:12 ----D---- C:\Users\Pracant\AppData\Roaming\XnView
2020-04-07 08:29:51 ----D---- C:\Users\Pracant\AppData\Roaming\Garmin
2020-04-06 19:55:25 ----D---- C:\Program Files (x86)\Garmin
2020-04-02 01:49:56 ----N---- C:\Windows\system32\MpSigStub.exe
2020-03-25 17:02:40 ----D---- C:\Program Files\Factorio.v0.18.0
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avdevprot;avdevprot; C:\Windows\system32\DRIVERS\avdevprot.sys [2019-06-07 68152]
R0 avusbflt;avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [2019-03-20 35376]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2012-05-30 569152]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-02-22 20464]
R0 PBADRV;PBADRV; C:\Windows\system32\DRIVERS\PBADRV.sys [2019-09-18 32240]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2015-01-09 23216]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2020-04-06 177376]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2019-03-20 36072]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2014-12-21 40344]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-01-07 60416]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2020-03-27 223744]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2019-03-20 78600]
R3 ALSysIO;ALSysIO; \??\C:\Users\Pracant\AppData\Local\Temp\ALSysIO64.sys []
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x64; C:\Windows\system32\DRIVERS\Apfiltr.sys [2018-10-24 612072]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2013-02-20 495888]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-02-22 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-02-22 792560]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2016-03-28 181304]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETwsw00.sys [2013-05-29 11524096]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2019-11-10 237368]
R3 O2SDJRDR;O2SDJRDR; C:\Windows\system32\DRIVERS\o2sdjw7x64.sys [2012-04-26 85336]
R3 phantomtap;Phantom TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\phantomtap.sys [2020-03-18 35664]
R3 ST_ACCEL;STMicroelectronics Accelerometer Service; C:\Windows\system32\DRIVERS\ST_Accel.sys [2015-05-21 101040]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2013-07-24 36864]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2019-09-18 165688]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2019-07-30 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2019-07-30 556032]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2019-07-30 80384]
S3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2019-09-18 598808]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2019-09-18 184144]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2019-09-18 210984]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2019-09-18 39976]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2019-09-18 21544]
S3 DDDriver;DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [2019-05-21 41608]
S3 DellProf;DellProf; C:\Windows\system32\drivers\DellProf.sys [2019-05-21 41208]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2018-09-24 3808640]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2014-01-07 166400]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2014-01-07 109568]
S3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys []
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 29696]
S3 trufos;trufos; C:\Windows\system32\drivers\trufos.sys [2020-01-02 439576]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2019-05-18 54784]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S4 nvkflt;nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys []
S4 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2020-04-01 485960]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2020-04-01 485960]
R2 ApHidMonitorService;Alps HID Monitor Service; C:\Program Files\DellTPad\HidMonitorSvc.exe [2018-10-24 104800]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2020-04-02 634896]
R2 AviraOptimizerHost;Avira Optimizer Host; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2020-01-20 2989888]
R2 AviraPhantomVPN;Avira Phantom VPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [2020-03-18 382992]
R2 AviraSecurity;Avira Security; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [2020-04-01 242448]
R2 AviraUpdaterService;Avira Updater Service; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [2020-04-09 161216]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2013-02-19 1008344]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2020-04-02 11102064]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-01-07 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-07-17 626416]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2018-09-24 317416]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2016-05-25 209184]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2016-05-25 416544]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2019-11-10 861192]
R2 NVWMI;NVIDIA WMI Provider; C:\Windows\system32\nvwmi64.exe [2019-11-13 4741024]
R2 O2FLASH;O2FLASH; C:\Windows\system32\o2flash.exe [2011-11-16 244328]
R2 O2SDIOAssist;O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [2003-04-18 8192]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-07-17 149744]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2014-01-07 27136]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2016-12-27 5132888]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2020-04-01 1209856]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2020-03-22 573760]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2019-03-28 132792]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2019-03-28 158912]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-04-18 156104]
S2 tcsd_win32.exe;NTRU TSS v1.2.1.37 TCS; C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [2011-10-08 1637888]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2020-02-25 88648]
S3 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2020-01-10 96056]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-28 54912]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2018-09-24 376296]
S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.113\elevation_service.exe [2020-04-14 1095664]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-04-18 156104]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-10-24 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2016-02-19 974632]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2019-10-26 658232]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [2020-04-18 6933272]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 215080]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-06-16 741640]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-07 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
-----------------EOF-----------------
WIN7 - nejsem si jistý. PC jsem dostal. Ale problém s větráky trvá cca. 3týdny. PC mám 6měsíců.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pracant at 2020-04-20 14:15:44
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 19 GB (8%) free of 238 GB
Total RAM: 16323 MB (78% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:15:49, on 20.4.2020
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19541)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\trend micro\Pracant.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" 60
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKLM\..\Run: [Avira System Speedup User Starter] "C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe"
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Alps HID Monitor Service (ApHidMonitorService) - Alps Electric Co., Ltd. - C:\Program Files\DellTPad\HidMonitorSvc.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Avira Optimizer Host (AviraOptimizerHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
O23 - Service: Avira Phantom VPN (AviraPhantomVPN) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
O23 - Service: Avira Security (AviraSecurity) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
O23 - Service: Avira Updater Service (AviraUpdaterService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.113\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA WMI Provider (NVWMI) - Unknown owner - C:\Windows\system32\nvwmi64.exe (file missing)
O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\o2flash.exe (file missing)
O23 - Service: O2SDIOAssist - Unknown owner - C:\Windows\SysWOW64\srvany.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: NTRU TSS v1.2.1.37 TCS (tcsd_win32.exe) - Unknown owner - C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11350 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
winlogon.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 10366432
\??\C:\Windows\system32\conhost.exe "4732352251564156427-643371549-1391100611-456002810-1280295029-3845756321894694006
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"C:\Program Files\Common Files\SPBA\upeksvr.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
taskeng.exe {535D3AF6-AFD2-42E1-B351-B4CF81149CF7}
"C:\Program Files\Core Temp\Core Temp.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\DellTPad\Apoint.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe"
"C:\Windows\system32\nvwmi64.exe"
C:\Windows\system32\nvwmi64.exe -spawnprovider
"C:\Program Files\DellTPad\HidMonitorSvc.exe"
"C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe"
"C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe"
"C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe"
"C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\DellTPad\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files\DellTPad\HidFind.exe"
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "-14214677532115057338-3825936784369263911801956902-36881374416563342091681520267
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\o2flash.exe
C:\Windows\SysWOW64\srvany.exe
C:\Windows\sysWOW64\SDIOAssist.exe
C:\Windows\system32\msiexec.exe /V
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=81.0.4044.113 --initial-client-data=0xc0,0xc4,0xc8,0x94,0xcc,0x7fee990bd28,0x7fee990bd38,0x7fee990bd48
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=2520 --on-initialized-event-handle=380 --parent-handle=384 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1096 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1316 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2380 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2576 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=21 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3628 /prefetch:1
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_00001be4
taskeng.exe {5833D478-5A56-4FED-A9B5-156B57690E42}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=37 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3404 /prefetch:1
"C:\Windows\system32\SearchFilterHost.exe" 0 540 544 552 65536 548
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1088,15593263203125236716,5240746049675846946,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=38 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3928 /prefetch:1
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
"C:\Users\Pracant\Downloads\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-11 210632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-09-18 581104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2020-04-20 984680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-18 244208]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2020-04-20 687712]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2018-10-24 776224]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2020-03-19 22245560]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Smart Cleaning]
C:\Program Files\CCleaner\CCleaner64.exe [2020-03-19 22245560]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2019-10-26 302904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Download Assistant]
C:\Windows\System32\LogiLDA.dll [2016-10-14 1841496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2019-07-04 644552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
C:\Users\Pracant\AppData\Roaming\uTorrent\utorrent.exe [2018-10-25 414656]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Avast Cleanup Premium.lnk]
C:\PROGRA~2\AVAST Software\Avast Cleanup\TuneupUI.exe []
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-02-22 292088]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2016-05-25 136992]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2020-04-02 239520]
"Avira System Speedup User Starter"=C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [2020-01-30 331368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\spba]
C:\Program Files\Common Files\SPBA\homefus2.dll [2010-09-15 2305872]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
"SlowLinkDetectEnabled"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=153
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.X264"=x264vfw64.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-04-20 10:30:12 ----D---- C:\FRST
2020-04-20 10:13:58 ----D---- C:\rsit
2020-04-20 10:13:58 ----D---- C:\Program Files\trend micro
2020-04-18 21:53:02 ----A---- C:\Windows\system32\nvwmi64.exe
2020-04-18 21:52:40 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvsvcr.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvsvc64.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvshext.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvmctray.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvcpl.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nv3dappshextr.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nv3dappshext.dll
2020-04-18 21:52:31 ----A---- C:\Windows\NvContainerRecovery.bat
2020-04-18 21:52:24 ----D---- C:\Windows\system32\drivers\NVIDIA Corporation
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvopencl32.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvofapi.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkaninfo.exe
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkan-1.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\OpenCL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvwgf2umx.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvrtum64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvptxJitCompiler.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvoptix.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvopencl64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvoglv64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvofapi64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvIFR64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvhdap64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvFBC64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvdispgenco6442632.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvdispco6442632.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvd3dumx.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvcuvid.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvcuda.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2020-04-18 21:49:01 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2020-04-18 21:49:00 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvcompiler.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvcbl64.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvapi64.dll
2020-04-18 21:30:43 ----A---- C:\Windows\system32\drivers\mbae64.sys
2020-04-18 21:30:41 ----D---- C:\ProgramData\Malwarebytes
2020-04-18 21:30:05 ----D---- C:\Program Files\Malwarebytes
2020-04-18 21:06:02 ----D---- C:\ProgramData\RogueKiller
2020-04-18 20:48:30 ----D---- C:\AdwCleaner
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avusbflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avnetflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avipbb.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avdevprot.sys
2020-04-18 20:29:11 ----D---- C:\Program Files (x86)\Avira
2020-04-18 20:29:10 ----D---- C:\ProgramData\Avira
2020-04-18 20:23:14 ----D---- C:\Program Files (x86)\Google
2020-04-13 12:49:37 ----A---- C:\Windows\system32\FNTCACHE.DAT
2020-04-12 21:32:13 ----D---- C:\Windows\pss
2020-04-12 19:47:34 ----D---- C:\Program Files (x86)\MatterControl
2020-04-12 19:46:01 ----D---- C:\Users\Pracant\AppData\Roaming\cura
2020-04-12 19:43:12 ----D---- C:\Program Files\Ultimaker Cura 4.5
2020-04-12 13:34:55 ----D---- C:\Program Files\VCG
2020-04-11 08:09:32 ----D---- C:\Users\Pracant\AppData\Roaming\Trimble Connect for SketchUp
2020-04-11 08:08:01 ----D---- C:\Users\Pracant\AppData\Roaming\SketchUp
2020-04-11 08:06:53 ----AD---- C:\ProgramData\Reprise
2020-04-11 08:06:42 ----D---- C:\ProgramData\SketchUp
2020-04-11 08:06:42 ----D---- C:\Program Files\SketchUp
2020-04-10 20:04:56 ----D---- C:\Users\Pracant\AppData\Roaming\PrusaSlicer
2020-04-10 20:01:36 ----D---- C:\Program Files\Prusa3D
2020-04-09 19:04:53 ----D---- C:\Program Files\Mozilla Thunderbird
2020-04-08 09:44:19 ----D---- C:\Users\Pracant\AppData\Roaming\Fusion360
2020-04-08 09:43:46 ----D---- C:\Users\Pracant\AppData\Roaming\CadSoft
2020-04-08 09:43:28 ----D---- C:\ProgramData\Autodesk
2020-04-08 09:43:20 ----D---- C:\Users\Pracant\AppData\Roaming\Autodesk
2020-04-07 08:24:23 ----D---- C:\Program Files\Garmin GPS Plugin
2020-04-07 08:24:23 ----D---- C:\Program Files (x86)\Garmin GPS Plugin
2020-03-29 12:05:20 ----D---- C:\Program Files\Factorio_0.18.14
======List of files/folders modified in the last 1 month======
2020-04-20 14:15:49 ----D---- C:\Windows\Temp
2020-04-20 14:14:40 ----RD---- C:\Program Files (x86)
2020-04-20 14:14:21 ----HD---- C:\ProgramData
2020-04-20 14:08:57 ----D---- C:\Windows\System32
2020-04-20 14:08:57 ----D---- C:\Windows\inf
2020-04-20 14:08:57 ----A---- C:\Windows\system32\PerfStringBackup.INI
2020-04-20 14:08:36 ----D---- C:\Windows
2020-04-20 14:08:02 ----SHD---- C:\Windows\Installer
2020-04-20 14:08:02 ----D---- C:\Windows\system32\appmgmt
2020-04-20 14:03:05 ----D---- C:\ProgramData\NVIDIA
2020-04-20 14:01:33 ----D---- C:\Users\Pracant\AppData\Roaming\MPC-HC
2020-04-20 14:00:46 ----D---- C:\Windows\system32\Tasks
2020-04-20 13:59:26 ----A---- C:\Windows\wininit.ini
2020-04-20 13:59:25 ----SD---- C:\ProgramData\Microsoft
2020-04-20 13:59:25 ----D---- C:\Windows\system32\drivers
2020-04-20 12:31:40 ----D---- C:\Program Files (x86)\Subnautica
2020-04-20 11:28:00 ----D---- C:\Windows\system32\config
2020-04-20 11:17:08 ----SHD---- C:\System Volume Information
2020-04-20 10:27:07 ----D---- C:\Users\Pracant\AppData\Roaming\uTorrent
2020-04-20 10:18:18 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2020-04-20 10:17:19 ----D---- C:\Program Files (x86)\Microsoft Office
2020-04-20 10:13:58 ----RD---- C:\Program Files
2020-04-19 10:53:58 ----D---- C:\Users\Pracant\AppData\Roaming\foobar2000
2020-04-19 10:43:14 ----D---- C:\Users\Pracant\AppData\Roaming\Telegram Desktop
2020-04-19 09:08:47 ----D---- C:\ProgramData\NVIDIA Corporation
2020-04-18 21:53:05 ----D---- C:\Program Files\NVIDIA Corporation
2020-04-18 21:53:04 ----D---- C:\Windows\system32\DriverStore
2020-04-18 21:53:02 ----D---- C:\Windows\system32\wbem
2020-04-18 21:52:45 ----D---- C:\Windows\SysWOW64
2020-04-18 21:52:44 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2020-04-18 21:52:35 ----D---- C:\Windows\Help
2020-04-18 21:34:31 ----D---- C:\ProgramData\Dell
2020-04-18 20:29:24 ----D---- C:\Windows\Microsoft.NET
2020-04-18 20:29:19 ----RSD---- C:\Windows\Fonts
2020-04-18 20:29:09 ----D---- C:\ProgramData\Package Cache
2020-04-18 20:29:08 ----D---- C:\Windows\SoftwareDistribution
2020-04-16 22:25:48 ----D---- C:\Windows\system32\drivers\etc
2020-04-16 22:18:11 ----D---- C:\Program Files\Common Files
2020-04-13 12:49:39 ----D---- C:\Windows\debug
2020-04-12 21:31:07 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2020-04-12 21:29:13 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2020-04-12 21:28:28 ----D---- C:\Program Files (x86)\Dell
2020-04-11 18:45:28 ----D---- C:\Program Files (x86)\Intel
2020-04-11 18:44:48 ----D---- C:\Windows\system32\catroot
2020-04-11 18:44:29 ----RSD---- C:\Windows\assembly
2020-04-11 18:31:59 ----D---- C:\Windows\winsxs
2020-04-10 20:03:21 ----D---- C:\Program Files\DIFX
2020-04-08 12:32:12 ----D---- C:\Users\Pracant\AppData\Roaming\XnView
2020-04-07 08:29:51 ----D---- C:\Users\Pracant\AppData\Roaming\Garmin
2020-04-06 19:55:25 ----D---- C:\Program Files (x86)\Garmin
2020-04-02 01:49:56 ----N---- C:\Windows\system32\MpSigStub.exe
2020-03-25 17:02:40 ----D---- C:\Program Files\Factorio.v0.18.0
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avdevprot;avdevprot; C:\Windows\system32\DRIVERS\avdevprot.sys [2019-06-07 68152]
R0 avusbflt;avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [2019-03-20 35376]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2012-05-30 569152]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-02-22 20464]
R0 PBADRV;PBADRV; C:\Windows\system32\DRIVERS\PBADRV.sys [2019-09-18 32240]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2015-01-09 23216]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2020-04-06 177376]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2019-03-20 36072]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2014-12-21 40344]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-01-07 60416]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2020-03-27 223744]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2019-03-20 78600]
R3 ALSysIO;ALSysIO; \??\C:\Users\Pracant\AppData\Local\Temp\ALSysIO64.sys []
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x64; C:\Windows\system32\DRIVERS\Apfiltr.sys [2018-10-24 612072]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2013-02-20 495888]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-02-22 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-02-22 792560]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2016-03-28 181304]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETwsw00.sys [2013-05-29 11524096]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2019-11-10 237368]
R3 O2SDJRDR;O2SDJRDR; C:\Windows\system32\DRIVERS\o2sdjw7x64.sys [2012-04-26 85336]
R3 phantomtap;Phantom TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\phantomtap.sys [2020-03-18 35664]
R3 ST_ACCEL;STMicroelectronics Accelerometer Service; C:\Windows\system32\DRIVERS\ST_Accel.sys [2015-05-21 101040]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2013-07-24 36864]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2019-09-18 165688]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2019-07-30 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2019-07-30 556032]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2019-07-30 80384]
S3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2019-09-18 598808]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2019-09-18 184144]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2019-09-18 210984]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2019-09-18 39976]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2019-09-18 21544]
S3 DDDriver;DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [2019-05-21 41608]
S3 DellProf;DellProf; C:\Windows\system32\drivers\DellProf.sys [2019-05-21 41208]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2018-09-24 3808640]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2014-01-07 166400]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2014-01-07 109568]
S3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys []
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 29696]
S3 trufos;trufos; C:\Windows\system32\drivers\trufos.sys [2020-01-02 439576]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2019-05-18 54784]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
S4 nvkflt;nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys []
S4 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2020-04-01 485960]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2020-04-01 485960]
R2 ApHidMonitorService;Alps HID Monitor Service; C:\Program Files\DellTPad\HidMonitorSvc.exe [2018-10-24 104800]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2020-04-02 634896]
R2 AviraOptimizerHost;Avira Optimizer Host; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2020-01-20 2989888]
R2 AviraPhantomVPN;Avira Phantom VPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [2020-03-18 382992]
R2 AviraSecurity;Avira Security; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [2020-04-01 242448]
R2 AviraUpdaterService;Avira Updater Service; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [2020-04-09 161216]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2013-02-19 1008344]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2020-04-02 11102064]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-01-07 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-07-17 626416]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2018-09-24 317416]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2016-05-25 209184]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2016-05-25 416544]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2019-11-10 861192]
R2 NVWMI;NVIDIA WMI Provider; C:\Windows\system32\nvwmi64.exe [2019-11-13 4741024]
R2 O2FLASH;O2FLASH; C:\Windows\system32\o2flash.exe [2011-11-16 244328]
R2 O2SDIOAssist;O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [2003-04-18 8192]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-07-17 149744]
R3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2014-01-07 27136]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2016-12-27 5132888]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2020-04-01 1209856]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2020-03-22 573760]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2019-03-28 132792]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2019-03-28 158912]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-04-18 156104]
S2 tcsd_win32.exe;NTRU TSS v1.2.1.37 TCS; C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [2011-10-08 1637888]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2020-02-25 88648]
S3 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2020-01-10 96056]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-28 54912]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2018-09-24 376296]
S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.113\elevation_service.exe [2020-04-14 1095664]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-04-18 156104]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-10-24 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2016-02-19 974632]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2019-10-26 658232]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [2020-04-18 6933272]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 215080]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-06-16 741640]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-07 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
-----------------EOF-----------------
Re: Větráky běží i při malé zátěži NTB
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-04-2020
Ran by Pracant (administrator) on PRACANT-PC (Dell Inc. Precision M4700) (20-04-2020 14:18:33)
Running from C:\Users\Pracant\Downloads
Loaded Profiles: Pracant (Available Profiles: Pracant)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Windows\SysWOW64\srvany.exe
(ALCPU -> ALCPU) C:\Program Files\Core Temp\Core Temp.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Mobile Wireless Group -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe <2>
(O2Micro Inc. -> O2Micro International) C:\Windows\System32\o2flash.exe
(O2Micro Inc. -> O2Micro.) C:\Windows\SysWOW64\SDIOAssist.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(UPEK Inc. -> UPEK Inc.) C:\Program Files\Common Files\SPBA\upeksvr.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [776224 2018-10-24] (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-02-22] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1178912 2016-05-25] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [239520 2020-04-02] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331368 2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.113\Installer\chrmstp.exe [2020-04-18] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{18CBEEAA-6708-41A1-9379-D08915333CF2}] -> C:\Program Files\Common Files\SPBA\provider.dll [2010-09-15] (UPEK Inc. -> UPEK Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2013-02-19] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{D28973E5-8630-41af-8831-50A15FEB396B}] -> C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll [2013-02-19] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{AE583D93-8D1B-424F-9858-5623FB7824EE}] -> C:\Program Files\Common Files\SPBA\provider.dll [2010-09-15] (UPEK Inc. -> UPEK Inc.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => No File
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => No File
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
BootExecute: autocheck autochk * sdnclean64.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {00FC7717-1A25-4997-B49B-4A502F36201F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {1906DE23-4903-47FE-ACB4-27FD6BC5E0F6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {322E5166-7F8A-4550-8364-E77A5EB635F3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-18] (Google LLC -> Google LLC)
Task: {46436167-892E-42AA-98C7-756C82372746} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115448 2020-04-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {494A13B3-E357-412C-B0BC-51530257EE2B} - System32\Tasks\{6F223287-328C-4173-B829-1327DC6E37E6} => C:\Windows\system32\pcalua.exe -a "C:\Users\Pracant\Downloads\Minecraft 1.8.exe" -d C:\Users\Pracant\Downloads
Task: {59F94973-A671-4FFE-8AB4-631E5ADCD5F0} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [228368 2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {5E2A0BC3-E24A-40EB-B7EA-49DF931780A4} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe [1457720 2019-12-17] (Adobe Inc. -> Adobe)
Task: {62F73524-B90A-4A32-88D1-65B50F892E5D} - System32\Tasks\{00A211AF-071F-4C55-913F-6EC5F6DC41A6} => C:\Windows\system32\pcalua.exe -a C:\Users\Pracant\Downloads\Intel_Chipset_8-Series-C220-Series_USB3_MK6K0_A00_SETUP_ZPE.exe -d C:\Users\Pracant\Downloads
Task: {66612AAD-E1D0-44B5-9BC8-7BDFE017AF3E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4373344 2020-04-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {67C5853A-1226-4E84-8022-D29EC66F68DB} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [27848432 2020-04-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )
Task: {8077C36B-2675-4584-96B1-C133F6EA033D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24609368 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {81FD3850-B093-4DD5-8673-B5C1F1E0933E} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1724928 2020-02-26] () [File not signed]
Task: {8A2070EB-C5E0-4902-AAE3-D0C78C049613} - System32\Tasks\{88139FE3-63F7-4B19-8A15-C8107B6AEEE1} => C:\Windows\system32\pcalua.exe -a E:\Ovladače\IRST_Driver_Intel_A13_WIN_0FGYV_f6flpy-x64-SETUP_ZPE.exe -d E:\Ovladače
Task: {97757E53-E815-4EE5-9EBA-BA912A515ABE} - System32\Tasks\AutoPico Daily Restart => C:\Users\Pracant\Desktop\ALL [Argument = MS OFFICE WINDOWS PERNAMEN ACTIVATOR!\AutoPico.exe /silent]
Task: {9B46A9ED-948D-436C-A2A8-0A700EA6D655} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {9D030BE5-0717-4677-9F35-5296533DF04F} - System32\Tasks\{02F40C7F-114D-405A-B8D0-CDD7D542643E} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\FreeRapid-0.9u4\frd.exe" -d "C:\Program Files\FreeRapid-0.9u4"
Task: {BDB7116E-750E-4E98-8AC2-E57D6F067136} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24609368 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {D870FA0B-51CB-4724-BA49-3F303F0C1B94} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2106240 2019-11-13] (NVIDIA Corporation -> )
Task: {DBD34E68-DF32-4794-B429-0EC594B9D302} - System32\Tasks\{6DE4486A-3DC3-4499-9FFE-19FCE3D8C040} => C:\Windows\system32\pcalua.exe -a C:\Users\Pracant\Downloads\FFS_ST_W8.14_A00_Setup-HWNT9_ZPE.exe -d C:\Users\Pracant\Downloads
Task: {DBD4B11D-BFEA-499B-B442-8F634C4737F2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4373344 2020-04-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {DCB265B7-1885-4228-878E-F7B464DAA400} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2759304 2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {E40ED595-F09F-4725-B2B4-BEF9B78B2FB6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115448 2020-04-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {E8530C01-39E4-4FF4-8344-9D39990929DA} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [855352 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {FAA69525-9E16-4B2E-8F8B-2785B581B488} - System32\Tasks\Core Temp Autostart Pracant => C:\Program Files\Core Temp\Core Temp.exe [1011592 2019-08-30] (ALCPU -> ALCPU)
Task: {FB386DF5-7B5D-47A4-AEFD-2234C86E2EF5} - System32\Tasks\{4C13A027-2998-43B9-9DC5-060C16E4DE96} => C:\Windows\system32\pcalua.exe -a E:\Ovladače\Camera_DELL_W8_A00_Setup_HKY75_ZPE.exe -d E:\Ovladače
Task: {FE48F9FF-6827-4F67-93CA-8EE6C5BAD510} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-18] (Google LLC -> Google LLC)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2B394C66-A038-4B76-A4CC-3B68F0FFB799}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-1383765227-148611890-2853001164-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/cs-cz/?ocid=iehp
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-09-18] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2020-04-20] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2020-04-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: a4tgzkpu.default
FF ProfilePath: C:\Users\Pracant\AppData\Roaming\Mozilla\Firefox\Profiles\a4tgzkpu.default [2020-03-07]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Pracant\AppData\Roaming\Mozilla\Firefox\Profiles\a4tgzkpu.default\Extensions\sp@avast.com.xpi [2019-09-18]
FF ProfilePath: C:\Users\Pracant\AppData\Roaming\Mozilla\Firefox\Profiles\x1zg0pxk.default-release [2020-04-20]
FF Homepage: Mozilla\Firefox\Profiles\x1zg0pxk.default-release -> hxxps://www.google.com/
FF Extension: (Enhancer for YouTube™) - C:\Users\Pracant\AppData\Roaming\Mozilla\Firefox\Profiles\x1zg0pxk.default-release\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2020-03-31]
FF Extension: (uBlock Origin) - C:\Users\Pracant\AppData\Roaming\Mozilla\Firefox\Profiles\x1zg0pxk.default-release\Extensions\uBlock0@raymondhill.net.xpi [2020-04-07]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_303.dll [2019-12-17] (Adobe Inc. -> )
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (Garmin International, Inc. -> GARMIN Corp.)
FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-09-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-09-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_303.dll [2019-12-17] (Adobe Inc. -> )
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (Garmin International, Inc. -> GARMIN Corp.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default [2020-04-20]
CHR HomePage: Default -> hxxp://www.google.com/
CHR Extension: (Prezentace) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-18]
CHR Extension: (Just Black) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-04-18]
CHR Extension: (Dokumenty) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-18]
CHR Extension: (Disk Google) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-04-18]
CHR Extension: (YouTube) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-18]
CHR Extension: (Dark Mode) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmghijelimhndkbmpgbldicpogfkceaj [2020-04-18]
CHR Extension: (Tabulky) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-18]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-04-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-18]
CHR Extension: (Gmail) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-04-18]
CHR Extension: (Chrome Media Router) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-18]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1209856 2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [485960 2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [485960 2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [573760 2020-03-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [104800 2018-10-24] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
S3 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-01-10] (Apple Inc. -> Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [634896 2020-04-02] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989888 2020-01-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [382992 2020-03-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [242448 2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [161216 2020-04-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11102064 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [317416 2018-09-24] (Intel Corporation -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [974632 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-05-25] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-04-18] (Malwarebytes Inc -> Malwarebytes)
R2 NVWMI; C:\Windows\system32\nvwmi64.exe [4741024 2019-11-13] (NVIDIA Corporation -> NVIDIA Corporation)
R2 O2FLASH; C:\Windows\system32\o2flash.exe [244328 2011-11-16] (O2Micro Inc. -> O2Micro International)
R2 O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [8192 2003-04-18] () [File not signed]
S3 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [741640 2014-06-16] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S2 tcsd_win32.exe; C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [1637888 2011-10-08] () [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-01-07] (Microsoft Windows -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3377904 2013-07-17] (Intel Corporation-Mobile Wireless Group -> Intel® Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [68152 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [223744 2020-03-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [177376 2020-04-06] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36072 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35376 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 DDDriver; C:\Windows\System32\drivers\DDDriver64Dcsa.sys [41608 2019-05-21] (Techporch Incorporated -> Dell Inc.)
S3 DellProf; C:\Windows\System32\drivers\DellProf.sys [41208 2019-05-21] (Techporch Incorporated -> Dell Computer Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [181304 2016-03-28] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2020-03-18] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R0 stdcfltn; C:\Windows\System32\DRIVERS\stdcfltn.sys [23216 2015-01-09] (STMicroelectronics -> ST Microelectronics)
R3 ST_ACCEL; C:\Windows\System32\DRIVERS\ST_Accel.sys [101040 2015-05-21] (STMicroelectronics -> STMicroelectronics)
S3 trufos; C:\Windows\System32\drivers\trufos.sys [439576 2020-01-02] (Bitdefender SRL -> BitDefender S.R.L.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2019-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 ALSysIO; \??\C:\Users\Pracant\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
S4 nvkflt; system32\DRIVERS\nvkflt.sys [X]
S4 nvpciflt; \SystemRoot\system32\DRIVERS\nvpciflt.sys [X]
S3 STHDA; system32\DRIVERS\stwrt64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-04-20 14:00 - 2020-04-20 14:00 - 022267336 _____ (Piriform Software Ltd) C:\Users\Pracant\Downloads\ccsetup565.exe
2020-04-20 10:31 - 2020-04-20 10:32 - 000041038 _____ C:\Users\Pracant\Downloads\Addition.txt
2020-04-20 10:30 - 2020-04-20 14:18 - 000028557 _____ C:\Users\Pracant\Downloads\FRST.txt
2020-04-20 10:30 - 2020-04-20 14:18 - 000000000 ____D C:\FRST
2020-04-20 10:14 - 2020-04-20 10:14 - 002281984 _____ (Farbar) C:\Users\Pracant\Downloads\FRST64 (1).exe
2020-04-20 10:13 - 2020-04-20 14:15 - 000000000 ____D C:\Program Files\trend micro
2020-04-20 10:13 - 2020-04-20 10:14 - 000000000 ____D C:\rsit
2020-04-20 10:13 - 2020-04-20 10:13 - 001222144 _____ C:\Users\Pracant\Downloads\RSITx64.exe
2020-04-19 11:40 - 2020-04-19 11:40 - 000000000 ____D C:\Users\Pracant\Downloads\Telegram Desktop
2020-04-19 10:40 - 2020-04-19 16:56 - 000000000 ____D C:\Users\Pracant\Downloads\Subnautica Below Zero v.(20060)
2020-04-19 01:59 - 2020-04-19 01:59 - 000000000 ____D C:\Users\Pracant\AppData\LocalLow\IGDump
2020-04-18 21:54 - 2020-04-18 21:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-04-18 21:53 - 2020-04-18 21:53 - 000003438 _____ C:\Windows\system32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-18 21:53 - 2019-11-13 08:28 - 004741024 _____ (NVIDIA Corporation) C:\Windows\system32\nvwmi64.exe
2020-04-18 21:53 - 2019-11-10 23:50 - 000014175 _____ C:\Windows\system32\nvPerfProvider.man
2020-04-18 21:52 - 2020-04-18 21:52 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2020-04-18 21:52 - 2019-11-10 21:11 - 005366296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2020-04-18 21:52 - 2019-11-10 21:11 - 002624960 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2020-04-18 21:52 - 2019-11-10 21:11 - 001767448 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2020-04-18 21:52 - 2019-11-10 21:11 - 000652904 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2020-04-18 21:52 - 2019-11-10 21:11 - 000450600 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2020-04-18 21:52 - 2019-11-10 21:11 - 000125376 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2020-04-18 21:52 - 2019-11-10 21:11 - 000082784 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2020-04-18 21:52 - 2019-11-10 20:51 - 000133616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2020-04-18 21:52 - 2019-11-08 07:34 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2020-04-18 21:52 - 2019-11-06 12:47 - 008782162 _____ C:\Windows\system32\nvcoproc.bin
2020-04-18 21:49 - 2019-11-13 08:28 - 001006800 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-04-18 21:49 - 2019-11-13 08:28 - 001006800 _____ C:\Windows\system32\vulkan-1.dll
2020-04-18 21:49 - 2019-11-13 08:28 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-04-18 21:49 - 2019-11-13 08:28 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1.dll
2020-04-18 21:49 - 2019-11-13 08:28 - 000552960 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2020-04-18 21:49 - 2019-11-13 08:28 - 000456624 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2020-04-18 21:49 - 2019-11-13 08:28 - 000286416 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49 - 2019-11-13 08:28 - 000286416 _____ C:\Windows\system32\vulkaninfo.exe
2020-04-18 21:49 - 2019-11-13 08:28 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49 - 2019-11-13 08:28 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2020-04-18 21:49 - 2019-11-13 08:27 - 070149176 _____ (NVIDIA Corp.) C:\Windows\system32\nvoptix.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 040349432 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 030026616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 020912472 _____ (NVIDIA Corporation) C:\Windows\system32\nvrtum64.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 020747696 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2020-04-18 21:49 - 2019-11-13 08:27 - 001466304 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 001133056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 000633944 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 000523512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 000422888 _____ C:\Windows\system32\nvofapi64.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 000370672 _____ C:\Windows\SysWOW64\nvofapi.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 040421720 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 037839184 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 035469768 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl64.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 035269040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 032527760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 030006136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl32.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 010331464 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 008793928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 004895136 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 004369616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 002040184 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 001735088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6442632.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 001542160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 001469304 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6442632.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 000524024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcbl64.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 020705520 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 020087872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 017447896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 017161760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 004882168 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 004323152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 001170928 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 000917416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 000527784 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 000452744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2020-04-18 21:49 - 2019-11-10 23:50 - 001690992 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2020-04-18 21:49 - 2019-11-10 23:50 - 000237368 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2020-04-18 21:49 - 2019-11-10 23:50 - 000056192 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2020-04-18 21:49 - 2019-11-10 23:50 - 000047209 _____ C:\Windows\system32\nvinfo.pb
2020-04-18 21:49 - 2019-11-10 23:50 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2020-04-18 21:49 - 2019-11-10 23:50 - 000000669 _____ C:\Windows\system32\nv-vk64.json
2020-04-18 21:36 - 2020-04-18 21:36 - 000000000 ____D C:\Windows\system32\Tasks\Avira
2020-04-18 21:30 - 2020-04-18 21:30 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-04-18 21:30 - 2020-04-18 21:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-04-18 21:30 - 2020-04-18 21:30 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-04-18 21:30 - 2020-04-18 21:30 - 000000000 ____D C:\Program Files\Malwarebytes
2020-04-18 21:06 - 2020-04-18 21:07 - 000000000 ____D C:\ProgramData\RogueKiller
2020-04-18 20:50 - 2020-04-18 21:07 - 000000000 ____D C:\Users\Pracant\Downloads\HAVĚŤ
2020-04-18 20:48 - 2020-04-18 21:34 - 000000000 ____D C:\AdwCleaner
2020-04-18 20:33 - 2020-04-18 20:33 - 000000000 ____D C:\Users\Public\Security Sessions
2020-04-18 20:31 - 2020-04-18 20:31 - 000000000 ____D C:\Users\Pracant\AppData\Local\AviraSpeedup
2020-04-18 20:30 - 2020-04-18 20:30 - 000003456 _____ C:\Windows\system32\Tasks\Avira_Security_Update
2020-04-18 20:30 - 2020-04-18 20:30 - 000003292 _____ C:\Windows\system32\Tasks\Avira_Antivirus_Systray
2020-04-18 20:30 - 2020-04-18 20:30 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2020-04-18 20:30 - 2020-04-06 21:13 - 000177376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2020-04-18 20:30 - 2020-03-27 12:48 - 000223744 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2020-04-18 20:30 - 2019-06-07 15:09 - 000068152 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avdevprot.sys
2020-04-18 20:30 - 2019-03-20 19:50 - 000078600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2020-04-18 20:30 - 2019-03-20 19:50 - 000036072 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2020-04-18 20:30 - 2019-03-20 19:50 - 000035376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys
2020-04-18 20:29 - 2020-04-18 20:33 - 000000000 ____D C:\Users\Pracant\AppData\Local\Avira
2020-04-18 20:29 - 2020-04-18 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2020-04-18 20:29 - 2020-04-18 20:30 - 000000000 ____D C:\ProgramData\Avira
2020-04-18 20:29 - 2020-04-18 20:30 - 000000000 ____D C:\Program Files (x86)\Avira
2020-04-18 20:29 - 2020-04-18 20:29 - 000003668 _____ C:\Windows\system32\Tasks\AviraSystemSpeedupUpdate
2020-04-18 20:29 - 2020-04-18 20:29 - 000000000 ____D C:\Users\Public\Speedup Sessions
2020-04-18 20:23 - 2020-04-18 20:37 - 000000000 ____D C:\Users\Pracant\AppData\Local\Google
2020-04-18 20:23 - 2020-04-18 20:23 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-04-18 20:23 - 2020-04-18 20:23 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-04-18 20:23 - 2020-04-18 20:23 - 000002298 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-18 20:23 - 2020-04-18 20:23 - 000000000 ____D C:\Program Files (x86)\Google
2020-04-14 20:11 - 2020-04-14 20:12 - 000000000 ____D C:\Users\Pracant\Downloads\The Very Best Of Rock'N'Roll (MP3@320Kbps)
2020-04-13 12:49 - 2020-04-18 21:35 - 000466560 _____ C:\Windows\system32\FNTCACHE.DAT
2020-04-12 21:32 - 2020-04-12 21:32 - 000000000 ____D C:\Windows\pss
2020-04-12 21:18 - 2020-04-12 21:18 - 000000000 ____D C:\Users\Pracant\AppData\Local\AliceVision
2020-04-12 19:47 - 2020-04-12 19:47 - 000000000 ____D C:\Users\Pracant\AppData\Local\MatterControl
2020-04-12 19:47 - 2020-04-12 19:47 - 000000000 ____D C:\Users\Pracant\AppData\Local\IsolatedStorage
2020-04-12 19:47 - 2020-04-12 19:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MatterControl
2020-04-12 19:47 - 2020-04-12 19:47 - 000000000 ____D C:\Program Files (x86)\MatterControl
2020-04-12 19:46 - 2020-04-12 19:46 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\cura
2020-04-12 19:46 - 2020-04-12 19:46 - 000000000 ____D C:\Users\Pracant\AppData\Local\cura
2020-04-12 19:43 - 2020-04-12 19:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ultimaker Cura 4.5
2020-04-12 19:43 - 2020-04-12 19:43 - 000000000 ____D C:\Program Files\Ultimaker Cura 4.5
2020-04-12 13:34 - 2020-04-12 13:34 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MeshLab
2020-04-12 13:34 - 2020-04-12 13:34 - 000000000 ____D C:\Program Files\VCG
2020-04-11 18:24 - 2020-04-11 18:55 - 000007635 _____ C:\Users\Pracant\AppData\Local\Resmon.ResmonCfg
2020-04-11 16:59 - 2020-04-11 17:05 - 2191975638 _____ C:\Users\Pracant\Downloads\Coma (2020)[HEVC].mkv
2020-04-11 08:09 - 2020-04-11 08:09 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Trimble Connect for SketchUp
2020-04-11 08:08 - 2020-04-11 08:08 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\SketchUp
2020-04-11 08:08 - 2020-04-11 08:08 - 000000000 ____D C:\Users\Pracant\AppData\Local\SketchUp
2020-04-11 08:06 - 2020-04-11 08:06 - 000000000 ____D C:\ProgramData\SketchUp
2020-04-11 08:06 - 2020-04-11 08:06 - 000000000 ____D C:\ProgramData\Reprise
2020-04-11 08:06 - 2020-04-11 08:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2018
2020-04-11 08:06 - 2020-04-11 08:06 - 000000000 ____D C:\Program Files\SketchUp
2020-04-10 20:04 - 2020-04-13 13:20 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\PrusaSlicer
2020-04-10 20:04 - 2020-04-10 20:04 - 000000625 _____ C:\Users\Pracant\printrunconf.ini~bak
2020-04-10 20:01 - 2020-04-10 20:04 - 000000625 _____ C:\Users\Pracant\printrunconf.ini
2020-04-10 20:01 - 2020-04-10 20:01 - 000001160 _____ C:\Users\Public\Desktop\3D Objects.lnk
2020-04-10 20:01 - 2020-04-10 20:01 - 000001160 _____ C:\ProgramData\Desktop\3D Objects.lnk
2020-04-10 20:01 - 2020-04-10 20:01 - 000000000 ____D C:\Users\Public\Documents\Prusa3D
2020-04-10 20:01 - 2020-04-10 20:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prusa3D
2020-04-10 20:01 - 2020-04-10 20:01 - 000000000 ____D C:\ProgramData\Documents\Prusa3D
2020-04-10 20:01 - 2020-04-10 20:01 - 000000000 ____D C:\Program Files\Prusa3D
2020-04-09 19:04 - 2020-04-09 19:56 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2020-04-08 09:44 - 2020-04-08 09:44 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Fusion360
2020-04-08 09:43 - 2020-04-08 09:45 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Autodesk
2020-04-08 09:43 - 2020-04-08 09:43 - 000000000 ____D C:\Users\Pracant\Documents\Fusion 360
2020-04-08 09:43 - 2020-04-08 09:43 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk
2020-04-08 09:43 - 2020-04-08 09:43 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\CadSoft
2020-04-08 09:43 - 2020-04-08 09:43 - 000000000 ____D C:\Users\Pracant\AppData\Local\cache
2020-04-08 09:43 - 2020-04-08 09:43 - 000000000 ____D C:\ProgramData\Autodesk
2020-04-08 09:41 - 2020-04-08 09:43 - 000000000 ____D C:\Users\Pracant\AppData\Local\Autodesk
2020-04-07 08:24 - 2020-04-07 08:24 - 000000000 ____D C:\Program Files\Garmin GPS Plugin
2020-04-07 08:24 - 2020-04-07 08:24 - 000000000 ____D C:\Program Files (x86)\Garmin GPS Plugin
2020-04-06 19:55 - 2020-04-06 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2020-04-06 18:14 - 2020-04-06 18:14 - 000094945 _____ C:\Users\Pracant\Desktop\Proforma_200800793.pdf
2020-04-06 12:19 - 2020-04-08 11:32 - 000003452 _____ C:\Windows\system32\Tasks\AutoPico Daily Restart
2020-04-05 19:22 - 2020-04-05 19:22 - 000000000 ____D C:\Users\Pracant\Downloads\Trivium Discography
2020-03-30 19:27 - 2020-03-30 19:37 - 000000000 ____D C:\Users\Pracant\Downloads\Neviditelny-2020.WEBRip.x264.CZtit
2020-03-30 19:26 - 2020-03-30 19:32 - 000000000 ____D C:\Users\Pracant\Downloads\The.Platform.2019.SPANISH.WEBRip.x264-VXT
2020-03-30 19:18 - 2020-03-30 19:46 - 1578882208 _____ C:\Users\Pracant\Downloads\The.Gentlemen.2019.WEBRip.XviD.AC3 CZ titulky.mkv
2020-03-30 19:14 - 2020-03-30 19:40 - 000000000 ____D C:\Users\Pracant\Downloads\Hotel Mumbai
2020-03-30 19:12 - 2020-03-30 19:31 - 1927596130 _____ C:\Users\Pracant\Downloads\MIB - Globální hrozba (2019)CZ).mkv
2020-03-30 19:12 - 2020-03-30 19:30 - 1831051705 _____ C:\Users\Pracant\Downloads\D-o-k-t-o-r.S-p-a-n-e-k.D-o-c-t-o-r.S-l-e-e-p.2019.Theatrical.Cut.UHD.BDRip.x264.CZ-TreZzoR.mkv
2020-03-30 19:12 - 2020-03-30 19:27 - 1369688064 _____ C:\Users\Pracant\Downloads\Složka 64.avi
2020-03-30 19:11 - 2020-03-30 19:24 - 000000000 ____D C:\Users\Pracant\Downloads\Bitva u Midway - Midway.2019.480p.BluRay.CZ.dabing
2020-03-29 12:05 - 2020-04-09 19:52 - 000000000 ____D C:\Program Files\Factorio_0.18.14
2020-03-29 10:18 - 2020-03-29 10:21 - 1124051611 _____ C:\Users\Pracant\Downloads\Pres.prsty.2019.mkv
2020-03-23 13:50 - 2020-03-23 14:21 - 1253176342 _____ C:\Users\Pracant\Downloads\Trojitá hrozba 2019 CZ DABING.avi
2020-03-23 13:49 - 2020-03-23 14:19 - 1533153101 _____ C:\Users\Pracant\Downloads\Kin.2018.480p.CZ.mkv
2020-03-23 13:49 - 2020-03-23 13:57 - 960558930 _____ C:\Users\Pracant\Downloads\Rambo Poslední krev 2019 CZ dabing.avi
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-04-20 14:09 - 2009-07-14 06:45 - 000030288 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-04-20 14:09 - 2009-07-14 06:45 - 000030288 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-04-20 14:08 - 2020-01-02 13:08 - 000000000 ____D C:\Windows\system32\appmgmt
2020-04-20 14:08 - 2019-11-27 14:09 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2020-04-20 14:08 - 2019-09-18 01:49 - 000000000 ____D C:\Users\Pracant\AppData\LocalLow\Mozilla
2020-04-20 14:08 - 2011-04-12 10:34 - 000668792 _____ C:\Windows\system32\perfh005.dat
2020-04-20 14:08 - 2011-04-12 10:34 - 000141420 _____ C:\Windows\system32\perfc005.dat
2020-04-20 14:08 - 2009-07-14 07:13 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2020-04-20 14:08 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-04-20 14:03 - 2019-09-18 01:03 - 000000000 ____D C:\ProgramData\NVIDIA
2020-04-20 14:03 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-04-20 14:01 - 2020-02-28 10:46 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\MPC-HC
2020-04-20 14:00 - 2019-09-18 10:56 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-04-20 13:59 - 2020-01-18 14:20 - 000006492 _____ C:\Windows\wininit.ini
2020-04-20 12:31 - 2020-01-16 19:33 - 000000000 ____D C:\Program Files (x86)\Subnautica
2020-04-20 10:27 - 2019-09-18 10:21 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\uTorrent
2020-04-20 10:18 - 2019-09-18 10:37 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-04-20 10:17 - 2019-09-18 10:02 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-04-19 10:53 - 2019-10-15 15:35 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\foobar2000
2020-04-19 10:43 - 2019-09-18 12:46 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Telegram Desktop
2020-04-19 09:08 - 2019-09-18 01:03 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-04-18 21:54 - 2019-09-18 00:32 - 000000000 ____D C:\Users\Pracant\AppData\Local\VirtualStore
2020-04-18 21:53 - 2019-09-18 01:02 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-04-18 21:52 - 2019-09-18 12:30 - 000000000 ____D C:\Users\Pracant\AppData\Local\ElevatedDiagnostics
2020-04-18 21:52 - 2019-09-18 01:03 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-04-18 21:52 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\Help
2020-04-18 21:49 - 2019-12-12 23:28 - 000000000 ____D C:\Users\Pracant\AppData\Local\NVIDIA
2020-04-18 21:34 - 2019-09-18 00:33 - 000000000 ____D C:\ProgramData\Dell
2020-04-18 20:30 - 2019-09-18 00:53 - 000122976 _____ C:\Users\Pracant\AppData\Local\GDIPFONTCACHEV1.DAT
2020-04-18 20:29 - 2019-09-18 00:47 - 000000000 ____D C:\ProgramData\Package Cache
2020-04-16 22:04 - 2019-12-17 14:12 - 000002740 _____ C:\Windows\system32\Tasks\Core Temp Autostart Pracant
2020-04-16 22:04 - 2019-09-18 10:56 - 000002816 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-04-12 21:36 - 2020-03-06 18:47 - 000000000 ____D C:\Users\Pracant\Desktop\3D tisk
2020-04-12 21:31 - 2019-09-18 00:34 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-04-12 21:29 - 2019-09-18 01:49 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-04-12 21:28 - 2019-09-18 00:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2020-04-12 21:28 - 2019-09-18 00:40 - 000000000 ____D C:\Program Files (x86)\Dell
2020-04-12 20:46 - 2019-09-29 10:22 - 000000000 ____D C:\Users\Pracant\Knihovna Calibre
2020-04-12 13:39 - 2020-01-22 11:48 - 000000000 ____D C:\Users\Pracant\Desktop\Hry
2020-04-11 18:45 - 2019-09-18 00:48 - 000000000 ____D C:\Program Files (x86)\Intel
2020-04-11 18:44 - 2019-09-18 00:51 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2020-04-10 22:26 - 2020-02-17 18:02 - 000000000 ____D C:\Users\Pracant\Desktop\Bazén
2020-04-10 21:15 - 2009-07-14 04:34 - 000454562 ____R C:\Windows\system32\Drivers\etc\hosts.20200416-222548.backup
2020-04-10 20:04 - 2019-09-18 00:32 - 000000000 ____D C:\Users\Pracant
2020-04-10 20:03 - 2019-09-18 01:00 - 000000000 ____D C:\Program Files\DIFX
2020-04-08 12:32 - 2019-09-18 13:24 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\XnView
2020-04-08 11:32 - 2020-02-28 10:41 - 000003290 _____ C:\Windows\system32\Tasks\klcp_update
2020-04-08 11:32 - 2020-01-06 14:37 - 000003156 _____ C:\Windows\system32\Tasks\{6F223287-328C-4173-B829-1327DC6E37E6}
2020-04-08 11:32 - 2019-09-18 13:22 - 000004478 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-04-08 11:32 - 2019-09-18 12:43 - 000003244 _____ C:\Windows\system32\Tasks\{00A211AF-071F-4C55-913F-6EC5F6DC41A6}
2020-04-08 11:32 - 2019-09-18 12:35 - 000003190 _____ C:\Windows\system32\Tasks\{6DE4486A-3DC3-4499-9FFE-19FCE3D8C040}
2020-04-08 11:32 - 2019-09-18 11:32 - 000003164 _____ C:\Windows\system32\Tasks\{02F40C7F-114D-405A-B8D0-CDD7D542643E}
2020-04-08 11:32 - 2019-09-18 01:46 - 000003170 _____ C:\Windows\system32\Tasks\{88139FE3-63F7-4B19-8A15-C8107B6AEEE1}
2020-04-08 11:32 - 2019-09-18 01:45 - 000003134 _____ C:\Windows\system32\Tasks\{4C13A027-2998-43B9-9DC5-060C16E4DE96}
2020-04-08 11:32 - 2019-09-18 00:58 - 000003648 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2020-04-07 08:29 - 2019-09-18 11:16 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Garmin
2020-04-06 19:55 - 2019-09-18 11:15 - 000000000 ____D C:\Program Files (x86)\Garmin
2020-04-03 14:49 - 2020-01-22 11:48 - 000000000 ____D C:\Users\Pracant\Desktop\Katalogy
2020-04-03 07:58 - 2009-07-14 07:08 - 000032590 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2020-04-02 01:49 - 2010-11-21 05:27 - 000744808 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-03-25 17:02 - 2020-01-26 15:41 - 000000000 ____D C:\Program Files\Factorio.v0.18.0
==================== Files in the root of some directories ========
2020-04-11 18:24 - 2020-04-11 18:55 - 000007635 _____ () C:\Users\Pracant\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-04-17 08:23
==================== End of FRST.txt ========================
Ran by Pracant (administrator) on PRACANT-PC (Dell Inc. Precision M4700) (20-04-2020 14:18:33)
Running from C:\Users\Pracant\Downloads
Loaded Profiles: Pracant (Available Profiles: Pracant)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Windows\SysWOW64\srvany.exe
(ALCPU -> ALCPU) C:\Program Files\Core Temp\Core Temp.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., LTD. -> Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Mobile Wireless Group -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Mobile Wireless Group -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe <2>
(O2Micro Inc. -> O2Micro International) C:\Windows\System32\o2flash.exe
(O2Micro Inc. -> O2Micro.) C:\Windows\SysWOW64\SDIOAssist.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(UPEK Inc. -> UPEK Inc.) C:\Program Files\Common Files\SPBA\upeksvr.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [776224 2018-10-24] (ALPS ELECTRIC CO., LTD. -> Alps Electric Co., Ltd.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292088 2013-02-22] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1178912 2016-05-25] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [239520 2020-04-02] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331368 2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.113\Installer\chrmstp.exe [2020-04-18] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{18CBEEAA-6708-41A1-9379-D08915333CF2}] -> C:\Program Files\Common Files\SPBA\provider.dll [2010-09-15] (UPEK Inc. -> UPEK Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2013-02-19] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Providers: [{D28973E5-8630-41af-8831-50A15FEB396B}] -> C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll [2013-02-19] (Broadcom Corporation -> Broadcom Corporation.)
HKLM\Software\...\Authentication\Credential Provider Filters: [{AE583D93-8D1B-424F-9858-5623FB7824EE}] -> C:\Program Files\Common Files\SPBA\provider.dll [2010-09-15] (UPEK Inc. -> UPEK Inc.)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => No File
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => No File
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
BootExecute: autocheck autochk * sdnclean64.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {00FC7717-1A25-4997-B49B-4A502F36201F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {1906DE23-4903-47FE-ACB4-27FD6BC5E0F6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {322E5166-7F8A-4550-8364-E77A5EB635F3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-18] (Google LLC -> Google LLC)
Task: {46436167-892E-42AA-98C7-756C82372746} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115448 2020-04-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {494A13B3-E357-412C-B0BC-51530257EE2B} - System32\Tasks\{6F223287-328C-4173-B829-1327DC6E37E6} => C:\Windows\system32\pcalua.exe -a "C:\Users\Pracant\Downloads\Minecraft 1.8.exe" -d C:\Users\Pracant\Downloads
Task: {59F94973-A671-4FFE-8AB4-631E5ADCD5F0} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [228368 2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {5E2A0BC3-E24A-40EB-B7EA-49DF931780A4} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe [1457720 2019-12-17] (Adobe Inc. -> Adobe)
Task: {62F73524-B90A-4A32-88D1-65B50F892E5D} - System32\Tasks\{00A211AF-071F-4C55-913F-6EC5F6DC41A6} => C:\Windows\system32\pcalua.exe -a C:\Users\Pracant\Downloads\Intel_Chipset_8-Series-C220-Series_USB3_MK6K0_A00_SETUP_ZPE.exe -d C:\Users\Pracant\Downloads
Task: {66612AAD-E1D0-44B5-9BC8-7BDFE017AF3E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4373344 2020-04-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {67C5853A-1226-4E84-8022-D29EC66F68DB} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [27848432 2020-04-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )
Task: {8077C36B-2675-4584-96B1-C133F6EA033D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24609368 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {81FD3850-B093-4DD5-8673-B5C1F1E0933E} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1724928 2020-02-26] () [File not signed]
Task: {8A2070EB-C5E0-4902-AAE3-D0C78C049613} - System32\Tasks\{88139FE3-63F7-4B19-8A15-C8107B6AEEE1} => C:\Windows\system32\pcalua.exe -a E:\Ovladače\IRST_Driver_Intel_A13_WIN_0FGYV_f6flpy-x64-SETUP_ZPE.exe -d E:\Ovladače
Task: {97757E53-E815-4EE5-9EBA-BA912A515ABE} - System32\Tasks\AutoPico Daily Restart => C:\Users\Pracant\Desktop\ALL [Argument = MS OFFICE WINDOWS PERNAMEN ACTIVATOR!\AutoPico.exe /silent]
Task: {9B46A9ED-948D-436C-A2A8-0A700EA6D655} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
Task: {9D030BE5-0717-4677-9F35-5296533DF04F} - System32\Tasks\{02F40C7F-114D-405A-B8D0-CDD7D542643E} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\FreeRapid-0.9u4\frd.exe" -d "C:\Program Files\FreeRapid-0.9u4"
Task: {BDB7116E-750E-4E98-8AC2-E57D6F067136} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24609368 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {D870FA0B-51CB-4724-BA49-3F303F0C1B94} - System32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2106240 2019-11-13] (NVIDIA Corporation -> )
Task: {DBD34E68-DF32-4794-B429-0EC594B9D302} - System32\Tasks\{6DE4486A-3DC3-4499-9FFE-19FCE3D8C040} => C:\Windows\system32\pcalua.exe -a C:\Users\Pracant\Downloads\FFS_ST_W8.14_A00_Setup-HWNT9_ZPE.exe -d C:\Users\Pracant\Downloads
Task: {DBD4B11D-BFEA-499B-B442-8F634C4737F2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4373344 2020-04-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {DCB265B7-1885-4228-878E-F7B464DAA400} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2759304 2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {E40ED595-F09F-4725-B2B4-BEF9B78B2FB6} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115448 2020-04-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {E8530C01-39E4-4FF4-8344-9D39990929DA} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [855352 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {FAA69525-9E16-4B2E-8F8B-2785B581B488} - System32\Tasks\Core Temp Autostart Pracant => C:\Program Files\Core Temp\Core Temp.exe [1011592 2019-08-30] (ALCPU -> ALCPU)
Task: {FB386DF5-7B5D-47A4-AEFD-2234C86E2EF5} - System32\Tasks\{4C13A027-2998-43B9-9DC5-060C16E4DE96} => C:\Windows\system32\pcalua.exe -a E:\Ovladače\Camera_DELL_W8_A00_Setup_HKY75_ZPE.exe -d E:\Ovladače
Task: {FE48F9FF-6827-4F67-93CA-8EE6C5BAD510} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-04-18] (Google LLC -> Google LLC)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2B394C66-A038-4B76-A4CC-3B68F0FFB799}: [DhcpNameServer] 192.168.0.1
Internet Explorer:
==================
HKU\S-1-5-21-1383765227-148611890-2853001164-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/cs-cz/?ocid=iehp
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-09-18] (Oracle America, Inc. -> Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2020-04-20] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2020-04-20] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: a4tgzkpu.default
FF ProfilePath: C:\Users\Pracant\AppData\Roaming\Mozilla\Firefox\Profiles\a4tgzkpu.default [2020-03-07]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Pracant\AppData\Roaming\Mozilla\Firefox\Profiles\a4tgzkpu.default\Extensions\sp@avast.com.xpi [2019-09-18]
FF ProfilePath: C:\Users\Pracant\AppData\Roaming\Mozilla\Firefox\Profiles\x1zg0pxk.default-release [2020-04-20]
FF Homepage: Mozilla\Firefox\Profiles\x1zg0pxk.default-release -> hxxps://www.google.com/
FF Extension: (Enhancer for YouTube™) - C:\Users\Pracant\AppData\Roaming\Mozilla\Firefox\Profiles\x1zg0pxk.default-release\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2020-03-31]
FF Extension: (uBlock Origin) - C:\Users\Pracant\AppData\Roaming\Mozilla\Firefox\Profiles\x1zg0pxk.default-release\Extensions\uBlock0@raymondhill.net.xpi [2020-04-07]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_303.dll [2019-12-17] (Adobe Inc. -> )
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (Garmin International, Inc. -> GARMIN Corp.)
FF Plugin: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-09-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-09-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_303.dll [2019-12-17] (Adobe Inc. -> )
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (Garmin International, Inc. -> GARMIN Corp.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default [2020-04-20]
CHR HomePage: Default -> hxxp://www.google.com/
CHR Extension: (Prezentace) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-04-18]
CHR Extension: (Just Black) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2020-04-18]
CHR Extension: (Dokumenty) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-04-18]
CHR Extension: (Disk Google) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-04-18]
CHR Extension: (YouTube) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-04-18]
CHR Extension: (Dark Mode) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmghijelimhndkbmpgbldicpogfkceaj [2020-04-18]
CHR Extension: (Tabulky) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-04-18]
CHR Extension: (Dokumenty Google offline) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-18]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2020-04-18]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-18]
CHR Extension: (Gmail) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-04-18]
CHR Extension: (Chrome Media Router) - C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-18]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1209856 2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [485960 2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [485960 2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [573760 2020-03-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [104800 2018-10-24] (Alps Electric Co., LTD. -> Alps Electric Co., Ltd.)
S3 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-01-10] (Apple Inc. -> Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [634896 2020-04-02] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989888 2020-01-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [382992 2020-03-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [242448 2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [161216 2020-04-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11102064 2020-04-02] (Microsoft Corporation -> Microsoft Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [317416 2018-09-24] (Intel Corporation -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [974632 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-05-25] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-04-18] (Malwarebytes Inc -> Malwarebytes)
R2 NVWMI; C:\Windows\system32\nvwmi64.exe [4741024 2019-11-13] (NVIDIA Corporation -> NVIDIA Corporation)
R2 O2FLASH; C:\Windows\system32\o2flash.exe [244328 2011-11-16] (O2Micro Inc. -> O2Micro International)
R2 O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [8192 2003-04-18] () [File not signed]
S3 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [741640 2014-06-16] (DEVGURU CO LTD -> DEVGURU Co., LTD.)
S2 tcsd_win32.exe; C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [1637888 2011-10-08] () [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-01-07] (Microsoft Windows -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3377904 2013-07-17] (Intel Corporation-Mobile Wireless Group -> Intel® Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 avdevprot; C:\Windows\System32\DRIVERS\avdevprot.sys [68152 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [223744 2020-03-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [177376 2020-04-06] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [36072 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [78600 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [35376 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 DDDriver; C:\Windows\System32\drivers\DDDriver64Dcsa.sys [41608 2019-05-21] (Techporch Incorporated -> Dell Inc.)
S3 DellProf; C:\Windows\System32\drivers\DellProf.sys [41208 2019-05-21] (Techporch Incorporated -> Dell Computer Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [181304 2016-03-28] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2020-03-18] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R0 stdcfltn; C:\Windows\System32\DRIVERS\stdcfltn.sys [23216 2015-01-09] (STMicroelectronics -> ST Microelectronics)
R3 ST_ACCEL; C:\Windows\System32\DRIVERS\ST_Accel.sys [101040 2015-05-21] (STMicroelectronics -> STMicroelectronics)
S3 trufos; C:\Windows\System32\drivers\trufos.sys [439576 2020-01-02] (Bitdefender SRL -> BitDefender S.R.L.)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2019-05-18] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R3 ALSysIO; \??\C:\Users\Pracant\AppData\Local\Temp\ALSysIO64.sys [X] <==== ATTENTION
S4 nvkflt; system32\DRIVERS\nvkflt.sys [X]
S4 nvpciflt; \SystemRoot\system32\DRIVERS\nvpciflt.sys [X]
S3 STHDA; system32\DRIVERS\stwrt64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-04-20 14:00 - 2020-04-20 14:00 - 022267336 _____ (Piriform Software Ltd) C:\Users\Pracant\Downloads\ccsetup565.exe
2020-04-20 10:31 - 2020-04-20 10:32 - 000041038 _____ C:\Users\Pracant\Downloads\Addition.txt
2020-04-20 10:30 - 2020-04-20 14:18 - 000028557 _____ C:\Users\Pracant\Downloads\FRST.txt
2020-04-20 10:30 - 2020-04-20 14:18 - 000000000 ____D C:\FRST
2020-04-20 10:14 - 2020-04-20 10:14 - 002281984 _____ (Farbar) C:\Users\Pracant\Downloads\FRST64 (1).exe
2020-04-20 10:13 - 2020-04-20 14:15 - 000000000 ____D C:\Program Files\trend micro
2020-04-20 10:13 - 2020-04-20 10:14 - 000000000 ____D C:\rsit
2020-04-20 10:13 - 2020-04-20 10:13 - 001222144 _____ C:\Users\Pracant\Downloads\RSITx64.exe
2020-04-19 11:40 - 2020-04-19 11:40 - 000000000 ____D C:\Users\Pracant\Downloads\Telegram Desktop
2020-04-19 10:40 - 2020-04-19 16:56 - 000000000 ____D C:\Users\Pracant\Downloads\Subnautica Below Zero v.(20060)
2020-04-19 01:59 - 2020-04-19 01:59 - 000000000 ____D C:\Users\Pracant\AppData\LocalLow\IGDump
2020-04-18 21:54 - 2020-04-18 21:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-04-18 21:53 - 2020-04-18 21:53 - 000003438 _____ C:\Windows\system32\Tasks\nWizard_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-04-18 21:53 - 2019-11-13 08:28 - 004741024 _____ (NVIDIA Corporation) C:\Windows\system32\nvwmi64.exe
2020-04-18 21:53 - 2019-11-10 23:50 - 000014175 _____ C:\Windows\system32\nvPerfProvider.man
2020-04-18 21:52 - 2020-04-18 21:52 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2020-04-18 21:52 - 2019-11-10 21:11 - 005366296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2020-04-18 21:52 - 2019-11-10 21:11 - 002624960 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2020-04-18 21:52 - 2019-11-10 21:11 - 001767448 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2020-04-18 21:52 - 2019-11-10 21:11 - 000652904 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2020-04-18 21:52 - 2019-11-10 21:11 - 000450600 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2020-04-18 21:52 - 2019-11-10 21:11 - 000125376 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2020-04-18 21:52 - 2019-11-10 21:11 - 000082784 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2020-04-18 21:52 - 2019-11-10 20:51 - 000133616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2020-04-18 21:52 - 2019-11-08 07:34 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2020-04-18 21:52 - 2019-11-06 12:47 - 008782162 _____ C:\Windows\system32\nvcoproc.bin
2020-04-18 21:49 - 2019-11-13 08:28 - 001006800 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-04-18 21:49 - 2019-11-13 08:28 - 001006800 _____ C:\Windows\system32\vulkan-1.dll
2020-04-18 21:49 - 2019-11-13 08:28 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2020-04-18 21:49 - 2019-11-13 08:28 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1.dll
2020-04-18 21:49 - 2019-11-13 08:28 - 000552960 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2020-04-18 21:49 - 2019-11-13 08:28 - 000456624 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2020-04-18 21:49 - 2019-11-13 08:28 - 000286416 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49 - 2019-11-13 08:28 - 000286416 _____ C:\Windows\system32\vulkaninfo.exe
2020-04-18 21:49 - 2019-11-13 08:28 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49 - 2019-11-13 08:28 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2020-04-18 21:49 - 2019-11-13 08:27 - 070149176 _____ (NVIDIA Corp.) C:\Windows\system32\nvoptix.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 040349432 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 030026616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 020912472 _____ (NVIDIA Corporation) C:\Windows\system32\nvrtum64.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 020747696 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2020-04-18 21:49 - 2019-11-13 08:27 - 001466304 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 001133056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 000633944 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 000523512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 000422888 _____ C:\Windows\system32\nvofapi64.dll
2020-04-18 21:49 - 2019-11-13 08:27 - 000370672 _____ C:\Windows\SysWOW64\nvofapi.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 040421720 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 037839184 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 035469768 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl64.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 035269040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 032527760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 030006136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl32.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 010331464 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 008793928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 004895136 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 004369616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 002040184 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 001735088 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6442632.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 001542160 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 001469304 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6442632.dll
2020-04-18 21:49 - 2019-11-13 08:26 - 000524024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcbl64.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 020705520 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 020087872 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 017447896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 017161760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 004882168 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 004323152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 001170928 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 000917416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 000527784 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2020-04-18 21:49 - 2019-11-13 08:25 - 000452744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2020-04-18 21:49 - 2019-11-10 23:50 - 001690992 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2020-04-18 21:49 - 2019-11-10 23:50 - 000237368 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2020-04-18 21:49 - 2019-11-10 23:50 - 000056192 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2020-04-18 21:49 - 2019-11-10 23:50 - 000047209 _____ C:\Windows\system32\nvinfo.pb
2020-04-18 21:49 - 2019-11-10 23:50 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2020-04-18 21:49 - 2019-11-10 23:50 - 000000669 _____ C:\Windows\system32\nv-vk64.json
2020-04-18 21:36 - 2020-04-18 21:36 - 000000000 ____D C:\Windows\system32\Tasks\Avira
2020-04-18 21:30 - 2020-04-18 21:30 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-04-18 21:30 - 2020-04-18 21:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-04-18 21:30 - 2020-04-18 21:30 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-04-18 21:30 - 2020-04-18 21:30 - 000000000 ____D C:\Program Files\Malwarebytes
2020-04-18 21:06 - 2020-04-18 21:07 - 000000000 ____D C:\ProgramData\RogueKiller
2020-04-18 20:50 - 2020-04-18 21:07 - 000000000 ____D C:\Users\Pracant\Downloads\HAVĚŤ
2020-04-18 20:48 - 2020-04-18 21:34 - 000000000 ____D C:\AdwCleaner
2020-04-18 20:33 - 2020-04-18 20:33 - 000000000 ____D C:\Users\Public\Security Sessions
2020-04-18 20:31 - 2020-04-18 20:31 - 000000000 ____D C:\Users\Pracant\AppData\Local\AviraSpeedup
2020-04-18 20:30 - 2020-04-18 20:30 - 000003456 _____ C:\Windows\system32\Tasks\Avira_Security_Update
2020-04-18 20:30 - 2020-04-18 20:30 - 000003292 _____ C:\Windows\system32\Tasks\Avira_Antivirus_Systray
2020-04-18 20:30 - 2020-04-18 20:30 - 000000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2020-04-18 20:30 - 2020-04-06 21:13 - 000177376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2020-04-18 20:30 - 2020-03-27 12:48 - 000223744 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2020-04-18 20:30 - 2019-06-07 15:09 - 000068152 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avdevprot.sys
2020-04-18 20:30 - 2019-03-20 19:50 - 000078600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2020-04-18 20:30 - 2019-03-20 19:50 - 000036072 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2020-04-18 20:30 - 2019-03-20 19:50 - 000035376 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avusbflt.sys
2020-04-18 20:29 - 2020-04-18 20:33 - 000000000 ____D C:\Users\Pracant\AppData\Local\Avira
2020-04-18 20:29 - 2020-04-18 20:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2020-04-18 20:29 - 2020-04-18 20:30 - 000000000 ____D C:\ProgramData\Avira
2020-04-18 20:29 - 2020-04-18 20:30 - 000000000 ____D C:\Program Files (x86)\Avira
2020-04-18 20:29 - 2020-04-18 20:29 - 000003668 _____ C:\Windows\system32\Tasks\AviraSystemSpeedupUpdate
2020-04-18 20:29 - 2020-04-18 20:29 - 000000000 ____D C:\Users\Public\Speedup Sessions
2020-04-18 20:23 - 2020-04-18 20:37 - 000000000 ____D C:\Users\Pracant\AppData\Local\Google
2020-04-18 20:23 - 2020-04-18 20:23 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-04-18 20:23 - 2020-04-18 20:23 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-04-18 20:23 - 2020-04-18 20:23 - 000002298 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-18 20:23 - 2020-04-18 20:23 - 000000000 ____D C:\Program Files (x86)\Google
2020-04-14 20:11 - 2020-04-14 20:12 - 000000000 ____D C:\Users\Pracant\Downloads\The Very Best Of Rock'N'Roll (MP3@320Kbps)
2020-04-13 12:49 - 2020-04-18 21:35 - 000466560 _____ C:\Windows\system32\FNTCACHE.DAT
2020-04-12 21:32 - 2020-04-12 21:32 - 000000000 ____D C:\Windows\pss
2020-04-12 21:18 - 2020-04-12 21:18 - 000000000 ____D C:\Users\Pracant\AppData\Local\AliceVision
2020-04-12 19:47 - 2020-04-12 19:47 - 000000000 ____D C:\Users\Pracant\AppData\Local\MatterControl
2020-04-12 19:47 - 2020-04-12 19:47 - 000000000 ____D C:\Users\Pracant\AppData\Local\IsolatedStorage
2020-04-12 19:47 - 2020-04-12 19:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MatterControl
2020-04-12 19:47 - 2020-04-12 19:47 - 000000000 ____D C:\Program Files (x86)\MatterControl
2020-04-12 19:46 - 2020-04-12 19:46 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\cura
2020-04-12 19:46 - 2020-04-12 19:46 - 000000000 ____D C:\Users\Pracant\AppData\Local\cura
2020-04-12 19:43 - 2020-04-12 19:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ultimaker Cura 4.5
2020-04-12 19:43 - 2020-04-12 19:43 - 000000000 ____D C:\Program Files\Ultimaker Cura 4.5
2020-04-12 13:34 - 2020-04-12 13:34 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MeshLab
2020-04-12 13:34 - 2020-04-12 13:34 - 000000000 ____D C:\Program Files\VCG
2020-04-11 18:24 - 2020-04-11 18:55 - 000007635 _____ C:\Users\Pracant\AppData\Local\Resmon.ResmonCfg
2020-04-11 16:59 - 2020-04-11 17:05 - 2191975638 _____ C:\Users\Pracant\Downloads\Coma (2020)[HEVC].mkv
2020-04-11 08:09 - 2020-04-11 08:09 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Trimble Connect for SketchUp
2020-04-11 08:08 - 2020-04-11 08:08 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\SketchUp
2020-04-11 08:08 - 2020-04-11 08:08 - 000000000 ____D C:\Users\Pracant\AppData\Local\SketchUp
2020-04-11 08:06 - 2020-04-11 08:06 - 000000000 ____D C:\ProgramData\SketchUp
2020-04-11 08:06 - 2020-04-11 08:06 - 000000000 ____D C:\ProgramData\Reprise
2020-04-11 08:06 - 2020-04-11 08:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SketchUp 2018
2020-04-11 08:06 - 2020-04-11 08:06 - 000000000 ____D C:\Program Files\SketchUp
2020-04-10 20:04 - 2020-04-13 13:20 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\PrusaSlicer
2020-04-10 20:04 - 2020-04-10 20:04 - 000000625 _____ C:\Users\Pracant\printrunconf.ini~bak
2020-04-10 20:01 - 2020-04-10 20:04 - 000000625 _____ C:\Users\Pracant\printrunconf.ini
2020-04-10 20:01 - 2020-04-10 20:01 - 000001160 _____ C:\Users\Public\Desktop\3D Objects.lnk
2020-04-10 20:01 - 2020-04-10 20:01 - 000001160 _____ C:\ProgramData\Desktop\3D Objects.lnk
2020-04-10 20:01 - 2020-04-10 20:01 - 000000000 ____D C:\Users\Public\Documents\Prusa3D
2020-04-10 20:01 - 2020-04-10 20:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prusa3D
2020-04-10 20:01 - 2020-04-10 20:01 - 000000000 ____D C:\ProgramData\Documents\Prusa3D
2020-04-10 20:01 - 2020-04-10 20:01 - 000000000 ____D C:\Program Files\Prusa3D
2020-04-09 19:04 - 2020-04-09 19:56 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2020-04-08 09:44 - 2020-04-08 09:44 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Fusion360
2020-04-08 09:43 - 2020-04-08 09:45 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Autodesk
2020-04-08 09:43 - 2020-04-08 09:43 - 000000000 ____D C:\Users\Pracant\Documents\Fusion 360
2020-04-08 09:43 - 2020-04-08 09:43 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk
2020-04-08 09:43 - 2020-04-08 09:43 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\CadSoft
2020-04-08 09:43 - 2020-04-08 09:43 - 000000000 ____D C:\Users\Pracant\AppData\Local\cache
2020-04-08 09:43 - 2020-04-08 09:43 - 000000000 ____D C:\ProgramData\Autodesk
2020-04-08 09:41 - 2020-04-08 09:43 - 000000000 ____D C:\Users\Pracant\AppData\Local\Autodesk
2020-04-07 08:24 - 2020-04-07 08:24 - 000000000 ____D C:\Program Files\Garmin GPS Plugin
2020-04-07 08:24 - 2020-04-07 08:24 - 000000000 ____D C:\Program Files (x86)\Garmin GPS Plugin
2020-04-06 19:55 - 2020-04-06 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2020-04-06 18:14 - 2020-04-06 18:14 - 000094945 _____ C:\Users\Pracant\Desktop\Proforma_200800793.pdf
2020-04-06 12:19 - 2020-04-08 11:32 - 000003452 _____ C:\Windows\system32\Tasks\AutoPico Daily Restart
2020-04-05 19:22 - 2020-04-05 19:22 - 000000000 ____D C:\Users\Pracant\Downloads\Trivium Discography
2020-03-30 19:27 - 2020-03-30 19:37 - 000000000 ____D C:\Users\Pracant\Downloads\Neviditelny-2020.WEBRip.x264.CZtit
2020-03-30 19:26 - 2020-03-30 19:32 - 000000000 ____D C:\Users\Pracant\Downloads\The.Platform.2019.SPANISH.WEBRip.x264-VXT
2020-03-30 19:18 - 2020-03-30 19:46 - 1578882208 _____ C:\Users\Pracant\Downloads\The.Gentlemen.2019.WEBRip.XviD.AC3 CZ titulky.mkv
2020-03-30 19:14 - 2020-03-30 19:40 - 000000000 ____D C:\Users\Pracant\Downloads\Hotel Mumbai
2020-03-30 19:12 - 2020-03-30 19:31 - 1927596130 _____ C:\Users\Pracant\Downloads\MIB - Globální hrozba (2019)CZ).mkv
2020-03-30 19:12 - 2020-03-30 19:30 - 1831051705 _____ C:\Users\Pracant\Downloads\D-o-k-t-o-r.S-p-a-n-e-k.D-o-c-t-o-r.S-l-e-e-p.2019.Theatrical.Cut.UHD.BDRip.x264.CZ-TreZzoR.mkv
2020-03-30 19:12 - 2020-03-30 19:27 - 1369688064 _____ C:\Users\Pracant\Downloads\Složka 64.avi
2020-03-30 19:11 - 2020-03-30 19:24 - 000000000 ____D C:\Users\Pracant\Downloads\Bitva u Midway - Midway.2019.480p.BluRay.CZ.dabing
2020-03-29 12:05 - 2020-04-09 19:52 - 000000000 ____D C:\Program Files\Factorio_0.18.14
2020-03-29 10:18 - 2020-03-29 10:21 - 1124051611 _____ C:\Users\Pracant\Downloads\Pres.prsty.2019.mkv
2020-03-23 13:50 - 2020-03-23 14:21 - 1253176342 _____ C:\Users\Pracant\Downloads\Trojitá hrozba 2019 CZ DABING.avi
2020-03-23 13:49 - 2020-03-23 14:19 - 1533153101 _____ C:\Users\Pracant\Downloads\Kin.2018.480p.CZ.mkv
2020-03-23 13:49 - 2020-03-23 13:57 - 960558930 _____ C:\Users\Pracant\Downloads\Rambo Poslední krev 2019 CZ dabing.avi
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-04-20 14:09 - 2009-07-14 06:45 - 000030288 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-04-20 14:09 - 2009-07-14 06:45 - 000030288 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-04-20 14:08 - 2020-01-02 13:08 - 000000000 ____D C:\Windows\system32\appmgmt
2020-04-20 14:08 - 2019-11-27 14:09 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2020-04-20 14:08 - 2019-09-18 01:49 - 000000000 ____D C:\Users\Pracant\AppData\LocalLow\Mozilla
2020-04-20 14:08 - 2011-04-12 10:34 - 000668792 _____ C:\Windows\system32\perfh005.dat
2020-04-20 14:08 - 2011-04-12 10:34 - 000141420 _____ C:\Windows\system32\perfc005.dat
2020-04-20 14:08 - 2009-07-14 07:13 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2020-04-20 14:08 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-04-20 14:03 - 2019-09-18 01:03 - 000000000 ____D C:\ProgramData\NVIDIA
2020-04-20 14:03 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-04-20 14:01 - 2020-02-28 10:46 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\MPC-HC
2020-04-20 14:00 - 2019-09-18 10:56 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-04-20 13:59 - 2020-01-18 14:20 - 000006492 _____ C:\Windows\wininit.ini
2020-04-20 12:31 - 2020-01-16 19:33 - 000000000 ____D C:\Program Files (x86)\Subnautica
2020-04-20 10:27 - 2019-09-18 10:21 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\uTorrent
2020-04-20 10:18 - 2019-09-18 10:37 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-04-20 10:17 - 2019-09-18 10:02 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-04-19 10:53 - 2019-10-15 15:35 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\foobar2000
2020-04-19 10:43 - 2019-09-18 12:46 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Telegram Desktop
2020-04-19 09:08 - 2019-09-18 01:03 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-04-18 21:54 - 2019-09-18 00:32 - 000000000 ____D C:\Users\Pracant\AppData\Local\VirtualStore
2020-04-18 21:53 - 2019-09-18 01:02 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-04-18 21:52 - 2019-09-18 12:30 - 000000000 ____D C:\Users\Pracant\AppData\Local\ElevatedDiagnostics
2020-04-18 21:52 - 2019-09-18 01:03 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-04-18 21:52 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\Help
2020-04-18 21:49 - 2019-12-12 23:28 - 000000000 ____D C:\Users\Pracant\AppData\Local\NVIDIA
2020-04-18 21:34 - 2019-09-18 00:33 - 000000000 ____D C:\ProgramData\Dell
2020-04-18 20:30 - 2019-09-18 00:53 - 000122976 _____ C:\Users\Pracant\AppData\Local\GDIPFONTCACHEV1.DAT
2020-04-18 20:29 - 2019-09-18 00:47 - 000000000 ____D C:\ProgramData\Package Cache
2020-04-16 22:04 - 2019-12-17 14:12 - 000002740 _____ C:\Windows\system32\Tasks\Core Temp Autostart Pracant
2020-04-16 22:04 - 2019-09-18 10:56 - 000002816 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-04-12 21:36 - 2020-03-06 18:47 - 000000000 ____D C:\Users\Pracant\Desktop\3D tisk
2020-04-12 21:31 - 2019-09-18 00:34 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-04-12 21:29 - 2019-09-18 01:49 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-04-12 21:28 - 2019-09-18 00:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2020-04-12 21:28 - 2019-09-18 00:40 - 000000000 ____D C:\Program Files (x86)\Dell
2020-04-12 20:46 - 2019-09-29 10:22 - 000000000 ____D C:\Users\Pracant\Knihovna Calibre
2020-04-12 13:39 - 2020-01-22 11:48 - 000000000 ____D C:\Users\Pracant\Desktop\Hry
2020-04-11 18:45 - 2019-09-18 00:48 - 000000000 ____D C:\Program Files (x86)\Intel
2020-04-11 18:44 - 2019-09-18 00:51 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2020-04-10 22:26 - 2020-02-17 18:02 - 000000000 ____D C:\Users\Pracant\Desktop\Bazén
2020-04-10 21:15 - 2009-07-14 04:34 - 000454562 ____R C:\Windows\system32\Drivers\etc\hosts.20200416-222548.backup
2020-04-10 20:04 - 2019-09-18 00:32 - 000000000 ____D C:\Users\Pracant
2020-04-10 20:03 - 2019-09-18 01:00 - 000000000 ____D C:\Program Files\DIFX
2020-04-08 12:32 - 2019-09-18 13:24 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\XnView
2020-04-08 11:32 - 2020-02-28 10:41 - 000003290 _____ C:\Windows\system32\Tasks\klcp_update
2020-04-08 11:32 - 2020-01-06 14:37 - 000003156 _____ C:\Windows\system32\Tasks\{6F223287-328C-4173-B829-1327DC6E37E6}
2020-04-08 11:32 - 2019-09-18 13:22 - 000004478 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2020-04-08 11:32 - 2019-09-18 12:43 - 000003244 _____ C:\Windows\system32\Tasks\{00A211AF-071F-4C55-913F-6EC5F6DC41A6}
2020-04-08 11:32 - 2019-09-18 12:35 - 000003190 _____ C:\Windows\system32\Tasks\{6DE4486A-3DC3-4499-9FFE-19FCE3D8C040}
2020-04-08 11:32 - 2019-09-18 11:32 - 000003164 _____ C:\Windows\system32\Tasks\{02F40C7F-114D-405A-B8D0-CDD7D542643E}
2020-04-08 11:32 - 2019-09-18 01:46 - 000003170 _____ C:\Windows\system32\Tasks\{88139FE3-63F7-4B19-8A15-C8107B6AEEE1}
2020-04-08 11:32 - 2019-09-18 01:45 - 000003134 _____ C:\Windows\system32\Tasks\{4C13A027-2998-43B9-9DC5-060C16E4DE96}
2020-04-08 11:32 - 2019-09-18 00:58 - 000003648 _____ C:\Windows\system32\Tasks\Intel PTT EK Recertification
2020-04-07 08:29 - 2019-09-18 11:16 - 000000000 ____D C:\Users\Pracant\AppData\Roaming\Garmin
2020-04-06 19:55 - 2019-09-18 11:15 - 000000000 ____D C:\Program Files (x86)\Garmin
2020-04-03 14:49 - 2020-01-22 11:48 - 000000000 ____D C:\Users\Pracant\Desktop\Katalogy
2020-04-03 07:58 - 2009-07-14 07:08 - 000032590 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2020-04-02 01:49 - 2010-11-21 05:27 - 000744808 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-03-25 17:02 - 2020-01-26 15:41 - 000000000 ____D C:\Program Files\Factorio.v0.18.0
==================== Files in the root of some directories ========
2020-04-11 18:24 - 2020-04-11 18:55 - 000007635 _____ () C:\Users\Pracant\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-04-17 08:23
==================== End of FRST.txt ========================
Re: Větráky běží i při malé zátěži NTB
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-04-2020
Ran by Pracant (20-04-2020 14:19:15)
Running from C:\Users\Pracant\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2019-09-17 22:32:56)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1383765227-148611890-2853001164-500 - Administrator - Disabled)
Guest (S-1-5-21-1383765227-148611890-2853001164-501 - Limited - Disabled)
Pracant (S-1-5-21-1383765227-148611890-2853001164-1000 - Administrator - Enabled) => C:\Users\Pracant
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Antivirus (Enabled - Up to date) {8EAC8D5C-B3AA-95AA-3DF1-2845CDD09CBE}
AS: Avira Antivirus (Enabled - Up to date) {35CD6CB8-9590-9A24-0741-1337B657D603}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (HKLM-x32\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.293 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.303 - Adobe)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{b6b417a3-1f40-4618-aadd-49628bda7836}) (Version: 16.1.1 - Intel Corporation)
Apple Mobile Device Support (HKLM\...\{7D606B87-0AEB-4C27-ABCE-1138EE09777B}) (Version: 13.0.0.41 - Apple Inc.)
Autodesk Fusion 360 (HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.7830 - Autodesk, Inc.)
Avira (HKLM-x32\...\{CAB70370-888E-4D62-B5D5-DA7982585C46}) (Version: 1.2.145.25926 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{e636e084-c7ab-4246-8ad2-aa1bb1cbedfd}) (Version: 1.2.145.25926 - Avira Operations GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.2004.1828 - Avira Operations GmbH & Co. KG)
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.32.2.34115 - Avira Operations GmbH & Co. KG)
Avira Security (HKLM-x32\...\Avira Security_is1) (Version: 1.0.26.9000 - Avira Operations GmbH & Co. KG)
Avira Software Updater (HKLM-x32\...\{30947035-9248-4304-96CE-CB6B1D38CFD5}) (Version: 2.0.6.30594 - Avira Operations GmbH & Co. KG)
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.4.1.10871 - Avira Operations GmbH & Co. KG)
Balíček ovladače systému Windows - Adafruit Industries LLC (usbser) Ports (02/25/2016 6.2.2600.0) (HKLM\...\1245A5961AC9D2C18ADF9EEC931D77E059B7F74E) (Version: 02/25/2016 6.2.2600.0 - Adafruit Industries LLC)
Balíček ovladače systému Windows - Arduino LLC (www.arduino.cc) Arduino USB Driver (11/24/2015 1.2.3.0) (HKLM\...\8B585560B248755A6C5A24D5C0F50FA998310883) (Version: 11/24/2015 1.2.3.0 - Arduino LLC (www.arduino.cc))
Balíček ovladače systému Windows - Arduino LLC (www.arduino.cc) Genuino USB Driver (01/07/2016 1.0.3.0) (HKLM\...\EC414D98E2986DCA1628FAED2163CD1C9A4ED7EC) (Version: 01/07/2016 1.0.3.0 - Arduino LLC (www.arduino.cc))
Balíček ovladače systému Windows - Arduino Srl (www.arduino.org) Arduino USB Driver (03/19/2015 1.1.1.0) (HKLM\...\69E507459B453D69A453EFC9E461FAE1E073408A) (Version: 03/19/2015 1.1.1.0 - Arduino Srl (www.arduino.org))
Balíček ovladače systému Windows - Dell Inc. PBADRV System (09/11/2009 1.0.1.6) (HKLM\...\9512AA21B791B05A54E27065C45BBC417AB282DF) (Version: 09/11/2009 1.0.1.6 - Dell Inc.)
Balíček ovladače systému Windows - libusb-win32 (libusb0) libusb-win32 devices (04/21/2015 1.0.0.0) (HKLM\...\28E91B69CA377EB48D6E1B92C37F897036E8A818) (Version: 04/21/2015 1.0.0.0 - libusb-win32)
Balíček ovladače systému Windows - Linino (usbser) Ports (01/13/2014 1.0.0.0) (HKLM\...\A2C084AD4515675961A87E71B10E80E4FDCF7FAA) (Version: 01/13/2014 1.0.0.0 - Linino)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa CW1 (02/13/2013 1.0.0.0) (HKLM\...\B10CCB939D59F72AA817B257D84328FC4A1DC752) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa i3 MK2 (02/13/2013 1.0.0.0) (HKLM\...\E6CFEF5357DD0E2F987E98779FD6603959DA391B) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa i3 MK3 Multi Material 2.0 upgrade (02/13/2013 1.0.0.0) (HKLM\...\FA562E43945E7D9CAC76A811E49088FF2255A11A) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Prusa i3 Plus MK3 3D printer (02/13/2013 1.0.0.0) (HKLM\...\890B56493F7CACBCA0E70EA8EBFD9A18BC780C34) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - UltiMachine 3D Printer (RAMBo) (02/13/2013 1.0.0.0) (HKLM\...\D77EC126405DC217C7BF7DA6669B51E297D5CF23) (Version: 02/13/2013 1.0.0.0 - UltiMachine)
BioAPI Framework (HKLM\...\{9DAED4FC-2B0E-4F3F-8141-F2ABF02CCFCB}) (Version: 1.0.2 - Dell Inc.) Hidden
Blender (HKLM\...\{F343C69A-4ABA-434C-9C73-12A519D269CD}) (Version: 2.80.0 - Blender Foundation)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother Printer Setting Tool (HKLM-x32\...\{8DA2E2DC-C572-4F87-89FC-833DB588CC7B}) (Version: 1.6.0075 - Brother Industries, Ltd.)
Brother P-touch Editor 5.2 (HKLM-x32\...\{456127E4-D660-4680-8C96-609AD6C485E2}) (Version: 5.2.0320 - Brother Industries, Ltd.)
Brother P-touch Update Software (HKLM-x32\...\{AD5D9DC4-7389-422C-B1DF-1857457F797F}) (Version: 1.0.0150 - Brother Industries, Ltd.)
Bullzip PDF Printer 11.11.0.2804 (HKLM\...\Bullzip PDF Printer_is1) (Version: 11.11.0.2804 - Bullzip)
calibre (HKLM-x32\...\{FD6B4DA3-5E7B-499E-841D-B797BED0CC47}) (Version: 3.48.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
Core Temp 1.15.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.15.1 - ALCPU)
Dell Custom Help (HKLM\...\{BE1CF6CA-3182-45D8-9535-A18055B73607}) (Version: 16.01.1000.0235 - Intel Corporation) Hidden
Dell Data Protection | Access (HKLM\...\{ABBA2EA4-740E-4052-902B-9CA70B081E3F}) (Version: 2.2.00003.009 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{7B2D0B6F-F02D-4363-ACDF-00DE6247ACBC}) (Version: 3.5.2015.0 - Dell Products, LP)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 10.2207.101.121 - ALPS ELECTRIC CO., LTD.)
foobar2000 v1.4.8 (HKLM-x32\...\foobar2000) (Version: 1.4.8 - Peter Pawlowski)
Garmin BaseCamp (HKLM-x32\...\{52212c77-b309-478b-9073-27ea7ca4373b}) (Version: 4.7.1.0 - Garmin Ltd or its subsidiaries)
Garmin BaseCamp (HKLM-x32\...\{BF450036-EE1E-4B8A-B514-787A0D6D4EAE}) (Version: 4.7.1.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Gemalto (HKLM\...\{91CE5F03-3A2A-4268-935A-04944F058AE9}) (Version: 01.64.01.0010 - Wave Systems Corp) Hidden
GIMP 2.10.12 (HKLM\...\GIMP-2_is1) (Version: 2.10.12 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.113 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
iMazing 2.10.4.0 (HKLM\...\iMazing_is1) (Version: 2.10.4.0 - DigiDNA)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel(R) Network Connections 18.1.59.00 (HKLM\...\PROSetDX) (Version: 18.1.59.00 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.5059 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{4e75a24b-6cc4-4a46-accf-525f8a08c533}) (Version: 10.1.1.18 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{E109DA49-B4C0-4576-AC6C-7053C5782A61}) (Version: 12.10.2.3 - Apple Inc.)
Java 8 Update 221 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
K-Lite Mega Codec Pack 15.4.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.4.0 - KLCP)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
MatterControl version 2.20.4.10449 (HKLM-x32\...\{EE5A0E0E-8608-4272-94D6-C2CDCD9307F2}_is1) (Version: 2.20.4.10449 - MatterHackers, Inc.)
MeshLab 2020.03 (HKLM-x32\...\MeshLab) (Version: 2020.03 - Paolo Cignoni - VCG - ISTI - CNR)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.12527.20442 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft Project Professional 2016 - cs-cz (HKLM\...\ProjectProRetail - cs-cz) (Version: 16.0.12527.20442 - Microsoft Corporation)
Microsoft Visio Professional 2016 - cs-cz (HKLM\...\VisioProRetail - cs-cz) (Version: 16.0.12527.20442 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation)
Movie Maker 6.0 for Windows 7 (64-bit) (HKLM\...\{A7395F20-2B22-4CB8-8510-B452C0F47E02}) (Version: 6.0.0 - Microsoft Corporation)
Mozilla Thunderbird 68.7.0 (x64 cs) (HKLM\...\Mozilla Thunderbird 68.7.0 (x64 cs)) (Version: 68.7.0 - Mozilla)
NTRU TCG Software Stack (HKLM\...\{E9A97832-83B6-42B6-BAC6-492E344C2561}) (Version: 2.1.37 - Security Innovation, Inc.) Hidden
NVIDIA nView 149.77 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 149.77 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 426.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 426.32 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 426.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 426.32 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA WMI 2.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.33.0 - NVIDIA Corporation)
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\{D535FC73-1F63-4347-896A-C97A45F11E9C}) (Version: 3.0.07.44 - O2Micro International LTD.) Hidden
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{D535FC73-1F63-4347-896A-C97A45F11E9C}) (Version: 3.0.07.44 - O2Micro International LTD.)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20442 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 426.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 426.32 - NVIDIA Corporation) Hidden
Papers, Please (HKLM-x32\...\Papers, Please_is1) (Version: - )
PC-CCID (HKLM\...\{3DCDFCDB-4D96-4CF0-9BB3-C91DAE9073F3}) (Version: 2.0.0 - Gemalto) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{A7039CC9-4669-4799-92B1-C5CE346DBE3D}) (Version: 8.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{DA78A9DC-3599-4D81-A960-B679687A6C14}) (Version: 8.3 - Apple Inc.)
Prusa3D verze 2.3.0 (HKLM\...\Prusa3D_is1) (Version: 2.3.0 - Prusa Research s.r.o.)
PrusaSlicer verze 2.2.0 (HKLM\...\PrusaSlicer_is1) (Version: 2.2.0 - Prusa Research s.r.o.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
SketchUp 2018 (HKLM\...\{73B6B84A-3414-4B1D-8C65-97E6CA9CDF36}) (Version: 18.0.16975 - Trimble, Inc.)
SPBA 5.9 (HKLM\...\{2EECD5EF-5095-467C-B80C-4AB3096EFD60}) (Version: 5.9.4.6901 - UPEK Inc.) Hidden
Spintires: MudRunner (HKLM\...\DARKSiDERS - Spintires: MudRunner) (Version: - DARKSiDERS)
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.11.0067 - ST Microelectronics)
Subnautica (HKLM-x32\...\Subnautica_is1) (Version: - )
Telegram Desktop version 2.0.1 (HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.0.1 - Telegram FZ-LLC)
Ultimaker Cura 4.5 (HKLM-x32\...\Ultimaker Cura 4.5) (Version: 4.5.0 - Ultimaker B.V.)
Upek Touchchip Fingerprint Reader (HKLM\...\{4E60E212-3177-4B16-BCB3-616CCC52357D}) (Version: 1.2.004 - Dell Inc.) Hidden
VC_CRT_x64 (HKLM\...\{54F2237F-018C-483B-8884-9FC0D88840C3}) (Version: 1.02.0000 - Intel Corporation) Hidden
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WIDCOMM Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.4000 - Broadcom Corporation)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
XnView 2.49.1 (HKLM-x32\...\XnView_is1) (Version: 2.49.1 - Gougelet Pierre-e)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1383765227-148611890-2853001164-1000_Classes\CLSID\{C4F0910E-E0B4-4E68-8086-452730C7A26A}\InprocServer32 -> C:\Users\Pracant\AppData\Local\Autodesk\webdeploy\production\5d5b542f5ddb82dac8b734aa2cb375dc33c4efb2\NPreview10.dll (Autodesk, Inc. -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => -> No File
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-18] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => -> No File
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2019-11-13] (NVIDIA Corporation -> )
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2018-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-18] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => -> No File
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] ( ) [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\system32\xvidvfw.dll [310784 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\system32\ff_vfw.dll [126976 2015-10-24] () [File not signed]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] ( ) [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Loaded Modules (Whitelisted) =============
2019-12-06 20:37 - 2019-12-01 20:25 - 000221696 _____ (Bullzip) [File not signed] C:\Program Files\Common Files\Bullzip\PDF Printer\Ports\BULLZIP\bzpdf.dll
2019-09-18 00:49 - 2013-02-22 19:38 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2019-03-27 23:48 - 2019-03-27 23:48 - 000115200 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2020-02-28 10:41 - 2019-08-25 15:55 - 000776704 _____ (Tabibito Technology) [File not signed] C:\Program Files (x86)\K-Lite Codec Pack\Icaros\64-bit\IcarosPropertyHandler.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`29hfm [0]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\dell.com -> dell.com
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
There are 7941 more sites.
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\123simsen.com -> www.123simsen.com
There are 7941 more sites.
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2020-04-16 22:25 - 000454696 ____N C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
There are 15611 more lines.
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1383765227-148611890-2853001164-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Pracant\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Avast Cleanup Premium.lnk => C:\Windows\pss\Avast Cleanup Premium.lnk.CommonStartup
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Logitech Download Assistant => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: uTorrent => "C:\Users\Pracant\AppData\Roaming\uTorrent\utorrent.exe"
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{48DA3CAB-208F-43DF-8CB5-3B258A1B2E65}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{19E142FA-5B86-42C4-BD60-04008F5643ED}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{9A2B8DCC-43DE-4762-8B71-DE7178497604}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
==================== Restore Points =========================
20-04-2020 11:17:00 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
Name: Dell Wireless 380 Bluetooth 4.0 Module
Description: Dell Wireless 380 Bluetooth 4.0 Module
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Broadcom
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.
Kontext: aplikace Windows
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Služba Windows Search nenačetla informace o úložišti vlastností.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800) (0xc0041800)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Vyhledávací služby zjistila, že index {id=4700} obsahuje poškozené datové soubory. Služba se pokusí tyto potíže automaticky odstranit vytvořením nového indexu.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
System errors:
=============
Error: (04/20/2020 02:04:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (04/20/2020 02:04:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Search bylo dosaženo časového limitu (60000 ms).
Error: (04/20/2020 02:04:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (04/20/2020 02:04:06 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Search bylo dosaženo časového limitu (60000 ms).
Error: (04/20/2020 02:04:06 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Služba DCOM zjistila chybu %%1053 = Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas. při pokusu o spuštění služby WSearch s argumenty za účelem spuštění serveru:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (04/20/2020 02:04:04 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (04/20/2020 02:04:04 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Windows Search ukončena s chybou %%-1073473535, specifickou pro službu.
Error: (04/20/2020 02:03:05 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Služba NTRU TSS v1.2.1.37 TCS závisí na následující službě: TBS. Tato služba pravděpodobně není nainstalována.
Windows Defender:
===================================
Date: 2020-04-16 22:23:48.677
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{1A71CAE0-AA75-41DC-86FC-C2B3E7C02BC6}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Úplné prohledávání
Uživatel:Pracant-PC\Pracant
Date: 2020-04-16 22:21:08.497
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16900.4
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2019-09-18 02:35:48.033
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16300.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:Pracant-PC\Pracant
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2019-09-18 02:08:20.783
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16300.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
==================== Memory info ===========================
BIOS: Dell Inc. A19 11/30/2018
Motherboard: Dell Inc. 082H3V
Processor: Intel(R) Core(TM) i7-3740QM CPU @ 2.70GHz
Percentage of memory in use: 32%
Total physical RAM: 16322.96 MB
Available physical RAM: 10971.72 MB
Total Virtual: 32644.06 MB
Available Virtual: 25587.37 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.79 GB) (Free:17.82 GB) NTFS
\\?\Volume{a103844d-d99a-11e9-89a4-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 80E934CD)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Ran by Pracant (20-04-2020 14:19:15)
Running from C:\Users\Pracant\Downloads
Windows 7 Ultimate Service Pack 1 (X64) (2019-09-17 22:32:56)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1383765227-148611890-2853001164-500 - Administrator - Disabled)
Guest (S-1-5-21-1383765227-148611890-2853001164-501 - Limited - Disabled)
Pracant (S-1-5-21-1383765227-148611890-2853001164-1000 - Administrator - Enabled) => C:\Users\Pracant
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Antivirus (Enabled - Up to date) {8EAC8D5C-B3AA-95AA-3DF1-2845CDD09CBE}
AS: Avira Antivirus (Enabled - Up to date) {35CD6CB8-9590-9A24-0741-1337B657D603}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (HKLM-x32\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.006.20042 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.293 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.303 - Adobe)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{b6b417a3-1f40-4618-aadd-49628bda7836}) (Version: 16.1.1 - Intel Corporation)
Apple Mobile Device Support (HKLM\...\{7D606B87-0AEB-4C27-ABCE-1138EE09777B}) (Version: 13.0.0.41 - Apple Inc.)
Autodesk Fusion 360 (HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.7830 - Autodesk, Inc.)
Avira (HKLM-x32\...\{CAB70370-888E-4D62-B5D5-DA7982585C46}) (Version: 1.2.145.25926 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{e636e084-c7ab-4246-8ad2-aa1bb1cbedfd}) (Version: 1.2.145.25926 - Avira Operations GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.2004.1828 - Avira Operations GmbH & Co. KG)
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.32.2.34115 - Avira Operations GmbH & Co. KG)
Avira Security (HKLM-x32\...\Avira Security_is1) (Version: 1.0.26.9000 - Avira Operations GmbH & Co. KG)
Avira Software Updater (HKLM-x32\...\{30947035-9248-4304-96CE-CB6B1D38CFD5}) (Version: 2.0.6.30594 - Avira Operations GmbH & Co. KG)
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.4.1.10871 - Avira Operations GmbH & Co. KG)
Balíček ovladače systému Windows - Adafruit Industries LLC (usbser) Ports (02/25/2016 6.2.2600.0) (HKLM\...\1245A5961AC9D2C18ADF9EEC931D77E059B7F74E) (Version: 02/25/2016 6.2.2600.0 - Adafruit Industries LLC)
Balíček ovladače systému Windows - Arduino LLC (www.arduino.cc) Arduino USB Driver (11/24/2015 1.2.3.0) (HKLM\...\8B585560B248755A6C5A24D5C0F50FA998310883) (Version: 11/24/2015 1.2.3.0 - Arduino LLC (www.arduino.cc))
Balíček ovladače systému Windows - Arduino LLC (www.arduino.cc) Genuino USB Driver (01/07/2016 1.0.3.0) (HKLM\...\EC414D98E2986DCA1628FAED2163CD1C9A4ED7EC) (Version: 01/07/2016 1.0.3.0 - Arduino LLC (www.arduino.cc))
Balíček ovladače systému Windows - Arduino Srl (www.arduino.org) Arduino USB Driver (03/19/2015 1.1.1.0) (HKLM\...\69E507459B453D69A453EFC9E461FAE1E073408A) (Version: 03/19/2015 1.1.1.0 - Arduino Srl (www.arduino.org))
Balíček ovladače systému Windows - Dell Inc. PBADRV System (09/11/2009 1.0.1.6) (HKLM\...\9512AA21B791B05A54E27065C45BBC417AB282DF) (Version: 09/11/2009 1.0.1.6 - Dell Inc.)
Balíček ovladače systému Windows - libusb-win32 (libusb0) libusb-win32 devices (04/21/2015 1.0.0.0) (HKLM\...\28E91B69CA377EB48D6E1B92C37F897036E8A818) (Version: 04/21/2015 1.0.0.0 - libusb-win32)
Balíček ovladače systému Windows - Linino (usbser) Ports (01/13/2014 1.0.0.0) (HKLM\...\A2C084AD4515675961A87E71B10E80E4FDCF7FAA) (Version: 01/13/2014 1.0.0.0 - Linino)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa CW1 (02/13/2013 1.0.0.0) (HKLM\...\B10CCB939D59F72AA817B257D84328FC4A1DC752) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa i3 MK2 (02/13/2013 1.0.0.0) (HKLM\...\E6CFEF5357DD0E2F987E98779FD6603959DA391B) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Original Prusa i3 MK3 Multi Material 2.0 upgrade (02/13/2013 1.0.0.0) (HKLM\...\FA562E43945E7D9CAC76A811E49088FF2255A11A) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - Prusa Research s.r.o. Prusa i3 Plus MK3 3D printer (02/13/2013 1.0.0.0) (HKLM\...\890B56493F7CACBCA0E70EA8EBFD9A18BC780C34) (Version: 02/13/2013 1.0.0.0 - Prusa Research s.r.o.)
Balíček ovladače systému Windows - UltiMachine 3D Printer (RAMBo) (02/13/2013 1.0.0.0) (HKLM\...\D77EC126405DC217C7BF7DA6669B51E297D5CF23) (Version: 02/13/2013 1.0.0.0 - UltiMachine)
BioAPI Framework (HKLM\...\{9DAED4FC-2B0E-4F3F-8141-F2ABF02CCFCB}) (Version: 1.0.2 - Dell Inc.) Hidden
Blender (HKLM\...\{F343C69A-4ABA-434C-9C73-12A519D269CD}) (Version: 2.80.0 - Blender Foundation)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother Printer Setting Tool (HKLM-x32\...\{8DA2E2DC-C572-4F87-89FC-833DB588CC7B}) (Version: 1.6.0075 - Brother Industries, Ltd.)
Brother P-touch Editor 5.2 (HKLM-x32\...\{456127E4-D660-4680-8C96-609AD6C485E2}) (Version: 5.2.0320 - Brother Industries, Ltd.)
Brother P-touch Update Software (HKLM-x32\...\{AD5D9DC4-7389-422C-B1DF-1857457F797F}) (Version: 1.0.0150 - Brother Industries, Ltd.)
Bullzip PDF Printer 11.11.0.2804 (HKLM\...\Bullzip PDF Printer_is1) (Version: 11.11.0.2804 - Bullzip)
calibre (HKLM-x32\...\{FD6B4DA3-5E7B-499E-841D-B797BED0CC47}) (Version: 3.48.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
Core Temp 1.15.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.15.1 - ALCPU)
Dell Custom Help (HKLM\...\{BE1CF6CA-3182-45D8-9535-A18055B73607}) (Version: 16.01.1000.0235 - Intel Corporation) Hidden
Dell Data Protection | Access (HKLM\...\{ABBA2EA4-740E-4052-902B-9CA70B081E3F}) (Version: 2.2.00003.009 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{7B2D0B6F-F02D-4363-ACDF-00DE6247ACBC}) (Version: 3.5.2015.0 - Dell Products, LP)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 10.2207.101.121 - ALPS ELECTRIC CO., LTD.)
foobar2000 v1.4.8 (HKLM-x32\...\foobar2000) (Version: 1.4.8 - Peter Pawlowski)
Garmin BaseCamp (HKLM-x32\...\{52212c77-b309-478b-9073-27ea7ca4373b}) (Version: 4.7.1.0 - Garmin Ltd or its subsidiaries)
Garmin BaseCamp (HKLM-x32\...\{BF450036-EE1E-4B8A-B514-787A0D6D4EAE}) (Version: 4.7.1.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Gemalto (HKLM\...\{91CE5F03-3A2A-4268-935A-04944F058AE9}) (Version: 01.64.01.0010 - Wave Systems Corp) Hidden
GIMP 2.10.12 (HKLM\...\GIMP-2_is1) (Version: 2.10.12 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.113 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
iMazing 2.10.4.0 (HKLM\...\iMazing_is1) (Version: 2.10.4.0 - DigiDNA)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel(R) Network Connections 18.1.59.00 (HKLM\...\PROSetDX) (Version: 18.1.59.00 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.5059 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{4e75a24b-6cc4-4a46-accf-525f8a08c533}) (Version: 10.1.1.18 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{E109DA49-B4C0-4576-AC6C-7053C5782A61}) (Version: 12.10.2.3 - Apple Inc.)
Java 8 Update 221 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180221F0}) (Version: 8.0.2210.11 - Oracle Corporation)
K-Lite Mega Codec Pack 15.4.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.4.0 - KLCP)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
MatterControl version 2.20.4.10449 (HKLM-x32\...\{EE5A0E0E-8608-4272-94D6-C2CDCD9307F2}_is1) (Version: 2.20.4.10449 - MatterHackers, Inc.)
MeshLab 2020.03 (HKLM-x32\...\MeshLab) (Version: 2020.03 - Paolo Cignoni - VCG - ISTI - CNR)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.12527.20442 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft Project Professional 2016 - cs-cz (HKLM\...\ProjectProRetail - cs-cz) (Version: 16.0.12527.20442 - Microsoft Corporation)
Microsoft Visio Professional 2016 - cs-cz (HKLM\...\VisioProRetail - cs-cz) (Version: 16.0.12527.20442 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.25.28508 (HKLM-x32\...\{65e650ff-30be-469d-b63a-418d71ea1765}) (Version: 14.25.28508.3 - Microsoft Corporation)
Movie Maker 6.0 for Windows 7 (64-bit) (HKLM\...\{A7395F20-2B22-4CB8-8510-B452C0F47E02}) (Version: 6.0.0 - Microsoft Corporation)
Mozilla Thunderbird 68.7.0 (x64 cs) (HKLM\...\Mozilla Thunderbird 68.7.0 (x64 cs)) (Version: 68.7.0 - Mozilla)
NTRU TCG Software Stack (HKLM\...\{E9A97832-83B6-42B6-BAC6-492E344C2561}) (Version: 2.1.37 - Security Innovation, Inc.) Hidden
NVIDIA nView 149.77 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 149.77 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 426.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 426.32 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 426.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 426.32 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA WMI 2.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.33.0 - NVIDIA Corporation)
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\{D535FC73-1F63-4347-896A-C97A45F11E9C}) (Version: 3.0.07.44 - O2Micro International LTD.) Hidden
O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{D535FC73-1F63-4347-896A-C97A45F11E9C}) (Version: 3.0.07.44 - O2Micro International LTD.)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20442 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12527.20278 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 426.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 426.32 - NVIDIA Corporation) Hidden
Papers, Please (HKLM-x32\...\Papers, Please_is1) (Version: - )
PC-CCID (HKLM\...\{3DCDFCDB-4D96-4CF0-9BB3-C91DAE9073F3}) (Version: 2.0.0 - Gemalto) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{A7039CC9-4669-4799-92B1-C5CE346DBE3D}) (Version: 8.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{DA78A9DC-3599-4D81-A960-B679687A6C14}) (Version: 8.3 - Apple Inc.)
Prusa3D verze 2.3.0 (HKLM\...\Prusa3D_is1) (Version: 2.3.0 - Prusa Research s.r.o.)
PrusaSlicer verze 2.2.0 (HKLM\...\PrusaSlicer_is1) (Version: 2.2.0 - Prusa Research s.r.o.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
SketchUp 2018 (HKLM\...\{73B6B84A-3414-4B1D-8C65-97E6CA9CDF36}) (Version: 18.0.16975 - Trimble, Inc.)
SPBA 5.9 (HKLM\...\{2EECD5EF-5095-467C-B80C-4AB3096EFD60}) (Version: 5.9.4.6901 - UPEK Inc.) Hidden
Spintires: MudRunner (HKLM\...\DARKSiDERS - Spintires: MudRunner) (Version: - DARKSiDERS)
ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.11.0067 - ST Microelectronics)
Subnautica (HKLM-x32\...\Subnautica_is1) (Version: - )
Telegram Desktop version 2.0.1 (HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.0.1 - Telegram FZ-LLC)
Ultimaker Cura 4.5 (HKLM-x32\...\Ultimaker Cura 4.5) (Version: 4.5.0 - Ultimaker B.V.)
Upek Touchchip Fingerprint Reader (HKLM\...\{4E60E212-3177-4B16-BCB3-616CCC52357D}) (Version: 1.2.004 - Dell Inc.) Hidden
VC_CRT_x64 (HKLM\...\{54F2237F-018C-483B-8884-9FC0D88840C3}) (Version: 1.02.0000 - Intel Corporation) Hidden
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WIDCOMM Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.4000 - Broadcom Corporation)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
XnView 2.49.1 (HKLM-x32\...\XnView_is1) (Version: 2.49.1 - Gougelet Pierre-e)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1383765227-148611890-2853001164-1000_Classes\CLSID\{C4F0910E-E0B4-4E68-8086-452730C7A26A}\InprocServer32 -> C:\Users\Pracant\AppData\Local\Autodesk\webdeploy\production\5d5b542f5ddb82dac8b734aa2cb375dc33c4efb2\NPreview10.dll (Autodesk, Inc. -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => -> No File
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-18] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => -> No File
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2019-11-13] (NVIDIA Corporation -> )
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2018-09-24] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-11-10] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-18] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-04-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => -> No File
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] ( ) [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\system32\xvidvfw.dll [310784 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\system32\ff_vfw.dll [126976 2015-10-24] () [File not signed]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] ( ) [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [File not signed]
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Loaded Modules (Whitelisted) =============
2019-12-06 20:37 - 2019-12-01 20:25 - 000221696 _____ (Bullzip) [File not signed] C:\Program Files\Common Files\Bullzip\PDF Printer\Ports\BULLZIP\bzpdf.dll
2019-09-18 00:49 - 2013-02-22 19:38 - 000073728 _____ (Intel Corporation) [File not signed] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2019-03-27 23:48 - 2019-03-27 23:48 - 000115200 _____ (Microsoft Corporation) [File not signed] C:\Windows\Microsoft.Net\assembly\GAC_32\System.EnterpriseServices\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll
2020-02-28 10:41 - 2019-08-25 15:55 - 000776704 _____ (Tabibito Technology) [File not signed] C:\Program Files (x86)\K-Lite Codec Pack\Icaros\64-bit\IcarosPropertyHandler.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`29hfm [0]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\.DEFAULT\...\dell.com -> dell.com
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com
There are 7941 more sites.
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-1383765227-148611890-2853001164-1000\...\123simsen.com -> www.123simsen.com
There are 7941 more sites.
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2020-04-16 22:25 - 000454696 ____N C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
There are 15611 more lines.
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1383765227-148611890-2853001164-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Pracant\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Avast Cleanup Premium.lnk => C:\Windows\pss\Avast Cleanup Premium.lnk.CommonStartup
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Logitech Download Assistant => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: uTorrent => "C:\Users\Pracant\AppData\Roaming\uTorrent\utorrent.exe"
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{48DA3CAB-208F-43DF-8CB5-3B258A1B2E65}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{19E142FA-5B86-42C4-BD60-04008F5643ED}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{9A2B8DCC-43DE-4762-8B71-DE7178497604}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
==================== Restore Points =========================
20-04-2020 11:17:00 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices ============
Name: Dell Wireless 380 Bluetooth 4.0 Module
Description: Dell Wireless 380 Bluetooth 4.0 Module
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Broadcom
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Index nebyl inicializován.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Aplikace nebyla inicializována.
Kontext: aplikace Windows
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Objekt indexování nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.TripoliIndexer> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Prvek nebyl nalezen. (HRESULT : 0x80070490) (0x80070490)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Modul plug-in v <Search.JetPropStore> nebyl inicializován.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 9002) (User: )
Description: Služba Windows Search nenačetla informace o úložišti vlastností.
Kontext: aplikace Windows, katalog SystemIndex
Podrobnosti:
Databáze indexu obsahu je poškozená. (HRESULT : 0xc0041800) (0xc0041800)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
Error: (04/20/2020 02:04:04 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Vyhledávací služby zjistila, že index {id=4700} obsahuje poškozené datové soubory. Služba se pokusí tyto potíže automaticky odstranit vytvořením nového indexu.
Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)
System errors:
=============
Error: (04/20/2020 02:04:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (04/20/2020 02:04:34 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Search bylo dosaženo časového limitu (60000 ms).
Error: (04/20/2020 02:04:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Search neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (04/20/2020 02:04:06 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Windows Search bylo dosaženo časového limitu (60000 ms).
Error: (04/20/2020 02:04:06 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: Služba DCOM zjistila chybu %%1053 = Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas. při pokusu o spuštění služby WSearch s argumenty za účelem spuštění serveru:
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (04/20/2020 02:04:04 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.
Error: (04/20/2020 02:04:04 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Služba Windows Search ukončena s chybou %%-1073473535, specifickou pro službu.
Error: (04/20/2020 02:03:05 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Služba NTRU TSS v1.2.1.37 TCS závisí na následující službě: TBS. Tato služba pravděpodobně není nainstalována.
Windows Defender:
===================================
Date: 2020-04-16 22:23:48.677
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{1A71CAE0-AA75-41DC-86FC-C2B3E7C02BC6}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Úplné prohledávání
Uživatel:Pracant-PC\Pracant
Date: 2020-04-16 22:21:08.497
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16900.4
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2019-09-18 02:35:48.033
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16300.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:Pracant-PC\Pracant
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
Date: 2019-09-18 02:08:20.783
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci modulu
Nová verze modulu:1.1.16300.1
Předchozí verze modulu:1.1.6402.0
Zdroj aktualizace:Uživatel
Uživatel:NT AUTHORITY\SYSTEM
Kód chyby:0x8050800c
Popis chyby:Došlo k neočekávaným potížím. Nainstalujte všechny dostupné aktualizace a potom opakujte spuštění programu. Informace o instalaci aktualizací naleznete v nápovědě a podpoře.
==================== Memory info ===========================
BIOS: Dell Inc. A19 11/30/2018
Motherboard: Dell Inc. 082H3V
Processor: Intel(R) Core(TM) i7-3740QM CPU @ 2.70GHz
Percentage of memory in use: 32%
Total physical RAM: 16322.96 MB
Available physical RAM: 10971.72 MB
Total Virtual: 32644.06 MB
Available Virtual: 25587.37 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.79 GB) (Free:17.82 GB) NTFS
\\?\Volume{a103844d-d99a-11e9-89a4-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 80E934CD)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Re: Větráky běží i při malé zátěži NTB
citat:
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
•Ulozte vytvoreny TXT jako fixlist.txt
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe
•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txt
•Spustte poznamkovy blok (Start-spustit-notepad)
•Zkopirujte skript >>
Kód: Vybrat vše
Start
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Avast Cleanup Premium.lnk]
C:\PROGRA~2\AVAST Software\Avast Cleanup\TuneupUI.exe []
R3 ALSysIO;ALSysIO; \??\C:\Users\Pracant\AppData\Local\Temp\ALSysIO64.sys []
S4 nvkflt;nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys []
S4 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys []
S3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys []
BootExecute: autocheck autochk * sdnclean64.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {97757E53-E815-4EE5-9EBA-BA912A515ABE} - System32\Tasks\AutoPico Daily Restart => C:\Users\Pracant\Desktop\ALL [Argument = MS OFFICE WINDOWS PERNAMEN ACTIVATOR!\AutoPico.exe /silent]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`29hfm [0]
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
Hosts:
EmptyTemp:
Reboot:
End
•Presunte vytvoreny fixlist vedle FRST
Spustte znovu FRST.exe•Kliknete na Fix
•Probehne oprava a vytvori log Fixlog.txt
Restart PC a dejte mi sem fixlog.txtFRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Větráky běží i při malé zátěži NTB
Fix result of Farbar Recovery Scan Tool (x64) Version: 19-04-2020
Ran by Pracant (20-04-2020 14:39:49) Run:1
Running from C:\Users\Pracant\Downloads
Loaded Profiles: Pracant (Available Profiles: Pracant)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Avast Cleanup Premium.lnk]
C:\PROGRA~2\AVAST Software\Avast Cleanup\TuneupUI.exe []
R3 ALSysIO;ALSysIO; \??\C:\Users\Pracant\AppData\Local\Temp\ALSysIO64.sys []
S4 nvkflt;nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys []
S4 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys []
S3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys []
BootExecute: autocheck autochk * sdnclean64.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {97757E53-E815-4EE5-9EBA-BA912A515ABE} - System32\Tasks\AutoPico Daily Restart => C:\Users\Pracant\Desktop\ALL [Argument = MS OFFICE WINDOWS PERNAMEN ACTIVATOR!\AutoPico.exe /silent]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`29hfm [0]
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
Hosts:
EmptyTemp:
Reboot:
End
*****************
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray] => Error: No automatic fix found for this entry.
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe []" => not found
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Avast Cleanup Premium.lnk] => Error: No automatic fix found for this entry.
"C:\PROGRA~2\AVAST Software\Avast Cleanup\TuneupUI.exe []" => not found
ALSysIO => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\ALSysIO => removed successfully
ALSysIO => service removed successfully
HKLM\System\CurrentControlSet\Services\nvkflt => removed successfully
nvkflt => service removed successfully
HKLM\System\CurrentControlSet\Services\nvpciflt => removed successfully
nvpciflt => service removed successfully
HKLM\System\CurrentControlSet\Services\STHDA => removed successfully
STHDA => service removed successfully
HKLM\System\CurrentControlSet\Control\Session Manager\\"BootExecute"="autocheck autochk *" => value restored successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{97757E53-E815-4EE5-9EBA-BA912A515ABE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{97757E53-E815-4EE5-9EBA-BA912A515ABE}" => removed successfully
C:\Windows\System32\Tasks\AutoPico Daily Restart => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoPico Daily Restart" => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
C:\ProgramData\Reprise => ":wupeogjxlctlfudivq`qsp`29hfm" ADS removed successfully
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SDTray => removed successfully
Could not move "C:\Windows\System32\Drivers\etc\hosts" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13515085 B
Java, Flash, Steam htmlcache => 1172 B
Windows/system/drivers => 2797330 B
Edge => 0 B
Chrome => 50617272 B
Firefox => 19533395 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 16674 B
systemprofile32 => 83030 B
LocalService => 83030 B
NetworkService => 83030 B
Pracant => 3554306 B
UpdatusUser => 3554306 B
RecycleBin => 0 B
EmptyTemp: => 97.5 MB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 20-04-2020 14:41:46)
C:\Windows\System32\Drivers\etc\hosts => Could not move
Could not restore Hosts.
==== End of Fixlog 14:41:46 ====
Ran by Pracant (20-04-2020 14:39:49) Run:1
Running from C:\Users\Pracant\Downloads
Loaded Profiles: Pracant (Available Profiles: Pracant)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray]
C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Avast Cleanup Premium.lnk]
C:\PROGRA~2\AVAST Software\Avast Cleanup\TuneupUI.exe []
R3 ALSysIO;ALSysIO; \??\C:\Users\Pracant\AppData\Local\Temp\ALSysIO64.sys []
S4 nvkflt;nvkflt; C:\Windows\system32\DRIVERS\nvkflt.sys []
S4 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys []
S3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys []
BootExecute: autocheck autochk * sdnclean64.exe
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {97757E53-E815-4EE5-9EBA-BA912A515ABE} - System32\Tasks\AutoPico Daily Restart => C:\Users\Pracant\Desktop\ALL [Argument = MS OFFICE WINDOWS PERNAMEN ACTIVATOR!\AutoPico.exe /silent]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`29hfm [0]
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
Hosts:
EmptyTemp:
Reboot:
End
*****************
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray] => Error: No automatic fix found for this entry.
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe []" => not found
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Avast Cleanup Premium.lnk] => Error: No automatic fix found for this entry.
"C:\PROGRA~2\AVAST Software\Avast Cleanup\TuneupUI.exe []" => not found
ALSysIO => Service stopped successfully.
HKLM\System\CurrentControlSet\Services\ALSysIO => removed successfully
ALSysIO => service removed successfully
HKLM\System\CurrentControlSet\Services\nvkflt => removed successfully
nvkflt => service removed successfully
HKLM\System\CurrentControlSet\Services\nvpciflt => removed successfully
nvpciflt => service removed successfully
HKLM\System\CurrentControlSet\Services\STHDA => removed successfully
STHDA => service removed successfully
HKLM\System\CurrentControlSet\Control\Session Manager\\"BootExecute"="autocheck autochk *" => value restored successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{97757E53-E815-4EE5-9EBA-BA912A515ABE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{97757E53-E815-4EE5-9EBA-BA912A515ABE}" => removed successfully
C:\Windows\System32\Tasks\AutoPico Daily Restart => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoPico Daily Restart" => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
C:\ProgramData\Reprise => ":wupeogjxlctlfudivq`qsp`29hfm" ADS removed successfully
HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SDTray => removed successfully
Could not move "C:\Windows\System32\Drivers\etc\hosts" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13515085 B
Java, Flash, Steam htmlcache => 1172 B
Windows/system/drivers => 2797330 B
Edge => 0 B
Chrome => 50617272 B
Firefox => 19533395 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 16674 B
systemprofile32 => 83030 B
LocalService => 83030 B
NetworkService => 83030 B
Pracant => 3554306 B
UpdatusUser => 3554306 B
RecycleBin => 0 B
EmptyTemp: => 97.5 MB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 20-04-2020 14:41:46)
C:\Windows\System32\Drivers\etc\hosts => Could not move
Could not restore Hosts.
==== End of Fixlog 14:41:46 ====
Re: Větráky běží i při malé zátěži NTB
restartuj PC a odsleduj, ci je to lepsie ?
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Větráky běží i při malé zátěži NTB
Stále to samé. Nesmyslně se větráky zapínají na plno.
Smazal jsem věcí s určitou pochypností a věci, co nepoužívám:
Komplet Office
MS Drive
SketchUp
nějaký hry
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pracant at 2020-04-20 15:00:46
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 31 GB (13%) free of 238 GB
Total RAM: 16323 MB (79% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:00:52, on 20.4.2020
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19541)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\trend micro\Pracant.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" 60
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKLM\..\Run: [Avira System Speedup User Starter] "C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Pracant\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Pracant\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Avast Cleanup Premium.lnk = C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Alps HID Monitor Service (ApHidMonitorService) - Alps Electric Co., Ltd. - C:\Program Files\DellTPad\HidMonitorSvc.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Avira Optimizer Host (AviraOptimizerHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
O23 - Service: Avira Phantom VPN (AviraPhantomVPN) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
O23 - Service: Avira Security (AviraSecurity) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
O23 - Service: Avira Updater Service (AviraUpdaterService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.113\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA WMI Provider (NVWMI) - Unknown owner - C:\Windows\system32\nvwmi64.exe (file missing)
O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\o2flash.exe (file missing)
O23 - Service: O2SDIOAssist - Unknown owner - C:\Windows\SysWOW64\srvany.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: NTRU TSS v1.2.1.37 TCS (tcsd_win32.exe) - Unknown owner - C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 10718 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
winlogon.exe
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 10881424
\??\C:\Windows\system32\conhost.exe "-1967514796180902317637667201-912261241-909653386-1067243715-966356910-227175891
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\SPBA\upeksvr.exe"
taskeng.exe {09554A0D-AA5E-4FF6-8F84-CED64C26F5BF}
"taskhost.exe"
taskeng.exe {0AB29597-0FA6-45FF-B64B-FE5A3108C4B9}
taskeng.exe {BA0D3232-A9CF-4C5F-90FD-4902CFDEAD49}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Core Temp\Core Temp.exe"
"C:\Program Files\DellTPad\Apoint.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe"
"C:\Windows\system32\nvwmi64.exe"
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
C:\Windows\system32\nvwmi64.exe -spawnprovider
"C:\Program Files\DellTPad\HidMonitorSvc.exe"
"C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe"
"C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe"
"C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe"
"C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Maintenance.exe" -heartbeat delayed
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_00000a98
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\sppsvc.exe
"C:\Program Files\DellTPad\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files\DellTPad\HidFind.exe"
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "-21447037318194328901318707943-1443536519-104184140-1979022451583182509-892391064
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=81.0.4044.113 --initial-client-data=0xc0,0xc4,0xc8,0x94,0xcc,0x7fee975bd28,0x7fee975bd38,0x7fee975bd48
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=5272 --on-initialized-event-handle=380 --parent-handle=384 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1100 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1384 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1896 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2416 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2652 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3220 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4264 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --instant-process --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2888 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2892 /prefetch:1
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\o2flash.exe
C:\Windows\SysWOW64\srvany.exe
C:\Windows\sysWOW64\SDIOAssist.exe
"C:\Users\Pracant\Downloads\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-09-18 581104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-18 244208]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2018-10-24 776224]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Pracant\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"=C:\Windows\system32\cmd.exe [2010-11-21 345088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2019-10-26 302904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Download Assistant]
C:\Windows\System32\LogiLDA.dll [2016-10-14 1841496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2019-07-04 644552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-02-22 292088]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2016-05-25 136992]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2020-04-02 239520]
"Avira System Speedup User Starter"=C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [2020-01-30 331368]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Avast Cleanup Premium.lnk - C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\spba]
C:\Program Files\Common Files\SPBA\homefus2.dll [2010-09-15 2305872]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
"SlowLinkDetectEnabled"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=153
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.X264"=x264vfw64.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-04-20 14:50:46 ----SHD---- C:\Config.Msi
2020-04-20 10:30:12 ----D---- C:\FRST
2020-04-20 10:13:58 ----D---- C:\rsit
2020-04-20 10:13:58 ----D---- C:\Program Files\trend micro
2020-04-18 21:53:02 ----A---- C:\Windows\system32\nvwmi64.exe
2020-04-18 21:52:40 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvsvcr.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvsvc64.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvshext.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvmctray.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvcpl.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nv3dappshextr.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nv3dappshext.dll
2020-04-18 21:52:31 ----A---- C:\Windows\NvContainerRecovery.bat
2020-04-18 21:52:24 ----D---- C:\Windows\system32\drivers\NVIDIA Corporation
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvopencl32.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvofapi.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkaninfo.exe
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkan-1.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\OpenCL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvwgf2umx.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvrtum64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvptxJitCompiler.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvoptix.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvopencl64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvoglv64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvofapi64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvIFR64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvhdap64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvFBC64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvdispgenco6442632.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvdispco6442632.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvd3dumx.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvcuvid.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvcuda.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2020-04-18 21:49:01 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2020-04-18 21:49:00 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvcompiler.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvcbl64.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvapi64.dll
2020-04-18 21:30:43 ----A---- C:\Windows\system32\drivers\mbae64.sys
2020-04-18 21:30:41 ----D---- C:\ProgramData\Malwarebytes
2020-04-18 21:30:05 ----D---- C:\Program Files\Malwarebytes
2020-04-18 21:06:02 ----D---- C:\ProgramData\RogueKiller
2020-04-18 20:48:30 ----D---- C:\AdwCleaner
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avusbflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avnetflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avipbb.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avdevprot.sys
2020-04-18 20:29:11 ----D---- C:\Program Files (x86)\Avira
2020-04-18 20:29:10 ----D---- C:\ProgramData\Avira
2020-04-18 20:23:14 ----D---- C:\Program Files (x86)\Google
2020-04-13 12:49:37 ----A---- C:\Windows\system32\FNTCACHE.DAT
2020-04-12 21:32:13 ----D---- C:\Windows\pss
2020-04-12 19:47:34 ----D---- C:\Program Files (x86)\MatterControl
2020-04-12 19:46:01 ----D---- C:\Users\Pracant\AppData\Roaming\cura
2020-04-12 19:43:12 ----D---- C:\Program Files\Ultimaker Cura 4.5
2020-04-12 13:34:55 ----D---- C:\Program Files\VCG
2020-04-11 08:09:32 ----D---- C:\Users\Pracant\AppData\Roaming\Trimble Connect for SketchUp
2020-04-11 08:08:01 ----D---- C:\Users\Pracant\AppData\Roaming\SketchUp
2020-04-11 08:06:53 ----AD---- C:\ProgramData\Reprise
2020-04-11 08:06:42 ----D---- C:\ProgramData\SketchUp
2020-04-10 20:04:56 ----D---- C:\Users\Pracant\AppData\Roaming\PrusaSlicer
2020-04-10 20:01:36 ----D---- C:\Program Files\Prusa3D
2020-04-09 19:04:53 ----D---- C:\Program Files\Mozilla Thunderbird
2020-04-08 09:44:19 ----D---- C:\Users\Pracant\AppData\Roaming\Fusion360
2020-04-08 09:43:46 ----D---- C:\Users\Pracant\AppData\Roaming\CadSoft
2020-04-08 09:43:28 ----D---- C:\ProgramData\Autodesk
2020-04-08 09:43:20 ----D---- C:\Users\Pracant\AppData\Roaming\Autodesk
2020-04-07 08:24:23 ----D---- C:\Program Files\Garmin GPS Plugin
2020-04-07 08:24:23 ----D---- C:\Program Files (x86)\Garmin GPS Plugin
2020-03-29 12:05:20 ----D---- C:\Program Files\Factorio_0.18.14
======List of files/folders modified in the last 1 month======
2020-04-20 15:00:52 ----D---- C:\Windows\Temp
2020-04-20 14:59:29 ----D---- C:\Program Files\Core Temp
2020-04-20 14:58:15 ----D---- C:\Users\Pracant\AppData\Roaming\Garmin
2020-04-20 14:57:42 ----D---- C:\Windows\system32\Tasks
2020-04-20 14:57:36 ----D---- C:\ProgramData\NVIDIA
2020-04-20 14:55:44 ----D---- C:\Windows\inf
2020-04-20 14:54:45 ----D---- C:\Windows
2020-04-20 14:54:38 ----RSD---- C:\Windows\Fonts
2020-04-20 14:52:20 ----RD---- C:\Program Files (x86)
2020-04-20 14:51:59 ----SHD---- C:\Windows\Installer
2020-04-20 14:51:56 ----RD---- C:\Program Files
2020-04-20 14:51:12 ----SHD---- C:\System Volume Information
2020-04-20 14:50:51 ----D---- C:\Windows\Microsoft.NET
2020-04-20 14:50:51 ----D---- C:\Program Files (x86)\Microsoft Office
2020-04-20 14:50:47 ----HD---- C:\ProgramData
2020-04-20 14:50:47 ----D---- C:\Program Files\Common Files\Microsoft Shared
2020-04-20 14:50:37 ----RSD---- C:\Windows\assembly
2020-04-20 14:50:25 ----D---- C:\Program Files (x86)\Microsoft.NET
2020-04-20 14:50:25 ----D---- C:\Program Files (x86)\Common Files
2020-04-20 14:45:48 ----D---- C:\Windows\System32
2020-04-20 14:45:48 ----A---- C:\Windows\system32\PerfStringBackup.INI
2020-04-20 14:30:58 ----D---- C:\Program Files (x86)\Subnautica
2020-04-20 14:08:02 ----D---- C:\Windows\system32\appmgmt
2020-04-20 14:01:33 ----D---- C:\Users\Pracant\AppData\Roaming\MPC-HC
2020-04-20 13:59:26 ----A---- C:\Windows\wininit.ini
2020-04-20 13:59:25 ----SD---- C:\ProgramData\Microsoft
2020-04-20 13:59:25 ----D---- C:\Windows\system32\drivers
2020-04-20 11:28:00 ----D---- C:\Windows\system32\config
2020-04-20 10:27:07 ----D---- C:\Users\Pracant\AppData\Roaming\uTorrent
2020-04-19 10:53:58 ----D---- C:\Users\Pracant\AppData\Roaming\foobar2000
2020-04-19 10:43:14 ----D---- C:\Users\Pracant\AppData\Roaming\Telegram Desktop
2020-04-19 09:08:47 ----D---- C:\ProgramData\NVIDIA Corporation
2020-04-18 21:53:05 ----D---- C:\Program Files\NVIDIA Corporation
2020-04-18 21:53:04 ----D---- C:\Windows\system32\DriverStore
2020-04-18 21:53:02 ----D---- C:\Windows\system32\wbem
2020-04-18 21:52:45 ----D---- C:\Windows\SysWOW64
2020-04-18 21:52:44 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2020-04-18 21:52:35 ----D---- C:\Windows\Help
2020-04-18 21:34:31 ----D---- C:\ProgramData\Dell
2020-04-18 20:29:09 ----D---- C:\ProgramData\Package Cache
2020-04-18 20:29:08 ----D---- C:\Windows\SoftwareDistribution
2020-04-16 22:25:48 ----D---- C:\Windows\system32\drivers\etc
2020-04-16 22:18:11 ----D---- C:\Program Files\Common Files
2020-04-13 12:49:39 ----D---- C:\Windows\debug
2020-04-12 21:31:07 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2020-04-12 21:29:13 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2020-04-12 21:28:28 ----D---- C:\Program Files (x86)\Dell
2020-04-11 18:45:28 ----D---- C:\Program Files (x86)\Intel
2020-04-11 18:44:48 ----D---- C:\Windows\system32\catroot
2020-04-11 18:31:59 ----D---- C:\Windows\winsxs
2020-04-10 20:03:21 ----D---- C:\Program Files\DIFX
2020-04-08 12:32:12 ----D---- C:\Users\Pracant\AppData\Roaming\XnView
2020-04-06 19:55:25 ----D---- C:\Program Files (x86)\Garmin
2020-04-02 01:49:56 ----N---- C:\Windows\system32\MpSigStub.exe
2020-03-25 17:02:40 ----D---- C:\Program Files\Factorio.v0.18.0
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avdevprot;avdevprot; C:\Windows\system32\DRIVERS\avdevprot.sys [2019-06-07 68152]
R0 avusbflt;avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [2019-03-20 35376]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2012-05-30 569152]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-02-22 20464]
R0 PBADRV;PBADRV; C:\Windows\system32\DRIVERS\PBADRV.sys [2019-09-18 32240]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2015-01-09 23216]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2020-04-06 177376]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2019-03-20 36072]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2014-12-21 40344]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-01-07 60416]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2020-03-27 223744]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2019-03-20 78600]
R3 ALSysIO;ALSysIO; \??\C:\Users\Pracant\AppData\Local\Temp\ALSysIO64.sys []
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x64; C:\Windows\system32\DRIVERS\Apfiltr.sys [2018-10-24 612072]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2013-02-20 495888]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-02-22 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-02-22 792560]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2016-03-28 181304]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETwsw00.sys [2013-05-29 11524096]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2019-11-10 237368]
R3 O2SDJRDR;O2SDJRDR; C:\Windows\system32\DRIVERS\o2sdjw7x64.sys [2012-04-26 85336]
R3 phantomtap;Phantom TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\phantomtap.sys [2020-03-18 35664]
R3 ST_ACCEL;STMicroelectronics Accelerometer Service; C:\Windows\system32\DRIVERS\ST_Accel.sys [2015-05-21 101040]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2013-07-24 36864]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2019-09-18 165688]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2019-07-30 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2019-07-30 556032]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2019-07-30 80384]
S3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2019-09-18 598808]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2019-09-18 184144]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2019-09-18 210984]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2019-09-18 39976]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2019-09-18 21544]
S3 DDDriver;DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [2019-05-21 41608]
S3 DellProf;DellProf; C:\Windows\system32\drivers\DellProf.sys [2019-05-21 41208]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2018-09-24 3808640]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2014-01-07 166400]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2014-01-07 109568]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 29696]
S3 trufos;trufos; C:\Windows\system32\drivers\trufos.sys [2020-01-02 439576]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2019-05-18 54784]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2020-04-01 485960]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2020-04-01 485960]
R2 ApHidMonitorService;Alps HID Monitor Service; C:\Program Files\DellTPad\HidMonitorSvc.exe [2018-10-24 104800]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2020-04-02 634896]
R2 AviraOptimizerHost;Avira Optimizer Host; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2020-01-20 2989888]
R2 AviraPhantomVPN;Avira Phantom VPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [2020-03-18 382992]
R2 AviraSecurity;Avira Security; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [2020-04-01 242448]
R2 AviraUpdaterService;Avira Updater Service; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [2020-04-09 161216]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2013-02-19 1008344]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2019-03-28 132792]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2019-03-28 158912]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-01-07 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-07-17 626416]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2018-09-24 317416]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2016-05-25 209184]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2016-05-25 416544]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2019-11-10 861192]
R2 NVWMI;NVIDIA WMI Provider; C:\Windows\system32\nvwmi64.exe [2019-11-13 4741024]
R2 O2FLASH;O2FLASH; C:\Windows\system32\o2flash.exe [2011-11-16 244328]
R2 O2SDIOAssist;O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [2003-04-18 8192]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-07-17 149744]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2020-04-01 1209856]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2020-03-22 573760]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-04-18 156104]
S2 tcsd_win32.exe;NTRU TSS v1.2.1.37 TCS; C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [2011-10-08 1637888]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2020-02-25 88648]
S3 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2020-01-10 96056]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2014-01-07 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-28 54912]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2018-09-24 376296]
S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.113\elevation_service.exe [2020-04-14 1095664]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-04-18 156104]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-10-24 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2016-02-19 974632]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2019-10-26 658232]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [2020-04-18 6933272]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 215080]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-06-16 741640]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-07 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
-----------------EOF-----------------
Smazal jsem věcí s určitou pochypností a věci, co nepoužívám:
Komplet Office
MS Drive
SketchUp
nějaký hry
Logfile of random's system information tool 1.10 (written by random/random)
Run by Pracant at 2020-04-20 15:00:46
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 31 GB (13%) free of 238 GB
Total RAM: 16323 MB (79% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:00:52, on 20.4.2020
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.19541)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
C:\Program Files\trend micro\Pracant.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" 60
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] "C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe"
O4 - HKLM\..\Run: [Avira System Speedup User Starter] "C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Pracant\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Pracant\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Avast Cleanup Premium.lnk = C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avguard.exe
O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
O23 - Service: Alps HID Monitor Service (ApHidMonitorService) - Alps Electric Co., Ltd. - C:\Program Files\DellTPad\HidMonitorSvc.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Avira Service Host (Avira.ServiceHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
O23 - Service: Avira Optimizer Host (AviraOptimizerHost) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
O23 - Service: Avira Phantom VPN (AviraPhantomVPN) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
O23 - Service: Avira Security (AviraSecurity) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
O23 - Service: Avira Updater Service (AviraUpdaterService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.113\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Integrated Clock Controller Service - Intel(R) ICCS (ICCS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA WMI Provider (NVWMI) - Unknown owner - C:\Windows\system32\nvwmi64.exe (file missing)
O23 - Service: O2FLASH - Unknown owner - C:\Windows\system32\o2flash.exe (file missing)
O23 - Service: O2SDIOAssist - Unknown owner - C:\Windows\SysWOW64\srvany.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe
O23 - Service: NTRU TSS v1.2.1.37 TCS (tcsd_win32.exe) - Unknown owner - C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 10718 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
winlogon.exe
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 10881424
\??\C:\Windows\system32\conhost.exe "-1967514796180902317637667201-912261241-909653386-1067243715-966356910-227175891
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\Antivirus\sched.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000 -c
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\SPBA\upeksvr.exe"
taskeng.exe {09554A0D-AA5E-4FF6-8F84-CED64C26F5BF}
"taskhost.exe"
taskeng.exe {0AB29597-0FA6-45FF-B64B-FE5A3108C4B9}
taskeng.exe {BA0D3232-A9CF-4C5F-90FD-4902CFDEAD49}
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Core Temp\Core Temp.exe"
"C:\Program Files\DellTPad\Apoint.exe"
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe"
"C:\Windows\system32\nvwmi64.exe"
"C:\Program Files (x86)\Avira\Antivirus\avguard.exe"
C:\Windows\system32\nvwmi64.exe -spawnprovider
"C:\Program Files\DellTPad\HidMonitorSvc.exe"
"C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe"
"C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe"
"C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe"
"C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
"C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Maintenance.exe" -heartbeat delayed
"C:\Program Files (x86)\Avira\Antivirus\avshadow.exe" avshadowcontrol0_00000a98
"C:\Program Files (x86)\Avira\Antivirus\avgnt.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\sppsvc.exe
"C:\Program Files\DellTPad\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"C:\Program Files\DellTPad\HidFind.exe"
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "-21447037318194328901318707943-1443536519-104184140-1979022451583182509-892391064
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 536 540 548 65536 544
"C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe" /connectToHost
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Pracant\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=81.0.4044.113 --initial-client-data=0xc0,0xc4,0xc8,0x94,0xcc,0x7fee975bd28,0x7fee975bd38,0x7fee975bd48
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=5272 --on-initialized-event-handle=380 --parent-handle=384 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --gpu-preferences=MAAAAAAAAADgAAAwAAAAAAAAAAAAAAAAAABgAAAAAAAQAAAAAAAAAAAAAAAAAAAAKAAAAAQAAAAgAAAAAAAAACgAAAAAAAAAMAAAAAAAAAA4AAAAAAAAABAAAAAAAAAAAAAAAAUAAAAQAAAAAAAAAAAAAAAGAAAAEAAAAAAAAAABAAAABQAAABAAAAAAAAAAAQAAAAYAAAA= --mojo-platform-channel-handle=1100 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1384 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=1896 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=4 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2416 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --extension-process --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2652 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=26 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3220 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=27 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4264 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --instant-process --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=28 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2888 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1076,2232297746789607907,10919810504906941306,131072 --lang=cs --enable-auto-reload --device-scale-factor=1.5 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=31 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=2892 /prefetch:1
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\o2flash.exe
C:\Windows\SysWOW64\srvany.exe
C:\Windows\sysWOW64\SDIOAssist.exe
"C:\Users\Pracant\Downloads\RSITx64.exe"
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_221\bin\ssv.dll [2019-09-18 581104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-09-18 244208]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\DellTPad\Apoint.exe [2018-10-24 776224]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Pracant\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"=C:\Windows\system32\cmd.exe [2010-11-21 345088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2019-10-26 302904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Download Assistant]
C:\Windows\System32\LogiLDA.dll [2016-10-14 1841496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2019-07-04 644552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirtualCloneDrive]
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [2013-03-10 88984]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2013-02-22 292088]
"IMSS"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2016-05-25 136992]
"Avira SystrayStartTrigger"=C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [2020-04-02 239520]
"Avira System Speedup User Starter"=C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [2020-01-30 331368]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Avast Cleanup Premium.lnk - C:\Program Files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\spba]
C:\Program Files\Common Files\SPBA\homefus2.dll [2010-09-15 2305872]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
"SlowLinkDetectEnabled"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=153
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=153
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.X264"=x264vfw64.dll
"VIDC.LAGS"=lagarith.dll
"VIDC.XVID"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"VIDC.FFDS"=ff_vfw.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2020-04-20 14:50:46 ----SHD---- C:\Config.Msi
2020-04-20 10:30:12 ----D---- C:\FRST
2020-04-20 10:13:58 ----D---- C:\rsit
2020-04-20 10:13:58 ----D---- C:\Program Files\trend micro
2020-04-18 21:53:02 ----A---- C:\Windows\system32\nvwmi64.exe
2020-04-18 21:52:40 ----A---- C:\Windows\SYSWOW64\nvStreaming.exe
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvsvcr.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvsvc64.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvshext.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvmctray.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nvcpl.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nv3dappshextr.dll
2020-04-18 21:52:35 ----A---- C:\Windows\system32\nv3dappshext.dll
2020-04-18 21:52:31 ----A---- C:\Windows\NvContainerRecovery.bat
2020-04-18 21:52:24 ----D---- C:\Windows\system32\drivers\NVIDIA Corporation
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkaninfo.exe
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkan-1-999-0-0-0.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\vulkan-1.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvptxJitCompiler.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvopencl32.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvofapi.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvIFROpenGL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvfatbinaryLoader.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvEncodeAPI.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2020-04-18 21:49:01 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkaninfo.exe
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkan-1-999-0-0-0.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\vulkan-1.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\OpenCL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvwgf2umx.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvrtum64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvptxJitCompiler.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvoptix.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvopencl64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvoglv64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvofapi64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvIFROpenGL.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvIFR64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvhdap64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvhdagenco6420103.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\NvFBC64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvfatbinaryLoader.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvEncodeAPI64.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvdispgenco6442632.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvdispco6442632.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvd3dumx.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvcuvid.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\nvcuda.dll
2020-04-18 21:49:01 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2020-04-18 21:49:01 ----A---- C:\Windows\system32\drivers\nvhda64v.sys
2020-04-18 21:49:00 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvcompiler.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvcbl64.dll
2020-04-18 21:49:00 ----A---- C:\Windows\system32\nvapi64.dll
2020-04-18 21:30:43 ----A---- C:\Windows\system32\drivers\mbae64.sys
2020-04-18 21:30:41 ----D---- C:\ProgramData\Malwarebytes
2020-04-18 21:30:05 ----D---- C:\Program Files\Malwarebytes
2020-04-18 21:06:02 ----D---- C:\ProgramData\RogueKiller
2020-04-18 20:48:30 ----D---- C:\AdwCleaner
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avusbflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avnetflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avipbb.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2020-04-18 20:30:19 ----A---- C:\Windows\system32\drivers\avdevprot.sys
2020-04-18 20:29:11 ----D---- C:\Program Files (x86)\Avira
2020-04-18 20:29:10 ----D---- C:\ProgramData\Avira
2020-04-18 20:23:14 ----D---- C:\Program Files (x86)\Google
2020-04-13 12:49:37 ----A---- C:\Windows\system32\FNTCACHE.DAT
2020-04-12 21:32:13 ----D---- C:\Windows\pss
2020-04-12 19:47:34 ----D---- C:\Program Files (x86)\MatterControl
2020-04-12 19:46:01 ----D---- C:\Users\Pracant\AppData\Roaming\cura
2020-04-12 19:43:12 ----D---- C:\Program Files\Ultimaker Cura 4.5
2020-04-12 13:34:55 ----D---- C:\Program Files\VCG
2020-04-11 08:09:32 ----D---- C:\Users\Pracant\AppData\Roaming\Trimble Connect for SketchUp
2020-04-11 08:08:01 ----D---- C:\Users\Pracant\AppData\Roaming\SketchUp
2020-04-11 08:06:53 ----AD---- C:\ProgramData\Reprise
2020-04-11 08:06:42 ----D---- C:\ProgramData\SketchUp
2020-04-10 20:04:56 ----D---- C:\Users\Pracant\AppData\Roaming\PrusaSlicer
2020-04-10 20:01:36 ----D---- C:\Program Files\Prusa3D
2020-04-09 19:04:53 ----D---- C:\Program Files\Mozilla Thunderbird
2020-04-08 09:44:19 ----D---- C:\Users\Pracant\AppData\Roaming\Fusion360
2020-04-08 09:43:46 ----D---- C:\Users\Pracant\AppData\Roaming\CadSoft
2020-04-08 09:43:28 ----D---- C:\ProgramData\Autodesk
2020-04-08 09:43:20 ----D---- C:\Users\Pracant\AppData\Roaming\Autodesk
2020-04-07 08:24:23 ----D---- C:\Program Files\Garmin GPS Plugin
2020-04-07 08:24:23 ----D---- C:\Program Files (x86)\Garmin GPS Plugin
2020-03-29 12:05:20 ----D---- C:\Program Files\Factorio_0.18.14
======List of files/folders modified in the last 1 month======
2020-04-20 15:00:52 ----D---- C:\Windows\Temp
2020-04-20 14:59:29 ----D---- C:\Program Files\Core Temp
2020-04-20 14:58:15 ----D---- C:\Users\Pracant\AppData\Roaming\Garmin
2020-04-20 14:57:42 ----D---- C:\Windows\system32\Tasks
2020-04-20 14:57:36 ----D---- C:\ProgramData\NVIDIA
2020-04-20 14:55:44 ----D---- C:\Windows\inf
2020-04-20 14:54:45 ----D---- C:\Windows
2020-04-20 14:54:38 ----RSD---- C:\Windows\Fonts
2020-04-20 14:52:20 ----RD---- C:\Program Files (x86)
2020-04-20 14:51:59 ----SHD---- C:\Windows\Installer
2020-04-20 14:51:56 ----RD---- C:\Program Files
2020-04-20 14:51:12 ----SHD---- C:\System Volume Information
2020-04-20 14:50:51 ----D---- C:\Windows\Microsoft.NET
2020-04-20 14:50:51 ----D---- C:\Program Files (x86)\Microsoft Office
2020-04-20 14:50:47 ----HD---- C:\ProgramData
2020-04-20 14:50:47 ----D---- C:\Program Files\Common Files\Microsoft Shared
2020-04-20 14:50:37 ----RSD---- C:\Windows\assembly
2020-04-20 14:50:25 ----D---- C:\Program Files (x86)\Microsoft.NET
2020-04-20 14:50:25 ----D---- C:\Program Files (x86)\Common Files
2020-04-20 14:45:48 ----D---- C:\Windows\System32
2020-04-20 14:45:48 ----A---- C:\Windows\system32\PerfStringBackup.INI
2020-04-20 14:30:58 ----D---- C:\Program Files (x86)\Subnautica
2020-04-20 14:08:02 ----D---- C:\Windows\system32\appmgmt
2020-04-20 14:01:33 ----D---- C:\Users\Pracant\AppData\Roaming\MPC-HC
2020-04-20 13:59:26 ----A---- C:\Windows\wininit.ini
2020-04-20 13:59:25 ----SD---- C:\ProgramData\Microsoft
2020-04-20 13:59:25 ----D---- C:\Windows\system32\drivers
2020-04-20 11:28:00 ----D---- C:\Windows\system32\config
2020-04-20 10:27:07 ----D---- C:\Users\Pracant\AppData\Roaming\uTorrent
2020-04-19 10:53:58 ----D---- C:\Users\Pracant\AppData\Roaming\foobar2000
2020-04-19 10:43:14 ----D---- C:\Users\Pracant\AppData\Roaming\Telegram Desktop
2020-04-19 09:08:47 ----D---- C:\ProgramData\NVIDIA Corporation
2020-04-18 21:53:05 ----D---- C:\Program Files\NVIDIA Corporation
2020-04-18 21:53:04 ----D---- C:\Windows\system32\DriverStore
2020-04-18 21:53:02 ----D---- C:\Windows\system32\wbem
2020-04-18 21:52:45 ----D---- C:\Windows\SysWOW64
2020-04-18 21:52:44 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2020-04-18 21:52:35 ----D---- C:\Windows\Help
2020-04-18 21:34:31 ----D---- C:\ProgramData\Dell
2020-04-18 20:29:09 ----D---- C:\ProgramData\Package Cache
2020-04-18 20:29:08 ----D---- C:\Windows\SoftwareDistribution
2020-04-16 22:25:48 ----D---- C:\Windows\system32\drivers\etc
2020-04-16 22:18:11 ----D---- C:\Program Files\Common Files
2020-04-13 12:49:39 ----D---- C:\Windows\debug
2020-04-12 21:31:07 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2020-04-12 21:29:13 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2020-04-12 21:28:28 ----D---- C:\Program Files (x86)\Dell
2020-04-11 18:45:28 ----D---- C:\Program Files (x86)\Intel
2020-04-11 18:44:48 ----D---- C:\Windows\system32\catroot
2020-04-11 18:31:59 ----D---- C:\Windows\winsxs
2020-04-10 20:03:21 ----D---- C:\Program Files\DIFX
2020-04-08 12:32:12 ----D---- C:\Users\Pracant\AppData\Roaming\XnView
2020-04-06 19:55:25 ----D---- C:\Program Files (x86)\Garmin
2020-04-02 01:49:56 ----N---- C:\Windows\system32\MpSigStub.exe
2020-03-25 17:02:40 ----D---- C:\Program Files\Factorio.v0.18.0
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 avdevprot;avdevprot; C:\Windows\system32\DRIVERS\avdevprot.sys [2019-06-07 68152]
R0 avusbflt;avusbflt; C:\Windows\System32\Drivers\avusbflt.sys [2019-03-20 35376]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2012-05-30 569152]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2013-02-22 20464]
R0 PBADRV;PBADRV; C:\Windows\system32\DRIVERS\PBADRV.sys [2019-09-18 32240]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-01 213736]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer; C:\Windows\system32\DRIVERS\stdcfltn.sys [2015-01-09 23216]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2020-04-06 177376]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2019-03-20 36072]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2018-06-29 516096]
R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2014-12-21 40344]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2014-01-07 60416]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2020-03-27 223744]
R2 avnetflt;avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [2019-03-20 78600]
R3 ALSysIO;ALSysIO; \??\C:\Users\Pracant\AppData\Local\Temp\ALSysIO64.sys []
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x64; C:\Windows\system32\DRIVERS\Apfiltr.sys [2018-10-24 612072]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\Windows\system32\DRIVERS\e1c62x64.sys [2013-02-20 495888]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2013-02-22 358896]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2013-02-22 792560]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [2016-03-28 181304]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETwsw00.sys [2013-05-29 11524096]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2019-11-10 237368]
R3 O2SDJRDR;O2SDJRDR; C:\Windows\system32\DRIVERS\o2sdjw7x64.sys [2012-04-26 85336]
R3 phantomtap;Phantom TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\phantomtap.sys [2020-03-18 35664]
R3 ST_ACCEL;STMicroelectronics Accelerometer Service; C:\Windows\system32\DRIVERS\ST_Accel.sys [2015-05-21 101040]
R3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2013-07-24 36864]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2019-09-18 165688]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2019-07-30 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 119296]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2019-07-30 556032]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2019-07-30 80384]
S3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2019-09-18 598808]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2019-09-18 184144]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2019-09-18 210984]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2019-09-18 39976]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2019-09-18 21544]
S3 DDDriver;DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [2019-05-21 41608]
S3 DellProf;DellProf; C:\Windows\system32\drivers\DellProf.sys [2019-05-21 41208]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2018-09-24 3808640]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2014-01-07 166400]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-21 6656]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2014-01-07 109568]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-21 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys [2010-11-21 88960]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 29696]
S3 trufos;trufos; C:\Windows\system32\drivers\trufos.sys [2020-01-02 439576]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2019-05-18 54784]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-21 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-21 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [2020-04-01 485960]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\Antivirus\sched.exe [2020-04-01 485960]
R2 ApHidMonitorService;Alps HID Monitor Service; C:\Program Files\DellTPad\HidMonitorSvc.exe [2018-10-24 104800]
R2 Avira.ServiceHost;Avira Service Host; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [2020-04-02 634896]
R2 AviraOptimizerHost;Avira Optimizer Host; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2020-01-20 2989888]
R2 AviraPhantomVPN;Avira Phantom VPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [2020-03-18 382992]
R2 AviraSecurity;Avira Security; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [2020-04-01 242448]
R2 AviraUpdaterService;Avira Updater Service; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [2020-04-09 161216]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2013-02-19 1008344]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2019-03-28 132792]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2019-03-28 158912]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2014-01-07 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2013-07-17 626416]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2018-09-24 317416]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2016-05-25 209184]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2016-05-25 416544]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2019-11-10 861192]
R2 NVWMI;NVIDIA WMI Provider; C:\Windows\system32\nvwmi64.exe [2019-11-13 4741024]
R2 O2FLASH;O2FLASH; C:\Windows\system32\o2flash.exe [2011-11-16 244328]
R2 O2SDIOAssist;O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [2003-04-18 8192]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2013-07-17 149744]
S2 AntiVirMailService;Avira Mail Protection; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [2020-04-01 1209856]
S2 AntiVirWebService;Avira Web Protection; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [2020-03-22 573760]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-04-18 156104]
S2 tcsd_win32.exe;NTRU TSS v1.2.1.37 TCS; C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe [2011-10-08 1637888]
S3 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2020-02-25 88648]
S3 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2020-01-10 96056]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2014-01-07 27136]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2019-03-28 54912]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2018-09-24 376296]
S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.113\elevation_service.exe [2020-04-14 1095664]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2020-04-18 156104]
S3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS; C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [2012-04-24 169752]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-10-24 116224]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2016-02-19 974632]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2019-10-26 658232]
S3 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [2020-04-18 6933272]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 215080]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-06-16 741640]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2014-01-07 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-01-07 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2019-03-28 136256]
-----------------EOF-----------------
Re: Větráky běží i při malé zátěži NTB
skus docasne odinstalovat AViru + Adobe
oba zvyknu obcas robit problemy ,,,
oba zvyknu obcas robit problemy ,,,
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Větráky běží i při malé zátěži NTB
Adobe komplet smazané.
Aviru jsem dal nově až po začátku problému s větráky. Předtím jsem měl Avast, pak jen Defender a teď Aviru. Problém stejný.
Aviru jsem dal nově až po začátku problému s větráky. Předtím jsem měl Avast, pak jen Defender a teď Aviru. Problém stejný.
Re: Větráky běží i při malé zátěži NTB
Nehral sa niekto s nastavenim BIOS ohladne teploty CPU, otacok apod.?
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Větráky běží i při malé zátěži NTB
Ne,
u PC sedím jen já.
Teploty všech jader u Procesoru jsou max 90, průměrné vytížení cca. 15%. Teplota bez zatížení 50, 3.5GB ram a 6% procesor
Všechno(co vím jsou jen základy) jsem prošel a už si nevím rady.
Nemůže to být opravdu od grafiky?
u PC sedím jen já.
Teploty všech jader u Procesoru jsou max 90, průměrné vytížení cca. 15%. Teplota bez zatížení 50, 3.5GB ram a 6% procesor
Všechno(co vím jsou jen základy) jsem prošel a už si nevím rady.
Nemůže to být opravdu od grafiky?
Přispějete na provoz fóra?