Preventivka
Napsal: 26 úno 2019 12:23
Dobry den prajem rad by som poprosil o preventivku. Obcas mi HDD maka na 100% hlavne pri hrach .
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25.02.2019 01
Ran by Martin (administrator) on DESKTOP-TETKG5G (26-02-2019 12:19:39)
Running from C:\Users\Martin\AppData\Local\Temp\scoped_dir4916_7742
Loaded Profiles: Martin (Available Profiles: Martin & 8IKEHd8Tqd & jUpy26V5TxgBjSlKMd)
Platform: Windows 10 Pro Version 1803 17134.590 (X64) Language: Slovenčina (Slovensko)
Default browser: Opera
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\NisSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Mad Catz Inc) [File not signed] C:\Program Files\Mad Catz\RAT4\RAT4_Profiler.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\.Battle.net.exe.698.10148.temp
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.6610\Agent.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\.Battle.net.exe.698.10148.temp
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\.Battle.net.exe.698.10148.temp
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera_crashreporter.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RAT4] => C:\Program Files\Mad Catz\RAT4\RAT4_Profiler.exe [343040 2016-12-16] (Mad Catz Inc) [File not signed]
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3144480 2019-02-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Discord] => C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe [81747288 2019-01-15] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53540200 2019-02-08] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3113768 2019-01-29] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19467544 2018-10-23] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Ubisoft Game Launcher] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe [470872 2019-02-06] (Ubisoft Entertainment Sweden AB -> Ubisoft)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1098728 2019-02-26] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e1c02e96-739c-43d9-8fa4-e9e41d4eb9a8}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-3299137129-3959029366-2649080390-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
Opera:
=======
OPR Extension: (Install Chrome Extensions) - C:\Users\Martin\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2018-10-28]
OPR Extension: (Social Revealer) - C:\Users\Martin\AppData\Roaming\Opera Software\Opera Stable\Extensions\nmnnjcmpjlbbobehaikglfgpbjclcoeg [2018-10-28]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-01-29] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-01-29] (Electronic Arts, Inc. -> Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-02-23] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-02-23] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [43400 2017-03-01] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [24424 2016-08-12] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\Windows\system32\DRIVERS\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AMDPCIDev; C:\Windows\System32\drivers\AMDPCIDev.sys [31592 2018-04-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R0 amdpsp; C:\Windows\System32\drivers\amdpsp.sys [137496 2018-09-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
S3 cpuz140; C:\Users\Martin\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [43840 2019-02-25] (CPUID -> CPUID) <==== ATTENTION
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_edcffbdd101bbe5b\nvlddmkm.sys [20726016 2019-02-21] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-01-16] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek )
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [24144 2016-10-12] (Mad Catz Inc -> Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [59728 2016-10-12] (Mad Catz Inc -> Saitek)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-02-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [333792 2019-02-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [62432 2019-02-23] (Microsoft Windows -> Microsoft Corporation)
R3 _hid_0738_1731; C:\Windows\system32\DRIVERS\_hid_0738_1731.sys [210384 2016-10-12] (Mad Catz Inc -> Saitek)
R3 _usb_0738_1731; C:\Windows\System32\drivers\_usb_0738_1731.sys [46800 2016-10-12] (Mad Catz Inc -> Saitek)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-02-26 12:19 - 2019-02-26 12:19 - 000000000 ____D C:\FRST
2019-02-26 12:18 - 2019-02-26 12:18 - 002433536 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2019-02-26 12:17 - 2019-02-26 12:17 - 000000000 ____D C:\Program Files\trend micro
2019-02-25 11:59 - 2019-02-25 11:59 - 000001012 _____ C:\Users\Public\Desktop\Driver Easy.lnk
2019-02-25 11:59 - 2019-02-25 11:59 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Easeware
2019-02-25 11:59 - 2019-02-25 11:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2019-02-25 11:59 - 2019-02-25 11:59 - 000000000 ____D C:\Program Files\Easeware
2019-02-25 11:54 - 2019-02-25 11:54 - 000000000 ____D C:\Users\Martin\AppData\Local\mbamtray
2019-02-25 11:54 - 2019-02-25 11:54 - 000000000 ____D C:\Users\Martin\AppData\Local\mbam
2019-02-25 11:54 - 2019-02-25 11:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-02-25 11:54 - 2019-02-01 11:20 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2019-02-25 11:54 - 2019-01-08 15:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-02-25 11:53 - 2019-02-25 11:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-02-25 11:53 - 2019-02-25 11:53 - 000000000 ____D C:\Program Files\Malwarebytes
2019-02-22 17:17 - 2019-02-20 12:27 - 000133616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2019-02-22 17:15 - 2019-02-22 17:15 - 000000000 ____D C:\Windows\LastGood.Tmp
2019-02-22 17:13 - 2019-02-21 11:18 - 001006800 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 001006800 _____ C:\Windows\system32\vulkan-1.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000552224 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000457096 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000286416 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2019-02-22 17:13 - 2019-02-21 11:18 - 000286416 _____ C:\Windows\system32\vulkaninfo.exe
2019-02-22 17:13 - 2019-02-21 11:18 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-02-22 17:13 - 2019-02-21 11:18 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-02-22 17:13 - 2019-02-21 11:17 - 000668640 _____ C:\Windows\system32\nvofapi64.dll
2019-02-22 17:13 - 2019-02-21 11:17 - 000534544 _____ C:\Windows\SysWOW64\nvofapi.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 040234592 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 035139840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 010319504 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 005274560 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 004624832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 002031872 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001734240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441917.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001535232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001468184 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441917.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001464256 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001129920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 000752064 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 000631688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 000611720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 000521824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 008784920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001471608 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFThevc.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001462208 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001169120 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001151984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFThevc.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001145536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 000914912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 000822576 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 000794448 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 000638176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-02-22 17:13 - 2019-02-21 11:14 - 020103080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-02-22 17:13 - 2019-02-21 11:14 - 017429864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-02-22 17:13 - 2019-02-21 11:14 - 004301152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-02-19 17:01 - 2019-02-19 17:01 - 000000000 ____D C:\Users\Martin\Desktop\Info
2019-02-19 16:47 - 2019-02-19 16:47 - 000359385 _____ C:\Users\Martin\Downloads\VYPISY_42596201_20190123.zip
2019-02-16 06:20 - 2019-02-23 20:41 - 000000000 ____D C:\Users\Martin\Documents\BioWare
2019-02-14 10:12 - 2019-02-08 15:38 - 001734104 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441891.dll
2019-02-14 10:12 - 2019-02-08 15:38 - 001468048 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441891.dll
2019-02-14 09:43 - 2019-02-24 10:33 - 000001215 _____ C:\Users\Public\Desktop\Anthem™.lnk
2019-02-14 09:43 - 2019-02-14 09:43 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-02-13 12:40 - 2019-02-06 08:54 - 004527584 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2019-02-13 12:40 - 2019-02-06 08:53 - 001634704 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-02-13 12:40 - 2019-02-06 08:35 - 000058368 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-02-13 12:40 - 2019-02-06 08:32 - 003648512 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-02-13 12:40 - 2019-02-06 08:30 - 004052992 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-02-13 12:40 - 2019-02-06 08:30 - 001662464 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-02-13 12:40 - 2019-02-06 08:30 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2019-02-13 12:40 - 2019-02-06 08:11 - 001454648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-02-13 12:40 - 2019-02-06 07:57 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-02-13 12:40 - 2019-02-06 07:52 - 004053504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-02-13 12:40 - 2019-02-06 07:52 - 002891776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-02-13 12:40 - 2019-02-06 07:52 - 001470976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-02-13 12:40 - 2019-02-06 04:01 - 001989040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-02-13 12:40 - 2019-02-06 04:01 - 001221432 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-02-13 12:40 - 2019-02-06 04:01 - 001029944 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-02-13 12:40 - 2019-02-06 04:01 - 000720480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2019-02-13 12:40 - 2019-02-06 04:01 - 000566568 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2019-02-13 12:40 - 2019-02-06 04:01 - 000134968 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2019-02-13 12:40 - 2019-02-06 04:01 - 000076088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2019-02-13 12:40 - 2019-02-06 04:01 - 000033576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NtlmShared.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 009084432 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-02-13 12:40 - 2019-02-06 04:00 - 007520112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 006572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 002719760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-02-13 12:40 - 2019-02-06 04:00 - 002465792 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 002421264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-02-13 12:40 - 2019-02-06 04:00 - 001257904 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-02-13 12:40 - 2019-02-06 04:00 - 001140680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-02-13 12:40 - 2019-02-06 04:00 - 001130568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 001098272 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 000945680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys
2019-02-13 12:40 - 2019-02-06 04:00 - 000899728 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 000466960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-02-13 12:40 - 2019-02-06 04:00 - 000376120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2019-02-13 12:40 - 2019-02-06 04:00 - 000043536 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2019-02-13 12:40 - 2019-02-06 04:00 - 000038792 _____ (Microsoft Corporation) C:\Windows\system32\NtlmShared.dll
2019-02-13 12:40 - 2019-02-06 03:59 - 001922064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2019-02-13 12:40 - 2019-02-06 03:59 - 001457248 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-02-13 12:40 - 2019-02-06 03:59 - 000983128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-02-13 12:40 - 2019-02-06 03:59 - 000144288 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-02-13 12:40 - 2019-02-06 03:52 - 022014464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-02-13 12:40 - 2019-02-06 03:45 - 019404288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-02-13 12:40 - 2019-02-06 03:42 - 003711488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-02-13 12:40 - 2019-02-06 03:41 - 025853952 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-02-13 12:40 - 2019-02-06 03:41 - 005307392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2019-02-13 12:40 - 2019-02-06 03:40 - 005792256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-02-13 12:40 - 2019-02-06 03:40 - 000021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2019-02-13 12:40 - 2019-02-06 03:38 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2019-02-13 12:40 - 2019-02-06 03:38 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-02-13 12:40 - 2019-02-06 03:37 - 004515840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-02-13 12:40 - 2019-02-06 03:37 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2019-02-13 12:40 - 2019-02-06 03:33 - 022714880 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-02-13 12:40 - 2019-02-06 03:29 - 004865536 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-02-13 12:40 - 2019-02-06 03:28 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2019-02-13 12:40 - 2019-02-06 03:28 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2019-02-13 12:40 - 2019-02-06 03:27 - 000894464 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2019-02-13 12:40 - 2019-02-06 03:27 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2019-02-13 12:40 - 2019-02-06 03:27 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2019-02-13 12:40 - 2019-02-06 03:27 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-02-13 12:40 - 2019-02-06 03:26 - 007599616 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-02-13 12:40 - 2019-02-06 03:26 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-02-13 12:40 - 2019-02-06 03:26 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2019-02-13 12:40 - 2019-02-06 03:26 - 000174592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2019-02-13 12:40 - 2019-02-06 03:26 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-02-13 12:40 - 2019-02-06 03:25 - 000736256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-02-13 12:40 - 2019-02-06 03:25 - 000507392 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2019-02-13 12:40 - 2019-02-06 03:24 - 004937728 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-02-13 12:40 - 2019-02-06 03:24 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2019-02-13 12:40 - 2019-02-06 03:23 - 000393216 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2019-02-13 12:40 - 2019-02-06 03:22 - 000960512 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2019-02-13 12:40 - 2019-02-06 03:22 - 000885760 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2019-02-13 12:40 - 2019-02-06 03:21 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2019-02-13 12:40 - 2019-02-06 02:04 - 000001314 _____ C:\Windows\system32\tcbres.wim
2019-02-13 12:40 - 2019-01-12 09:56 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MixedRealityCapture.dll
2019-02-13 12:40 - 2019-01-12 03:28 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-02-13 12:40 - 2019-01-09 19:08 - 000309560 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-02-13 12:40 - 2019-01-09 18:57 - 000720536 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-02-13 12:40 - 2019-01-09 18:42 - 004716032 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2019-02-13 12:40 - 2019-01-09 18:41 - 012730368 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-02-13 12:40 - 2019-01-09 18:41 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2019-02-13 12:40 - 2019-01-09 18:40 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2019-02-13 12:40 - 2019-01-09 18:36 - 001054720 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2019-02-13 12:40 - 2019-01-09 18:35 - 002919936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2019-02-13 12:40 - 2019-01-09 11:14 - 000607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-02-13 12:40 - 2019-01-09 10:55 - 011919872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-02-13 12:40 - 2019-01-09 10:55 - 000150016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2019-02-13 12:40 - 2019-01-09 09:55 - 001285432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2019-02-13 12:40 - 2019-01-09 09:48 - 000527368 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-02-13 12:40 - 2019-01-09 06:59 - 000611848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2019-02-13 12:40 - 2019-01-09 06:44 - 000078688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 006043496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 004789944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 002253480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 001981280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 001620264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000607376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000581592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000287640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000129088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000127744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rmclient.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000071456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
2019-02-13 12:40 - 2019-01-09 06:42 - 001035232 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-02-13 12:40 - 2019-01-09 06:42 - 000092704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2019-02-13 12:40 - 2019-01-09 06:40 - 002765336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-02-13 12:40 - 2019-01-09 06:40 - 001063224 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2019-02-13 12:40 - 2019-01-09 06:40 - 000432952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2019-02-13 12:40 - 2019-01-09 06:40 - 000226104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-02-13 12:40 - 2019-01-09 06:40 - 000090872 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 007436016 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 004404720 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 002571632 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 001943128 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000789696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000713264 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000349656 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000269624 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000260800 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000175416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
2019-02-13 12:40 - 2019-01-09 06:39 - 000164192 _____ (Microsoft Corporation) C:\Windows\system32\rmclient.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000085472 _____ (Microsoft Corporation) C:\Windows\system32\svchost.exe
2019-02-13 12:40 - 2019-01-09 06:33 - 016597504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2019-02-13 12:40 - 2019-01-09 06:32 - 013878272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2019-02-13 12:40 - 2019-01-09 06:29 - 008188928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-02-13 12:40 - 2019-01-09 06:29 - 002500096 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2019-02-13 12:40 - 2019-01-09 06:27 - 004710912 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2019-02-13 12:40 - 2019-01-09 06:27 - 004384256 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2019-02-13 12:40 - 2019-01-09 06:27 - 001587712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2019-02-13 12:40 - 2019-01-09 06:26 - 006661632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-02-13 12:40 - 2019-01-09 06:26 - 003396608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-02-13 12:40 - 2019-01-09 06:26 - 002966016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2019-02-13 12:40 - 2019-01-09 06:25 - 000161792 _____ (Microsoft Corporation) C:\Windows\system32\spacebridge.dll
2019-02-13 12:40 - 2019-01-09 06:24 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2019-02-13 12:40 - 2019-01-09 06:24 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2019-02-13 12:40 - 2019-01-09 06:24 - 000157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spacebridge.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 002368000 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 001361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 001189888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 000898560 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 000067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CapabilityAccessManagerClient.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 001551360 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 001395200 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000624640 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll
2019-02-13 12:40 - 2019-01-09 06:21 - 002173440 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-02-13 12:40 - 2019-01-09 06:21 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
2019-02-13 12:40 - 2019-01-09 06:21 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-13 12:40 - 2019-01-09 06:20 - 001000448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2019-02-13 12:40 - 2019-01-09 06:20 - 000916480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2019-02-13 12:40 - 2019-01-09 06:20 - 000607232 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2019-02-13 12:40 - 2019-01-09 06:20 - 000135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll
2019-02-13 12:40 - 2019-01-09 06:19 - 000678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-02-13 12:40 - 2019-01-09 06:19 - 000507392 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2019-02-13 12:40 - 2019-01-09 06:19 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2019-02-13 12:40 - 2019-01-09 06:19 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2019-02-13 12:40 - 2019-01-09 06:18 - 000195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2019-02-13 12:40 - 2019-01-09 05:34 - 000806320 _____ C:\Windows\SysWOW64\locale.nls
2019-02-13 12:40 - 2019-01-09 05:34 - 000806320 _____ C:\Windows\system32\locale.nls
2019-02-13 12:40 - 2019-01-08 10:08 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-02-13 12:40 - 2019-01-08 04:06 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-02-13 12:40 - 2019-01-08 04:06 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-02-13 12:40 - 2019-01-08 04:06 - 000000072 _____ C:\Windows\system32\edgehtmlpluginpolicy.bin
2019-02-07 13:31 - 2019-02-01 22:36 - 000047592 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2019-02-07 13:31 - 2019-02-01 02:38 - 001734560 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441881.dll
2019-02-07 13:31 - 2019-02-01 02:38 - 001467864 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441881.dll
2019-02-07 13:19 - 2019-02-07 17:34 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2019-02-07 13:19 - 2019-02-07 13:19 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2019-02-06 13:22 - 2019-02-26 11:00 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-01-31 16:29 - 2019-01-31 16:36 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Wargaming.net
2019-01-31 16:28 - 2019-01-31 16:28 - 000000000 ____D C:\ProgramData\Wargaming.net
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-02-26 12:20 - 2018-10-07 17:22 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Origin
2019-02-26 12:20 - 2018-08-10 12:52 - 000000000 ____D C:\Users\Martin\AppData\Local\Battle.net
2019-02-26 12:18 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-02-26 11:27 - 2018-08-10 12:37 - 000000000 ____D C:\Program Files (x86)\Steam
2019-02-26 11:02 - 2018-08-10 12:25 - 000000000 ____D C:\ProgramData\NVIDIA
2019-02-26 11:01 - 2018-08-10 12:52 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-02-26 11:00 - 2018-10-07 17:22 - 000000000 ____D C:\ProgramData\Origin
2019-02-25 19:50 - 2018-08-10 18:15 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-02-25 14:11 - 2018-08-10 18:16 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-02-25 14:10 - 2018-04-11 22:04 - 000524288 _____ C:\Windows\system32\config\BBI
2019-02-25 11:54 - 2018-04-12 00:38 - 000000000 ___HD C:\Windows\ELAMBKUP
2019-02-24 15:45 - 2018-08-10 12:24 - 000000000 ____D C:\Users\Martin\AppData\Local\ElevatedDiagnostics
2019-02-24 15:45 - 2018-04-12 00:36 - 000000000 ____D C:\Windows\INF
2019-02-24 14:55 - 2018-08-10 12:27 - 000000000 ____D C:\Program Files (x86)\Opera
2019-02-24 08:13 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\AppReadiness
2019-02-23 20:10 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-02-23 20:00 - 2018-12-24 19:18 - 000048658 _____ C:\Windows\system32\perfh01B.dat
2019-02-23 20:00 - 2018-12-24 19:18 - 000011800 _____ C:\Windows\system32\perfc01B.dat
2019-02-23 20:00 - 2018-08-10 12:22 - 000882154 _____ C:\Windows\system32\PerfStringBackup.INI
2019-02-23 17:48 - 2018-08-10 18:16 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-02-22 17:18 - 2018-11-08 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-02-22 17:18 - 2018-08-10 12:25 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-02-22 17:18 - 2018-08-10 12:25 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-02-22 17:18 - 2018-08-10 12:21 - 000000000 ____D C:\Users\Martin\AppData\Local\VirtualStore
2019-02-22 14:54 - 2018-08-10 12:27 - 000004198 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1533900461
2019-02-22 14:54 - 2018-08-10 12:27 - 000001243 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2019-02-21 11:14 - 2017-11-09 03:25 - 005042392 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-02-20 16:15 - 2018-08-10 12:53 - 000000000 ____D C:\Program Files (x86)\Overwatch
2019-02-20 16:10 - 2018-08-10 12:23 - 000000000 ____D C:\Users\Martin\AppData\Local\PlaceholderTileLogoFolder
2019-02-20 14:19 - 2018-08-10 20:09 - 000001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2019-02-20 14:19 - 2017-11-09 02:57 - 000049634 _____ C:\Windows\system32\nvinfo.pb
2019-02-20 12:14 - 2018-08-10 12:25 - 005365128 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 002624368 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 001767632 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 000651472 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 000450600 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 000125240 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 000083440 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2019-02-19 16:35 - 2018-08-10 12:21 - 000000000 ____D C:\Users\Martin\AppData\Local\Packages
2019-02-17 14:01 - 2018-08-10 12:57 - 000000000 ____D C:\Users\Martin\AppData\Local\D3DSCache
2019-02-16 06:11 - 2018-08-10 12:56 - 000000000 ____D C:\Users\Martin\AppData\Roaming\discord
2019-02-15 13:14 - 2018-08-10 12:25 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2019-02-15 08:44 - 2018-11-16 17:14 - 000000000 ____D C:\Program Files\rempl
2019-02-14 09:43 - 2018-08-10 20:07 - 000000000 ____D C:\ProgramData\Package Cache
2019-02-14 09:25 - 2018-09-14 15:52 - 000001383 _____ C:\Users\Public\Desktop\Skype.lnk
2019-02-14 09:25 - 2018-09-14 15:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-02-14 09:14 - 2018-08-10 18:15 - 000234112 _____ C:\Windows\system32\FNTCACHE.DAT
2019-02-13 22:28 - 2018-08-10 12:25 - 008504452 _____ C:\Windows\system32\nvcoproc.bin
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ___SD C:\Windows\SysWOW64\F12
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ___SD C:\Windows\system32\F12
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\TextInput
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\ShellExperiences
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\bcastdvr
2019-02-13 12:43 - 2018-04-12 00:30 - 000000000 ____D C:\Windows\CbsTemp
2019-02-13 12:40 - 2018-08-10 16:44 - 000000000 ____D C:\Windows\system32\MRT
2019-02-13 12:38 - 2018-08-10 16:43 - 129330784 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-02-11 13:04 - 2018-12-14 17:27 - 000000000 ____D C:\Users\Martin\AppData\Local\Ubisoft Game Launcher
2019-02-10 19:26 - 2018-08-10 12:24 - 000003380 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3299137129-3959029366-2649080390-1001
2019-02-10 19:26 - 2018-08-10 12:23 - 000000000 ___RD C:\Users\Martin\OneDrive
2019-02-10 19:26 - 2018-08-10 12:20 - 000002374 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-02-09 22:00 - 2018-08-10 12:20 - 000000000 ____D C:\Users\Martin
2019-02-09 21:26 - 2018-08-10 20:09 - 000000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
2019-02-09 12:43 - 2018-11-24 14:37 - 000000000 ____D C:\Users\Martin\Desktop\client_cf
2019-02-08 13:32 - 2018-08-10 12:37 - 000000000 ____D C:\ProgramData\Packages
2019-02-07 13:21 - 2018-11-21 08:46 - 000004308 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:21 - 2018-11-21 08:46 - 000004106 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:21 - 2018-11-21 08:46 - 000003976 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:21 - 2018-11-21 08:46 - 000003940 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:21 - 2018-11-21 08:46 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2019-02-07 13:21 - 2018-08-10 12:25 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-02-07 13:20 - 2018-08-10 20:09 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003858 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003654 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-06 13:23 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\LiveKernelReports
2019-02-05 13:27 - 2018-08-13 15:47 - 000000000 ____D C:\Program Files\CCleaner
2019-02-02 23:53 - 2018-08-11 07:56 - 000835480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-02-02 23:53 - 2018-08-11 07:56 - 000179600 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-02-01 22:36 - 2017-11-09 03:38 - 001682392 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2019-02-01 22:36 - 2017-11-09 03:38 - 000228768 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2019-01-30 21:17 - 2018-11-21 08:46 - 002741640 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2019-01-30 21:17 - 2018-11-21 08:46 - 002124680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2019-01-30 21:17 - 2018-11-21 08:46 - 001323400 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2019-01-29 14:50 - 2018-10-07 17:23 - 000000000 ____D C:\Program Files (x86)\Origin
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\SysWOW64\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-08-10 18:15
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25.02.2019 01
Ran by Martin (26-02-2019 12:21:03)
Running from C:\Users\Martin\AppData\Local\Temp\scoped_dir4916_7742
Windows 10 Pro Version 1803 17134.590 (X64) (2018-08-10 11:18:41)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
8IKEHd8Tqd (S-1-5-21-3299137129-3959029366-2649080390-1002 - Limited - Enabled) => C:\Users\8IKEHd8Tqd
Administrator (S-1-5-21-3299137129-3959029366-2649080390-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3299137129-3959029366-2649080390-503 - Limited - Disabled)
Guest (S-1-5-21-3299137129-3959029366-2649080390-501 - Limited - Disabled)
jUpy26V5TxgBjSlKMd (S-1-5-21-3299137129-3959029366-2649080390-1003 - Limited - Enabled) => C:\Users\jUpy26V5TxgBjSlKMd
Martin (S-1-5-21-3299137129-3959029366-2649080390-1001 - Administrator - Enabled) => C:\Users\Martin
WDAGUtilityAccount (S-1-5-21-3299137129-3959029366-2649080390-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Aktualizácie NVIDIA 35.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 35.0.0.0 - NVIDIA Corporation) Hidden
Anthem™ (HKLM-x32\...\{57b4eaa0-f1f5-407e-afbd-2db397381ad8}) (Version: 1.0.57.12816 - Electronic Arts)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.48 - Piriform)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Discord) (Version: 0.0.304 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.17 - NVIDIA Corporation) Hidden
Driver Easy 5.6.9 (HKLM\...\DriverEasy_is1) (Version: 5.6.9 - Easeware)
Malwarebytes verzia 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\OneDriveSetup.exe) (Version: 19.002.0107.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision radič ovládača 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
NVIDIA Grafický ovládač 419.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.17 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 419.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.17 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
Opera Stable 58.0.3135.68 (HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Opera 58.0.3135.68) (Version: 58.0.3135.68 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.34.21025 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Ovládací panel NVIDIA 419.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 419.17 - NVIDIA Corporation) Hidden
RAT4 (HKLM\...\{2B2EE1F4-8309-418D-BFDB-38AFC9CC70A3}) (Version: 7.0.60.3 - Mad Catz Inc)
Skype verzia 8.39 (HKLM-x32\...\Skype_is1) (Version: 8.39 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C99F4AFA-B32C-4063-865C-D7B5CC0A78FB}) (Version: 2.54.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 77.1 - Ubisoft)
WinRAR 5.60 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3299137129-3959029366-2649080390-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0975CBCE-E5B9-4A32-AA86-F2AB8FA9BE10} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {117A09F2-4CD7-422C-8E2D-B334D0D0F9F9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5313AC6F-0851-4F8B-BD35-EAA0D80D6FCF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {59A06A71-307E-435A-9968-B3CF7B073CB7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Ltd)
Task: {5EDD141B-A2FE-428C-97E3-EDD860A83556} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {81778E76-389D-4DB6-B41F-408FADBA97EC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {823BFBF3-144A-48D0-BF35-1C08513FF0F2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {84BCDD05-8573-4473-BE6B-39B7756A7A96} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8DABA75C-C67F-4FC0-BFE3-20F5782D5341} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {9820B3AC-E491-47CD-AA05-A3F17EC527E8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {B89F8570-9245-456A-84AA-9DCF32AB3154} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BA0003D7-7630-4EAA-9E14-21C929F09155} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C34DCD10-B5D6-4948-9AAE-57DFD6BC09B4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {CA45DE0F-524E-4B18-9AD8-BCC36DEDC60A} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CEDFCA59-BFA1-4173-8D65-33A263095300} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E61367C0-C981-4F51-B654-0BF2C86A8F49} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E936089C-9E67-4041-AFFA-51D6A01FA594} - System32\Tasks\Opera scheduled Autoupdate 1533900461 => C:\Program Files (x86)\Opera\launcher.exe (Opera Software AS -> Opera Software)
Task: {FABAAFEB-498E-407C-977C-CC1B58B48614} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-12-16 11:50 - 2016-12-16 11:50 - 000343040 _____ (Mad Catz Inc) [File not signed] C:\Program Files\Mad Catz\RAT4\RAT4_Profiler.exe
2018-10-07 17:24 - 2019-01-29 14:49 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 001177600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000116224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000211456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000068096 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000709120 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 001252864 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icuuc58.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\SSLEAY32.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 003515904 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Qml.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 003390976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Quick.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 054063616 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000207360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000002560 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icudt58.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Origin\libEGL.DLL
2018-10-07 17:23 - 2019-01-29 14:49 - 003090944 _____ () [File not signed] C:\Program Files (x86)\Origin\libGLESv2.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qico.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000256512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000305152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000278016 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\mediaservice\dsengine.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000626176 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Multimedia.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 005022208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Gui.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 004943360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Core.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 003078656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Quick.dll
2019-02-08 13:28 - 2019-02-08 13:28 - 000439296 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5WinExtras.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 002908672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Qml.dll
2019-02-08 13:27 - 2019-02-08 13:28 - 004718080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Widgets.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000877056 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Network.dll
2019-02-08 13:28 - 2019-02-08 13:28 - 000159232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Xml.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 085602816 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\libcef.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000596992 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\chrome_elf.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 001140224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\platforms\qwindows.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qgif.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qico.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qjpeg.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000223744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qmng.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qsvg.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000259072 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Svg.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qtiff.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 001463808 _____ (Firelight Technologies) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\fmod.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000047104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\audio\qtaudio_windows.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000089600 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\libEGL.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 003841536 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\libGLESv2.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick.2\qtquick2plugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000041984 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000071680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Window.2\windowplugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000084480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000096256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5QuickControls2.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000681472 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5QuickTemplates2.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000211456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000267776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQml\Models.2\modelsplugin.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\Run32: => "RAT4"
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\StartupApproved\Run: => "Ubisoft Game Launcher"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{F8A86B43-A922-47EC-BA20-3D3EC848C23D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{0BB022AC-FBFA-4E20-9E95-C7C3D4CF6E0F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A8C32C24-3F26-4C3F-8991-258EAAEDDB8B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [{6DEDE529-D4AF-4956-978D-77CDA32124E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [TCP Query User{98608BC1-6114-49C2-8A9B-6FDD83BDBFA7}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{1A113517-423B-4FE4-B367-A4B670C861FF}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{1D8C3398-5930-4B5A-B55D-9406579FEB86}] => (Block) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{12BB9E80-1C75-45B9-9238-0F91657AAB0A}] => (Block) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{A282724E-2519-4EE9-B174-BCEF0507388F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7A57EB93-7C8F-4C0D-B698-8BA4CD45DF08}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{CA741AA7-FFA8-4A47-BADB-37BDF91C93B0}C:\diablo iii\diablo iii.exe] => (Allow) C:\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{D9B1B6E2-EACC-4DA1-BCF4-474A6901463B}C:\diablo iii\diablo iii.exe] => (Allow) C:\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{06E33030-AED3-4776-A1D6-F6CFD816EEDA}] => (Block) C:\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{0EE67BA6-C369-4000-90FA-40B463462770}] => (Block) C:\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{79E093E0-5D38-48F2-A36B-9F35123A7FB2}C:\diablo iii\x64\diablo iii64.exe] => (Allow) C:\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{C32D5837-C607-40CF-9BB0-EC4EECD002B4}C:\diablo iii\x64\diablo iii64.exe] => (Allow) C:\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{5984D5E2-B063-45BE-AA26-494DD70E874D}] => (Block) C:\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{09B144E4-EC01-4522-B297-E5B9342E7852}] => (Block) C:\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{B78C5B26-C5B3-4FCF-B619-2043017BFA98}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3240989F-A98A-4FC8-9AAC-32F06C52C022}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{56D911C5-C095-42E6-84E6-3107E4A4FE04}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4168852A-244B-4202-9817-A65E2A00A4BE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{30CC9196-07DC-4B30-8DB2-B3F0FCCCA452}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AB9ADE1B-D551-423E-B725-45AFFFEEDC3E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2719D8BC-7F79-4E0F-A664-AB30DD7CE1F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{84467FF1-DEDB-40E0-BDC6-5EBBEBE494CB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4D909DEC-7F31-48BB-8F96-BA908B706CD5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0707C218-5511-409F-8F2D-8A0FE3BD08CA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FC4A3FD8-92FD-4908-9717-9E5E47CBBBA4}] => (Allow) C:\Program Files (x86)\Opera\58.0.3135.65\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{5B2CD0C0-5FDE-4D11-BC6D-C230BD7310E2}] => (Allow) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{032AFB16-DD7D-45E4-A0E0-829451815B14}] => (Allow) C:\Program Files (x86)\Origin Games\Anthem\AnthemTrial.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A5AA3B16-61B1-41AC-876F-C2DCB62A1441}] => (Allow) C:\Program Files (x86)\Origin Games\Anthem\AnthemTrial.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{37F41C83-978B-4123-8B59-0EE3B4866FD7}] => (Allow) C:\Program Files (x86)\Origin Games\Anthem\Anthem.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{77A0FFB3-B9F0-4E44-9627-29CD03A8725E}] => (Allow) C:\Program Files (x86)\Origin Games\Anthem\Anthem.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7DB450BA-AF75-4CAB-81D4-AAD625DA4595}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
==================== Restore Points =========================
21-02-2019 14:43:04 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
23-02-2019 15:23:20 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/26/2019 11:28:49 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:28:16 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:17:16 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:17:16 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:15:59 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:00:20 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/25/2019 07:07:46 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/25/2019 02:12:57 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
System errors:
=============
Error: (02/26/2019 11:06:51 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/26/2019 11:00:27 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/25/2019 09:10:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TETKG5G)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.
Error: (02/25/2019 09:10:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TETKG5G)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.
Error: (02/25/2019 09:10:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TETKG5G)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.
Error: (02/25/2019 09:02:24 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/25/2019 07:50:18 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/25/2019 07:07:28 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Windows Defender:
===================================
Date: 2019-02-14 11:57:23.667
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {91735363-AB2C-4C1E-BC4D-8FD9C8F351ED}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-01-03 18:36:17.013
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {53966ADA-9471-417F-9CFF-2D931A53EFA6}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-01-03 16:38:13.669
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {A7AD4171-03B0-4FCB-9669-448D798E8EA6}
Scan Type: Antimalware
Scan Parameters: Quick Scan
CodeIntegrity:
===================================
Date: 2019-02-25 11:54:19.519
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Opera\58.0.3135.68\opera.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
Processor: AMD Ryzen 5 2600 Six-Core Processor
Percentage of memory in use: 49%
Total physical RAM: 8143.29 MB
Available physical RAM: 4094.5 MB
Total Virtual: 17871.29 MB
Available Virtual: 10176.04 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.91 GB) (Free:751.06 GB) NTFS
\\?\Volume{a941d7dc-fd95-48f2-9ac3-113f200cbd9c}\ (Obnovenie) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{da93c9ba-3a2d-4984-9caf-7ca6eb2af10d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25.02.2019 01
Ran by Martin (administrator) on DESKTOP-TETKG5G (26-02-2019 12:19:39)
Running from C:\Users\Martin\AppData\Local\Temp\scoped_dir4916_7742
Loaded Profiles: Martin (Available Profiles: Martin & 8IKEHd8Tqd & jUpy26V5TxgBjSlKMd)
Platform: Windows 10 Pro Version 1803 17134.590 (X64) Language: Slovenčina (Slovensko)
Default browser: Opera
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\NisSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Mad Catz Inc) [File not signed] C:\Program Files\Mad Catz\RAT4\RAT4_Profiler.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\.Battle.net.exe.698.10148.temp
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedlauncher.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.6610\Agent.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\.Battle.net.exe.698.10148.temp
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\.Battle.net.exe.698.10148.temp
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera_crashreporter.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Opera Software AS -> Opera Software) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RAT4] => C:\Program Files\Mad Catz\RAT4\RAT4_Profiler.exe [343040 2016-12-16] (Mad Catz Inc) [File not signed]
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3144480 2019-02-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Discord] => C:\Users\Martin\AppData\Local\Discord\app-0.0.304\Discord.exe [81747288 2019-01-15] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53540200 2019-02-08] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3113768 2019-01-29] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19467544 2018-10-23] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Ubisoft Game Launcher] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe [470872 2019-02-06] (Ubisoft Entertainment Sweden AB -> Ubisoft)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [1098728 2019-02-26] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{e1c02e96-739c-43d9-8fa4-e9e41d4eb9a8}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-3299137129-3959029366-2649080390-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
Opera:
=======
OPR Extension: (Install Chrome Extensions) - C:\Users\Martin\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2018-10-28]
OPR Extension: (Social Revealer) - C:\Users\Martin\AppData\Roaming\Opera Software\Opera Stable\Extensions\nmnnjcmpjlbbobehaikglfgpbjclcoeg [2018-10-28]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-01-29] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-01-29] (Electronic Arts, Inc. -> Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-02-23] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-02-23] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdgpio2; C:\Windows\System32\drivers\amdgpio2.sys [43400 2017-03-01] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [24424 2016-08-12] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\Windows\system32\DRIVERS\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AMDPCIDev; C:\Windows\System32\drivers\AMDPCIDev.sys [31592 2018-04-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R0 amdpsp; C:\Windows\System32\drivers\amdpsp.sys [137496 2018-09-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
S3 cpuz140; C:\Users\Martin\AppData\Local\Temp\cpuz140\cpuz140_x64.sys [43840 2019-02-25] (CPUID -> CPUID) <==== ATTENTION
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_edcffbdd101bbe5b\nvlddmkm.sys [20726016 2019-02-21] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-01-16] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek )
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [24144 2016-10-12] (Mad Catz Inc -> Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [59728 2016-10-12] (Mad Catz Inc -> Saitek)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-02-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [333792 2019-02-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [62432 2019-02-23] (Microsoft Windows -> Microsoft Corporation)
R3 _hid_0738_1731; C:\Windows\system32\DRIVERS\_hid_0738_1731.sys [210384 2016-10-12] (Mad Catz Inc -> Saitek)
R3 _usb_0738_1731; C:\Windows\System32\drivers\_usb_0738_1731.sys [46800 2016-10-12] (Mad Catz Inc -> Saitek)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-02-26 12:19 - 2019-02-26 12:19 - 000000000 ____D C:\FRST
2019-02-26 12:18 - 2019-02-26 12:18 - 002433536 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2019-02-26 12:17 - 2019-02-26 12:17 - 000000000 ____D C:\Program Files\trend micro
2019-02-25 11:59 - 2019-02-25 11:59 - 000001012 _____ C:\Users\Public\Desktop\Driver Easy.lnk
2019-02-25 11:59 - 2019-02-25 11:59 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Easeware
2019-02-25 11:59 - 2019-02-25 11:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy
2019-02-25 11:59 - 2019-02-25 11:59 - 000000000 ____D C:\Program Files\Easeware
2019-02-25 11:54 - 2019-02-25 11:54 - 000000000 ____D C:\Users\Martin\AppData\Local\mbamtray
2019-02-25 11:54 - 2019-02-25 11:54 - 000000000 ____D C:\Users\Martin\AppData\Local\mbam
2019-02-25 11:54 - 2019-02-25 11:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-02-25 11:54 - 2019-02-01 11:20 - 000020936 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2019-02-25 11:54 - 2019-01-08 15:32 - 000153328 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-02-25 11:53 - 2019-02-25 11:53 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-02-25 11:53 - 2019-02-25 11:53 - 000000000 ____D C:\Program Files\Malwarebytes
2019-02-22 17:17 - 2019-02-20 12:27 - 000133616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2019-02-22 17:15 - 2019-02-22 17:15 - 000000000 ____D C:\Windows\LastGood.Tmp
2019-02-22 17:13 - 2019-02-21 11:18 - 001006800 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 001006800 _____ C:\Windows\system32\vulkan-1.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000870096 _____ C:\Windows\SysWOW64\vulkan-1.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000552224 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000457096 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2019-02-22 17:13 - 2019-02-21 11:18 - 000286416 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2019-02-22 17:13 - 2019-02-21 11:18 - 000286416 _____ C:\Windows\system32\vulkaninfo.exe
2019-02-22 17:13 - 2019-02-21 11:18 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-02-22 17:13 - 2019-02-21 11:18 - 000260304 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2019-02-22 17:13 - 2019-02-21 11:17 - 000668640 _____ C:\Windows\system32\nvofapi64.dll
2019-02-22 17:13 - 2019-02-21 11:17 - 000534544 _____ C:\Windows\SysWOW64\nvofapi.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 040234592 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 035139840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 010319504 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 005274560 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 004624832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 002031872 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001734240 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441917.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001535232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001468184 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441917.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001464256 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 001129920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 000752064 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 000631688 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 000611720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2019-02-22 17:13 - 2019-02-21 11:16 - 000521824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 008784920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001471608 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFThevc.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001462208 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001169120 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001151984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFThevc.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 001145536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 000914912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 000822576 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 000794448 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2019-02-22 17:13 - 2019-02-21 11:15 - 000638176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2019-02-22 17:13 - 2019-02-21 11:14 - 020103080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2019-02-22 17:13 - 2019-02-21 11:14 - 017429864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2019-02-22 17:13 - 2019-02-21 11:14 - 004301152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2019-02-19 17:01 - 2019-02-19 17:01 - 000000000 ____D C:\Users\Martin\Desktop\Info
2019-02-19 16:47 - 2019-02-19 16:47 - 000359385 _____ C:\Users\Martin\Downloads\VYPISY_42596201_20190123.zip
2019-02-16 06:20 - 2019-02-23 20:41 - 000000000 ____D C:\Users\Martin\Documents\BioWare
2019-02-14 10:12 - 2019-02-08 15:38 - 001734104 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441891.dll
2019-02-14 10:12 - 2019-02-08 15:38 - 001468048 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441891.dll
2019-02-14 09:43 - 2019-02-24 10:33 - 000001215 _____ C:\Users\Public\Desktop\Anthem™.lnk
2019-02-14 09:43 - 2019-02-14 09:43 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2019-02-13 12:40 - 2019-02-06 08:54 - 004527584 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2019-02-13 12:40 - 2019-02-06 08:53 - 001634704 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2019-02-13 12:40 - 2019-02-06 08:35 - 000058368 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-02-13 12:40 - 2019-02-06 08:32 - 003648512 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2019-02-13 12:40 - 2019-02-06 08:30 - 004052992 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-02-13 12:40 - 2019-02-06 08:30 - 001662464 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-02-13 12:40 - 2019-02-06 08:30 - 001364992 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2019-02-13 12:40 - 2019-02-06 08:11 - 001454648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2019-02-13 12:40 - 2019-02-06 07:57 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-02-13 12:40 - 2019-02-06 07:52 - 004053504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-02-13 12:40 - 2019-02-06 07:52 - 002891776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2019-02-13 12:40 - 2019-02-06 07:52 - 001470976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-02-13 12:40 - 2019-02-06 04:01 - 001989040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-02-13 12:40 - 2019-02-06 04:01 - 001221432 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-02-13 12:40 - 2019-02-06 04:01 - 001029944 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-02-13 12:40 - 2019-02-06 04:01 - 000720480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2019-02-13 12:40 - 2019-02-06 04:01 - 000566568 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2019-02-13 12:40 - 2019-02-06 04:01 - 000134968 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2019-02-13 12:40 - 2019-02-06 04:01 - 000076088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2019-02-13 12:40 - 2019-02-06 04:01 - 000033576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NtlmShared.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 009084432 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-02-13 12:40 - 2019-02-06 04:00 - 007520112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 006572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 002719760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-02-13 12:40 - 2019-02-06 04:00 - 002465792 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 002421264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-02-13 12:40 - 2019-02-06 04:00 - 001257904 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2019-02-13 12:40 - 2019-02-06 04:00 - 001140680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2019-02-13 12:40 - 2019-02-06 04:00 - 001130568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 001098272 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 000945680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys
2019-02-13 12:40 - 2019-02-06 04:00 - 000899728 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2019-02-13 12:40 - 2019-02-06 04:00 - 000466960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2019-02-13 12:40 - 2019-02-06 04:00 - 000376120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2019-02-13 12:40 - 2019-02-06 04:00 - 000043536 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2019-02-13 12:40 - 2019-02-06 04:00 - 000038792 _____ (Microsoft Corporation) C:\Windows\system32\NtlmShared.dll
2019-02-13 12:40 - 2019-02-06 03:59 - 001922064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2019-02-13 12:40 - 2019-02-06 03:59 - 001457248 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2019-02-13 12:40 - 2019-02-06 03:59 - 000983128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2019-02-13 12:40 - 2019-02-06 03:59 - 000144288 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-02-13 12:40 - 2019-02-06 03:52 - 022014464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-02-13 12:40 - 2019-02-06 03:45 - 019404288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-02-13 12:40 - 2019-02-06 03:42 - 003711488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-02-13 12:40 - 2019-02-06 03:41 - 025853952 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-02-13 12:40 - 2019-02-06 03:41 - 005307392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2019-02-13 12:40 - 2019-02-06 03:40 - 005792256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-02-13 12:40 - 2019-02-06 03:40 - 000021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2019-02-13 12:40 - 2019-02-06 03:38 - 000608768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2019-02-13 12:40 - 2019-02-06 03:38 - 000561152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-02-13 12:40 - 2019-02-06 03:37 - 004515840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-02-13 12:40 - 2019-02-06 03:37 - 000578560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2019-02-13 12:40 - 2019-02-06 03:33 - 022714880 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-02-13 12:40 - 2019-02-06 03:29 - 004865536 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-02-13 12:40 - 2019-02-06 03:28 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2019-02-13 12:40 - 2019-02-06 03:28 - 000039936 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2019-02-13 12:40 - 2019-02-06 03:27 - 000894464 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2019-02-13 12:40 - 2019-02-06 03:27 - 000808448 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2019-02-13 12:40 - 2019-02-06 03:27 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2019-02-13 12:40 - 2019-02-06 03:27 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-02-13 12:40 - 2019-02-06 03:26 - 007599616 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-02-13 12:40 - 2019-02-06 03:26 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-02-13 12:40 - 2019-02-06 03:26 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2019-02-13 12:40 - 2019-02-06 03:26 - 000174592 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2019-02-13 12:40 - 2019-02-06 03:26 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-02-13 12:40 - 2019-02-06 03:25 - 000736256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-02-13 12:40 - 2019-02-06 03:25 - 000507392 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2019-02-13 12:40 - 2019-02-06 03:24 - 004937728 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-02-13 12:40 - 2019-02-06 03:24 - 000466432 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2019-02-13 12:40 - 2019-02-06 03:23 - 000393216 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2019-02-13 12:40 - 2019-02-06 03:22 - 000960512 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2019-02-13 12:40 - 2019-02-06 03:22 - 000885760 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2019-02-13 12:40 - 2019-02-06 03:21 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2019-02-13 12:40 - 2019-02-06 02:04 - 000001314 _____ C:\Windows\system32\tcbres.wim
2019-02-13 12:40 - 2019-01-12 09:56 - 001008640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MixedRealityCapture.dll
2019-02-13 12:40 - 2019-01-12 03:28 - 000352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2019-02-13 12:40 - 2019-01-09 19:08 - 000309560 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-02-13 12:40 - 2019-01-09 18:57 - 000720536 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-02-13 12:40 - 2019-01-09 18:42 - 004716032 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2019-02-13 12:40 - 2019-01-09 18:41 - 012730368 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-02-13 12:40 - 2019-01-09 18:41 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2019-02-13 12:40 - 2019-01-09 18:40 - 000171520 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2019-02-13 12:40 - 2019-01-09 18:36 - 001054720 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2019-02-13 12:40 - 2019-01-09 18:35 - 002919936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2019-02-13 12:40 - 2019-01-09 11:14 - 000607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-02-13 12:40 - 2019-01-09 10:55 - 011919872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-02-13 12:40 - 2019-01-09 10:55 - 000150016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2019-02-13 12:40 - 2019-01-09 09:55 - 001285432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2019-02-13 12:40 - 2019-01-09 09:48 - 000527368 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-02-13 12:40 - 2019-01-09 06:59 - 000611848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2019-02-13 12:40 - 2019-01-09 06:44 - 000078688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 006043496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 004789944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 002253480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 001981280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 001620264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000607376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000581592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVideoDSP.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000287640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000129088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000127744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rmclient.dll
2019-02-13 12:40 - 2019-01-09 06:43 - 000071456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
2019-02-13 12:40 - 2019-01-09 06:42 - 001035232 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2019-02-13 12:40 - 2019-01-09 06:42 - 000092704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2019-02-13 12:40 - 2019-01-09 06:40 - 002765336 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-02-13 12:40 - 2019-01-09 06:40 - 001063224 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2019-02-13 12:40 - 2019-01-09 06:40 - 000432952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2019-02-13 12:40 - 2019-01-09 06:40 - 000226104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-02-13 12:40 - 2019-01-09 06:40 - 000090872 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 007436016 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 004404720 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 002571632 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 001943128 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000789696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000713264 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000349656 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000269624 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000260800 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000175416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spacedump.sys
2019-02-13 12:40 - 2019-01-09 06:39 - 000164192 _____ (Microsoft Corporation) C:\Windows\system32\rmclient.dll
2019-02-13 12:40 - 2019-01-09 06:39 - 000085472 _____ (Microsoft Corporation) C:\Windows\system32\svchost.exe
2019-02-13 12:40 - 2019-01-09 06:33 - 016597504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2019-02-13 12:40 - 2019-01-09 06:32 - 013878272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2019-02-13 12:40 - 2019-01-09 06:29 - 008188928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-02-13 12:40 - 2019-01-09 06:29 - 002500096 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2019-02-13 12:40 - 2019-01-09 06:27 - 004710912 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2019-02-13 12:40 - 2019-01-09 06:27 - 004384256 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2019-02-13 12:40 - 2019-01-09 06:27 - 001587712 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2019-02-13 12:40 - 2019-01-09 06:26 - 006661632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-02-13 12:40 - 2019-01-09 06:26 - 003396608 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-02-13 12:40 - 2019-01-09 06:26 - 002966016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2019-02-13 12:40 - 2019-01-09 06:25 - 000161792 _____ (Microsoft Corporation) C:\Windows\system32\spacebridge.dll
2019-02-13 12:40 - 2019-01-09 06:24 - 000209408 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2019-02-13 12:40 - 2019-01-09 06:24 - 000174080 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2019-02-13 12:40 - 2019-01-09 06:24 - 000157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spacebridge.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 002368000 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\MSPhotography.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 001361408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSPhotography.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 001189888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 000898560 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\srpapi.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManagerClient.dll
2019-02-13 12:40 - 2019-01-09 06:23 - 000067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CapabilityAccessManagerClient.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 001551360 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 001395200 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000624640 _____ (Microsoft Corporation) C:\Windows\system32\PsmServiceExtHost.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000266752 _____ (Microsoft Corporation) C:\Windows\system32\CapabilityAccessManager.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-13 12:40 - 2019-01-09 06:22 - 000126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srpapi.dll
2019-02-13 12:40 - 2019-01-09 06:21 - 002173440 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-02-13 12:40 - 2019-01-09 06:21 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
2019-02-13 12:40 - 2019-01-09 06:21 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-13 12:40 - 2019-01-09 06:20 - 001000448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2019-02-13 12:40 - 2019-01-09 06:20 - 000916480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll
2019-02-13 12:40 - 2019-01-09 06:20 - 000607232 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2019-02-13 12:40 - 2019-01-09 06:20 - 000135680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll
2019-02-13 12:40 - 2019-01-09 06:19 - 000678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-02-13 12:40 - 2019-01-09 06:19 - 000507392 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2019-02-13 12:40 - 2019-01-09 06:19 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2019-02-13 12:40 - 2019-01-09 06:19 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2019-02-13 12:40 - 2019-01-09 06:18 - 000195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2019-02-13 12:40 - 2019-01-09 05:34 - 000806320 _____ C:\Windows\SysWOW64\locale.nls
2019-02-13 12:40 - 2019-01-09 05:34 - 000806320 _____ C:\Windows\system32\locale.nls
2019-02-13 12:40 - 2019-01-08 10:08 - 000868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-02-13 12:40 - 2019-01-08 04:06 - 001311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjet40.dll
2019-02-13 12:40 - 2019-01-08 04:06 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-02-13 12:40 - 2019-01-08 04:06 - 000000072 _____ C:\Windows\system32\edgehtmlpluginpolicy.bin
2019-02-07 13:31 - 2019-02-01 22:36 - 000047592 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2019-02-07 13:31 - 2019-02-01 02:38 - 001734560 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6441881.dll
2019-02-07 13:31 - 2019-02-01 02:38 - 001467864 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6441881.dll
2019-02-07 13:19 - 2019-02-07 17:34 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2019-02-07 13:19 - 2019-02-07 13:19 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2019-02-06 13:22 - 2019-02-26 11:00 - 000000000 ____D C:\Program Files (x86)\Origin Games
2019-01-31 16:29 - 2019-01-31 16:36 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Wargaming.net
2019-01-31 16:28 - 2019-01-31 16:28 - 000000000 ____D C:\ProgramData\Wargaming.net
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-02-26 12:20 - 2018-10-07 17:22 - 000000000 ____D C:\Users\Martin\AppData\Roaming\Origin
2019-02-26 12:20 - 2018-08-10 12:52 - 000000000 ____D C:\Users\Martin\AppData\Local\Battle.net
2019-02-26 12:18 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-02-26 11:27 - 2018-08-10 12:37 - 000000000 ____D C:\Program Files (x86)\Steam
2019-02-26 11:02 - 2018-08-10 12:25 - 000000000 ____D C:\ProgramData\NVIDIA
2019-02-26 11:01 - 2018-08-10 12:52 - 000000000 ____D C:\Program Files (x86)\Battle.net
2019-02-26 11:00 - 2018-10-07 17:22 - 000000000 ____D C:\ProgramData\Origin
2019-02-25 19:50 - 2018-08-10 18:15 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-02-25 14:11 - 2018-08-10 18:16 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-02-25 14:10 - 2018-04-11 22:04 - 000524288 _____ C:\Windows\system32\config\BBI
2019-02-25 11:54 - 2018-04-12 00:38 - 000000000 ___HD C:\Windows\ELAMBKUP
2019-02-24 15:45 - 2018-08-10 12:24 - 000000000 ____D C:\Users\Martin\AppData\Local\ElevatedDiagnostics
2019-02-24 15:45 - 2018-04-12 00:36 - 000000000 ____D C:\Windows\INF
2019-02-24 14:55 - 2018-08-10 12:27 - 000000000 ____D C:\Program Files (x86)\Opera
2019-02-24 08:13 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\AppReadiness
2019-02-23 20:10 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-02-23 20:00 - 2018-12-24 19:18 - 000048658 _____ C:\Windows\system32\perfh01B.dat
2019-02-23 20:00 - 2018-12-24 19:18 - 000011800 _____ C:\Windows\system32\perfc01B.dat
2019-02-23 20:00 - 2018-08-10 12:22 - 000882154 _____ C:\Windows\system32\PerfStringBackup.INI
2019-02-23 17:48 - 2018-08-10 18:16 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-02-22 17:18 - 2018-11-08 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-02-22 17:18 - 2018-08-10 12:25 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-02-22 17:18 - 2018-08-10 12:25 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-02-22 17:18 - 2018-08-10 12:21 - 000000000 ____D C:\Users\Martin\AppData\Local\VirtualStore
2019-02-22 14:54 - 2018-08-10 12:27 - 000004198 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1533900461
2019-02-22 14:54 - 2018-08-10 12:27 - 000001243 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prehliadač Opera.lnk
2019-02-21 11:14 - 2017-11-09 03:25 - 005042392 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2019-02-20 16:15 - 2018-08-10 12:53 - 000000000 ____D C:\Program Files (x86)\Overwatch
2019-02-20 16:10 - 2018-08-10 12:23 - 000000000 ____D C:\Users\Martin\AppData\Local\PlaceholderTileLogoFolder
2019-02-20 14:19 - 2018-08-10 20:09 - 000001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat
2019-02-20 14:19 - 2017-11-09 02:57 - 000049634 _____ C:\Windows\system32\nvinfo.pb
2019-02-20 12:14 - 2018-08-10 12:25 - 005365128 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 002624368 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 001767632 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 000651472 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 000450600 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 000125240 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2019-02-20 12:14 - 2018-08-10 12:25 - 000083440 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2019-02-19 16:35 - 2018-08-10 12:21 - 000000000 ____D C:\Users\Martin\AppData\Local\Packages
2019-02-17 14:01 - 2018-08-10 12:57 - 000000000 ____D C:\Users\Martin\AppData\Local\D3DSCache
2019-02-16 06:11 - 2018-08-10 12:56 - 000000000 ____D C:\Users\Martin\AppData\Roaming\discord
2019-02-15 13:14 - 2018-08-10 12:25 - 000001951 _____ C:\Windows\NvContainerRecovery.bat
2019-02-15 08:44 - 2018-11-16 17:14 - 000000000 ____D C:\Program Files\rempl
2019-02-14 09:43 - 2018-08-10 20:07 - 000000000 ____D C:\ProgramData\Package Cache
2019-02-14 09:25 - 2018-09-14 15:52 - 000001383 _____ C:\Users\Public\Desktop\Skype.lnk
2019-02-14 09:25 - 2018-09-14 15:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-02-14 09:14 - 2018-08-10 18:15 - 000234112 _____ C:\Windows\system32\FNTCACHE.DAT
2019-02-13 22:28 - 2018-08-10 12:25 - 008504452 _____ C:\Windows\system32\nvcoproc.bin
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ___SD C:\Windows\SysWOW64\F12
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ___SD C:\Windows\system32\F12
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\TextInput
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\ShellExperiences
2019-02-13 13:21 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\bcastdvr
2019-02-13 12:43 - 2018-04-12 00:30 - 000000000 ____D C:\Windows\CbsTemp
2019-02-13 12:40 - 2018-08-10 16:44 - 000000000 ____D C:\Windows\system32\MRT
2019-02-13 12:38 - 2018-08-10 16:43 - 129330784 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-02-11 13:04 - 2018-12-14 17:27 - 000000000 ____D C:\Users\Martin\AppData\Local\Ubisoft Game Launcher
2019-02-10 19:26 - 2018-08-10 12:24 - 000003380 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3299137129-3959029366-2649080390-1001
2019-02-10 19:26 - 2018-08-10 12:23 - 000000000 ___RD C:\Users\Martin\OneDrive
2019-02-10 19:26 - 2018-08-10 12:20 - 000002374 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-02-09 22:00 - 2018-08-10 12:20 - 000000000 ____D C:\Users\Martin
2019-02-09 21:26 - 2018-08-10 20:09 - 000000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
2019-02-09 12:43 - 2018-11-24 14:37 - 000000000 ____D C:\Users\Martin\Desktop\client_cf
2019-02-08 13:32 - 2018-08-10 12:37 - 000000000 ____D C:\ProgramData\Packages
2019-02-07 13:21 - 2018-11-21 08:46 - 000004308 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:21 - 2018-11-21 08:46 - 000004106 _____ C:\Windows\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:21 - 2018-11-21 08:46 - 000003976 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:21 - 2018-11-21 08:46 - 000003940 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:21 - 2018-11-21 08:46 - 000001447 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2019-02-07 13:21 - 2018-08-10 12:25 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-02-07 13:20 - 2018-08-10 20:09 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003926 _____ C:\Windows\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003858 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-07 13:20 - 2018-08-10 20:09 - 000003654 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-02-06 13:23 - 2018-04-12 00:38 - 000000000 ____D C:\Windows\LiveKernelReports
2019-02-05 13:27 - 2018-08-13 15:47 - 000000000 ____D C:\Program Files\CCleaner
2019-02-02 23:53 - 2018-08-11 07:56 - 000835480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-02-02 23:53 - 2018-08-11 07:56 - 000179600 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-02-01 22:36 - 2017-11-09 03:38 - 001682392 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2019-02-01 22:36 - 2017-11-09 03:38 - 000228768 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2019-01-30 21:17 - 2018-11-21 08:46 - 002741640 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2019-01-30 21:17 - 2018-11-21 08:46 - 002124680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2019-01-30 21:17 - 2018-11-21 08:46 - 001323400 _____ (NVIDIA Corporation) C:\Windows\system32\NvRtmpStreamer64.dll
2019-01-29 14:50 - 2018-10-07 17:23 - 000000000 ____D C:\Program Files (x86)\Origin
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\SysWOW64\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2018-08-10 18:15
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25.02.2019 01
Ran by Martin (26-02-2019 12:21:03)
Running from C:\Users\Martin\AppData\Local\Temp\scoped_dir4916_7742
Windows 10 Pro Version 1803 17134.590 (X64) (2018-08-10 11:18:41)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
8IKEHd8Tqd (S-1-5-21-3299137129-3959029366-2649080390-1002 - Limited - Enabled) => C:\Users\8IKEHd8Tqd
Administrator (S-1-5-21-3299137129-3959029366-2649080390-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3299137129-3959029366-2649080390-503 - Limited - Disabled)
Guest (S-1-5-21-3299137129-3959029366-2649080390-501 - Limited - Disabled)
jUpy26V5TxgBjSlKMd (S-1-5-21-3299137129-3959029366-2649080390-1003 - Limited - Enabled) => C:\Users\jUpy26V5TxgBjSlKMd
Martin (S-1-5-21-3299137129-3959029366-2649080390-1001 - Administrator - Enabled) => C:\Users\Martin
WDAGUtilityAccount (S-1-5-21-3299137129-3959029366-2649080390-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Aktualizácie NVIDIA 35.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 35.0.0.0 - NVIDIA Corporation) Hidden
Anthem™ (HKLM-x32\...\{57b4eaa0-f1f5-407e-afbd-2db397381ad8}) (Version: 1.0.57.12816 - Electronic Arts)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.48 - Piriform)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Discord) (Version: 0.0.304 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.17 - NVIDIA Corporation) Hidden
Driver Easy 5.6.9 (HKLM\...\DriverEasy_is1) (Version: 5.6.9 - Easeware)
Malwarebytes verzia 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\OneDriveSetup.exe) (Version: 19.002.0107.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision radič ovládača 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
NVIDIA Grafický ovládač 419.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.17 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 419.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.17 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
Opera Stable 58.0.3135.68 (HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\Opera 58.0.3135.68) (Version: 58.0.3135.68 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.34.21025 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Ovládací panel NVIDIA 419.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 419.17 - NVIDIA Corporation) Hidden
RAT4 (HKLM\...\{2B2EE1F4-8309-418D-BFDB-38AFC9CC70A3}) (Version: 7.0.60.3 - Mad Catz Inc)
Skype verzia 8.39 (HKLM-x32\...\Skype_is1) (Version: 8.39 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C99F4AFA-B32C-4063-865C-D7B5CC0A78FB}) (Version: 2.54.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 77.1 - Ubisoft)
WinRAR 5.60 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-3299137129-3959029366-2649080390-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\Windows\system32\shell32.dll (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0975CBCE-E5B9-4A32-AA86-F2AB8FA9BE10} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {117A09F2-4CD7-422C-8E2D-B334D0D0F9F9} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5313AC6F-0851-4F8B-BD35-EAA0D80D6FCF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {59A06A71-307E-435A-9968-B3CF7B073CB7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Ltd)
Task: {5EDD141B-A2FE-428C-97E3-EDD860A83556} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {81778E76-389D-4DB6-B41F-408FADBA97EC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {823BFBF3-144A-48D0-BF35-1C08513FF0F2} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {84BCDD05-8573-4473-BE6B-39B7756A7A96} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8DABA75C-C67F-4FC0-BFE3-20F5782D5341} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {9820B3AC-E491-47CD-AA05-A3F17EC527E8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {B89F8570-9245-456A-84AA-9DCF32AB3154} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BA0003D7-7630-4EAA-9E14-21C929F09155} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C34DCD10-B5D6-4948-9AAE-57DFD6BC09B4} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {CA45DE0F-524E-4B18-9AD8-BCC36DEDC60A} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CEDFCA59-BFA1-4173-8D65-33A263095300} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E61367C0-C981-4F51-B654-0BF2C86A8F49} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E936089C-9E67-4041-AFFA-51D6A01FA594} - System32\Tasks\Opera scheduled Autoupdate 1533900461 => C:\Program Files (x86)\Opera\launcher.exe (Opera Software AS -> Opera Software)
Task: {FABAAFEB-498E-407C-977C-CC1B58B48614} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-12-16 11:50 - 2016-12-16 11:50 - 000343040 _____ (Mad Catz Inc) [File not signed] C:\Program Files\Mad Catz\RAT4\RAT4_Profiler.exe
2018-10-07 17:24 - 2019-01-29 14:49 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 001177600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000116224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000211456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000068096 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000709120 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 001548288 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 001252864 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icuuc58.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000395776 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\SSLEAY32.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 003515904 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Qml.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 003390976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Quick.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 054063616 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 000207360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000002560 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icudt58.dll
2018-10-07 17:24 - 2019-01-29 14:49 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Origin\libEGL.DLL
2018-10-07 17:23 - 2019-01-29 14:49 - 003090944 _____ () [File not signed] C:\Program Files (x86)\Origin\libGLESv2.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qico.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000256512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000305152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2018-10-07 17:23 - 2019-01-29 14:49 - 000278016 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\mediaservice\dsengine.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000626176 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Multimedia.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 005022208 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Gui.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 004943360 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Core.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 003078656 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Quick.dll
2019-02-08 13:28 - 2019-02-08 13:28 - 000439296 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5WinExtras.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 002908672 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Qml.dll
2019-02-08 13:27 - 2019-02-08 13:28 - 004718080 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Widgets.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000877056 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Network.dll
2019-02-08 13:28 - 2019-02-08 13:28 - 000159232 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Xml.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 085602816 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\libcef.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000596992 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\chrome_elf.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 001140224 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\platforms\qwindows.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qgif.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000027136 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qico.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qjpeg.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000223744 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qmng.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qsvg.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000259072 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5Svg.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000332288 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\imageformats\qtiff.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 001463808 _____ (Firelight Technologies) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\fmod.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000047104 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\audio\qtaudio_windows.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000089600 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\libEGL.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 003841536 _____ () [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\libGLESv2.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick.2\qtquick2plugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000041984 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000071680 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Window.2\windowplugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000084480 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000096256 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5QuickControls2.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000681472 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\Qt5QuickTemplates2.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000211456 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000267776 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-02-08 13:27 - 2019-02-08 13:27 - 000014848 _____ (The Qt Company Ltd.) [File not signed] C:\Program Files (x86)\Battle.net\Battle.net.10949\qml\QtQml\Models.2\modelsplugin.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\Run32: => "RAT4"
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3299137129-3959029366-2649080390-1001\...\StartupApproved\Run: => "Ubisoft Game Launcher"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{F8A86B43-A922-47EC-BA20-3D3EC848C23D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{0BB022AC-FBFA-4E20-9E95-C7C3D4CF6E0F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A8C32C24-3F26-4C3F-8991-258EAAEDDB8B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [{6DEDE529-D4AF-4956-978D-77CDA32124E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dota 2 beta\game\bin\win64\dota2.exe (Valve -> )
FirewallRules: [TCP Query User{98608BC1-6114-49C2-8A9B-6FDD83BDBFA7}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{1A113517-423B-4FE4-B367-A4B670C861FF}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{1D8C3398-5930-4B5A-B55D-9406579FEB86}] => (Block) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{12BB9E80-1C75-45B9-9238-0F91657AAB0A}] => (Block) C:\program files (x86)\overwatch\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{A282724E-2519-4EE9-B174-BCEF0507388F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7A57EB93-7C8F-4C0D-B698-8BA4CD45DF08}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{CA741AA7-FFA8-4A47-BADB-37BDF91C93B0}C:\diablo iii\diablo iii.exe] => (Allow) C:\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{D9B1B6E2-EACC-4DA1-BCF4-474A6901463B}C:\diablo iii\diablo iii.exe] => (Allow) C:\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{06E33030-AED3-4776-A1D6-F6CFD816EEDA}] => (Block) C:\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{0EE67BA6-C369-4000-90FA-40B463462770}] => (Block) C:\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{79E093E0-5D38-48F2-A36B-9F35123A7FB2}C:\diablo iii\x64\diablo iii64.exe] => (Allow) C:\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{C32D5837-C607-40CF-9BB0-EC4EECD002B4}C:\diablo iii\x64\diablo iii64.exe] => (Allow) C:\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{5984D5E2-B063-45BE-AA26-494DD70E874D}] => (Block) C:\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{09B144E4-EC01-4522-B297-E5B9342E7852}] => (Block) C:\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{B78C5B26-C5B3-4FCF-B619-2043017BFA98}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3240989F-A98A-4FC8-9AAC-32F06C52C022}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{56D911C5-C095-42E6-84E6-3107E4A4FE04}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4168852A-244B-4202-9817-A65E2A00A4BE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{30CC9196-07DC-4B30-8DB2-B3F0FCCCA452}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AB9ADE1B-D551-423E-B725-45AFFFEEDC3E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2719D8BC-7F79-4E0F-A664-AB30DD7CE1F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{84467FF1-DEDB-40E0-BDC6-5EBBEBE494CB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4D909DEC-7F31-48BB-8F96-BA908B706CD5}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0707C218-5511-409F-8F2D-8A0FE3BD08CA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FC4A3FD8-92FD-4908-9717-9E5E47CBBBA4}] => (Allow) C:\Program Files (x86)\Opera\58.0.3135.65\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{5B2CD0C0-5FDE-4D11-BC6D-C230BD7310E2}] => (Allow) C:\Program Files (x86)\Opera\58.0.3135.68\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{032AFB16-DD7D-45E4-A0E0-829451815B14}] => (Allow) C:\Program Files (x86)\Origin Games\Anthem\AnthemTrial.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{A5AA3B16-61B1-41AC-876F-C2DCB62A1441}] => (Allow) C:\Program Files (x86)\Origin Games\Anthem\AnthemTrial.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{37F41C83-978B-4123-8B59-0EE3B4866FD7}] => (Allow) C:\Program Files (x86)\Origin Games\Anthem\Anthem.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{77A0FFB3-B9F0-4E44-9627-29CD03A8725E}] => (Allow) C:\Program Files (x86)\Origin Games\Anthem\Anthem.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{7DB450BA-AF75-4CAB-81D4-AAD625DA4595}] => (Allow) C:\Program Files\Easeware\DriverEasy\DriverEasy.exe (Easeware Technology Limited -> Easeware)
==================== Restore Points =========================
21-02-2019 14:43:04 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
23-02-2019 15:23:20 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (02/26/2019 11:28:49 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:28:16 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:17:16 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:17:16 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:15:59 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/26/2019 11:00:20 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/25/2019 07:07:46 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
Error: (02/25/2019 02:12:57 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-TETKG5G)
Description: httphttp-2147467263
System errors:
=============
Error: (02/26/2019 11:06:51 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/26/2019 11:00:27 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/25/2019 09:10:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TETKG5G)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.
Error: (02/25/2019 09:10:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TETKG5G)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.
Error: (02/25/2019 09:10:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-TETKG5G)
Description: The server {F9717507-6651-4EDB-BFF7-AE615179BCCF} did not register with DCOM within the required timeout.
Error: (02/25/2019 09:02:24 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/25/2019 07:50:18 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Error: (02/25/2019 07:07:28 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-TETKG5G)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
and APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
to the user DESKTOP-TETKG5G\Martin SID (S-1-5-21-3299137129-3959029366-2649080390-1001) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
Windows Defender:
===================================
Date: 2019-02-14 11:57:23.667
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {91735363-AB2C-4C1E-BC4D-8FD9C8F351ED}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-01-03 18:36:17.013
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {53966ADA-9471-417F-9CFF-2D931A53EFA6}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-01-03 16:38:13.669
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {A7AD4171-03B0-4FCB-9669-448D798E8EA6}
Scan Type: Antimalware
Scan Parameters: Quick Scan
CodeIntegrity:
===================================
Date: 2019-02-25 11:54:19.519
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Opera\58.0.3135.68\opera.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
Processor: AMD Ryzen 5 2600 Six-Core Processor
Percentage of memory in use: 49%
Total physical RAM: 8143.29 MB
Available physical RAM: 4094.5 MB
Total Virtual: 17871.29 MB
Available Virtual: 10176.04 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:930.91 GB) (Free:751.06 GB) NTFS
\\?\Volume{a941d7dc-fd95-48f2-9ac3-113f200cbd9c}\ (Obnovenie) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{da93c9ba-3a2d-4984-9caf-7ca6eb2af10d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== End of Addition.txt ============================
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: 