Dobrý den prosím o kontrolu logu FRST padá rychlost internetového připojení.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-02-2020
Ran by rewko (administrator) on DESKTOP-QF3F7F4 (Micro-Star International Co., Ltd. MS-7B48) (13-02-2020 08:52:47)
Running from C:\Users\rewko\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Loaded Profiles: rewko (Available Profiles: rewko)
Platform: Windows 10 Pro Version 1909 18363.592 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsorsp64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\FsPisces.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulprothoster.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(GOG Sp. z o.o. -> GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_d52c63e0e1c02c96\jhi_service.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\rewko\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\APP Manager\AppManager.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO.,LTD.) C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Python Software Foundation -> Python Software Foundation) C:\Program Files (x86)\GOG Galaxy\python\python.exe
(Python Software Foundation -> Python Software Foundation) C:\Program Files (x86)\GOG Galaxy\python\python.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1027360 2019-11-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [APP Manager] => C:\Program Files (x86)\MSI\APP Manager\AppManager.exe [3705520 2019-05-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835760 2019-06-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1028280 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [X_Boost] => C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe [4260000 2018-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26292912 2020-01-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3137808 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36098448 2020-02-05] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3311568 2020-01-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [launchOnStartup] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13186120 2019-12-29] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\RunOnce: [Application Restart #2] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.100\Installer\chrmstp.exe [2020-02-11] (Google LLC -> Google LLC)
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {07450C28-6721-48EE-A52C-AD96326E5849} - System32\Tasks\MSILEDKeeper_Host => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe [1068688 2019-08-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {1B333883-02A8-4C2A-9855-DDE8251A800D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {233D7998-23D3-45FC-9EAA-F8A9867CAD33} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {26C40013-35A5-4A63-ABB1-46CF48181851} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
Task: {374FE778-7CEC-4B62-AB84-167790489BA3} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\IntelPTTEKRecertification.exe [938768 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {4CF4388A-7DF3-4D08-BBDB-857D95C3206D} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {644EC0E1-2924-4BA9-ADA0-281BAF8B24CA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6BEFCEC5-E257-4B6E-8306-B380AF3D2C68} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {72F01EF0-A015-4A06-B9AA-EC6DD61D6EDA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A71C56C9-676D-48B7-956E-9DD6527BD53C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ABC08BA4-A1D6-4F2A-A72C-8578C943293E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
"C:\Windows\System32\Tasks\Intel\Intel Telemetry 2 (x86)" was unlocked. <==== ATTENTION
Task: {AC1D535C-A2AE-4EA1-BBD2-F0C1A01599D0} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {AF7AF81B-D988-402D-8D88-AAB1A3797E7E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C08AA499-FD9D-4AD1-9782-D64D48875012} - System32\Tasks\F-Secure\F-Secure Hotfix => C:\Program Files (x86)\F-Secure\SAFE\fs_hotfix.exe [280464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
Task: {D8D57FCA-48E8-4C4A-98D3-DB527A3C1AB1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E7AA5E24-C07F-4F7C-A38E-C9137E29F2FE} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F78046A1-578B-4AD6-9574-EDA6D5863F9C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{35c8ea1d-39f7-4e26-a0d9-f3bae6f80935}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{4c1c4675-98dc-48ce-8325-a7cc3d28333a}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Internet Explorer:
==================
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_ie_https\fs_ie_https64.dll [2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
BHO-x32: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_ie_https\fs_ie_https.dll [2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
Edge:
======
DownloadDir: C:\Users\rewko\Downloads
Edge Notifications: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> hxxps://www.facebook.com
Edge Extension: (AdBlock — best ad blocker) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-01-25]
FireFox:
========
FF DefaultProfile: jvgxijac.default
FF ProfilePath: C:\Users\rewko\AppData\Roaming\Avant Profiles\.default\gecko\Mozilla\Avant\Profiles\jvgxijac.default [2019-12-15]
FF NetworkProxy: Avant Profiles\.default\gecko\Mozilla\Avant\Profiles\jvgxijac.default -> type", 0
FF HKLM\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Extension: (Browsing Protection by F-Secure) - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi [2020-02-12]
FF HKLM-x32\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default [2020-02-11]
CHR HomePage: Default -> hxxp://seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.msn.com/?p ... google.com"
CHR Extension: (Prezentace) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-03]
CHR Extension: (Dokumenty) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-03]
CHR Extension: (Disk Google) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-03]
CHR Extension: (YouTube) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-03]
CHR Extension: (Tabulky) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-03]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2020-02-11]
CHR Extension: (Super Netflix) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\iakpdiefpdniabbekcbofaanjcpjkloe [2020-01-03]
CHR Extension: (Browsing Protection by F-Secure) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2020-01-03]
CHR Extension: (Netflix Subtitles Automatic (beta)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpgadigdffhcjldfkanacncocacekkie [2020-01-03]
CHR Extension: (OpenSubtitles for Netflix) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcdnnmhalbjbccempnhabdaeilabmdop [2020-01-03]
CHR Extension: (Tomikup Tlačítko) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlpfbleimihijpglffkfgngdlgplkjf [2020-01-03]
CHR Extension: (DotVPN — lepší způsob VPN) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiecbcckbofpmkkkdibbllpinceiihk [2020-01-03]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2020-02-11]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-01-03]
CHR Extension: (Plugins) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcblfncjaclajmegihojiekebofjcen [2020-01-03]
CHR Extension: (Open in VLC™ (VideoLAN)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhpfgmjcpbdcbmhjbhogflbbmdbomfmb [2020-01-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-03]
CHR Extension: (Gmail) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-03]
CHR Extension: (Chrome Media Router) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-11]
CHR HKLM\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]
CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe [440368 2020-01-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2020-02-12] (BitRaider LLC -> BitRaider, LLC)
R2 fshoster; C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe [216464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
R2 fsnethoster; C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe [216464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulhoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulnethoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulorsp; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsorsp64.exe [101248 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulprothoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulprothoster.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1582664 2019-12-29] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6617160 2019-12-06] (GOG Sp. z o.o. -> GOG.com)
S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2414264 2017-08-25] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [542016 2018-11-20] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\SocketHeciServer.exe [876304 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\TPMProvisioningService.exe [806152 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_d52c63e0e1c02c96\jhi_service.exe [648080 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [2668136 2019-12-16] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 LMS; C:\WINDOWS\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [553056 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService_x64.exe [2669240 2018-01-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2343600 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService_x64.exe [2725048 2017-12-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2255544 2018-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2507952 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2136248 2018-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [2740912 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_AppManager_Service; C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe [2055352 2019-01-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_DPCLTSERVICE; C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe [2167440 2019-04-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [113336 2017-12-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2325168 2019-11-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [183480 2019-02-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [34976 2018-12-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2475312 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3393848 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 RtkAudioUniversalService; C:\WINDOWS\System32\RtkAudUService64.exe [1027360 2019-11-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [974848 2019-08-17] (Microsoft Windows -> )
S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [290816 2019-10-04] (Microsoft Windows -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11791704 2019-03-18] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 XTU3SERVICE; C:\WINDOWS\SysWOW64\XtuService.exe [26416 2019-05-06] (Intel Corporation -> Intel(R) Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [33832 2019-12-11] (ASUSTeK Computer Inc. -> )
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2020-02-12] (BitRaider -> BitRaider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [136040 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-06-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-06-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R3 F-Secure Gatekeeper; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulgk.sys [290144 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R1 F-Secure UL HIPS; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshs.sys [103048 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R0 fsbts; C:\WINDOWS\System32\drivers\fsbts.sys [57512 2020-01-03] (F-Secure Corporation -> )
S0 fselms; C:\WINDOWS\System32\drivers\fselms.sys [15296 2020-01-03] (Microsoft Windows Early Launch Anti-malware Publisher -> F-Secure Corporation)
R3 fsni; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\fsni64.sys [111472 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R1 GLCKIO2; C:\WINDOWS\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [70664 2017-08-25] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [144528 2018-11-20] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 MEIx64; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_85021432489d6a1c\x64\TeeDriverW8x64.sys [266128 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
U1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [25616 2018-02-12] (MICSYS Technology Co., Ltd. -> )
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3485696 2019-03-19] (Microsoft Windows -> Intel Corporation)
R3 NTIOLib_DPC; C:\Program Files (x86)\MSI\DPC Latency Tuner\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [14288 2017-03-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9e532b5f619dc909\nvlddmkm.sys [23276960 2020-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1141744 2019-04-18] (Realtek Semiconductor Corp. -> Realtek )
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2719256 2020-02-04] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 XTUComponent; C:\WINDOWS\System32\drivers\iocbios2.sys [38280 2019-05-06] (Intel Corporation -> Intel Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2019-11-17] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-13 08:52 - 2020-02-13 08:53 - 000000000 ____D C:\FRST
2020-02-13 08:46 - 2020-02-13 08:46 - 000000000 ___HD C:\OneDriveTemp
2020-02-12 17:57 - 2020-02-12 18:22 - 584419276 _____ C:\Users\rewko\Downloads\Fairy Tail - 195 [1080p].mkv
2020-02-12 17:55 - 2020-02-12 17:55 - 000000000 ____D C:\Users\rewko\Documents\HeroBlade Logs
2020-02-12 17:55 - 2020-02-12 17:55 - 000000000 ____D C:\Users\rewko\AppData\Local\SWTOR
2020-02-12 16:18 - 2020-02-12 16:18 - 000000000 ____D C:\Users\Public\Documents\BitRaider
2020-02-12 16:18 - 2020-02-12 16:18 - 000000000 ____D C:\ProgramData\BitRaider
2020-02-12 16:15 - 2020-02-12 16:15 - 000000000 ____D C:\Users\rewko\AppData\Local\SWTORPerf
2020-02-12 16:13 - 2020-02-12 16:13 - 000000689 _____ C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
2020-02-12 16:13 - 2020-02-12 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2020-02-12 16:13 - 2020-02-12 16:13 - 000000000 _____ C:\end
2020-02-12 09:32 - 2020-02-12 09:48 - 374803518 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 80 [480p].mkv
2020-02-12 09:31 - 2020-02-12 09:31 - 000037771 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 80 [720p].ass
2020-02-11 14:48 - 2020-02-11 14:53 - 740984058 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 05 [720p].mkv
2020-02-11 14:47 - 2020-02-11 14:47 - 000031178 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_05_720p.ass
2020-02-10 10:52 - 2015-11-04 16:40 - 191158825 _____ C:\Users\rewko\Desktop\Fairy Tail - 157 CZ.mkv
2020-02-09 18:52 - 2020-02-09 19:07 - 741033740 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 05 [720p].mkv
2020-02-09 18:51 - 2020-02-09 19:06 - 754032752 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 18 [720p].mkv
2020-02-08 20:17 - 2020-02-08 20:17 - 000000000 ____D C:\Users\rewko\AppData\Local\GroveFlowers
2020-02-08 20:15 - 2020-02-08 20:15 - 000000223 _____ C:\Users\rewko\Desktop\Grove flowers.url
2020-02-07 17:58 - 2020-02-07 17:58 - 000000137 _____ C:\Users\rewko\Desktop\Ori and the Blind Forest.url
2020-02-07 15:54 - 2020-02-07 15:59 - 589975878 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 05 [720p].mkv
2020-02-07 15:53 - 2020-02-07 15:53 - 000016866 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 05 [720p].ass
2020-02-07 08:11 - 2020-02-07 08:51 - 2924342891 _____ C:\Users\rewko\Downloads\ Star.Trek.Picard.S01E03.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-02-06 14:45 - 2020-02-06 14:52 - 743053440 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 04 [720p].mkv
2020-02-06 14:45 - 2020-02-06 14:45 - 000035074 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_04_720p.ass
2020-02-06 13:14 - 2020-02-06 13:14 - 000034076 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_03_720p.ass
2020-02-06 12:31 - 2020-02-06 12:36 - 743174363 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 03 [720p].mkv
2020-02-06 12:23 - 2020-02-06 12:28 - 743533564 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 02 [720p].mkv
2020-02-06 12:22 - 2020-02-06 12:22 - 000035144 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 02 [720p].ass
2020-02-06 10:03 - 2020-02-06 10:10 - 743547492 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 01 [720p].mkv
2020-02-06 10:02 - 2020-02-06 10:02 - 000031039 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 01 [720p].ass
2020-02-05 11:48 - 2020-02-05 11:48 - 000001472 _____ C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA GeForce NOW.lnk
2020-02-05 11:48 - 2020-02-05 11:48 - 000001464 _____ C:\Users\rewko\Desktop\NVIDIA GeForce NOW.lnk
2020-02-05 08:56 - 2020-02-05 08:56 - 000000000 ____D C:\Users\rewko\AppData\Roaming\dvdcss
2020-02-05 07:36 - 2020-02-05 07:37 - 737560070 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 79 [720p].mkv
2020-02-05 07:36 - 2020-02-05 07:36 - 000040857 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 79 [720p].ass
2020-02-04 18:11 - 2020-02-04 18:11 - 000038990 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_04_1080p_CZ.ass
2020-02-04 17:16 - 2020-02-04 17:18 - 753528618 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 17 [720p].mkv
2020-02-04 16:50 - 2020-02-04 16:53 - 381426743 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 16 [480p].mkv
2020-02-03 20:32 - 2020-02-03 20:33 - 380742884 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 15 [480p].mkv
2020-02-03 20:30 - 2020-02-03 20:31 - 380952503 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 14 [480p].mkv
2020-02-03 20:07 - 2020-02-03 20:07 - 000033710 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 10 [720p].ass
2020-02-03 17:31 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000450576 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000353160 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-02-03 17:31 - 2020-01-31 00:03 - 011843504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-02-03 17:31 - 2020-01-31 00:03 - 010167544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 017462616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 005384584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 004718792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 002075904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001727320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6444219.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001569160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001490688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6444219.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001485688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001370360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001145776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001064384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000825720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000815120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000685912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000677584 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000660176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000557304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000545112 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 040511408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 035380120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 015031808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-02-02 12:52 - 2020-02-02 12:53 - 592045947 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 04 [720p].mkv
2020-02-02 12:51 - 2020-02-02 12:51 - 000024000 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 04 [720p].ass
2020-02-02 12:47 - 2020-02-02 12:48 - 586278890 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 03 [720p].mkv
2020-02-02 12:47 - 2020-02-02 12:47 - 000025144 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 03 [720p].ass
2020-02-02 12:24 - 2020-02-02 12:25 - 595025198 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 02 [720p].mkv
2020-02-02 12:23 - 2020-02-02 12:23 - 000017069 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 02 [720p].ass
2020-02-02 11:32 - 2020-02-02 11:32 - 000000000 ____D C:\Users\rewko\Downloads\A MILF s Tale 5 (2020)
2020-02-01 19:02 - 2020-02-01 19:05 - 1460501104 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 04 [1080p].mkv
2020-01-31 19:14 - 2020-01-31 19:15 - 584749977 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 01 [720p].mkv
2020-01-31 19:14 - 2020-01-31 19:14 - 000025132 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 01 [720p].ass
2020-01-31 19:12 - 2020-01-31 19:17 - 3076433650 _____ C:\Users\rewko\Downloads\Star.Trek.Picard.S01E02.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-01-30 17:31 - 2020-01-30 17:31 - 000038900 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_03_1080p_CZ.ass
2020-01-28 18:33 - 2020-01-28 18:33 - 000028064 _____ C:\Users\rewko\Downloads\Kuutei Dragons 03.ass
2020-01-28 17:46 - 2020-01-28 17:46 - 000043278 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_02_1080p_CZ (1).ass
2020-01-27 18:19 - 2020-01-27 18:20 - 741666322 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 03 [720p].mkv
2020-01-27 18:12 - 2020-01-27 18:13 - 742348334 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 02 [720p].mkv
2020-01-27 16:22 - 2020-01-27 16:24 - 1458179946 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 01 [1080p].mkv
2020-01-27 16:21 - 2020-01-27 16:21 - 000043531 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_01_1080p_CZ.ass
2020-01-26 18:20 - 2020-01-26 18:22 - 736782545 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 78 [720p].mkv
2020-01-26 18:20 - 2020-01-26 18:20 - 000035919 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 78 [720p].ass
2020-01-26 17:31 - 2020-01-26 17:31 - 000000000 ____D C:\Users\rewko\Downloads\Angela White, Ava Addams, Bridgette B - Chasing That Big D
2020-01-26 15:17 - 2020-02-04 16:34 - 002719256 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2020-01-26 15:17 - 2020-02-01 10:34 - 000000000 ____D C:\Users\rewko\Documents\Black Desert
2020-01-26 15:17 - 2020-01-26 15:17 - 000000016 _____ C:\ProgramData\mntemp
2020-01-26 13:58 - 2020-01-26 14:11 - 190906545 _____ C:\Users\rewko\Downloads\Angel.Has.Fallen.2019.1080p.BluRay.CZ.EN.DD.5.1.x264-MTK.mkv
2020-01-25 08:41 - 2020-01-25 08:45 - 3249058554 _____ C:\Users\rewko\Downloads\Star.Trek.Picard.S01E01.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-01-21 15:56 - 2020-01-21 17:09 - 808669205 _____ C:\Users\rewko\Downloads\DC's Legends of Tomorrow S05E00.720p.HDTV.x264-SVA+cz tit.mkv
2020-01-21 15:55 - 2020-01-21 15:55 - 000020246 _____ C:\Users\rewko\Downloads\legends-of-tomorrow-S05E00-hdtv-By-azur58.zip
2020-01-21 15:29 - 2020-01-21 15:29 - 000652371 ____H C:\Users\rewko\Downloads\.d3af212720c2f2024431ce49fae2d9a039c38180.parts
2020-01-21 15:27 - 2020-01-21 15:27 - 000000000 ____D C:\Users\rewko\Downloads\Arrow.S08E08.Crisis.on.Infinite.Earths.Part.Four.720p.AMZN.WEB-DL.DDP5.1.H.264-[TGx]
2020-01-21 11:40 - 2020-01-21 11:41 - 737258580 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 77 [720p].mkv
2020-01-21 11:39 - 2020-01-21 11:39 - 000030871 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 77 [720p].ass
2020-01-19 13:53 - 2020-01-21 15:25 - 000048933 _____ C:\Users\rewko\Desktop\Arrow.S08E08.AMZN.WEB-DL.DDP5.1.H.264-CasStudio-cz.srt
2020-01-18 19:09 - 2020-01-18 19:09 - 000000000 ____D C:\Users\rewko\AppData\Local\Indiana
2020-01-18 18:44 - 2020-01-18 18:47 - 000001269 _____ C:\Users\rewko\Desktop\CrystalDiskInfo.lnk
2020-01-18 18:44 - 2020-01-18 18:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2020-01-18 18:44 - 2020-01-18 18:44 - 000000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2020-01-18 14:18 - 2020-01-18 18:48 - 000000000 ____D C:\Users\rewko\AppData\Roaming\HD Tune Pro
2020-01-18 14:17 - 2020-01-18 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro
2020-01-18 14:17 - 2020-01-18 14:17 - 000000000 ____D C:\Program Files (x86)\HD Tune Pro
2020-01-18 12:39 - 2020-02-11 18:08 - 000000147 _____ C:\CosairDram.txt
2020-01-18 12:39 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files\Patriot
2020-01-18 12:39 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files (x86)\LightingService
2020-01-18 12:39 - 2018-02-12 04:22 - 000025616 _____ C:\WINDOWS\system32\Drivers\MsIo64.sys
2020-01-18 12:38 - 2020-01-18 12:41 - 000000786 _____ C:\Users\Public\Desktop\AURA.lnk
2020-01-18 12:38 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files\ASUS
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\Program Files\Galaxy
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\Program Files (x86)\ASUS
2020-01-18 12:38 - 2019-12-11 10:25 - 000120880 _____ C:\WINDOWS\system32\AsIO2.dll
2020-01-18 12:38 - 2019-12-11 10:25 - 000095280 _____ C:\WINDOWS\SysWOW64\AsIO2.dll
2020-01-18 12:38 - 2019-12-11 10:25 - 000033832 _____ C:\WINDOWS\system32\Drivers\AsIO2.sys
2020-01-18 12:38 - 2019-04-24 11:25 - 000029368 _____ C:\WINDOWS\system32\Drivers\GLCKIO2.sys
2020-01-18 12:37 - 2020-01-18 12:37 - 000000000 ____D C:\Users\rewko\Desktop\Lighting_Control_1.07.79
2020-01-18 08:22 - 2020-01-18 08:22 - 000000000 ____D C:\Users\rewko\Downloads\Angela White - Busting On The Burglar
2020-01-17 16:08 - 2020-01-17 16:08 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-17 16:02 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-17 16:02 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-01-16 17:15 - 2020-01-16 17:16 - 729593897 _____ C:\Users\rewko\Downloads\[HorribleSubs] Somali to Mori no Kamisama - 01 [720p].mkv
2020-01-16 17:15 - 2020-01-16 17:15 - 000025846 _____ C:\Users\rewko\Downloads\Somali_to_Mori_no_Kamisama_-_01_preklad.ass
2020-01-15 18:20 - 2020-01-15 18:20 - 000029461 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 76 [720p].ass
2020-01-15 17:52 - 2020-01-15 17:52 - 000033121 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 75 [720p].ass
2020-01-15 16:59 - 2020-01-15 17:01 - 737932191 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 76 [720p].mkv
2020-01-15 16:57 - 2020-01-15 17:00 - 737224070 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 75 [720p].mkv
2020-01-15 16:57 - 2020-01-15 16:59 - 737446067 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 74 [720p].mkv
2020-01-15 16:57 - 2020-01-15 16:57 - 000039401 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 73 [720p].ass
2020-01-15 16:57 - 2020-01-15 16:57 - 000036288 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 74 [720p].ass
2020-01-15 16:56 - 2020-01-15 16:59 - 736513578 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 73 [720p].mkv
2020-01-14 14:58 - 2020-01-14 14:58 - 000240739 _____ C:\Users\rewko\Downloads\PTV_TPS_CZ_CZ.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-13 08:49 - 2019-11-12 14:48 - 000000000 ____D C:\Users\rewko\AppData\Local\Origin
2020-02-13 08:49 - 2019-11-12 14:48 - 000000000 ____D C:\ProgramData\Origin
2020-02-13 08:48 - 2019-11-09 19:35 - 000000000 ____D C:\ProgramData\NVIDIA
2020-02-13 08:46 - 2019-12-07 19:38 - 000000000 ____D C:\Program Files (x86)\Steam
2020-02-13 08:46 - 2019-06-27 14:59 - 000000000 ___RD C:\Users\rewko\OneDrive
2020-02-12 20:11 - 2019-11-09 19:51 - 000000000 ____D C:\Users\rewko\AppData\Local\Battle.net
2020-02-12 20:02 - 2019-11-09 19:28 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-12 18:37 - 2019-11-09 20:11 - 000000000 ____D C:\Users\rewko\AppData\Roaming\vlc
2020-02-12 10:36 - 2019-11-09 20:00 - 000000000 ____D C:\Users\rewko\AppData\Roaming\qBittorrent
2020-02-11 20:23 - 2020-01-01 11:35 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-11 20:23 - 2020-01-01 11:35 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-02-11 18:14 - 2019-11-09 19:43 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-02-11 18:14 - 2019-11-09 19:30 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-02-11 18:14 - 2019-11-09 19:30 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-02-11 18:14 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\INF
2020-02-11 18:08 - 2020-01-12 14:05 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-02-11 18:08 - 2019-11-09 19:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-02-11 18:08 - 2019-11-09 19:25 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-02-11 17:51 - 2019-11-09 19:26 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-02-10 08:43 - 2019-11-09 19:28 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-10 08:43 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-09 08:48 - 2019-11-12 14:54 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-02-09 08:48 - 2019-11-12 14:48 - 000000000 ____D C:\Users\rewko\AppData\Roaming\Origin
2020-02-08 20:15 - 2019-07-07 18:22 - 000000000 ____D C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-02-07 17:45 - 2019-11-09 19:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-02-06 18:55 - 2019-11-09 19:43 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2545330955-1925899768-253270718-1001
2020-02-06 18:55 - 2019-11-09 19:36 - 000002361 _____ C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-02-05 11:48 - 2019-12-03 18:15 - 000000000 ____D C:\Users\rewko\AppData\Local\NVIDIA Corporation
2020-02-05 11:48 - 2019-11-09 19:35 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-02-05 09:35 - 2019-11-09 19:36 - 000000000 ____D C:\Users\rewko
2020-02-05 07:18 - 2020-01-01 11:35 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-05 07:18 - 2020-01-01 11:35 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-03 17:32 - 2019-11-17 08:03 - 000000000 ____D C:\Users\rewko\AppData\Local\NVIDIA
2020-02-01 15:45 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-01-30 23:58 - 2019-12-12 19:30 - 004230752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-01-30 23:58 - 2019-11-07 17:31 - 004963008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-01-30 02:40 - 2019-11-07 17:31 - 000055783 _____ C:\WINDOWS\system32\nvinfo.pb
2020-01-30 00:56 - 2019-11-09 19:35 - 005577224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 002655864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 001767920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000670840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000454512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000131176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000083976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-01-29 16:28 - 2019-11-09 19:51 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-01-28 16:06 - 2019-11-09 19:45 - 000000000 ____D C:\Users\rewko\AppData\Local\PlaceholderTileLogoFolder
2020-01-28 16:06 - 2019-11-09 19:41 - 000000000 ____D C:\Users\rewko\AppData\Local\Packages
2020-01-27 16:26 - 2019-11-12 14:50 - 000000000 ____D C:\Users\rewko\AppData\Local\D3DSCache
2020-01-27 15:17 - 2020-01-03 16:12 - 000002017 _____ C:\Users\Public\Desktop\F-Secure SAFE.lnk
2020-01-27 08:11 - 2019-11-09 19:35 - 008887562 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-01-26 14:17 - 2019-10-06 13:28 - 000000000 ____D C:\Games
2020-01-23 14:28 - 2019-11-09 19:35 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-01-22 15:14 - 2020-01-01 11:30 - 000000000 ____D C:\Program Files (x86)\MSI
2020-01-22 15:14 - 2019-11-09 18:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2020-01-21 16:29 - 2019-11-09 19:41 - 000000000 ____D C:\ProgramData\Packages
2020-01-18 17:53 - 2019-11-21 15:08 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-01-18 12:39 - 2020-01-01 11:34 - 000000000 ____D C:\Program Files\ENE
2020-01-18 12:39 - 2019-11-12 14:50 - 000000000 ____D C:\ProgramData\Package Cache
2020-01-18 12:38 - 2020-01-01 11:33 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-01-18 12:35 - 2017-10-17 18:21 - 000356446 _____ C:\Users\rewko\Desktop\AURA SDK Guide_2.0.0.pdf
2020-01-18 12:35 - 2017-08-25 15:05 - 000000188 _____ C:\Users\rewko\Desktop\ver.02.03.txt
2020-01-17 16:17 - 2019-11-09 19:34 - 000268616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-17 16:11 - 2019-11-09 19:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-17 16:09 - 2019-11-09 19:47 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-16 15:01 - 2019-11-12 14:49 - 000000000 ____D C:\Program Files (x86)\Origin
==================== Files in the root of some directories ========
2020-01-01 11:30 - 2020-01-01 11:30 - 000007605 _____ () C:\Users\rewko\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020
Ran by rewko (13-02-2020 08:53:30)
Running from C:\Users\rewko\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Windows 10 Pro Version 1909 18363.592 (X64) (2019-11-09 18:41:33)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2545330955-1925899768-253270718-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2545330955-1925899768-253270718-503 - Limited - Disabled)
Guest (S-1-5-21-2545330955-1925899768-253270718-501 - Limited - Disabled)
rewko (S-1-5-21-2545330955-1925899768-253270718-1001 - Administrator - Enabled) => C:\Users\rewko
WDAGUtilityAccount (S-1-5-21-2545330955-1925899768-253270718-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: F-Secure SAFE (Enabled - Up to date) {8AC831E5-DF57-0DC0-D07B-4DE1A5FFFD9A}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
AIDA64 Extreme v6.20 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.20 - FinalWire Ltd.)
Aktualizace NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.3.11.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM-x32\...\{96f500e7-aac6-40c8-aa25-d223f373d8dd}) (Version: 2.3.11.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{1b15ca41-2671-4685-ab55-b8c814c4942a}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Display Component (HKLM-x32\...\{94267bd0-fa8a-4aa4-925d-ec3e0d130fba}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{e46f527f-1e64-4554-abc1-115f3429c25c}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM-x32\...\{b96dabae-c7ef-45f2-95ab-1a4d917262a3}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{D800D836-DE15-4B00-8273-521F022CD837}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{d00daf18-4c78-4fc6-bb05-376a06c79c48}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM\...\{B5E322FB-C191-463E-BDDD-4F22290EDFDB}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM-x32\...\{277875e0-972c-4705-b09c-ca5acf5b2f7c}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.03.45 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{2977b6c2-6523-42f4-8f52-bf4f7fc7a840}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{3507c756-a80f-4b0e-8475-975d8b432176}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{52400cff-4628-4ca3-a922-3767b198c1fd}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden
ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden
ASUS MB Peripheral Products (HKLM-x32\...\{243ceb39-3b77-43ab-9135-fddab4ac7caf}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden
ASUS Mouse HAL (HKLM\...\{1838F91B-D481-45AA-B92F-071C62D0A19A}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden
ASUS Mouse HAL (HKLM-x32\...\{3dcded5b-10da-4d98-9c1f-c33d25288ebd}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM\...\{723B40A4-5BF2-4DC6-834A-2ADF75F3CF7E}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM-x32\...\{0ebcd5fb-7bf9-45b4-a0b6-0932d728e289}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden
AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.07.79 - ASUSTeK Computer Inc.)
AURA DRAM Component (HKLM\...\{3881F403-B6B7-4D2F-BDAC-7901EB677F52}) (Version: 1.0.37 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{60d8d6b5-0ec5-420a-a407-a42e19346d46}) (Version: 1.0.37 - ASUS) Hidden
AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.03.79 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{880f3eb6-28fe-4c63-875f-c6fb491fc334}) (Version: 3.03.79 - ASUSTeK Computer Inc.)
Avant Browser (remove only) (HKLM-x32\...\AvantBrowser) (Version: 12.5.0.0 - Avant Force)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.74.1085 - AB Team, d.o.o.)
Corsair AURA DRAM Component (HKLM\...\{376E0869-A4F1-4DC7-A1FD-EBF3AFFEB832}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden
Corsair AURA DRAM Component (HKLM-x32\...\{8fce5ea9-d56f-4f89-a363-830eceb72c72}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden
CrystalDiskInfo 7.0.4 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.4 - Crystal Dew World)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dynamic Application Loader Host Interface Service (HKLM\...\{BCBA926F-0E0A-4AB4-9498-7A8E78A83408}) (Version: 1.0.0.0 - Intel Corporation) Hidden
ENE IO Driver (HKLM-x32\...\{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Version: 3.0.0 - ENE TECHNOLOGY INC.) Hidden
ENE RGB HAL (HKLM\...\{BBEB79B8-472B-44E6-B0BA-157909EFE7D6}) (Version: 1.00.12 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{e0fa04a3-0593-40a3-8eea-c45cf5d09062}) (Version: 1.00.12 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_EHD_ASM_HAL (HKLM\...\{CB19FBA3-7A4F-4D2A-A231-F580B5DCD203}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_ASM_HAL (HKLM-x32\...\{3532d794-73d7-42bd-af02-9f00623dd567}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{455E34DD-5F26-431E-B542-72F73A8FEED8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{24a265a5-9f90-4090-904f-5ed9fa4414b8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{C69A2919-0662-4390-9418-67C931B44C18}) (Version: 1.1.236.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EZ CD Audio Converter (HKLM-x32\...\EZ CD Audio Converter) (Version: 8.2.2 - Poikosoft)
F-Secure SAFE (HKLM-x32\...\{9DEBA07D-5FCD-42F8-88F7-0232DC284B47}) (Version: 17.7 - F-Secure Corporation)
GALAX GAMER RGB (HKLM\...\{06A16AA8-BBA7-4362-962E-16651962D87C}) (Version: 1.00.02 - Galaxy Microsystems Ltd.) Hidden
GALAX GAMER RGB (HKLM-x32\...\{1257fdeb-ffa3-4e17-9d4b-189075ea3656}) (Version: 1.00.02 - Galaxy Microsystems Ltd.)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.100 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\R3JhbmRUaGVmdEF1dG9W_is1) (Version: 1 - )
HD Tune Pro 5.70 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{BB9BB437-83CC-4497-AE89-911D61973784}) (Version: 6.5.1.330 - Intel Corporation) Hidden
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{dfe98c64-9135-41f4-a771-0a6cb80289af}) (Version: 6.5.1.330 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1937.12.0.1312 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{c4a581e8-a702-448c-80c7-4b6192985db2}) (Version: 10.1.18228.8176 - Intel(R) Corporation)
Kingston AURA DRAM Component (HKLM\...\{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{c0c65c06-e79e-44b5-bd66-85099364afeb}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Microsoft OneDrive (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MSI APP Manager (HKLM-x32\...\{00F47104-12BA-4E58-A7E6-F456C1BA338E}}_is1) (Version: 1.0.0.32 - MSI)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 3.0.0.99 - MSI)
MSI DPC Latency Tuner (HKLM-x32\...\{1AAC56F3-3F60-47DB-BE6B-088F36ADFDC5}_is1) (Version: 1.0.0.38 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.15 - MSI)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.65 - MSI)
MSI MysticLight (HKLM-x32\...\{93874B70-6C5E-446A-AF4D-E5AC776A0386}}_is1) (Version: 3.0.0.66 - MSI)
MSI Smart Tool (HKLM-x32\...\{DDCCA038-DAB1-4D09-B85C-848020AA75D6}}_is1) (Version: 1.0.0.43 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.28 - MSI)
MSI X Boost (HKLM-x32\...\{515143BB-7A11-4D85-B941-D520AAAA099C}_is1) (Version: 1.0.0.46 - MSI)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.5.0.0 - Duodian Technology Co. Ltd.)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.16.148 (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.16.148 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.338.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač HD audia 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 442.19 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 442.19 - NVIDIA Corporation) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory)
Patriot Viper RGB (HKLM\...\{E42E13B0-071E-49C1-B1CC-58198E82F302}) (Version: 1.00.08 - Patriot Memory) Hidden
Patriot Viper RGB (HKLM-x32\...\{4b7bfeff-ac47-46c1-aea6-4556f5f0e6bb}) (Version: 1.00.08 - Patriot Memory)
qBittorrent 4.1.9.1 (HKLM-x32\...\qBittorrent) (Version: 4.1.9.1 - The qBittorrent project)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.34.307.2019 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8844.1 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.23.0 - Samsung Electronics Co., Ltd.)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 13.0.0.53 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.2.2558 - TeamViewer)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Packages:
=========
AdBlock -> C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-01-25] (BetaFish)
EdgeDevtoolsPlugin -> C:\Windows\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2019-11-09] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-14] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.7.199.0_x64__dt26b99r8h8gj [2020-01-02] (Realtek Semiconductor Corp)
Samsung Flow -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy [2020-01-30] (Samsung Electronics Co, Ltd.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0 [2020-01-30] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [F-Secure DataGuard Icon Overlay] -> {CA789262-D278-40F7-AC12-19C0395F9DD9} => C:\Program Files (x86)\F-Secure\SAFE\FsShellExtension64.dll [2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => C:\Program Files\EZ CD Audio Converter\ezcd64.dll [2018-11-28] (Poikosoft -> Poikosoft)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => C:\Program Files\EZ CD Audio Converter\ezcd64.dll [2018-11-28] (Poikosoft -> Poikosoft)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-12-07 10:24 - 2019-12-07 10:24 - 098275328 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 000092672 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 003922432 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2020-01-01 11:34 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\APP Manager\unrar.dll
2020-01-22 15:14 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\Live Update\unrar.dll
2020-01-01 11:34 - 2017-08-02 14:48 - 000237568 _____ () [File not signed] C:\Program Files (x86)\MSI\MysticLight\LEDControl.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Origin\libEGL.DLL
2019-11-12 14:49 - 2020-01-16 15:01 - 003090944 _____ () [File not signed] C:\Program Files (x86)\Origin\libGLESv2.dll
2019-11-05 14:33 - 2019-11-05 14:33 - 000209920 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\AacHal_x86.dll
2019-10-22 02:16 - 2019-10-22 02:16 - 000264704 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\SB_SMBUS_SDK.dll
2019-11-06 14:09 - 2019-11-06 14:09 - 000190976 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_DRAM_RGB_AURA42\x86\AacHal_x86.dll
2019-11-25 14:44 - 2019-11-25 14:44 - 000176128 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_ASM_HAL\AacHal_x86.dll
2019-07-25 11:55 - 2019-07-25 11:55 - 000184832 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_M2_HAL\AacHal_x86.dll
2018-09-20 09:39 - 2018-09-20 09:39 - 000156672 _____ () [File not signed] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\AacHal_x86.dll
2019-12-21 09:24 - 2019-12-21 09:24 - 000064512 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_frozenlist.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000050176 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_helpers.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000225792 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_http_parser.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000045056 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_http_writer.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_websocket.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\multidict\_multidict.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000073216 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\yarl\_quoting.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000231424 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\_yaml.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000048128 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_frozenlist.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000036864 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_helpers.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000216064 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_http_parser.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000032256 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_http_writer.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000022528 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_websocket.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\multidict\_multidict.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000061952 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\psutil\_psutil_windows.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000073216 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\yarl\_quoting.cp37-win32.pyd
2019-12-10 16:40 - 2019-12-10 16:40 - 002831360 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\LightingService\log4cxx.dll
2020-01-01 11:34 - 2018-04-03 15:22 - 000053248 _____ (MS) [File not signed] C:\Program Files (x86)\MSI\MysticLight\MsIo32.dll
2018-09-20 09:08 - 2018-09-20 09:08 - 000053760 _____ (MS) [File not signed] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\MsIo32_Galax.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 000547840 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000002560 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icudt58.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 001252864 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icuuc58.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\SSLEAY32.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qico.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000256512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000305152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000709120 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000207360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 003513344 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Qml.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 003390976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Quick.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000068096 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 054071296 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000211456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000116224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2019-12-03 16:12 - 2019-12-03 16:12 - 000467456 _____ (TODO: <Company name>) [File not signed] C:\Program Files\ASUS\Aac_Keyboard\AacKbHal_x86.dll
2020-01-01 11:34 - 2016-10-03 13:43 - 000399872 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\MSI\MysticLight\Lib\SDKDLL.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\rewko\Data aplikací:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\rewko\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-11-09 19:29 - 2019-11-09 19:28 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2019-12-30 10:48 - 2020-01-04 17:14 - 000000511 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 DESKTOP-QF3F7F4.mshome.net # 2025 1 4 2 16 14 29 103
192.168.137.91 Galaxy-A7-2018.mshome.net # 2020 1 6 11 16 14 29 103
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\rewko\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg
DNS Servers: 62.129.50.20 - 85.135.32.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [{6115B74A-F481-4715-B51F-7F5978E26C20}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{D531BAE0-5E73-4CC2-AE2F-7A4AB0C416D8}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{BAC5F3AA-EFD6-43BC-8A3B-6DA4968CC73E}E:\hry\hearthstone\hearthstone.exe] => (Allow) E:\hry\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{2CB49B95-EE1B-423A-8DD4-9680E1D6A5FB}E:\hry\hearthstone\hearthstone.exe] => (Allow) E:\hry\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{84CC4630-C137-41E7-8653-AED8C28C4A17}] => (Allow) D:\Program Files\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.)
FirewallRules: [{A7B82843-BF0C-446B-9EB8-F9404093B804}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> BigNox Corporation)
FirewallRules: [TCP Query User{FD0A6540-1A2D-4098-BF39-2EFADF86CFC5}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [UDP Query User{917CE915-8A1B-42ED-8774-D42715D67C8B}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [{5E6809B5-E17F-4227-8BF1-56821853B798}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A40E82B2-C317-446E-9903-730A51BCF82C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{9356E3C2-9C16-440C-BAEF-92D374571DF7}C:\program files (x86)\grand theft auto v\gta5.exe] => (Block) C:\program files (x86)\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{2922C635-64C8-472B-BB35-91F0277FBF71}C:\program files (x86)\grand theft auto v\gta5.exe] => (Block) C:\program files (x86)\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [{F909AC20-CFFF-4977-B952-BB207B6B4029}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DFD8BA8E-310D-444E-9862-5D8C11ADF220}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{CE79F5DD-18FB-40B2-AFD3-E28A25E81BA1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ECB7A86B-9FEE-4EF1-935D-FD4D649E6FDD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{54D7EB71-A3E2-41A1-BCB2-E519557D086B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{8F943F30-7256-492E-A494-53791FA30229}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{07827EF2-5C19-4622-B66E-EA8A27ED91D2}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{B117FC1C-A434-4333-8A0D-DFE90A19CA05}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{09D6F9AE-95E1-4F59-9646-8D072A9B7F29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{89833A94-EB61-4C81-AB82-28C43B823A0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1F72C4B8-7690-460F-93C4-B2B483F8C377}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F7F77E03-08C9-421F-AECE-6C2E14B81FBC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F0B4CD74-A45C-4747-BD3A-67C3ABBA2AFD}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{FFC6BF94-E4AE-4BE9-970B-A42B2DEF366E}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{437D91B6-AC79-414D-99F7-9AD5528D90DE}] => (Allow) G:\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> )
FirewallRules: [{A40069FE-EE6F-4B89-BD6D-5A3773334706}] => (Allow) G:\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> )
FirewallRules: [{2CDE5D93-619A-48B1-97DF-E0AFE0ED1E04}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{D0D26D84-1CA2-412C-9503-52119B5F134C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C10581A0-27C0-49C1-9DB6-6723C7FEF231}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{4E317ECE-E6E0-4A70-B478-F05550BEFD60}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{44990B40-A639-4496-B85A-159666556E7A}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{8363E8C6-65C4-4AC0-B1BF-DF46FE33E2F3}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{64B55CF8-4689-466E-A368-74D8BDC521C2}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{1867F314-3288-46D1-A0CC-84763AB5AA06}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{CEE6493D-7238-4E8B-B60B-5C353A49C9AF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7930DBC3-62C9-4598-B1ED-9EA1047A2CF2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{85A32405-D95A-46CA-AA4C-9E9FC67846AB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A83966F1-9B01-405B-9EAA-83D54ED4B263}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BF9BA3AA-B6DF-4F7B-AA03-0CF3DA5E8124}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AE192729-ACB2-463A-86A2-135535EE22E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4BEFF340-F053-4C77-91AD-786F26761EA2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5E3CF6BD-D833-4FC0-A363-33D5CD75C201}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{4337516C-0A0B-423A-BE7A-992C02FE4B27}C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{DEE386FA-E6D1-4A3E-9B88-FC0D9BE4C748}C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{70D81B6A-8546-48A5-85C9-71E30D0FCEA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori\ori.exe () [File not signed]
FirewallRules: [{9DB2E6D6-7DC7-4FC7-B04D-9569F80D685E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori\ori.exe () [File not signed]
FirewallRules: [{7700146B-8902-4240-90D5-618006DB4F97}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grove flowers\nw.exe (The NW.js Community) [File not signed]
FirewallRules: [{84EC79F5-2E05-4023-BB18-A03E61795306}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grove flowers\nw.exe (The NW.js Community) [File not signed]
FirewallRules: [{92E80C83-10EB-415C-B204-F3548B7D47B3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3B726F82-A32D-48BD-8BB3-B69DB2F4FC53}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{FF272929-B573-4835-AB36-DF9C7F92B3B1}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{66D00699-62F6-4C41-9A2D-CB6308D3CC2A}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{439B30A1-AE8E-4D35-B7BA-52BC60B2129B}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{C5B5C231-04F4-484D-A148-3284B654785A}] => (Allow) LPort=26820
FirewallRules: [{B70A1684-9A17-4616-9237-E1863B2E5A2D}] => (Allow) LPort=26822
==================== Restore Points =========================
07-02-2020 14:30:49 Naplánovaný kontrolní bod
11-02-2020 17:50:57 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/13/2020 08:46:48 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=4
Error: (02/13/2020 08:46:27 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\WINDOWS\system32\sysmain.dll (kód chyby Win32 126).
Error: (02/13/2020 08:43:48 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0x8007139F
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (02/13/2020 08:43:42 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0x8007139F
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (02/12/2020 08:07:38 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (22108,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (02/12/2020 07:59:20 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (23864,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (02/12/2020 07:37:38 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9780,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (02/12/2020 07:23:33 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (21812,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
System errors:
=============
Error: (02/10/2020 09:21:21 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QF3F7F4)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_abfb358 s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell
Error: (02/10/2020 09:21:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_abfb358 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (02/10/2020 09:21:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Uživatelská služba pro GameDVR a vysílání her_abfb358 bylo dosaženo časového limitu (30000 ms).
Error: (02/10/2020 09:21:21 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QF3F7F4)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_abfb358 s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell
Error: (02/10/2020 09:21:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_abfb358 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (02/10/2020 09:21:21 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Uživatelská služba pro GameDVR a vysílání her_abfb358 bylo dosaženo časového limitu (30000 ms).
Error: (02/09/2020 10:02:18 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QF3F7F4)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_6f9447f s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell
Error: (02/09/2020 10:02:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_6f9447f neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Windows Defender:
===================================
Date: 2019-12-23 07:57:54.238
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {540CC8B3-58C8-4013-AAAC-D894F91AA2B3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-12-21 21:32:37.481
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Zpevdo.A
ID: 2147727143
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\lic.switcher.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7
Date: 2019-12-21 21:26:34.705
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7
Date: 2019-12-21 21:26:29.777
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7
Date: 2019-12-21 21:26:17.772
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7
CodeIntegrity:
===================================
Date: 2020-02-13 08:43:43.912
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-02-13 08:43:43.909
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-02-13 08:43:43.904
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-02-13 08:43:43.901
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-02-13 08:43:43.894
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-02-12 16:00:14.440
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-02-12 16:00:10.583
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-02-12 16:00:08.510
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1576069576\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2.A0 08/24/2019
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i7-8700 CPU @ 3.20GHz
Percentage of memory in use: 43%
Total physical RAM: 16326.21 MB
Available physical RAM: 9291.13 MB
Total Virtual: 18758.21 MB
Available Virtual: 8420.36 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:237.87 GB) (Free:29.29 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:1862.98 GB) (Free:0.53 GB) NTFS
Drive e: () (Fixed) (Total:1667.7 GB) (Free:53.56 GB) NTFS
Drive g: () (Fixed) (Total:195.31 GB) (Free:77.23 GB) NTFS
Drive h: (2.5 PALCE) (Fixed) (Total:931.51 GB) (Free:168.77 GB) NTFS
\\?\Volume{e580499b-1762-4e4f-a029-b359879fab72}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.07 GB) NTFS
\\?\Volume{f11ed521-731f-443b-9d0c-4ee98bdd3774}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu FRST padá ryhlost internetového pripo
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu FRST padá ryhlost internetového p
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu FRST padá ryhlost internetového p
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 13.02.20
Čas skenování: 10:26
Logovací soubor: dd6e4916-4e42-11ea-a0e1-309c2384bbd6.json
-Informace o softwaru-
Verze: 4.0.4.49
Verze komponentů: 1.0.823
Aktualizovat verzi balíku komponent: 1.0.19146
Licence: Zkušební
-Systémová informace-
OS: Windows 10 (Build 18362.592)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-QF3F7F4\rewko
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 277373
Zjištěné hrozby: 1
Hrozby umístěné do karantény: 0
Uplynulý čas: 0 min, 56 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 1
RiskWare.GameHack, C:\PROGRAM FILES (X86)\GRAND THEFT AUTO V\STEAM_API64.DLL, Žádná uživatelská akce, 7414, 305544, 1.0.19146, , ame,
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
WMI: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 13.02.20
Čas skenování: 10:26
Logovací soubor: dd6e4916-4e42-11ea-a0e1-309c2384bbd6.json
-Informace o softwaru-
Verze: 4.0.4.49
Verze komponentů: 1.0.823
Aktualizovat verzi balíku komponent: 1.0.19146
Licence: Zkušební
-Systémová informace-
OS: Windows 10 (Build 18362.592)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-QF3F7F4\rewko
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 277373
Zjištěné hrozby: 1
Hrozby umístěné do karantény: 0
Uplynulý čas: 0 min, 56 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 1
RiskWare.GameHack, C:\PROGRAM FILES (X86)\GRAND THEFT AUTO V\STEAM_API64.DLL, Žádná uživatelská akce, 7414, 305544, 1.0.19146, , ame,
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
WMI: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu FRST padá ryhlost internetového p
Nález MBAM smažte a dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu FRST padá ryhlost internetového p
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-02-2020
Ran by rewko (administrator) on DESKTOP-QF3F7F4 (Micro-Star International Co., Ltd. MS-7B48) (13-02-2020 15:34:01)
Running from C:\Users\rewko\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Loaded Profiles: rewko (Available Profiles: rewko)
Platform: Windows 10 Pro Version 1909 18363.592 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsorsp64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\FsPisces.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulprothoster.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(GOG Sp. z o.o. -> GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_d52c63e0e1c02c96\jhi_service.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\rewko\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\APP Manager\AppManager.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO.,LTD.) C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Python Software Foundation -> Python Software Foundation) C:\Program Files (x86)\GOG Galaxy\python\python.exe
(Python Software Foundation -> Python Software Foundation) C:\Program Files (x86)\GOG Galaxy\python\python.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1027360 2019-11-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [APP Manager] => C:\Program Files (x86)\MSI\APP Manager\AppManager.exe [3705520 2019-05-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835760 2019-06-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1028280 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [X_Boost] => C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe [4260000 2018-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26292912 2020-01-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3137808 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36098448 2020-02-05] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3365840 2020-02-11] (Valve -> Valve Corporation)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [launchOnStartup] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13186120 2019-12-29] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\RunOnce: [Application Restart #2] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.100\Installer\chrmstp.exe [2020-02-11] (Google LLC -> Google LLC)
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {07450C28-6721-48EE-A52C-AD96326E5849} - System32\Tasks\MSILEDKeeper_Host => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe [1068688 2019-08-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {1B333883-02A8-4C2A-9855-DDE8251A800D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {233D7998-23D3-45FC-9EAA-F8A9867CAD33} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {26C40013-35A5-4A63-ABB1-46CF48181851} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
Task: {374FE778-7CEC-4B62-AB84-167790489BA3} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\IntelPTTEKRecertification.exe [938768 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {4CF4388A-7DF3-4D08-BBDB-857D95C3206D} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {644EC0E1-2924-4BA9-ADA0-281BAF8B24CA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6BEFCEC5-E257-4B6E-8306-B380AF3D2C68} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {72F01EF0-A015-4A06-B9AA-EC6DD61D6EDA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A71C56C9-676D-48B7-956E-9DD6527BD53C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ABC08BA4-A1D6-4F2A-A72C-8578C943293E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
Task: {AC1D535C-A2AE-4EA1-BBD2-F0C1A01599D0} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {AF7AF81B-D988-402D-8D88-AAB1A3797E7E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C08AA499-FD9D-4AD1-9782-D64D48875012} - System32\Tasks\F-Secure\F-Secure Hotfix => C:\Program Files (x86)\F-Secure\SAFE\fs_hotfix.exe [280464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
Task: {D8D57FCA-48E8-4C4A-98D3-DB527A3C1AB1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E7AA5E24-C07F-4F7C-A38E-C9137E29F2FE} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F78046A1-578B-4AD6-9574-EDA6D5863F9C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{35c8ea1d-39f7-4e26-a0d9-f3bae6f80935}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{4c1c4675-98dc-48ce-8325-a7cc3d28333a}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Internet Explorer:
==================
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_ie_https\fs_ie_https64.dll [2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
BHO-x32: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_ie_https\fs_ie_https.dll [2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
Edge:
======
DownloadDir: C:\Users\rewko\Downloads
Edge Notifications: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> hxxps://www.facebook.com
Edge Extension: (AdBlock — best ad blocker) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-01-25]
FireFox:
========
FF DefaultProfile: jvgxijac.default
FF ProfilePath: C:\Users\rewko\AppData\Roaming\Avant Profiles\.default\gecko\Mozilla\Avant\Profiles\jvgxijac.default [2019-12-15]
FF NetworkProxy: Avant Profiles\.default\gecko\Mozilla\Avant\Profiles\jvgxijac.default -> type", 0
FF HKLM\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Extension: (Browsing Protection by F-Secure) - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi [2020-02-12]
FF HKLM-x32\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default [2020-02-11]
CHR HomePage: Default -> hxxp://seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.msn.com/?p ... google.com"
CHR Extension: (Prezentace) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-03]
CHR Extension: (Dokumenty) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-03]
CHR Extension: (Disk Google) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-03]
CHR Extension: (YouTube) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-03]
CHR Extension: (Tabulky) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-03]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2020-02-11]
CHR Extension: (Super Netflix) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\iakpdiefpdniabbekcbofaanjcpjkloe [2020-01-03]
CHR Extension: (Browsing Protection by F-Secure) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2020-01-03]
CHR Extension: (Netflix Subtitles Automatic (beta)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpgadigdffhcjldfkanacncocacekkie [2020-01-03]
CHR Extension: (OpenSubtitles for Netflix) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcdnnmhalbjbccempnhabdaeilabmdop [2020-01-03]
CHR Extension: (Tomikup Tlačítko) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlpfbleimihijpglffkfgngdlgplkjf [2020-01-03]
CHR Extension: (DotVPN — lepší způsob VPN) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiecbcckbofpmkkkdibbllpinceiihk [2020-01-03]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2020-02-11]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-01-03]
CHR Extension: (Plugins) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcblfncjaclajmegihojiekebofjcen [2020-01-03]
CHR Extension: (Open in VLC™ (VideoLAN)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhpfgmjcpbdcbmhjbhogflbbmdbomfmb [2020-01-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-03]
CHR Extension: (Gmail) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-03]
CHR Extension: (Chrome Media Router) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-11]
CHR HKLM\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]
CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe [440368 2020-01-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2020-02-12] (BitRaider LLC -> BitRaider, LLC)
R2 fshoster; C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe [216464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
R2 fsnethoster; C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe [216464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulhoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulnethoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulorsp; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsorsp64.exe [101248 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulprothoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulprothoster.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1582664 2019-12-29] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6617160 2019-12-06] (GOG Sp. z o.o. -> GOG.com)
S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2414264 2017-08-25] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [542016 2018-11-20] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\SocketHeciServer.exe [876304 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\TPMProvisioningService.exe [806152 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_d52c63e0e1c02c96\jhi_service.exe [648080 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [2668136 2019-12-16] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 LMS; C:\WINDOWS\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [553056 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService_x64.exe [2669240 2018-01-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2343600 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService_x64.exe [2725048 2017-12-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2255544 2018-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2507952 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2136248 2018-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [2740912 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_AppManager_Service; C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe [2055352 2019-01-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_DPCLTSERVICE; C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe [2167440 2019-04-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [113336 2017-12-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2325168 2019-11-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [183480 2019-02-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [34976 2018-12-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2475312 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3393848 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 RtkAudioUniversalService; C:\WINDOWS\System32\RtkAudUService64.exe [1027360 2019-11-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [974848 2019-08-17] (Microsoft Windows -> )
S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [290816 2019-10-04] (Microsoft Windows -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11791704 2019-03-18] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 XTU3SERVICE; C:\WINDOWS\SysWOW64\XtuService.exe [26416 2019-05-06] (Intel Corporation -> Intel(R) Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [33832 2019-12-11] (ASUSTeK Computer Inc. -> )
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2020-02-12] (BitRaider -> BitRaider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [136040 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-06-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-06-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
R3 F-Secure Gatekeeper; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulgk.sys [290144 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R1 F-Secure UL HIPS; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshs.sys [103048 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R0 fsbts; C:\WINDOWS\System32\drivers\fsbts.sys [57512 2020-01-03] (F-Secure Corporation -> )
S0 fselms; C:\WINDOWS\System32\drivers\fselms.sys [15296 2020-01-03] (Microsoft Windows Early Launch Anti-malware Publisher -> F-Secure Corporation)
R3 fsni; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\fsni64.sys [111472 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R1 GLCKIO2; C:\WINDOWS\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [70664 2017-08-25] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [144528 2018-11-20] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-02-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [226448 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [119960 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
R3 MEIx64; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_85021432489d6a1c\x64\TeeDriverW8x64.sys [266128 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
U1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [25616 2018-02-12] (MICSYS Technology Co., Ltd. -> )
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3485696 2019-03-19] (Microsoft Windows -> Intel Corporation)
R3 NTIOLib_DPC; C:\Program Files (x86)\MSI\DPC Latency Tuner\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [14288 2017-03-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9e532b5f619dc909\nvlddmkm.sys [23276960 2020-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1141744 2019-04-18] (Realtek Semiconductor Corp. -> Realtek )
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2719256 2020-02-04] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 XTUComponent; C:\WINDOWS\System32\drivers\iocbios2.sys [38280 2019-05-06] (Intel Corporation -> Intel Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2019-11-17] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-13 15:32 - 2020-02-13 15:32 - 000000000 ____D C:\Users\rewko\AppData\LocalLow\IGDump
2020-02-13 15:28 - 2020-02-13 15:28 - 000000000 ___HD C:\OneDriveTemp
2020-02-13 11:36 - 2020-02-13 11:36 - 000000000 ____D C:\Users\rewko\Documents\Star Wars - The Old Republic
2020-02-13 10:26 - 2020-02-13 10:26 - 000226448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-02-13 10:26 - 2020-02-13 10:26 - 000119960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-02-13 10:26 - 2020-02-13 10:26 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-02-13 10:24 - 2020-02-13 10:25 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-02-13 10:24 - 2020-02-13 10:25 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-02-13 10:24 - 2020-02-13 10:25 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-02-13 10:24 - 2020-02-13 10:24 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-02-13 10:24 - 2020-02-13 10:24 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\Users\rewko\AppData\Local\mbamtray
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\Users\rewko\AppData\Local\mbam
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\Users\rewko\AppData\Local\cache
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\Program Files\Malwarebytes
2020-02-13 08:52 - 2020-02-13 15:34 - 000000000 ____D C:\FRST
2020-02-12 17:57 - 2020-02-12 18:22 - 584419276 _____ C:\Users\rewko\Downloads\Fairy Tail - 195 [1080p].mkv
2020-02-12 17:55 - 2020-02-12 17:55 - 000000000 ____D C:\Users\rewko\Documents\HeroBlade Logs
2020-02-12 17:55 - 2020-02-12 17:55 - 000000000 ____D C:\Users\rewko\AppData\Local\SWTOR
2020-02-12 16:18 - 2020-02-12 16:18 - 000000000 ____D C:\Users\Public\Documents\BitRaider
2020-02-12 16:18 - 2020-02-12 16:18 - 000000000 ____D C:\ProgramData\BitRaider
2020-02-12 16:15 - 2020-02-12 16:15 - 000000000 ____D C:\Users\rewko\AppData\Local\SWTORPerf
2020-02-12 16:13 - 2020-02-12 16:13 - 000000689 _____ C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
2020-02-12 16:13 - 2020-02-12 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2020-02-12 16:13 - 2020-02-12 16:13 - 000000000 _____ C:\end
2020-02-12 09:32 - 2020-02-12 09:48 - 374803518 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 80 [480p].mkv
2020-02-12 09:31 - 2020-02-12 09:31 - 000037771 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 80 [720p].ass
2020-02-11 14:48 - 2020-02-11 14:53 - 740984058 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 05 [720p].mkv
2020-02-11 14:47 - 2020-02-11 14:47 - 000031178 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_05_720p.ass
2020-02-10 10:52 - 2015-11-04 16:40 - 191158825 _____ C:\Users\rewko\Desktop\Fairy Tail - 157 CZ.mkv
2020-02-09 18:52 - 2020-02-09 19:07 - 741033740 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 05 [720p].mkv
2020-02-09 18:51 - 2020-02-09 19:06 - 754032752 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 18 [720p].mkv
2020-02-08 20:17 - 2020-02-08 20:17 - 000000000 ____D C:\Users\rewko\AppData\Local\GroveFlowers
2020-02-08 20:15 - 2020-02-08 20:15 - 000000223 _____ C:\Users\rewko\Desktop\Grove flowers.url
2020-02-07 17:58 - 2020-02-07 17:58 - 000000137 _____ C:\Users\rewko\Desktop\Ori and the Blind Forest.url
2020-02-07 15:54 - 2020-02-07 15:59 - 589975878 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 05 [720p].mkv
2020-02-07 15:53 - 2020-02-07 15:53 - 000016866 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 05 [720p].ass
2020-02-07 08:11 - 2020-02-07 08:51 - 2924342891 _____ C:\Users\rewko\Downloads\ Star.Trek.Picard.S01E03.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-02-06 14:45 - 2020-02-06 14:52 - 743053440 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 04 [720p].mkv
2020-02-06 14:45 - 2020-02-06 14:45 - 000035074 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_04_720p.ass
2020-02-06 13:14 - 2020-02-06 13:14 - 000034076 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_03_720p.ass
2020-02-06 12:31 - 2020-02-06 12:36 - 743174363 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 03 [720p].mkv
2020-02-06 12:23 - 2020-02-06 12:28 - 743533564 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 02 [720p].mkv
2020-02-06 12:22 - 2020-02-06 12:22 - 000035144 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 02 [720p].ass
2020-02-06 10:03 - 2020-02-06 10:10 - 743547492 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 01 [720p].mkv
2020-02-06 10:02 - 2020-02-06 10:02 - 000031039 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 01 [720p].ass
2020-02-05 11:48 - 2020-02-05 11:48 - 000001472 _____ C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA GeForce NOW.lnk
2020-02-05 11:48 - 2020-02-05 11:48 - 000001464 _____ C:\Users\rewko\Desktop\NVIDIA GeForce NOW.lnk
2020-02-05 08:56 - 2020-02-05 08:56 - 000000000 ____D C:\Users\rewko\AppData\Roaming\dvdcss
2020-02-05 07:36 - 2020-02-05 07:37 - 737560070 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 79 [720p].mkv
2020-02-05 07:36 - 2020-02-05 07:36 - 000040857 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 79 [720p].ass
2020-02-04 18:11 - 2020-02-04 18:11 - 000038990 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_04_1080p_CZ.ass
2020-02-04 17:16 - 2020-02-04 17:18 - 753528618 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 17 [720p].mkv
2020-02-04 16:50 - 2020-02-04 16:53 - 381426743 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 16 [480p].mkv
2020-02-03 20:32 - 2020-02-03 20:33 - 380742884 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 15 [480p].mkv
2020-02-03 20:30 - 2020-02-03 20:31 - 380952503 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 14 [480p].mkv
2020-02-03 20:07 - 2020-02-03 20:07 - 000033710 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 10 [720p].ass
2020-02-03 17:31 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000450576 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000353160 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-02-03 17:31 - 2020-01-31 00:03 - 011843504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-02-03 17:31 - 2020-01-31 00:03 - 010167544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 017462616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 005384584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 004718792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 002075904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001727320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6444219.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001569160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001490688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6444219.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001485688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001370360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001145776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001064384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000825720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000815120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000685912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000677584 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000660176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000557304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000545112 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 040511408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 035380120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 015031808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-02-02 12:52 - 2020-02-02 12:53 - 592045947 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 04 [720p].mkv
2020-02-02 12:51 - 2020-02-02 12:51 - 000024000 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 04 [720p].ass
2020-02-02 12:47 - 2020-02-02 12:48 - 586278890 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 03 [720p].mkv
2020-02-02 12:47 - 2020-02-02 12:47 - 000025144 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 03 [720p].ass
2020-02-02 12:24 - 2020-02-02 12:25 - 595025198 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 02 [720p].mkv
2020-02-02 12:23 - 2020-02-02 12:23 - 000017069 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 02 [720p].ass
2020-02-02 11:32 - 2020-02-02 11:32 - 000000000 ____D C:\Users\rewko\Downloads\A MILF s Tale 5 (2020)
2020-02-01 19:02 - 2020-02-01 19:05 - 1460501104 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 04 [1080p].mkv
2020-01-31 19:14 - 2020-01-31 19:15 - 584749977 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 01 [720p].mkv
2020-01-31 19:14 - 2020-01-31 19:14 - 000025132 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 01 [720p].ass
2020-01-31 19:12 - 2020-01-31 19:17 - 3076433650 _____ C:\Users\rewko\Downloads\Star.Trek.Picard.S01E02.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-01-30 17:31 - 2020-01-30 17:31 - 000038900 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_03_1080p_CZ.ass
2020-01-28 18:33 - 2020-01-28 18:33 - 000028064 _____ C:\Users\rewko\Downloads\Kuutei Dragons 03.ass
2020-01-28 17:46 - 2020-01-28 17:46 - 000043278 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_02_1080p_CZ (1).ass
2020-01-27 18:19 - 2020-01-27 18:20 - 741666322 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 03 [720p].mkv
2020-01-27 18:12 - 2020-01-27 18:13 - 742348334 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 02 [720p].mkv
2020-01-27 16:22 - 2020-01-27 16:24 - 1458179946 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 01 [1080p].mkv
2020-01-27 16:21 - 2020-01-27 16:21 - 000043531 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_01_1080p_CZ.ass
2020-01-26 18:20 - 2020-01-26 18:22 - 736782545 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 78 [720p].mkv
2020-01-26 18:20 - 2020-01-26 18:20 - 000035919 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 78 [720p].ass
2020-01-26 17:31 - 2020-01-26 17:31 - 000000000 ____D C:\Users\rewko\Downloads\Angela White, Ava Addams, Bridgette B - Chasing That Big D
2020-01-26 15:17 - 2020-02-04 16:34 - 002719256 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2020-01-26 15:17 - 2020-02-01 10:34 - 000000000 ____D C:\Users\rewko\Documents\Black Desert
2020-01-26 15:17 - 2020-01-26 15:17 - 000000016 _____ C:\ProgramData\mntemp
2020-01-26 13:58 - 2020-01-26 14:11 - 190906545 _____ C:\Users\rewko\Downloads\Angel.Has.Fallen.2019.1080p.BluRay.CZ.EN.DD.5.1.x264-MTK.mkv
2020-01-25 08:41 - 2020-01-25 08:45 - 3249058554 _____ C:\Users\rewko\Downloads\Star.Trek.Picard.S01E01.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-01-21 15:56 - 2020-01-21 17:09 - 808669205 _____ C:\Users\rewko\Downloads\DC's Legends of Tomorrow S05E00.720p.HDTV.x264-SVA+cz tit.mkv
2020-01-21 15:55 - 2020-01-21 15:55 - 000020246 _____ C:\Users\rewko\Downloads\legends-of-tomorrow-S05E00-hdtv-By-azur58.zip
2020-01-21 15:29 - 2020-01-21 15:29 - 000652371 ____H C:\Users\rewko\Downloads\.d3af212720c2f2024431ce49fae2d9a039c38180.parts
2020-01-21 15:27 - 2020-01-21 15:27 - 000000000 ____D C:\Users\rewko\Downloads\Arrow.S08E08.Crisis.on.Infinite.Earths.Part.Four.720p.AMZN.WEB-DL.DDP5.1.H.264-[TGx]
2020-01-21 11:40 - 2020-01-21 11:41 - 737258580 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 77 [720p].mkv
2020-01-21 11:39 - 2020-01-21 11:39 - 000030871 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 77 [720p].ass
2020-01-19 13:53 - 2020-01-21 15:25 - 000048933 _____ C:\Users\rewko\Desktop\Arrow.S08E08.AMZN.WEB-DL.DDP5.1.H.264-CasStudio-cz.srt
2020-01-18 19:09 - 2020-01-18 19:09 - 000000000 ____D C:\Users\rewko\AppData\Local\Indiana
2020-01-18 18:44 - 2020-01-18 18:47 - 000001269 _____ C:\Users\rewko\Desktop\CrystalDiskInfo.lnk
2020-01-18 18:44 - 2020-01-18 18:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2020-01-18 18:44 - 2020-01-18 18:44 - 000000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2020-01-18 14:18 - 2020-01-18 18:48 - 000000000 ____D C:\Users\rewko\AppData\Roaming\HD Tune Pro
2020-01-18 14:17 - 2020-01-18 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro
2020-01-18 14:17 - 2020-01-18 14:17 - 000000000 ____D C:\Program Files (x86)\HD Tune Pro
2020-01-18 12:39 - 2020-02-11 18:08 - 000000147 _____ C:\CosairDram.txt
2020-01-18 12:39 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files\Patriot
2020-01-18 12:39 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files (x86)\LightingService
2020-01-18 12:39 - 2018-02-12 04:22 - 000025616 _____ C:\WINDOWS\system32\Drivers\MsIo64.sys
2020-01-18 12:38 - 2020-01-18 12:41 - 000000786 _____ C:\Users\Public\Desktop\AURA.lnk
2020-01-18 12:38 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files\ASUS
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\Program Files\Galaxy
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\Program Files (x86)\ASUS
2020-01-18 12:38 - 2019-12-11 10:25 - 000120880 _____ C:\WINDOWS\system32\AsIO2.dll
2020-01-18 12:38 - 2019-12-11 10:25 - 000095280 _____ C:\WINDOWS\SysWOW64\AsIO2.dll
2020-01-18 12:38 - 2019-12-11 10:25 - 000033832 _____ C:\WINDOWS\system32\Drivers\AsIO2.sys
2020-01-18 12:38 - 2019-04-24 11:25 - 000029368 _____ C:\WINDOWS\system32\Drivers\GLCKIO2.sys
2020-01-18 12:37 - 2020-01-18 12:37 - 000000000 ____D C:\Users\rewko\Desktop\Lighting_Control_1.07.79
2020-01-18 08:22 - 2020-01-18 08:22 - 000000000 ____D C:\Users\rewko\Downloads\Angela White - Busting On The Burglar
2020-01-17 16:08 - 2020-01-17 16:08 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-17 16:02 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-17 16:02 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-01-16 17:15 - 2020-01-16 17:16 - 729593897 _____ C:\Users\rewko\Downloads\[HorribleSubs] Somali to Mori no Kamisama - 01 [720p].mkv
2020-01-16 17:15 - 2020-01-16 17:15 - 000025846 _____ C:\Users\rewko\Downloads\Somali_to_Mori_no_Kamisama_-_01_preklad.ass
2020-01-15 18:20 - 2020-01-15 18:20 - 000029461 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 76 [720p].ass
2020-01-15 17:52 - 2020-01-15 17:52 - 000033121 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 75 [720p].ass
2020-01-15 16:59 - 2020-01-15 17:01 - 737932191 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 76 [720p].mkv
2020-01-15 16:57 - 2020-01-15 17:00 - 737224070 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 75 [720p].mkv
2020-01-15 16:57 - 2020-01-15 16:59 - 737446067 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 74 [720p].mkv
2020-01-15 16:57 - 2020-01-15 16:57 - 000039401 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 73 [720p].ass
2020-01-15 16:57 - 2020-01-15 16:57 - 000036288 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 74 [720p].ass
2020-01-15 16:56 - 2020-01-15 16:59 - 736513578 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 73 [720p].mkv
2020-01-14 14:58 - 2020-01-14 14:58 - 000240739 _____ C:\Users\rewko\Downloads\PTV_TPS_CZ_CZ.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-13 15:32 - 2019-12-06 13:23 - 000000000 ____D C:\Program Files (x86)\Grand Theft Auto V
2020-02-13 15:29 - 2019-11-12 14:48 - 000000000 ____D C:\Users\rewko\AppData\Local\Origin
2020-02-13 15:29 - 2019-11-12 14:48 - 000000000 ____D C:\ProgramData\Origin
2020-02-13 15:29 - 2019-11-09 19:35 - 000000000 ____D C:\ProgramData\NVIDIA
2020-02-13 15:28 - 2019-12-07 19:38 - 000000000 ____D C:\Program Files (x86)\Steam
2020-02-13 15:28 - 2019-06-27 14:59 - 000000000 ___RD C:\Users\rewko\OneDrive
2020-02-13 12:33 - 2019-11-09 19:28 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-13 12:06 - 2019-11-09 19:51 - 000000000 ____D C:\Users\rewko\AppData\Local\Battle.net
2020-02-13 10:24 - 2019-11-09 19:28 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-02-12 18:37 - 2019-11-09 20:11 - 000000000 ____D C:\Users\rewko\AppData\Roaming\vlc
2020-02-12 10:36 - 2019-11-09 20:00 - 000000000 ____D C:\Users\rewko\AppData\Roaming\qBittorrent
2020-02-11 20:23 - 2020-01-01 11:35 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-11 20:23 - 2020-01-01 11:35 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-02-11 18:14 - 2019-11-09 19:43 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-02-11 18:14 - 2019-11-09 19:30 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-02-11 18:14 - 2019-11-09 19:30 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-02-11 18:14 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\INF
2020-02-11 18:08 - 2020-01-12 14:05 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-02-11 18:08 - 2019-11-09 19:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-02-11 18:08 - 2019-11-09 19:25 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-02-11 17:51 - 2019-11-09 19:26 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-02-10 08:43 - 2019-11-09 19:28 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-10 08:43 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-09 08:48 - 2019-11-12 14:54 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-02-09 08:48 - 2019-11-12 14:48 - 000000000 ____D C:\Users\rewko\AppData\Roaming\Origin
2020-02-08 20:15 - 2019-07-07 18:22 - 000000000 ____D C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-02-07 17:45 - 2019-11-09 19:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-02-06 18:55 - 2019-11-09 19:43 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2545330955-1925899768-253270718-1001
2020-02-06 18:55 - 2019-11-09 19:36 - 000002361 _____ C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-02-05 11:48 - 2019-12-03 18:15 - 000000000 ____D C:\Users\rewko\AppData\Local\NVIDIA Corporation
2020-02-05 11:48 - 2019-11-09 19:35 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-02-05 09:35 - 2019-11-09 19:36 - 000000000 ____D C:\Users\rewko
2020-02-05 07:18 - 2020-01-01 11:35 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-05 07:18 - 2020-01-01 11:35 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-03 17:32 - 2019-11-17 08:03 - 000000000 ____D C:\Users\rewko\AppData\Local\NVIDIA
2020-02-01 15:45 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-01-30 23:58 - 2019-12-12 19:30 - 004230752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-01-30 23:58 - 2019-11-07 17:31 - 004963008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-01-30 02:40 - 2019-11-07 17:31 - 000055783 _____ C:\WINDOWS\system32\nvinfo.pb
2020-01-30 00:56 - 2019-11-09 19:35 - 005577224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 002655864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 001767920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000670840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000454512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000131176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000083976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-01-29 16:28 - 2019-11-09 19:51 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-01-28 16:06 - 2019-11-09 19:45 - 000000000 ____D C:\Users\rewko\AppData\Local\PlaceholderTileLogoFolder
2020-01-28 16:06 - 2019-11-09 19:41 - 000000000 ____D C:\Users\rewko\AppData\Local\Packages
2020-01-27 16:26 - 2019-11-12 14:50 - 000000000 ____D C:\Users\rewko\AppData\Local\D3DSCache
2020-01-27 15:17 - 2020-01-03 16:12 - 000002017 _____ C:\Users\Public\Desktop\F-Secure SAFE.lnk
2020-01-27 08:11 - 2019-11-09 19:35 - 008887562 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-01-26 14:17 - 2019-10-06 13:28 - 000000000 ____D C:\Games
2020-01-23 14:28 - 2019-11-09 19:35 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-01-22 15:14 - 2020-01-01 11:30 - 000000000 ____D C:\Program Files (x86)\MSI
2020-01-22 15:14 - 2019-11-09 18:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2020-01-21 16:29 - 2019-11-09 19:41 - 000000000 ____D C:\ProgramData\Packages
2020-01-18 17:53 - 2019-11-21 15:08 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-01-18 12:39 - 2020-01-01 11:34 - 000000000 ____D C:\Program Files\ENE
2020-01-18 12:39 - 2019-11-12 14:50 - 000000000 ____D C:\ProgramData\Package Cache
2020-01-18 12:38 - 2020-01-01 11:33 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-01-18 12:35 - 2017-10-17 18:21 - 000356446 _____ C:\Users\rewko\Desktop\AURA SDK Guide_2.0.0.pdf
2020-01-18 12:35 - 2017-08-25 15:05 - 000000188 _____ C:\Users\rewko\Desktop\ver.02.03.txt
2020-01-17 16:17 - 2019-11-09 19:34 - 000268616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-17 16:11 - 2019-11-09 19:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-17 16:09 - 2019-11-09 19:47 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-16 15:01 - 2019-11-12 14:49 - 000000000 ____D C:\Program Files (x86)\Origin
==================== Files in the root of some directories ========
2020-01-01 11:30 - 2020-01-01 11:30 - 000007605 _____ () C:\Users\rewko\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020
Ran by rewko (13-02-2020 15:34:44)
Running from C:\Users\rewko\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Windows 10 Pro Version 1909 18363.592 (X64) (2019-11-09 18:41:33)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2545330955-1925899768-253270718-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2545330955-1925899768-253270718-503 - Limited - Disabled)
Guest (S-1-5-21-2545330955-1925899768-253270718-501 - Limited - Disabled)
rewko (S-1-5-21-2545330955-1925899768-253270718-1001 - Administrator - Enabled) => C:\Users\rewko
WDAGUtilityAccount (S-1-5-21-2545330955-1925899768-253270718-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: F-Secure SAFE (Enabled - Up to date) {8AC831E5-DF57-0DC0-D07B-4DE1A5FFFD9A}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
AIDA64 Extreme v6.20 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.20 - FinalWire Ltd.)
Aktualizace NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.3.11.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM-x32\...\{96f500e7-aac6-40c8-aa25-d223f373d8dd}) (Version: 2.3.11.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{1b15ca41-2671-4685-ab55-b8c814c4942a}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Display Component (HKLM-x32\...\{94267bd0-fa8a-4aa4-925d-ec3e0d130fba}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{e46f527f-1e64-4554-abc1-115f3429c25c}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM-x32\...\{b96dabae-c7ef-45f2-95ab-1a4d917262a3}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{D800D836-DE15-4B00-8273-521F022CD837}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{d00daf18-4c78-4fc6-bb05-376a06c79c48}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM\...\{B5E322FB-C191-463E-BDDD-4F22290EDFDB}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM-x32\...\{277875e0-972c-4705-b09c-ca5acf5b2f7c}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.03.45 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{2977b6c2-6523-42f4-8f52-bf4f7fc7a840}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{3507c756-a80f-4b0e-8475-975d8b432176}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{52400cff-4628-4ca3-a922-3767b198c1fd}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden
ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden
ASUS MB Peripheral Products (HKLM-x32\...\{243ceb39-3b77-43ab-9135-fddab4ac7caf}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden
ASUS Mouse HAL (HKLM\...\{1838F91B-D481-45AA-B92F-071C62D0A19A}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden
ASUS Mouse HAL (HKLM-x32\...\{3dcded5b-10da-4d98-9c1f-c33d25288ebd}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM\...\{723B40A4-5BF2-4DC6-834A-2ADF75F3CF7E}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM-x32\...\{0ebcd5fb-7bf9-45b4-a0b6-0932d728e289}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden
AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.07.79 - ASUSTeK Computer Inc.)
AURA DRAM Component (HKLM\...\{3881F403-B6B7-4D2F-BDAC-7901EB677F52}) (Version: 1.0.37 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{60d8d6b5-0ec5-420a-a407-a42e19346d46}) (Version: 1.0.37 - ASUS) Hidden
AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.03.79 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{880f3eb6-28fe-4c63-875f-c6fb491fc334}) (Version: 3.03.79 - ASUSTeK Computer Inc.)
Avant Browser (remove only) (HKLM-x32\...\AvantBrowser) (Version: 12.5.0.0 - Avant Force)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.74.1085 - AB Team, d.o.o.)
Corsair AURA DRAM Component (HKLM\...\{376E0869-A4F1-4DC7-A1FD-EBF3AFFEB832}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden
Corsair AURA DRAM Component (HKLM-x32\...\{8fce5ea9-d56f-4f89-a363-830eceb72c72}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden
CrystalDiskInfo 7.0.4 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.4 - Crystal Dew World)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dynamic Application Loader Host Interface Service (HKLM\...\{BCBA926F-0E0A-4AB4-9498-7A8E78A83408}) (Version: 1.0.0.0 - Intel Corporation) Hidden
ENE IO Driver (HKLM-x32\...\{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Version: 3.0.0 - ENE TECHNOLOGY INC.) Hidden
ENE RGB HAL (HKLM\...\{BBEB79B8-472B-44E6-B0BA-157909EFE7D6}) (Version: 1.00.12 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{e0fa04a3-0593-40a3-8eea-c45cf5d09062}) (Version: 1.00.12 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_EHD_ASM_HAL (HKLM\...\{CB19FBA3-7A4F-4D2A-A231-F580B5DCD203}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_ASM_HAL (HKLM-x32\...\{3532d794-73d7-42bd-af02-9f00623dd567}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{455E34DD-5F26-431E-B542-72F73A8FEED8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{24a265a5-9f90-4090-904f-5ed9fa4414b8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{C69A2919-0662-4390-9418-67C931B44C18}) (Version: 1.1.236.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EZ CD Audio Converter (HKLM-x32\...\EZ CD Audio Converter) (Version: 8.2.2 - Poikosoft)
F-Secure SAFE (HKLM-x32\...\{9DEBA07D-5FCD-42F8-88F7-0232DC284B47}) (Version: 17.7 - F-Secure Corporation)
GALAX GAMER RGB (HKLM\...\{06A16AA8-BBA7-4362-962E-16651962D87C}) (Version: 1.00.02 - Galaxy Microsystems Ltd.) Hidden
GALAX GAMER RGB (HKLM-x32\...\{1257fdeb-ffa3-4e17-9d4b-189075ea3656}) (Version: 1.00.02 - Galaxy Microsystems Ltd.)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.100 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\R3JhbmRUaGVmdEF1dG9W_is1) (Version: 1 - )
HD Tune Pro 5.70 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{BB9BB437-83CC-4497-AE89-911D61973784}) (Version: 6.5.1.330 - Intel Corporation) Hidden
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{dfe98c64-9135-41f4-a771-0a6cb80289af}) (Version: 6.5.1.330 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1937.12.0.1312 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{c4a581e8-a702-448c-80c7-4b6192985db2}) (Version: 10.1.18228.8176 - Intel(R) Corporation)
Kingston AURA DRAM Component (HKLM\...\{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{c0c65c06-e79e-44b5-bd66-85099364afeb}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MSI APP Manager (HKLM-x32\...\{00F47104-12BA-4E58-A7E6-F456C1BA338E}}_is1) (Version: 1.0.0.32 - MSI)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 3.0.0.99 - MSI)
MSI DPC Latency Tuner (HKLM-x32\...\{1AAC56F3-3F60-47DB-BE6B-088F36ADFDC5}_is1) (Version: 1.0.0.38 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.15 - MSI)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.65 - MSI)
MSI MysticLight (HKLM-x32\...\{93874B70-6C5E-446A-AF4D-E5AC776A0386}}_is1) (Version: 3.0.0.66 - MSI)
MSI Smart Tool (HKLM-x32\...\{DDCCA038-DAB1-4D09-B85C-848020AA75D6}}_is1) (Version: 1.0.0.43 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.28 - MSI)
MSI X Boost (HKLM-x32\...\{515143BB-7A11-4D85-B941-D520AAAA099C}_is1) (Version: 1.0.0.46 - MSI)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.5.0.0 - Duodian Technology Co. Ltd.)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.16.148 (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.16.148 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.338.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač HD audia 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 442.19 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 442.19 - NVIDIA Corporation) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory)
Patriot Viper RGB (HKLM\...\{E42E13B0-071E-49C1-B1CC-58198E82F302}) (Version: 1.00.08 - Patriot Memory) Hidden
Patriot Viper RGB (HKLM-x32\...\{4b7bfeff-ac47-46c1-aea6-4556f5f0e6bb}) (Version: 1.00.08 - Patriot Memory)
qBittorrent 4.1.9.1 (HKLM-x32\...\qBittorrent) (Version: 4.1.9.1 - The qBittorrent project)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.34.307.2019 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8844.1 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.23.0 - Samsung Electronics Co., Ltd.)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 13.0.0.53 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.2.2558 - TeamViewer)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Packages:
=========
AdBlock -> C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-01-25] (BetaFish)
EdgeDevtoolsPlugin -> C:\Windows\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2019-11-09] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-14] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.7.199.0_x64__dt26b99r8h8gj [2020-01-02] (Realtek Semiconductor Corp)
Samsung Flow -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy [2020-01-30] (Samsung Electronics Co, Ltd.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0 [2020-01-30] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [F-Secure DataGuard Icon Overlay] -> {CA789262-D278-40F7-AC12-19C0395F9DD9} => C:\Program Files (x86)\F-Secure\SAFE\FsShellExtension64.dll [2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => C:\Program Files\EZ CD Audio Converter\ezcd64.dll [2018-11-28] (Poikosoft -> Poikosoft)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => C:\Program Files\EZ CD Audio Converter\ezcd64.dll [2018-11-28] (Poikosoft -> Poikosoft)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-12-07 10:24 - 2019-12-07 10:24 - 098275328 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 000092672 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 003922432 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2020-01-01 11:34 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\APP Manager\unrar.dll
2020-01-22 15:14 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\Live Update\unrar.dll
2020-01-01 11:34 - 2017-08-02 14:48 - 000237568 _____ () [File not signed] C:\Program Files (x86)\MSI\MysticLight\LEDControl.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Origin\libEGL.DLL
2019-11-12 14:49 - 2020-01-16 15:01 - 003090944 _____ () [File not signed] C:\Program Files (x86)\Origin\libGLESv2.dll
2019-11-05 14:33 - 2019-11-05 14:33 - 000209920 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\AacHal_x86.dll
2019-10-22 02:16 - 2019-10-22 02:16 - 000264704 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\SB_SMBUS_SDK.dll
2019-11-06 14:09 - 2019-11-06 14:09 - 000190976 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_DRAM_RGB_AURA42\x86\AacHal_x86.dll
2019-11-25 14:44 - 2019-11-25 14:44 - 000176128 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_ASM_HAL\AacHal_x86.dll
2019-07-25 11:55 - 2019-07-25 11:55 - 000184832 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_M2_HAL\AacHal_x86.dll
2018-09-20 09:39 - 2018-09-20 09:39 - 000156672 _____ () [File not signed] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\AacHal_x86.dll
2019-12-21 09:24 - 2019-12-21 09:24 - 000064512 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_frozenlist.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000050176 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_helpers.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000225792 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_http_parser.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000045056 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_http_writer.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_websocket.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\multidict\_multidict.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000073216 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\yarl\_quoting.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000231424 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\_yaml.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000048128 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_frozenlist.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000036864 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_helpers.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000216064 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_http_parser.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000032256 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_http_writer.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000022528 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_websocket.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\multidict\_multidict.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000061952 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\psutil\_psutil_windows.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000073216 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\yarl\_quoting.cp37-win32.pyd
2019-12-10 16:40 - 2019-12-10 16:40 - 002831360 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\LightingService\log4cxx.dll
2020-01-01 11:34 - 2018-04-03 15:22 - 000053248 _____ (MS) [File not signed] C:\Program Files (x86)\MSI\MysticLight\MsIo32.dll
2018-09-20 09:08 - 2018-09-20 09:08 - 000053760 _____ (MS) [File not signed] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\MsIo32_Galax.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 000547840 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000002560 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icudt58.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 001252864 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icuuc58.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\SSLEAY32.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qico.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000256512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000305152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000709120 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000207360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 003513344 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Qml.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 003390976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Quick.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000068096 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 054071296 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000211456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000116224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2019-12-03 16:12 - 2019-12-03 16:12 - 000467456 _____ (TODO: <Company name>) [File not signed] C:\Program Files\ASUS\Aac_Keyboard\AacKbHal_x86.dll
2020-01-01 11:34 - 2016-10-03 13:43 - 000399872 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\MSI\MysticLight\Lib\SDKDLL.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\rewko\Data aplikací:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\rewko\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-11-09 19:29 - 2019-11-09 19:28 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2019-12-30 10:48 - 2020-01-04 17:14 - 000000511 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 DESKTOP-QF3F7F4.mshome.net # 2025 1 4 2 16 14 29 103
192.168.137.91 Galaxy-A7-2018.mshome.net # 2020 1 6 11 16 14 29 103
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\rewko\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg
DNS Servers: 62.129.50.20 - 85.135.32.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [{6115B74A-F481-4715-B51F-7F5978E26C20}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{D531BAE0-5E73-4CC2-AE2F-7A4AB0C416D8}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{BAC5F3AA-EFD6-43BC-8A3B-6DA4968CC73E}E:\hry\hearthstone\hearthstone.exe] => (Allow) E:\hry\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{2CB49B95-EE1B-423A-8DD4-9680E1D6A5FB}E:\hry\hearthstone\hearthstone.exe] => (Allow) E:\hry\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{84CC4630-C137-41E7-8653-AED8C28C4A17}] => (Allow) D:\Program Files\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.)
FirewallRules: [{A7B82843-BF0C-446B-9EB8-F9404093B804}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> BigNox Corporation)
FirewallRules: [TCP Query User{FD0A6540-1A2D-4098-BF39-2EFADF86CFC5}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [UDP Query User{917CE915-8A1B-42ED-8774-D42715D67C8B}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [{5E6809B5-E17F-4227-8BF1-56821853B798}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A40E82B2-C317-446E-9903-730A51BCF82C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{9356E3C2-9C16-440C-BAEF-92D374571DF7}C:\program files (x86)\grand theft auto v\gta5.exe] => (Block) C:\program files (x86)\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{2922C635-64C8-472B-BB35-91F0277FBF71}C:\program files (x86)\grand theft auto v\gta5.exe] => (Block) C:\program files (x86)\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [{F909AC20-CFFF-4977-B952-BB207B6B4029}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DFD8BA8E-310D-444E-9862-5D8C11ADF220}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{CE79F5DD-18FB-40B2-AFD3-E28A25E81BA1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ECB7A86B-9FEE-4EF1-935D-FD4D649E6FDD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{54D7EB71-A3E2-41A1-BCB2-E519557D086B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{8F943F30-7256-492E-A494-53791FA30229}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{07827EF2-5C19-4622-B66E-EA8A27ED91D2}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{B117FC1C-A434-4333-8A0D-DFE90A19CA05}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{09D6F9AE-95E1-4F59-9646-8D072A9B7F29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{89833A94-EB61-4C81-AB82-28C43B823A0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1F72C4B8-7690-460F-93C4-B2B483F8C377}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F7F77E03-08C9-421F-AECE-6C2E14B81FBC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F0B4CD74-A45C-4747-BD3A-67C3ABBA2AFD}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{FFC6BF94-E4AE-4BE9-970B-A42B2DEF366E}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{437D91B6-AC79-414D-99F7-9AD5528D90DE}] => (Allow) G:\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> )
FirewallRules: [{A40069FE-EE6F-4B89-BD6D-5A3773334706}] => (Allow) G:\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> )
FirewallRules: [{2CDE5D93-619A-48B1-97DF-E0AFE0ED1E04}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{D0D26D84-1CA2-412C-9503-52119B5F134C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C10581A0-27C0-49C1-9DB6-6723C7FEF231}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{4E317ECE-E6E0-4A70-B478-F05550BEFD60}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{44990B40-A639-4496-B85A-159666556E7A}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{8363E8C6-65C4-4AC0-B1BF-DF46FE33E2F3}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{64B55CF8-4689-466E-A368-74D8BDC521C2}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{1867F314-3288-46D1-A0CC-84763AB5AA06}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{CEE6493D-7238-4E8B-B60B-5C353A49C9AF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7930DBC3-62C9-4598-B1ED-9EA1047A2CF2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{85A32405-D95A-46CA-AA4C-9E9FC67846AB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A83966F1-9B01-405B-9EAA-83D54ED4B263}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BF9BA3AA-B6DF-4F7B-AA03-0CF3DA5E8124}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AE192729-ACB2-463A-86A2-135535EE22E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4BEFF340-F053-4C77-91AD-786F26761EA2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5E3CF6BD-D833-4FC0-A363-33D5CD75C201}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{4337516C-0A0B-423A-BE7A-992C02FE4B27}C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{DEE386FA-E6D1-4A3E-9B88-FC0D9BE4C748}C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{70D81B6A-8546-48A5-85C9-71E30D0FCEA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori\ori.exe () [File not signed]
FirewallRules: [{9DB2E6D6-7DC7-4FC7-B04D-9569F80D685E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori\ori.exe () [File not signed]
FirewallRules: [{7700146B-8902-4240-90D5-618006DB4F97}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grove flowers\nw.exe (The NW.js Community) [File not signed]
FirewallRules: [{84EC79F5-2E05-4023-BB18-A03E61795306}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grove flowers\nw.exe (The NW.js Community) [File not signed]
FirewallRules: [{92E80C83-10EB-415C-B204-F3548B7D47B3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3B726F82-A32D-48BD-8BB3-B69DB2F4FC53}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{FF272929-B573-4835-AB36-DF9C7F92B3B1}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{66D00699-62F6-4C41-9A2D-CB6308D3CC2A}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{439B30A1-AE8E-4D35-B7BA-52BC60B2129B}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{629FEA37-04AB-4D61-8B79-404F9C81B3A5}] => (Allow) LPort=26820
FirewallRules: [{70EDC50B-E1E6-48BA-9155-BBAFDF3E72CE}] => (Allow) LPort=26822
==================== Restore Points =========================
07-02-2020 14:30:49 Naplánovaný kontrolní bod
11-02-2020 17:50:57 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/13/2020 03:28:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=6
Error: (02/13/2020 03:28:24 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (02/13/2020 03:28:21 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (02/13/2020 12:33:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: dwm.exe, verze: 10.0.18362.387, časové razítko: 0x8e064b77
Název chybujícího modulu: dwmcore.dll, verze: 10.0.18362.387, časové razítko: 0x6906a3c8
Kód výjimky: 0xc0000602
Posun chyby: 0x000000000012afd9
ID chybujícího procesu: 0x2b60
Čas spuštění chybující aplikace: 0x01d5e261628edecd
Cesta k chybující aplikaci: C:\WINDOWS\System32\dwm.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\dwmcore.dll
ID zprávy: 37204afa-02df-4f02-9f4f-7410609e8f73
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/13/2020 12:33:15 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6952,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (02/13/2020 12:22:12 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (18392,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (02/13/2020 12:13:28 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=5
Error: (02/13/2020 12:13:05 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: Velikost požadované vyrovnávací paměti je větší než velikost vyrovnávací paměti předané do funkce Collect knihovny DLL rozšiřitelných čítačů C:\Windows\System32\perfts.dll pro službu LSM. Velikost dané vyrovnávací paměti: 25776; požadovaná velikost: 34328.
System errors:
=============
Error: (02/13/2020 12:33:21 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-QF3F7F4)
Description: Server Microsoft.OneConnect_5.1911.3171.0_x64__8wekyb3d8bbwe!App.AppXe8pdgw5syxe8pgccbk3mcn5hanwamr0e.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/13/2020 12:13:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (02/13/2020 12:13:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).
Error: (02/13/2020 12:12:44 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QF3F7F4)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_4e728d5 s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell
Error: (02/13/2020 12:12:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_4e728d5 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (02/13/2020 12:12:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Uživatelská služba pro GameDVR a vysílání her_4e728d5 bylo dosaženo časového limitu (30000 ms).
Error: (02/10/2020 09:21:21 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QF3F7F4)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_abfb358 s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell
Error: (02/10/2020 09:21:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_abfb358 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Windows Defender:
===================================
Date: 2019-12-23 07:57:54.238
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {540CC8B3-58C8-4013-AAAC-D894F91AA2B3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-12-21 21:32:37.481
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Zpevdo.A
ID: 2147727143
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\lic.switcher.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7
Date: 2019-12-21 21:26:34.705
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7
Date: 2019-12-21 21:26:29.777
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7
Date: 2019-12-21 21:26:17.772
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7
CodeIntegrity:
===================================
Date: 2020-02-13 15:31:10.161
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:31:10.056
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:31:09.950
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:30:56.541
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:30:51.995
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:30:51.908
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:30:51.815
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:30:41.400
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2.A0 08/24/2019
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i7-8700 CPU @ 3.20GHz
Percentage of memory in use: 47%
Total physical RAM: 16326.21 MB
Available physical RAM: 8490.54 MB
Total Virtual: 18758.21 MB
Available Virtual: 7376.93 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:237.87 GB) (Free:28.45 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:1862.98 GB) (Free:0.53 GB) NTFS
Drive e: () (Fixed) (Total:1667.7 GB) (Free:51.33 GB) NTFS
Drive g: () (Fixed) (Total:195.31 GB) (Free:77.23 GB) NTFS
Drive h: (2.5 PALCE) (Fixed) (Total:931.51 GB) (Free:168.77 GB) NTFS
\\?\Volume{e580499b-1762-4e4f-a029-b359879fab72}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.07 GB) NTFS
\\?\Volume{f11ed521-731f-443b-9d0c-4ee98bdd3774}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==================== End of Addition.txt =======================
Ran by rewko (administrator) on DESKTOP-QF3F7F4 (Micro-Star International Co., Ltd. MS-7B48) (13-02-2020 15:34:01)
Running from C:\Users\rewko\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Loaded Profiles: rewko (Available Profiles: rewko)
Platform: Windows 10 Pro Version 1909 18363.592 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> ) C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsorsp64.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\FsPisces.exe
(F-Secure Corporation -> F-Secure Corporation) C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulprothoster.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient Helper.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
(GOG Sp. z o.o. -> GOG.com) C:\Program Files (x86)\GOG Galaxy\GOG Galaxy Notifications Renderer.exe
(GOG Sp. z o.o. -> GOG.com) C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Intel Corporation -> Intel(R) Corporation) C:\Windows\SysWOW64\XtuService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_d52c63e0e1c02c96\jhi_service.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\rewko\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\consent.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\APP Manager\AppManager.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\Live Update.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO.,LTD.) C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Windows\SysWOW64\muachost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Python Software Foundation -> Python Software Foundation) C:\Program Files (x86)\GOG Galaxy\python\python.exe
(Python Software Foundation -> Python Software Foundation) C:\Program Files (x86)\GOG Galaxy\python\python.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [1027360 2019-11-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [APP Manager] => C:\Program Files (x86)\MSI\APP Manager\AppManager.exe [3705520 2019-05-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835760 2019-06-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1028280 2017-11-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM-x32\...\Run: [X_Boost] => C:\Program Files (x86)\MSI\MSI X Boost\X_Boost.exe [4260000 2018-08-28] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Live Update] => C:\Program Files (x86)\MSI\Live Update\Live Update.exe [26292912 2020-01-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3137808 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [36098448 2020-02-05] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3365840 2020-02-11] (Valve -> Valve Corporation)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [launchOnStartup] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [13186120 2019-12-29] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\RunOnce: [Application Restart #2] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.100\Installer\chrmstp.exe [2020-02-11] (Google LLC -> Google LLC)
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {07450C28-6721-48EE-A52C-AD96326E5849} - System32\Tasks\MSILEDKeeper_Host => C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe [1068688 2019-08-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
Task: {1B333883-02A8-4C2A-9855-DDE8251A800D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {233D7998-23D3-45FC-9EAA-F8A9867CAD33} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {26C40013-35A5-4A63-ABB1-46CF48181851} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
Task: {374FE778-7CEC-4B62-AB84-167790489BA3} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\IntelPTTEKRecertification.exe [938768 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {4CF4388A-7DF3-4D08-BBDB-857D95C3206D} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [1692840 2015-08-18] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
Task: {644EC0E1-2924-4BA9-ADA0-281BAF8B24CA} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6BEFCEC5-E257-4B6E-8306-B380AF3D2C68} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {72F01EF0-A015-4A06-B9AA-EC6DD61D6EDA} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A71C56C9-676D-48B7-956E-9DD6527BD53C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ABC08BA4-A1D6-4F2A-A72C-8578C943293E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
Task: {AC1D535C-A2AE-4EA1-BBD2-F0C1A01599D0} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [1652536 2018-11-05] (Intel(R) Software -> Intel Corporation)
Task: {AF7AF81B-D988-402D-8D88-AAB1A3797E7E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C08AA499-FD9D-4AD1-9782-D64D48875012} - System32\Tasks\F-Secure\F-Secure Hotfix => C:\Program Files (x86)\F-Secure\SAFE\fs_hotfix.exe [280464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
Task: {D8D57FCA-48E8-4C4A-98D3-DB527A3C1AB1} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E7AA5E24-C07F-4F7C-A38E-C9137E29F2FE} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F78046A1-578B-4AD6-9574-EDA6D5863F9C} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{35c8ea1d-39f7-4e26-a0d9-f3bae6f80935}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Tcpip\..\Interfaces\{4c1c4675-98dc-48ce-8325-a7cc3d28333a}: [DhcpNameServer] 62.129.50.20 85.135.32.100
Internet Explorer:
==================
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_ie_https\fs_ie_https64.dll [2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
BHO-x32: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_ie_https\fs_ie_https.dll [2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
Edge:
======
DownloadDir: C:\Users\rewko\Downloads
Edge Notifications: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> hxxps://www.facebook.com
Edge Extension: (AdBlock — best ad blocker) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-01-25]
FireFox:
========
FF DefaultProfile: jvgxijac.default
FF ProfilePath: C:\Users\rewko\AppData\Roaming\Avant Profiles\.default\gecko\Mozilla\Avant\Profiles\jvgxijac.default [2019-12-15]
FF NetworkProxy: Avant Profiles\.default\gecko\Mozilla\Avant\Profiles\jvgxijac.default -> type", 0
FF HKLM\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Extension: (Browsing Protection by F-Secure) - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi [2020-02-12]
FF HKLM-x32\...\Firefox\Extensions: [ols@f-secure.com] - C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\browser\install\fs_firefox_https\fs_firefox_https.xpi
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default [2020-02-11]
CHR HomePage: Default -> hxxp://seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.msn.com/?p ... google.com"
CHR Extension: (Prezentace) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-03]
CHR Extension: (Dokumenty) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-03]
CHR Extension: (Disk Google) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-03]
CHR Extension: (YouTube) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-03]
CHR Extension: (Tabulky) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-03]
CHR Extension: (Windscribe - Free Proxy and Ad Blocker) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnmpcagpplmpfojmgmnngilcnanddlhb [2020-02-11]
CHR Extension: (Super Netflix) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\iakpdiefpdniabbekcbofaanjcpjkloe [2020-01-03]
CHR Extension: (Browsing Protection by F-Secure) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmjjnhpacphpjmnnlnccpfmhkcloaade [2020-01-03]
CHR Extension: (Netflix Subtitles Automatic (beta)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpgadigdffhcjldfkanacncocacekkie [2020-01-03]
CHR Extension: (OpenSubtitles for Netflix) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcdnnmhalbjbccempnhabdaeilabmdop [2020-01-03]
CHR Extension: (Tomikup Tlačítko) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjlpfbleimihijpglffkfgngdlgplkjf [2020-01-03]
CHR Extension: (DotVPN — lepší způsob VPN) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpiecbcckbofpmkkkdibbllpinceiihk [2020-01-03]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2020-02-11]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2020-01-03]
CHR Extension: (Plugins) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcblfncjaclajmegihojiekebofjcen [2020-01-03]
CHR Extension: (Open in VLC™ (VideoLAN)) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nhpfgmjcpbdcbmhjbhogflbbmdbomfmb [2020-01-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-03]
CHR Extension: (Gmail) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-03]
CHR Extension: (Chrome Media Router) - C:\Users\rewko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-11]
CHR HKLM\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]
CHR HKLM-x32\...\Chrome\Extension: [jmjjnhpacphpjmnnlnccpfmhkcloaade]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.38\atkexComSvc.exe [440368 2020-01-18] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2020-02-12] (BitRaider LLC -> BitRaider, LLC)
R2 fshoster; C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe [216464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
R2 fsnethoster; C:\Program Files (x86)\F-Secure\SAFE\fshoster32.exe [216464 2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulhoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulnethoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshoster64.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulorsp; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsorsp64.exe [101248 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R2 fsulprothoster; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulprothoster.exe [584776 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1582664 2019-12-29] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6617160 2019-12-06] (GOG Sp. z o.o. -> GOG.com)
S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2414264 2017-08-25] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [542016 2018-11-20] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\SocketHeciServer.exe [876304 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_e3f9b958faa255f1\lib\TPMProvisioningService.exe [806152 2019-09-08] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_d52c63e0e1c02c96\jhi_service.exe [648080 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [2668136 2019-12-16] (ASUSTeK Computer Inc. -> ASUSTek Computer Inc.)
R2 LMS; C:\WINDOWS\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [553056 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService_x64.exe [2669240 2018-01-12] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2343600 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService_x64.exe [2725048 2017-12-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2255544 2018-11-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2507952 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2136248 2018-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [2740912 2019-10-22] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [86688 2018-07-25] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_AppManager_Service; C:\Program Files (x86)\MSI\APP Manager\AppManager_Service.exe [2055352 2019-01-04] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_DPCLTSERVICE; C:\Program Files (x86)\MSI\DPC Latency Tuner\DPCLT_Service.exe [2167440 2019-04-19] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [113336 2017-12-21] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [2325168 2019-11-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [183480 2019-02-14] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R2 MysticLight2_Service; C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe [34976 2018-12-20] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2475312 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3393848 2020-01-16] (Electronic Arts, Inc. -> Electronic Arts)
R2 RtkAudioUniversalService; C:\WINDOWS\System32\RtkAudUService64.exe [1027360 2019-11-21] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-12] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 sshd; C:\WINDOWS\System32\OpenSSH\sshd.exe [974848 2019-08-17] (Microsoft Windows -> )
S3 SshdBroker; C:\WINDOWS\System32\SshdBroker.dll [290816 2019-10-04] (Microsoft Windows -> Microsoft Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2019-12-17] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 ss_conn_service2; C:\Program Files (x86)\Samsung\USB Drivers\28_ssconn2\conn\ss_conn_service2.exe [933304 2019-12-17] (Samsung Electronics Co., Ltd. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [11791704 2019-03-18] (TeamViewer GmbH -> TeamViewer GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-08] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 XTU3SERVICE; C:\WINDOWS\SysWOW64\XtuService.exe [26416 2019-05-06] (Intel Corporation -> Intel(R) Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 Asusgio2; C:\WINDOWS\system32\drivers\AsIO2.sys [33832 2019-12-11] (ASUSTeK Computer Inc. -> )
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2020-02-12] (BitRaider -> BitRaider)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [136040 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2019-06-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2019-06-30] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
R3 F-Secure Gatekeeper; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fsulgk.sys [290144 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R1 F-Secure UL HIPS; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\ulcore\1581514205\fshs.sys [103048 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R0 fsbts; C:\WINDOWS\System32\drivers\fsbts.sys [57512 2020-01-03] (F-Secure Corporation -> )
S0 fselms; C:\WINDOWS\System32\drivers\fselms.sys [15296 2020-01-03] (Microsoft Windows Early Launch Anti-malware Publisher -> F-Secure Corporation)
R3 fsni; C:\Program Files (x86)\F-Secure\SAFE\Ultralight\nif\1581507027\fsni64.sys [111472 2020-02-12] (F-Secure Corporation -> F-Secure Corporation)
R1 GLCKIO2; C:\WINDOWS\system32\drivers\GLCKIO2.sys [29368 2019-04-24] (ASUSTeK Computer Inc. -> )
S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [70664 2017-08-25] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [144528 2018-11-20] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-02-13] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [226448 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [119960 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
R3 MEIx64; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_85021432489d6a1c\x64\TeeDriverW8x64.sys [266128 2019-09-08] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
U1 MSIO; C:\WINDOWS\system32\drivers\MsIo64.sys [25616 2018-02-12] (MICSYS Technology Co., Ltd. -> )
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3485696 2019-03-19] (Microsoft Windows -> Intel Corporation)
R3 NTIOLib_DPC; C:\Program Files (x86)\MSI\DPC Latency Tuner\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [14288 2017-03-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_MysticLight; C:\Program Files (x86)\MSI\MysticLight\Lib\NTIOLib_X64.sys [14288 2017-07-10] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 NTIOLib_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [14288 2017-03-15] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_9e532b5f619dc909\nvlddmkm.sys [23276960 2020-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69840 2019-03-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-11-21] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1141744 2019-04-18] (Realtek Semiconductor Corp. -> Realtek )
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166760 2019-12-17] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [45664 2019-12-08] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [355760 2019-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\System32\drivers\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-08] (Microsoft Windows -> Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [2719256 2020-02-04] (Wellbia.com Co., Ltd. -> Wellbia.com Co., Ltd.)
R3 XTUComponent; C:\WINDOWS\System32\drivers\iocbios2.sys [38280 2019-05-06] (Intel Corporation -> Intel Corporation)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2019-11-17] (Beijing Duodian Online Science and Technology Co.,Ltd -> BigNox Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-13 15:32 - 2020-02-13 15:32 - 000000000 ____D C:\Users\rewko\AppData\LocalLow\IGDump
2020-02-13 15:28 - 2020-02-13 15:28 - 000000000 ___HD C:\OneDriveTemp
2020-02-13 11:36 - 2020-02-13 11:36 - 000000000 ____D C:\Users\rewko\Documents\Star Wars - The Old Republic
2020-02-13 10:26 - 2020-02-13 10:26 - 000226448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-02-13 10:26 - 2020-02-13 10:26 - 000119960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-02-13 10:26 - 2020-02-13 10:26 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-02-13 10:24 - 2020-02-13 10:25 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-02-13 10:24 - 2020-02-13 10:25 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-02-13 10:24 - 2020-02-13 10:25 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-02-13 10:24 - 2020-02-13 10:24 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-02-13 10:24 - 2020-02-13 10:24 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\Users\rewko\AppData\Local\mbamtray
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\Users\rewko\AppData\Local\mbam
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\Users\rewko\AppData\Local\cache
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-02-13 10:24 - 2020-02-13 10:24 - 000000000 ____D C:\Program Files\Malwarebytes
2020-02-13 08:52 - 2020-02-13 15:34 - 000000000 ____D C:\FRST
2020-02-12 17:57 - 2020-02-12 18:22 - 584419276 _____ C:\Users\rewko\Downloads\Fairy Tail - 195 [1080p].mkv
2020-02-12 17:55 - 2020-02-12 17:55 - 000000000 ____D C:\Users\rewko\Documents\HeroBlade Logs
2020-02-12 17:55 - 2020-02-12 17:55 - 000000000 ____D C:\Users\rewko\AppData\Local\SWTOR
2020-02-12 16:18 - 2020-02-12 16:18 - 000000000 ____D C:\Users\Public\Documents\BitRaider
2020-02-12 16:18 - 2020-02-12 16:18 - 000000000 ____D C:\ProgramData\BitRaider
2020-02-12 16:15 - 2020-02-12 16:15 - 000000000 ____D C:\Users\rewko\AppData\Local\SWTORPerf
2020-02-12 16:13 - 2020-02-12 16:13 - 000000689 _____ C:\Users\Public\Desktop\Star Wars - The Old Republic.lnk
2020-02-12 16:13 - 2020-02-12 16:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA
2020-02-12 16:13 - 2020-02-12 16:13 - 000000000 _____ C:\end
2020-02-12 09:32 - 2020-02-12 09:48 - 374803518 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 80 [480p].mkv
2020-02-12 09:31 - 2020-02-12 09:31 - 000037771 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 80 [720p].ass
2020-02-11 14:48 - 2020-02-11 14:53 - 740984058 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 05 [720p].mkv
2020-02-11 14:47 - 2020-02-11 14:47 - 000031178 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_05_720p.ass
2020-02-10 10:52 - 2015-11-04 16:40 - 191158825 _____ C:\Users\rewko\Desktop\Fairy Tail - 157 CZ.mkv
2020-02-09 18:52 - 2020-02-09 19:07 - 741033740 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 05 [720p].mkv
2020-02-09 18:51 - 2020-02-09 19:06 - 754032752 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 18 [720p].mkv
2020-02-08 20:17 - 2020-02-08 20:17 - 000000000 ____D C:\Users\rewko\AppData\Local\GroveFlowers
2020-02-08 20:15 - 2020-02-08 20:15 - 000000223 _____ C:\Users\rewko\Desktop\Grove flowers.url
2020-02-07 17:58 - 2020-02-07 17:58 - 000000137 _____ C:\Users\rewko\Desktop\Ori and the Blind Forest.url
2020-02-07 15:54 - 2020-02-07 15:59 - 589975878 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 05 [720p].mkv
2020-02-07 15:53 - 2020-02-07 15:53 - 000016866 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 05 [720p].ass
2020-02-07 08:11 - 2020-02-07 08:51 - 2924342891 _____ C:\Users\rewko\Downloads\ Star.Trek.Picard.S01E03.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-02-06 14:45 - 2020-02-06 14:52 - 743053440 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 04 [720p].mkv
2020-02-06 14:45 - 2020-02-06 14:45 - 000035074 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_04_720p.ass
2020-02-06 13:14 - 2020-02-06 13:14 - 000034076 _____ C:\Users\rewko\Downloads\HorribleSubs_Kyokou_Suiri_-_03_720p.ass
2020-02-06 12:31 - 2020-02-06 12:36 - 743174363 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 03 [720p].mkv
2020-02-06 12:23 - 2020-02-06 12:28 - 743533564 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 02 [720p].mkv
2020-02-06 12:22 - 2020-02-06 12:22 - 000035144 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 02 [720p].ass
2020-02-06 10:03 - 2020-02-06 10:10 - 743547492 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 01 [720p].mkv
2020-02-06 10:02 - 2020-02-06 10:02 - 000031039 _____ C:\Users\rewko\Downloads\[HorribleSubs] Kyokou Suiri - 01 [720p].ass
2020-02-05 11:48 - 2020-02-05 11:48 - 000001472 _____ C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NVIDIA GeForce NOW.lnk
2020-02-05 11:48 - 2020-02-05 11:48 - 000001464 _____ C:\Users\rewko\Desktop\NVIDIA GeForce NOW.lnk
2020-02-05 08:56 - 2020-02-05 08:56 - 000000000 ____D C:\Users\rewko\AppData\Roaming\dvdcss
2020-02-05 07:36 - 2020-02-05 07:37 - 737560070 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 79 [720p].mkv
2020-02-05 07:36 - 2020-02-05 07:36 - 000040857 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 79 [720p].ass
2020-02-04 18:11 - 2020-02-04 18:11 - 000038990 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_04_1080p_CZ.ass
2020-02-04 17:16 - 2020-02-04 17:18 - 753528618 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 17 [720p].mkv
2020-02-04 16:50 - 2020-02-04 16:53 - 381426743 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 16 [480p].mkv
2020-02-03 20:32 - 2020-02-03 20:33 - 380742884 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 15 [480p].mkv
2020-02-03 20:30 - 2020-02-03 20:31 - 380952503 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 14 [480p].mkv
2020-02-03 20:07 - 2020-02-03 20:07 - 000033710 _____ C:\Users\rewko\Downloads\[HorribleSubs] Ahiru no Sora - 10 [720p].ass
2020-02-03 17:31 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-02-03 17:31 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000450576 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-02-03 17:31 - 2020-01-31 00:04 - 000353160 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-02-03 17:31 - 2020-01-31 00:03 - 011843504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-02-03 17:31 - 2020-01-31 00:03 - 010167544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 017462616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 005384584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 004718792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 002075904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001727320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6444219.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001569160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001490688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6444219.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001485688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001370360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001145776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 001064384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000825720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000815120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000685912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000677584 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000660176 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000557304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-02-03 17:31 - 2020-01-31 00:02 - 000545112 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 040511408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 035380120 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2020-02-03 17:31 - 2020-01-31 00:01 - 015031808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-02-02 12:52 - 2020-02-02 12:53 - 592045947 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 04 [720p].mkv
2020-02-02 12:51 - 2020-02-02 12:51 - 000024000 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 04 [720p].ass
2020-02-02 12:47 - 2020-02-02 12:48 - 586278890 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 03 [720p].mkv
2020-02-02 12:47 - 2020-02-02 12:47 - 000025144 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 03 [720p].ass
2020-02-02 12:24 - 2020-02-02 12:25 - 595025198 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 02 [720p].mkv
2020-02-02 12:23 - 2020-02-02 12:23 - 000017069 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 02 [720p].ass
2020-02-02 11:32 - 2020-02-02 11:32 - 000000000 ____D C:\Users\rewko\Downloads\A MILF s Tale 5 (2020)
2020-02-01 19:02 - 2020-02-01 19:05 - 1460501104 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 04 [1080p].mkv
2020-01-31 19:14 - 2020-01-31 19:15 - 584749977 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 01 [720p].mkv
2020-01-31 19:14 - 2020-01-31 19:14 - 000025132 _____ C:\Users\rewko\Downloads\[HorribleSubs] Plunderer - 01 [720p].ass
2020-01-31 19:12 - 2020-01-31 19:17 - 3076433650 _____ C:\Users\rewko\Downloads\Star.Trek.Picard.S01E02.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-01-30 17:31 - 2020-01-30 17:31 - 000038900 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_03_1080p_CZ.ass
2020-01-28 18:33 - 2020-01-28 18:33 - 000028064 _____ C:\Users\rewko\Downloads\Kuutei Dragons 03.ass
2020-01-28 17:46 - 2020-01-28 17:46 - 000043278 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_02_1080p_CZ (1).ass
2020-01-27 18:19 - 2020-01-27 18:20 - 741666322 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 03 [720p].mkv
2020-01-27 18:12 - 2020-01-27 18:13 - 742348334 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 02 [720p].mkv
2020-01-27 16:22 - 2020-01-27 16:24 - 1458179946 _____ C:\Users\rewko\Downloads\[HorribleSubs] Haikyuu!! S4 - 01 [1080p].mkv
2020-01-27 16:21 - 2020-01-27 16:21 - 000043531 _____ C:\Users\rewko\Downloads\HorribleSubs_Haikyuu_To_the_top_-_01_1080p_CZ.ass
2020-01-26 18:20 - 2020-01-26 18:22 - 736782545 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 78 [720p].mkv
2020-01-26 18:20 - 2020-01-26 18:20 - 000035919 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 78 [720p].ass
2020-01-26 17:31 - 2020-01-26 17:31 - 000000000 ____D C:\Users\rewko\Downloads\Angela White, Ava Addams, Bridgette B - Chasing That Big D
2020-01-26 15:17 - 2020-02-04 16:34 - 002719256 _____ (Wellbia.com Co., Ltd.) C:\WINDOWS\xhunter1.sys
2020-01-26 15:17 - 2020-02-01 10:34 - 000000000 ____D C:\Users\rewko\Documents\Black Desert
2020-01-26 15:17 - 2020-01-26 15:17 - 000000016 _____ C:\ProgramData\mntemp
2020-01-26 13:58 - 2020-01-26 14:11 - 190906545 _____ C:\Users\rewko\Downloads\Angel.Has.Fallen.2019.1080p.BluRay.CZ.EN.DD.5.1.x264-MTK.mkv
2020-01-25 08:41 - 2020-01-25 08:45 - 3249058554 _____ C:\Users\rewko\Downloads\Star.Trek.Picard.S01E01.1080p.WEB-DL.DDP5.1.H.264.mkv
2020-01-21 15:56 - 2020-01-21 17:09 - 808669205 _____ C:\Users\rewko\Downloads\DC's Legends of Tomorrow S05E00.720p.HDTV.x264-SVA+cz tit.mkv
2020-01-21 15:55 - 2020-01-21 15:55 - 000020246 _____ C:\Users\rewko\Downloads\legends-of-tomorrow-S05E00-hdtv-By-azur58.zip
2020-01-21 15:29 - 2020-01-21 15:29 - 000652371 ____H C:\Users\rewko\Downloads\.d3af212720c2f2024431ce49fae2d9a039c38180.parts
2020-01-21 15:27 - 2020-01-21 15:27 - 000000000 ____D C:\Users\rewko\Downloads\Arrow.S08E08.Crisis.on.Infinite.Earths.Part.Four.720p.AMZN.WEB-DL.DDP5.1.H.264-[TGx]
2020-01-21 11:40 - 2020-01-21 11:41 - 737258580 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 77 [720p].mkv
2020-01-21 11:39 - 2020-01-21 11:39 - 000030871 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 77 [720p].ass
2020-01-19 13:53 - 2020-01-21 15:25 - 000048933 _____ C:\Users\rewko\Desktop\Arrow.S08E08.AMZN.WEB-DL.DDP5.1.H.264-CasStudio-cz.srt
2020-01-18 19:09 - 2020-01-18 19:09 - 000000000 ____D C:\Users\rewko\AppData\Local\Indiana
2020-01-18 18:44 - 2020-01-18 18:47 - 000001269 _____ C:\Users\rewko\Desktop\CrystalDiskInfo.lnk
2020-01-18 18:44 - 2020-01-18 18:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CrystalDiskInfo
2020-01-18 18:44 - 2020-01-18 18:44 - 000000000 ____D C:\Program Files (x86)\CrystalDiskInfo
2020-01-18 14:18 - 2020-01-18 18:48 - 000000000 ____D C:\Users\rewko\AppData\Roaming\HD Tune Pro
2020-01-18 14:17 - 2020-01-18 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD Tune Pro
2020-01-18 14:17 - 2020-01-18 14:17 - 000000000 ____D C:\Program Files (x86)\HD Tune Pro
2020-01-18 12:39 - 2020-02-11 18:08 - 000000147 _____ C:\CosairDram.txt
2020-01-18 12:39 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files\Patriot
2020-01-18 12:39 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files (x86)\LightingService
2020-01-18 12:39 - 2018-02-12 04:22 - 000025616 _____ C:\WINDOWS\system32\Drivers\MsIo64.sys
2020-01-18 12:38 - 2020-01-18 12:41 - 000000786 _____ C:\Users\Public\Desktop\AURA.lnk
2020-01-18 12:38 - 2020-01-18 12:39 - 000000000 ____D C:\Program Files\ASUS
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\Program Files\Galaxy
2020-01-18 12:38 - 2020-01-18 12:38 - 000000000 ____D C:\Program Files (x86)\ASUS
2020-01-18 12:38 - 2019-12-11 10:25 - 000120880 _____ C:\WINDOWS\system32\AsIO2.dll
2020-01-18 12:38 - 2019-12-11 10:25 - 000095280 _____ C:\WINDOWS\SysWOW64\AsIO2.dll
2020-01-18 12:38 - 2019-12-11 10:25 - 000033832 _____ C:\WINDOWS\system32\Drivers\AsIO2.sys
2020-01-18 12:38 - 2019-04-24 11:25 - 000029368 _____ C:\WINDOWS\system32\Drivers\GLCKIO2.sys
2020-01-18 12:37 - 2020-01-18 12:37 - 000000000 ____D C:\Users\rewko\Desktop\Lighting_Control_1.07.79
2020-01-18 08:22 - 2020-01-18 08:22 - 000000000 ____D C:\Users\rewko\Downloads\Angela White - Busting On The Burglar
2020-01-17 16:08 - 2020-01-17 16:08 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys
2020-01-17 16:08 - 2020-01-17 16:08 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-17 16:08 - 2020-01-17 16:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-17 16:08 - 2020-01-17 16:08 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-17 16:02 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-17 16:02 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-01-16 17:15 - 2020-01-16 17:16 - 729593897 _____ C:\Users\rewko\Downloads\[HorribleSubs] Somali to Mori no Kamisama - 01 [720p].mkv
2020-01-16 17:15 - 2020-01-16 17:15 - 000025846 _____ C:\Users\rewko\Downloads\Somali_to_Mori_no_Kamisama_-_01_preklad.ass
2020-01-15 18:20 - 2020-01-15 18:20 - 000029461 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 76 [720p].ass
2020-01-15 17:52 - 2020-01-15 17:52 - 000033121 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 75 [720p].ass
2020-01-15 16:59 - 2020-01-15 17:01 - 737932191 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 76 [720p].mkv
2020-01-15 16:57 - 2020-01-15 17:00 - 737224070 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 75 [720p].mkv
2020-01-15 16:57 - 2020-01-15 16:59 - 737446067 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 74 [720p].mkv
2020-01-15 16:57 - 2020-01-15 16:57 - 000039401 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 73 [720p].ass
2020-01-15 16:57 - 2020-01-15 16:57 - 000036288 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 74 [720p].ass
2020-01-15 16:56 - 2020-01-15 16:59 - 736513578 _____ C:\Users\rewko\Downloads\[HorribleSubs] Boku no Hero Academia - 73 [720p].mkv
2020-01-14 14:58 - 2020-01-14 14:58 - 000240739 _____ C:\Users\rewko\Downloads\PTV_TPS_CZ_CZ.pdf
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-13 15:32 - 2019-12-06 13:23 - 000000000 ____D C:\Program Files (x86)\Grand Theft Auto V
2020-02-13 15:29 - 2019-11-12 14:48 - 000000000 ____D C:\Users\rewko\AppData\Local\Origin
2020-02-13 15:29 - 2019-11-12 14:48 - 000000000 ____D C:\ProgramData\Origin
2020-02-13 15:29 - 2019-11-09 19:35 - 000000000 ____D C:\ProgramData\NVIDIA
2020-02-13 15:28 - 2019-12-07 19:38 - 000000000 ____D C:\Program Files (x86)\Steam
2020-02-13 15:28 - 2019-06-27 14:59 - 000000000 ___RD C:\Users\rewko\OneDrive
2020-02-13 12:33 - 2019-11-09 19:28 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-13 12:06 - 2019-11-09 19:51 - 000000000 ____D C:\Users\rewko\AppData\Local\Battle.net
2020-02-13 10:24 - 2019-11-09 19:28 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-02-12 18:37 - 2019-11-09 20:11 - 000000000 ____D C:\Users\rewko\AppData\Roaming\vlc
2020-02-12 10:36 - 2019-11-09 20:00 - 000000000 ____D C:\Users\rewko\AppData\Roaming\qBittorrent
2020-02-11 20:23 - 2020-01-01 11:35 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-11 20:23 - 2020-01-01 11:35 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-02-11 18:14 - 2019-11-09 19:43 - 001693640 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-02-11 18:14 - 2019-11-09 19:30 - 000716944 _____ C:\WINDOWS\system32\perfh005.dat
2020-02-11 18:14 - 2019-11-09 19:30 - 000145024 _____ C:\WINDOWS\system32\perfc005.dat
2020-02-11 18:14 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\INF
2020-02-11 18:08 - 2020-01-12 14:05 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-02-11 18:08 - 2019-11-09 19:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-02-11 18:08 - 2019-11-09 19:25 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-02-11 17:51 - 2019-11-09 19:26 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-02-10 08:43 - 2019-11-09 19:28 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-10 08:43 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-02-09 08:48 - 2019-11-12 14:54 - 000000000 ____D C:\Program Files (x86)\Origin Games
2020-02-09 08:48 - 2019-11-12 14:48 - 000000000 ____D C:\Users\rewko\AppData\Roaming\Origin
2020-02-08 20:15 - 2019-07-07 18:22 - 000000000 ____D C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-02-07 17:45 - 2019-11-09 19:34 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-02-06 18:55 - 2019-11-09 19:43 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2545330955-1925899768-253270718-1001
2020-02-06 18:55 - 2019-11-09 19:36 - 000002361 _____ C:\Users\rewko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-02-05 11:48 - 2019-12-03 18:15 - 000000000 ____D C:\Users\rewko\AppData\Local\NVIDIA Corporation
2020-02-05 11:48 - 2019-11-09 19:35 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-02-05 09:35 - 2019-11-09 19:36 - 000000000 ____D C:\Users\rewko
2020-02-05 07:18 - 2020-01-01 11:35 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-05 07:18 - 2020-01-01 11:35 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-03 17:32 - 2019-11-17 08:03 - 000000000 ____D C:\Users\rewko\AppData\Local\NVIDIA
2020-02-01 15:45 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-01-30 23:58 - 2019-12-12 19:30 - 004230752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-01-30 23:58 - 2019-11-07 17:31 - 004963008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-01-30 02:40 - 2019-11-07 17:31 - 000055783 _____ C:\WINDOWS\system32\nvinfo.pb
2020-01-30 00:56 - 2019-11-09 19:35 - 005577224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 002655864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 001767920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000670840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000454512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000131176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-01-30 00:56 - 2019-11-09 19:35 - 000083976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-01-29 16:28 - 2019-11-09 19:51 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-01-28 16:06 - 2019-11-09 19:45 - 000000000 ____D C:\Users\rewko\AppData\Local\PlaceholderTileLogoFolder
2020-01-28 16:06 - 2019-11-09 19:41 - 000000000 ____D C:\Users\rewko\AppData\Local\Packages
2020-01-27 16:26 - 2019-11-12 14:50 - 000000000 ____D C:\Users\rewko\AppData\Local\D3DSCache
2020-01-27 15:17 - 2020-01-03 16:12 - 000002017 _____ C:\Users\Public\Desktop\F-Secure SAFE.lnk
2020-01-27 08:11 - 2019-11-09 19:35 - 008887562 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-01-26 14:17 - 2019-10-06 13:28 - 000000000 ____D C:\Games
2020-01-23 14:28 - 2019-11-09 19:35 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-01-22 15:14 - 2020-01-01 11:30 - 000000000 ____D C:\Program Files (x86)\MSI
2020-01-22 15:14 - 2019-11-09 18:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2020-01-21 16:29 - 2019-11-09 19:41 - 000000000 ____D C:\ProgramData\Packages
2020-01-18 17:53 - 2019-11-21 15:08 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2020-01-18 12:39 - 2020-01-01 11:34 - 000000000 ____D C:\Program Files\ENE
2020-01-18 12:39 - 2019-11-12 14:50 - 000000000 ____D C:\ProgramData\Package Cache
2020-01-18 12:38 - 2020-01-01 11:33 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-01-18 12:35 - 2017-10-17 18:21 - 000356446 _____ C:\Users\rewko\Desktop\AURA SDK Guide_2.0.0.pdf
2020-01-18 12:35 - 2017-08-25 15:05 - 000000188 _____ C:\Users\rewko\Desktop\ver.02.03.txt
2020-01-17 16:17 - 2019-11-09 19:34 - 000268616 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-17 16:16 - 2019-11-09 19:28 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-17 16:11 - 2019-11-09 19:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-17 16:09 - 2019-11-09 19:47 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-16 15:01 - 2019-11-12 14:49 - 000000000 ____D C:\Program Files (x86)\Origin
==================== Files in the root of some directories ========
2020-01-01 11:30 - 2020-01-01 11:30 - 000007605 _____ () C:\Users\rewko\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020
Ran by rewko (13-02-2020 15:34:44)
Running from C:\Users\rewko\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Windows 10 Pro Version 1909 18363.592 (X64) (2019-11-09 18:41:33)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2545330955-1925899768-253270718-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2545330955-1925899768-253270718-503 - Limited - Disabled)
Guest (S-1-5-21-2545330955-1925899768-253270718-501 - Limited - Disabled)
rewko (S-1-5-21-2545330955-1925899768-253270718-1001 - Administrator - Enabled) => C:\Users\rewko
WDAGUtilityAccount (S-1-5-21-2545330955-1925899768-253270718-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: F-Secure SAFE (Enabled - Up to date) {8AC831E5-DF57-0DC0-D07B-4DE1A5FFFD9A}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
AIDA64 Extreme v6.20 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.20 - FinalWire Ltd.)
Aktualizace NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.3.11.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM-x32\...\{96f500e7-aac6-40c8-aa25-d223f373d8dd}) (Version: 2.3.11.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{1b15ca41-2671-4685-ab55-b8c814c4942a}) (Version: 1.0.19 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Display Component (HKLM-x32\...\{94267bd0-fa8a-4aa4-925d-ec3e0d130fba}) (Version: 1.1.25 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{e46f527f-1e64-4554-abc1-115f3429c25c}) (Version: 1.0.16 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM-x32\...\{b96dabae-c7ef-45f2-95ab-1a4d917262a3}) (Version: 1.02.12 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{D800D836-DE15-4B00-8273-521F022CD837}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{d00daf18-4c78-4fc6-bb05-376a06c79c48}) (Version: 1.0.58 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM\...\{B5E322FB-C191-463E-BDDD-4F22290EDFDB}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM-x32\...\{277875e0-972c-4705-b09c-ca5acf5b2f7c}) (Version: 1.0.8 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.03.45 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{2977b6c2-6523-42f4-8f52-bf4f7fc7a840}) (Version: 0.0.2.3 - ASUSTek COMPUTER INC. ) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{3507c756-a80f-4b0e-8475-975d8b432176}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{52400cff-4628-4ca3-a922-3767b198c1fd}) (Version: 1.0.50 - ASUSTek COMPUTER INC.) Hidden
ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden
ASUS MB Peripheral Products (HKLM-x32\...\{243ceb39-3b77-43ab-9135-fddab4ac7caf}) (Version: 1.0.32 - ASUSTeK Computer Inc.) Hidden
ASUS Mouse HAL (HKLM\...\{1838F91B-D481-45AA-B92F-071C62D0A19A}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden
ASUS Mouse HAL (HKLM-x32\...\{3dcded5b-10da-4d98-9c1f-c33d25288ebd}) (Version: 1.0.53 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM\...\{723B40A4-5BF2-4DC6-834A-2ADF75F3CF7E}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM-x32\...\{0ebcd5fb-7bf9-45b4-a0b6-0932d728e289}) (Version: 1.0.1.2 - ASUSTek COMPUTER INC.) Hidden
AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.07.79 - ASUSTeK Computer Inc.)
AURA DRAM Component (HKLM\...\{3881F403-B6B7-4D2F-BDAC-7901EB677F52}) (Version: 1.0.37 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{60d8d6b5-0ec5-420a-a407-a42e19346d46}) (Version: 1.0.37 - ASUS) Hidden
AURA Service (HKLM-x32\...\{0E536061-3B55-4D45-BF58-0BDA261C94B0}) (Version: 3.03.79 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{880f3eb6-28fe-4c63-875f-c6fb491fc334}) (Version: 3.03.79 - ASUSTeK Computer Inc.)
Avant Browser (remove only) (HKLM-x32\...\AvantBrowser) (Version: 12.5.0.0 - Avant Force)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.74.1085 - AB Team, d.o.o.)
Corsair AURA DRAM Component (HKLM\...\{376E0869-A4F1-4DC7-A1FD-EBF3AFFEB832}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden
Corsair AURA DRAM Component (HKLM-x32\...\{8fce5ea9-d56f-4f89-a363-830eceb72c72}) (Version: 1.0.13 - CORSAIR COMPONENTS INC.) Hidden
CrystalDiskInfo 7.0.4 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.0.4 - Crystal Dew World)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dynamic Application Loader Host Interface Service (HKLM\...\{BCBA926F-0E0A-4AB4-9498-7A8E78A83408}) (Version: 1.0.0.0 - Intel Corporation) Hidden
ENE IO Driver (HKLM-x32\...\{D0512FFD-6194-4D2E-967E-25B82A3322FF}) (Version: 3.0.0 - ENE TECHNOLOGY INC.) Hidden
ENE RGB HAL (HKLM\...\{BBEB79B8-472B-44E6-B0BA-157909EFE7D6}) (Version: 1.00.12 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{e0fa04a3-0593-40a3-8eea-c45cf5d09062}) (Version: 1.00.12 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM\...\{BC5E0A82-C638-44CB-8129-20C8ED70DE7A}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_DRAM_RGB_AURA42 (HKLM-x32\...\{f3d7fb09-b93f-4c01-a765-0b0adc5bc746}) (Version: 1.00.02 - Ene Tech.) Hidden
ENE_EHD_ASM_HAL (HKLM\...\{CB19FBA3-7A4F-4D2A-A231-F580B5DCD203}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_ASM_HAL (HKLM-x32\...\{3532d794-73d7-42bd-af02-9f00623dd567}) (Version: 1.00.05 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{455E34DD-5F26-431E-B542-72F73A8FEED8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{24a265a5-9f90-4090-904f-5ed9fa4414b8}) (Version: 1.00.02 - ENE TECHNOLOGY INC.) Hidden
Epic Games Launcher (HKLM-x32\...\{C69A2919-0662-4390-9418-67C931B44C18}) (Version: 1.1.236.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EZ CD Audio Converter (HKLM-x32\...\EZ CD Audio Converter) (Version: 8.2.2 - Poikosoft)
F-Secure SAFE (HKLM-x32\...\{9DEBA07D-5FCD-42F8-88F7-0232DC284B47}) (Version: 17.7 - F-Secure Corporation)
GALAX GAMER RGB (HKLM\...\{06A16AA8-BBA7-4362-962E-16651962D87C}) (Version: 1.00.02 - Galaxy Microsystems Ltd.) Hidden
GALAX GAMER RGB (HKLM-x32\...\{1257fdeb-ffa3-4e17-9d4b-189075ea3656}) (Version: 1.00.02 - Galaxy Microsystems Ltd.)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Drive (HKLM-x32\...\{459CE109-4E46-4340-92BC-054642BC3BC2}) (Version: 1.31.2873.2758 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.100 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\R3JhbmRUaGVmdEF1dG9W_is1) (Version: 1 - )
HD Tune Pro 5.70 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{BB9BB437-83CC-4497-AE89-911D61973784}) (Version: 6.5.1.330 - Intel Corporation) Hidden
Intel(R) Extreme Tuning Utility (HKLM-x32\...\{dfe98c64-9135-41f4-a771-0a6cb80289af}) (Version: 6.5.1.330 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1937.12.0.1312 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{c4a581e8-a702-448c-80c7-4b6192985db2}) (Version: 10.1.18228.8176 - Intel(R) Corporation)
Kingston AURA DRAM Component (HKLM\...\{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{c0c65c06-e79e-44b5-bd66-85099364afeb}) (Version: 1.0.20 - KINGSTON COMPONENTS INC.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MSI APP Manager (HKLM-x32\...\{00F47104-12BA-4E58-A7E6-F456C1BA338E}}_is1) (Version: 1.0.0.32 - MSI)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 3.0.0.99 - MSI)
MSI DPC Latency Tuner (HKLM-x32\...\{1AAC56F3-3F60-47DB-BE6B-088F36ADFDC5}_is1) (Version: 1.0.0.38 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.15 - MSI)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.65 - MSI)
MSI MysticLight (HKLM-x32\...\{93874B70-6C5E-446A-AF4D-E5AC776A0386}}_is1) (Version: 3.0.0.66 - MSI)
MSI Smart Tool (HKLM-x32\...\{DDCCA038-DAB1-4D09-B85C-848020AA75D6}}_is1) (Version: 1.0.0.43 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.28 - MSI)
MSI X Boost (HKLM-x32\...\{515143BB-7A11-4D85-B941-D520AAAA099C}_is1) (Version: 1.0.0.46 - MSI)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.5.0.0 - Duodian Technology Co. Ltd.)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.16.148 (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.16.148 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.338.0 - NVIDIA Corporation) Hidden
NVIDIA Ovladač HD audia 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 442.19 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 442.19 - NVIDIA Corporation) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{0886A906-0625-4A43-930D-AA92F6665AF4}) (Version: 1.00.04 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{ebb7013c-0b03-497c-bed1-1e48e806a593}) (Version: 1.00.04 - Patriot Memory)
Patriot Viper RGB (HKLM\...\{E42E13B0-071E-49C1-B1CC-58198E82F302}) (Version: 1.00.08 - Patriot Memory) Hidden
Patriot Viper RGB (HKLM-x32\...\{4b7bfeff-ac47-46c1-aea6-4556f5f0e6bb}) (Version: 1.00.08 - Patriot Memory)
qBittorrent 4.1.9.1 (HKLM-x32\...\qBittorrent) (Version: 4.1.9.1 - The qBittorrent project)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.34.307.2019 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8844.1 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.23.0 - Samsung Electronics Co., Ltd.)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 13.0.0.53 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 14 (HKLM-x32\...\TeamViewer) (Version: 14.2.2558 - TeamViewer)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Packages:
=========
AdBlock -> C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2020-01-25] (BetaFish)
EdgeDevtoolsPlugin -> C:\Windows\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2019-11-09] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-09] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-14] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.7.199.0_x64__dt26b99r8h8gj [2020-01-02] (Realtek Semiconductor Corp)
Samsung Flow -> C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy [2020-01-30] (Samsung Electronics Co, Ltd.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0 [2020-01-30] (Spotify AB) [Startup Task]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2545330955-1925899768-253270718-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-07-29] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [F-Secure DataGuard Icon Overlay] -> {CA789262-D278-40F7-AC12-19C0395F9DD9} => C:\Program Files (x86)\F-Secure\SAFE\FsShellExtension64.dll [2019-11-01] (F-Secure Corporation -> F-Secure Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => C:\Program Files\EZ CD Audio Converter\ezcd64.dll [2018-11-28] (Poikosoft -> Poikosoft)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [EzCd] -> {E46D6DC6-9707-43a9-BDBB-0BDBDD096F90} => C:\Program Files\EZ CD Audio Converter\ezcd64.dll [2018-11-28] (Poikosoft -> Poikosoft)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2016-07-29] (Google Inc -> Google)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2019-12-07 10:24 - 2019-12-07 10:24 - 098275328 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 000092672 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 003922432 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2020-01-01 11:34 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\APP Manager\unrar.dll
2020-01-22 15:14 - 2005-07-18 13:43 - 000160256 _____ () [File not signed] C:\Program Files (x86)\MSI\Live Update\unrar.dll
2020-01-01 11:34 - 2017-08-02 14:48 - 000237568 _____ () [File not signed] C:\Program Files (x86)\MSI\MysticLight\LEDControl.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 000015360 _____ () [File not signed] C:\Program Files (x86)\Origin\libEGL.DLL
2019-11-12 14:49 - 2020-01-16 15:01 - 003090944 _____ () [File not signed] C:\Program Files (x86)\Origin\libGLESv2.dll
2019-11-05 14:33 - 2019-11-05 14:33 - 000209920 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\AacHal_x86.dll
2019-10-22 02:16 - 2019-10-22 02:16 - 000264704 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE RGB HAL\x86\SB_SMBUS_SDK.dll
2019-11-06 14:09 - 2019-11-06 14:09 - 000190976 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_DRAM_RGB_AURA42\x86\AacHal_x86.dll
2019-11-25 14:44 - 2019-11-25 14:44 - 000176128 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_ASM_HAL\AacHal_x86.dll
2019-07-25 11:55 - 2019-07-25 11:55 - 000184832 _____ () [File not signed] C:\Program Files\ENE\Aac_ENE_EHD_M2_HAL\AacHal_x86.dll
2018-09-20 09:39 - 2018-09-20 09:39 - 000156672 _____ () [File not signed] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\AacHal_x86.dll
2019-12-21 09:24 - 2019-12-21 09:24 - 000064512 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_frozenlist.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000050176 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_helpers.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000225792 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_http_parser.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000045056 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_http_writer.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\aiohttp\_websocket.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\multidict\_multidict.cp37-win32.pyd
2019-12-21 09:24 - 2019-12-21 09:24 - 000073216 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\origin_7f53219b-4e2b-4591-9f4f-dfc5f4ba9eb0\yarl\_quoting.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000231424 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\_yaml.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000048128 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_frozenlist.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000036864 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_helpers.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000216064 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_http_parser.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000032256 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_http_writer.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000022528 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\aiohttp\_websocket.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000034304 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\multidict\_multidict.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000061952 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\psutil\_psutil_windows.cp37-win32.pyd
2020-02-11 18:09 - 2020-02-11 18:09 - 000073216 _____ () [File not signed] C:\Users\rewko\AppData\Local\GOG.com\Galaxy\plugins\installed\uplay_afb5a69c-b2ee-4d58-b916-f4cd75d4999a\yarl\_quoting.cp37-win32.pyd
2019-12-10 16:40 - 2019-12-10 16:40 - 002831360 _____ (Apache Software Foundation) [File not signed] C:\Program Files (x86)\LightingService\log4cxx.dll
2020-01-01 11:34 - 2018-04-03 15:22 - 000053248 _____ (MS) [File not signed] C:\Program Files (x86)\MSI\MysticLight\MsIo32.dll
2018-09-20 09:08 - 2018-09-20 09:08 - 000053760 _____ (MS) [File not signed] C:\Program Files\Galaxy\Aac_GALAX GAMER RGB\MsIo32_Galax.dll
2019-12-07 10:24 - 2019-12-07 10:24 - 000547840 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000002560 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icudt58.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 001252864 _____ (The ICU Project) [File not signed] C:\Program Files (x86)\Origin\icuuc58.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\LIBEAY32.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Origin\SSLEAY32.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qgif.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000032768 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qico.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000256512 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qjpeg.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000026112 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtga.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000305152 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qtiff.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000025600 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\imageformats\qwbmp.dll
2019-11-12 14:49 - 2020-01-16 15:01 - 001611264 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005487104 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005841920 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000709120 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Multimedia.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 001179136 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000207360 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Positioning.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000310272 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5PrintSupport.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 003513344 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Qml.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 003390976 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Quick.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000068096 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5QuickWidgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000045568 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5TextToSpeech.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 054071296 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineCore.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000211456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebEngineWidgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000116224 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebChannel.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000146432 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 005089792 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-01-16 15:01 - 2020-01-16 15:01 - 000184832 _____ (The Qt Company Ltd) [File not signed] C:\Program Files (x86)\Origin\Qt5Xml.dll
2019-12-03 16:12 - 2019-12-03 16:12 - 000467456 _____ (TODO: <Company name>) [File not signed] C:\Program Files\ASUS\Aac_Keyboard\AacKbHal_x86.dll
2020-01-01 11:34 - 2016-10-03 13:43 - 000399872 _____ (TODO: <公司名稱>) [File not signed] C:\Program Files (x86)\MSI\MysticLight\Lib\SDKDLL.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\rewko\Data aplikací:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\rewko\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-11-09 19:29 - 2019-11-09 19:28 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2019-12-30 10:48 - 2020-01-04 17:14 - 000000511 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.137.1 DESKTOP-QF3F7F4.mshome.net # 2025 1 4 2 16 14 29 103
192.168.137.91 Galaxy-A7-2018.mshome.net # 2020 1 6 11 16 14 29 103
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\rewko\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img1.jpg
DNS Servers: 62.129.50.20 - 85.135.32.100
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [{6115B74A-F481-4715-B51F-7F5978E26C20}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [{D531BAE0-5E73-4CC2-AE2F-7A4AB0C416D8}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [File not signed]
FirewallRules: [TCP Query User{BAC5F3AA-EFD6-43BC-8A3B-6DA4968CC73E}E:\hry\hearthstone\hearthstone.exe] => (Allow) E:\hry\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [UDP Query User{2CB49B95-EE1B-423A-8DD4-9680E1D6A5FB}E:\hry\hearthstone\hearthstone.exe] => (Allow) E:\hry\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{84CC4630-C137-41E7-8653-AED8C28C4A17}] => (Allow) D:\Program Files\Nox\bin\Nox.exe (Nox Limited -> Duodian Technology Co. Ltd.)
FirewallRules: [{A7B82843-BF0C-446B-9EB8-F9404093B804}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe (Nox Limited -> BigNox Corporation)
FirewallRules: [TCP Query User{FD0A6540-1A2D-4098-BF39-2EFADF86CFC5}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [UDP Query User{917CE915-8A1B-42ED-8774-D42715D67C8B}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [{5E6809B5-E17F-4227-8BF1-56821853B798}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A40E82B2-C317-446E-9903-730A51BCF82C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{9356E3C2-9C16-440C-BAEF-92D374571DF7}C:\program files (x86)\grand theft auto v\gta5.exe] => (Block) C:\program files (x86)\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{2922C635-64C8-472B-BB35-91F0277FBF71}C:\program files (x86)\grand theft auto v\gta5.exe] => (Block) C:\program files (x86)\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [{F909AC20-CFFF-4977-B952-BB207B6B4029}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DFD8BA8E-310D-444E-9862-5D8C11ADF220}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{CE79F5DD-18FB-40B2-AFD3-E28A25E81BA1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ECB7A86B-9FEE-4EF1-935D-FD4D649E6FDD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{54D7EB71-A3E2-41A1-BCB2-E519557D086B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{8F943F30-7256-492E-A494-53791FA30229}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{07827EF2-5C19-4622-B66E-EA8A27ED91D2}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{B117FC1C-A434-4333-8A0D-DFE90A19CA05}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{09D6F9AE-95E1-4F59-9646-8D072A9B7F29}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{89833A94-EB61-4C81-AB82-28C43B823A0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1F72C4B8-7690-460F-93C4-B2B483F8C377}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F7F77E03-08C9-421F-AECE-6C2E14B81FBC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F0B4CD74-A45C-4747-BD3A-67C3ABBA2AFD}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{FFC6BF94-E4AE-4BE9-970B-A42B2DEF366E}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{437D91B6-AC79-414D-99F7-9AD5528D90DE}] => (Allow) G:\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> )
FirewallRules: [{A40069FE-EE6F-4B89-BD6D-5A3773334706}] => (Allow) G:\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe (Activision Publishing Inc -> )
FirewallRules: [{2CDE5D93-619A-48B1-97DF-E0AFE0ED1E04}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{D0D26D84-1CA2-412C-9503-52119B5F134C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{C10581A0-27C0-49C1-9DB6-6723C7FEF231}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{4E317ECE-E6E0-4A70-B478-F05550BEFD60}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH)
FirewallRules: [{44990B40-A639-4496-B85A-159666556E7A}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{8363E8C6-65C4-4AC0-B1BF-DF46FE33E2F3}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{64B55CF8-4689-466E-A368-74D8BDC521C2}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{1867F314-3288-46D1-A0CC-84763AB5AA06}] => (Allow) C:\Program Files\WindowsApps\SAMSUNGELECTRONICSCoLtd.SamsungFlux_4.5.16.0_x64__wyx1vj98g3asy\DesktopApp\SamsungFlowDesktop.exe (SAMSUNG ELECTRONICS CO,.LTD. -> )
FirewallRules: [{CEE6493D-7238-4E8B-B60B-5C353A49C9AF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7930DBC3-62C9-4598-B1ED-9EA1047A2CF2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{85A32405-D95A-46CA-AA4C-9E9FC67846AB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A83966F1-9B01-405B-9EAA-83D54ED4B263}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BF9BA3AA-B6DF-4F7B-AA03-0CF3DA5E8124}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AE192729-ACB2-463A-86A2-135535EE22E3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4BEFF340-F053-4C77-91AD-786F26761EA2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5E3CF6BD-D833-4FC0-A363-33D5CD75C201}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.125.559.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{4337516C-0A0B-423A-BE7A-992C02FE4B27}C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{DEE386FA-E6D1-4A3E-9B88-FC0D9BE4C748}C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\rewko\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{70D81B6A-8546-48A5-85C9-71E30D0FCEA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori\ori.exe () [File not signed]
FirewallRules: [{9DB2E6D6-7DC7-4FC7-B04D-9569F80D685E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Ori\ori.exe () [File not signed]
FirewallRules: [{7700146B-8902-4240-90D5-618006DB4F97}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grove flowers\nw.exe (The NW.js Community) [File not signed]
FirewallRules: [{84EC79F5-2E05-4023-BB18-A03E61795306}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grove flowers\nw.exe (The NW.js Community) [File not signed]
FirewallRules: [{92E80C83-10EB-415C-B204-F3548B7D47B3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{3B726F82-A32D-48BD-8BB3-B69DB2F4FC53}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{FF272929-B573-4835-AB36-DF9C7F92B3B1}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{66D00699-62F6-4C41-9A2D-CB6308D3CC2A}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{439B30A1-AE8E-4D35-B7BA-52BC60B2129B}] => (Allow) E:\Star Wars-The Old Republic\launcher.exe (Electronic Arts, Inc. -> BioWare)
FirewallRules: [{629FEA37-04AB-4D61-8B79-404F9C81B3A5}] => (Allow) LPort=26820
FirewallRules: [{70EDC50B-E1E6-48BA-9155-BBAFDF3E72CE}] => (Allow) LPort=26822
==================== Restore Points =========================
07-02-2020 14:30:49 Naplánovaný kontrolní bod
11-02-2020 17:50:57 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/13/2020 03:28:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=6
Error: (02/13/2020 03:28:24 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (02/13/2020 03:28:21 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (02/13/2020 12:33:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: dwm.exe, verze: 10.0.18362.387, časové razítko: 0x8e064b77
Název chybujícího modulu: dwmcore.dll, verze: 10.0.18362.387, časové razítko: 0x6906a3c8
Kód výjimky: 0xc0000602
Posun chyby: 0x000000000012afd9
ID chybujícího procesu: 0x2b60
Čas spuštění chybující aplikace: 0x01d5e261628edecd
Cesta k chybující aplikaci: C:\WINDOWS\System32\dwm.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\dwmcore.dll
ID zprávy: 37204afa-02df-4f02-9f4f-7410609e8f73
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (02/13/2020 12:33:15 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6952,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (02/13/2020 12:22:12 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (18392,R,98) TILEREPOSITORYS-1-5-18: Při otevírání souboru protokolu C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log došlo k chybě -1023 (0xfffffc01).
Error: (02/13/2020 12:13:28 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=5
Error: (02/13/2020 12:13:05 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: Velikost požadované vyrovnávací paměti je větší než velikost vyrovnávací paměti předané do funkce Collect knihovny DLL rozšiřitelných čítačů C:\Windows\System32\perfts.dll pro službu LSM. Velikost dané vyrovnávací paměti: 25776; požadovaná velikost: 34328.
System errors:
=============
Error: (02/13/2020 12:33:21 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-QF3F7F4)
Description: Server Microsoft.OneConnect_5.1911.3171.0_x64__8wekyb3d8bbwe!App.AppXe8pdgw5syxe8pgccbk3mcn5hanwamr0e.mca se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/13/2020 12:13:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Steam Client Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (02/13/2020 12:13:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Steam Client Service bylo dosaženo časového limitu (30000 ms).
Error: (02/13/2020 12:12:44 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QF3F7F4)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_4e728d5 s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell
Error: (02/13/2020 12:12:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_4e728d5 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (02/13/2020 12:12:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Uživatelská služba pro GameDVR a vysílání her_4e728d5 bylo dosaženo časového limitu (30000 ms).
Error: (02/10/2020 09:21:21 PM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-QF3F7F4)
Description: Služba DCOM zjistila chybu 1053 při pokusu o spuštění služby BcastDVRUserService_abfb358 s argumenty Není k dispozici za účelem spuštění serveru:
Windows.Media.Capture.Internal.AppCaptureShell
Error: (02/10/2020 09:21:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Uživatelská služba pro GameDVR a vysílání her_abfb358 neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Windows Defender:
===================================
Date: 2019-12-23 07:57:54.238
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {540CC8B3-58C8-4013-AAAC-D894F91AA2B3}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-12-21 21:32:37.481
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: Trojan:Win32/Zpevdo.A
ID: 2147727143
Závažnost: Vážné
Kategorie: Trojský kůň
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\lic.switcher.exe
Původ detekce: Místní počítač
Typ detekce: FastPath
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7
Date: 2019-12-21 21:26:34.705
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7
Date: 2019-12-21 21:26:29.777
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7
Date: 2019-12-21 21:26:17.772
Description:
Antivirová ochrana v programu Windows Defender zjistil malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/WinActivator
ID: 2147719814
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
Původ detekce: Místní počítač
Typ detekce: Konkrétní
Zdroj detekce: Ochrana v reálném čase
Uživatel: DESKTOP-QF3F7F4\rewko
Název procesu: C:\Windows\explorer.exe
Verze bezpečnostních informací: AV: 1.307.901.0, AS: 1.307.901.0, NIS: 1.307.901.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7
CodeIntegrity:
===================================
Date: 2020-02-13 15:31:10.161
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:31:10.056
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:31:09.950
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:30:56.541
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:30:51.995
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:30:51.908
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:30:51.815
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2020-02-13 15:30:41.400
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2.A0 08/24/2019
Motherboard: Micro-Star International Co., Ltd. Z370-A PRO (MS-7B48)
Processor: Intel(R) Core(TM) i7-8700 CPU @ 3.20GHz
Percentage of memory in use: 47%
Total physical RAM: 16326.21 MB
Available physical RAM: 8490.54 MB
Total Virtual: 18758.21 MB
Available Virtual: 7376.93 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:237.87 GB) (Free:28.45 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:1862.98 GB) (Free:0.53 GB) NTFS
Drive e: () (Fixed) (Total:1667.7 GB) (Free:51.33 GB) NTFS
Drive g: () (Fixed) (Total:195.31 GB) (Free:77.23 GB) NTFS
Drive h: (2.5 PALCE) (Fixed) (Total:931.51 GB) (Free:168.77 GB) NTFS
\\?\Volume{e580499b-1762-4e4f-a029-b359879fab72}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.07 GB) NTFS
\\?\Volume{f11ed521-731f-443b-9d0c-4ee98bdd3774}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partition Table ====================
==================== End of Addition.txt =======================
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu FRST padá ryhlost internetového p
Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\rewko\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [GalaxyClient] => [X]
Task: {26C40013-35A5-4A63-ABB1-46CF48181851} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
Task: {ABC08BA4-A1D6-4F2A-A72C-8578C943293E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
AlternateDataStreams: C:\Users\rewko\Data aplikací:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\rewko\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [TCP Query User{FD0A6540-1A2D-4098-BF39-2EFADF86CFC5}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [UDP Query User{917CE915-8A1B-42ED-8774-D42715D67C8B}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [{CE79F5DD-18FB-40B2-AFD3-E28A25E81BA1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ECB7A86B-9FEE-4EF1-935D-FD4D649E6FDD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{07827EF2-5C19-4622-B66E-EA8A27ED91D2}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{B117FC1C-A434-4333-8A0D-DFE90A19CA05}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{F0B4CD74-A45C-4747-BD3A-67C3ABBA2AFD}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{FFC6BF94-E4AE-4BE9-970B-A42B2DEF366E}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\lic.switcher.exe
C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu FRST padá ryhlost internetového p
Fix result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020
Ran by rewko (13-02-2020 16:45:46) Run:2
Running from C:\Users\rewko\Downloads
Loaded Profiles: rewko (Available Profiles: rewko)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [GalaxyClient] => [X]
Task: {26C40013-35A5-4A63-ABB1-46CF48181851} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
Task: {ABC08BA4-A1D6-4F2A-A72C-8578C943293E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
AlternateDataStreams: C:\Users\rewko\Data aplikací:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\rewko\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [TCP Query User{FD0A6540-1A2D-4098-BF39-2EFADF86CFC5}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [UDP Query User{917CE915-8A1B-42ED-8774-D42715D67C8B}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [{CE79F5DD-18FB-40B2-AFD3-E28A25E81BA1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ECB7A86B-9FEE-4EF1-935D-FD4D649E6FDD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{07827EF2-5C19-4622-B66E-EA8A27ED91D2}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{B117FC1C-A434-4333-8A0D-DFE90A19CA05}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{F0B4CD74-A45C-4747-BD3A-67C3ABBA2AFD}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{FFC6BF94-E4AE-4BE9-970B-A42B2DEF366E}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\lic.switcher.exe
C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
EmptyTemp:
End
*****************
Processes closed successfully.
"HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{26C40013-35A5-4A63-ABB1-46CF48181851}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ABC08BA4-A1D6-4F2A-A72C-8578C943293E}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => not found
"HKU\S-1-5-21-2545330955-1925899768-253270718-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
"C:\Users\rewko\Data aplikací" => ":6699d3ee8dd9cf775caae782c8f44f03" ADS not found.
"C:\Users\rewko\AppData\Roaming" => ":6699d3ee8dd9cf775caae782c8f44f03" ADS not found.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\OpenSSH-Server-In-TCP" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FD0A6540-1A2D-4098-BF39-2EFADF86CFC5}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{917CE915-8A1B-42ED-8774-D42715D67C8B}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CE79F5DD-18FB-40B2-AFD3-E28A25E81BA1}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ECB7A86B-9FEE-4EF1-935D-FD4D649E6FDD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{07827EF2-5C19-4622-B66E-EA8A27ED91D2}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B117FC1C-A434-4333-8A0D-DFE90A19CA05}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F0B4CD74-A45C-4747-BD3A-67C3ABBA2AFD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FFC6BF94-E4AE-4BE9-970B-A42B2DEF366E}" => not found
"C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\lic.switcher.exe" => not found
"C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11714982 B
Java, Flash, Steam htmlcache => 12848067 B
Windows/system/drivers => 0 B
Edge => 28809969 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4984 B
NetworkService => 4984 B
rewko => 1240840 B
RecycleBin => 0 B
EmptyTemp: => 59.6 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 16:46:09 ====
Ran by rewko (13-02-2020 16:45:46) Run:2
Running from C:\Users\rewko\Downloads
Loaded Profiles: rewko (Available Profiles: rewko)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-2545330955-1925899768-253270718-1001\...\Run: [GalaxyClient] => [X]
Task: {26C40013-35A5-4A63-ABB1-46CF48181851} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
Task: {ABC08BA4-A1D6-4F2A-A72C-8578C943293E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2020-01-01] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-2545330955-1925899768-253270718-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
AlternateDataStreams: C:\Users\rewko\Data aplikací:6699d3ee8dd9cf775caae782c8f44f03 [394]
AlternateDataStreams: C:\Users\rewko\AppData\Roaming:6699d3ee8dd9cf775caae782c8f44f03 [394]
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe No File
FirewallRules: [TCP Query User{FD0A6540-1A2D-4098-BF39-2EFADF86CFC5}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [UDP Query User{917CE915-8A1B-42ED-8774-D42715D67C8B}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe] => (Block) E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe No File
FirewallRules: [{CE79F5DD-18FB-40B2-AFD3-E28A25E81BA1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{ECB7A86B-9FEE-4EF1-935D-FD4D649E6FDD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{07827EF2-5C19-4622-B66E-EA8A27ED91D2}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{B117FC1C-A434-4333-8A0D-DFE90A19CA05}] => (Allow) D:0\SteamLibrary\steamapps\common\Call of Duty WWII\s2_sp64_ship.exe No File
FirewallRules: [{F0B4CD74-A45C-4747-BD3A-67C3ABBA2AFD}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
FirewallRules: [{FFC6BF94-E4AE-4BE9-970B-A42B2DEF366E}] => (Allow) D:0\SteamLibrary\steamapps\common\Crash Bandicoot - N Sane Trilogy\CrashBandicootNSaneTrilogy.exe No File
C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\lic.switcher.exe
C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe
EmptyTemp:
End
*****************
Processes closed successfully.
"HKU\S-1-5-21-2545330955-1925899768-253270718-1001\Software\Microsoft\Windows\CurrentVersion\Run\\GalaxyClient" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{26C40013-35A5-4A63-ABB1-46CF48181851}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ABC08BA4-A1D6-4F2A-A72C-8578C943293E}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => not found
"HKU\S-1-5-21-2545330955-1925899768-253270718-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
"C:\Users\rewko\Data aplikací" => ":6699d3ee8dd9cf775caae782c8f44f03" ADS not found.
"C:\Users\rewko\AppData\Roaming" => ":6699d3ee8dd9cf775caae782c8f44f03" ADS not found.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\OpenSSH-Server-In-TCP" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{FD0A6540-1A2D-4098-BF39-2EFADF86CFC5}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{917CE915-8A1B-42ED-8774-D42715D67C8B}E:\games\star wars jedi fallen order\swgame\binaries\win64\starwarsjedifallenorder.exe" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CE79F5DD-18FB-40B2-AFD3-E28A25E81BA1}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{ECB7A86B-9FEE-4EF1-935D-FD4D649E6FDD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{07827EF2-5C19-4622-B66E-EA8A27ED91D2}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B117FC1C-A434-4333-8A0D-DFE90A19CA05}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F0B4CD74-A45C-4747-BD3A-67C3ABBA2AFD}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FFC6BF94-E4AE-4BE9-970B-A42B2DEF366E}" => not found
"C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\lic.switcher.exe" => not found
"C:\Users\rewko\Desktop\HWIDGEN v.60.01 - Aktivátor digitální licence pro Windows 10\hwid.kms38.gen.mk6.exe" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 7888896 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11714982 B
Java, Flash, Steam htmlcache => 12848067 B
Windows/system/drivers => 0 B
Edge => 28809969 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4984 B
NetworkService => 4984 B
rewko => 1240840 B
RecycleBin => 0 B
EmptyTemp: => 59.6 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 16:46:09 ====
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu FRST padá ryhlost internetového p
OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu logu FRST padá ryhlost internetového p
Ano je připojení rychlejší i prohlížeč jedné co je divně ,že po restartu když zapnu prohlížeč z uloženou záložkou na toto fórum tak mi to hlásil antivirus ,že na stránkách je trojan.
-
Rudy
- Site Admin
- Příspěvky: 119418
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu FRST padá ryhlost internetového p
Dejte si tuto stránku v antiviru do vyjímek. Tady žádný virus nemáme a nevím, proč to hlásí. Asi nějaká paranoia to AV. 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?