Spomalený internet, otevírání stránek a procházení netu
Napsal: 13 úno 2020 15:09
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-02-2020
Ran by brota (administrator) on DESKTOP-RGLKL1Q (13-02-2020 15:05:11)
Running from C:\Users\brota\Desktop
Loaded Profiles: brota (Available Profiles: brota)
Platform: Windows 10 Pro Version 1809 17763.1039 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.28\atkexComSvc.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(COMET SYSTEM, s.r.o. -> ) C:\Program Files (x86)\CometLoggers\Comet Vision\AutodownloaderService.exe
(COMET SYSTEM, s.r.o. -> ) C:\Program Files (x86)\CometLoggers\Communication Service for measuring devices and dataloggers\CommService.exe
(COMET SYSTEM, s.r.o. -> ) C:\Program Files (x86)\CometLoggers\Communication Service for measuring devices and dataloggers\CommServiceTrayIconTracer.exe
(Filefacts.net) [File not signed] C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe
(FinalWire Kft. -> FinalWire Ltd.) C:\Program Files\AIDA64 Extreme CZ\aida64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LAClient\laclient.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\brota\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [File not signed] C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\NisSrv.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [PowerDVD18Agent] => C:\Program Files (x86)\CyberLink\PowerDVD18\PowerDVD18Agent.exe [527400 2018-04-19] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [Smart File Advisor] => C:\Program Files (x86)\Smart File Advisor\sfa.exe [282352 2017-06-19] (Total PC -> Filefacts.net)
HKLM-x32\...\Run: [SFAUpdater] => C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe [656656 2015-03-27] (Filefacts.net) [File not signed]
HKU\S-1-5-21-2476800721-1003676090-773119307-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-2476800721-1003676090-773119307-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [735336 2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKLM\Software\...\AppCompatFlags\Custom\Game.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Setup.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{481dc351-bab0-4f86-b085-87a5626fe6dc}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb [2017-10-31]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.100\Installer\chrmstp.exe [2020-02-11] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Communication Service Monitor.lnk [2019-08-10]
ShortcutTarget: Communication Service Monitor.lnk -> C:\Program Files (x86)\CometLoggers\Communication Service for measuring devices and dataloggers\CommServiceTrayIconTracer.exe (COMET SYSTEM, s.r.o. -> )
Startup: C:\Users\brota\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar651.lnk [2020-02-13]
ShortcutTarget: Sidebar651.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0083E689-9497-4FB1-8090-4B0CBAABBBBE} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1354064 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {0819F45D-EDB2-421A-9C16-A9B45DB8E0BF} - System32\Tasks\AIDA64 AutoStart => C:\Program Files\AIDA64 Extreme CZ\aida64.exe [19739544 2018-09-19] (FinalWire Kft. -> FinalWire Ltd.)
Task: {12372AF4-4915-4D57-962B-A083290E55B5} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115440 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {16265052-2ED0-4805-A31D-B577BA59D2B3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1C2AC8EB-8E54-4647-B226-191BBC8CBF62} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3729392 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1EB9C3DC-4B30-4ABB-8472-01F83A5E07E6} - System32\Tasks\HPCustParticipation HP DeskJet 4530 series => C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPCustPartic.exe [6438536 2017-04-06] (Hewlett Packard -> HP Inc.)
Task: {2204652B-4C5A-4585-9CCC-BFA381ADD106} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {52570703-3DA2-4455-A80D-4480542D9C14} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849904 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {565CB9E3-5940-4B2C-B80A-9F43923C48BD} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {57BBE2C4-0D2E-4F17-B0C3-3E97B4350AC9} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1354064 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {5D03AD08-370F-4C1D-BF3C-8F9BABE79B7B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [566592 2008-07-30] (Apple Inc. -> Apple Inc.)
Task: {65C07210-67B0-4952-9855-4BEAAAE8029D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6B45DBA2-FA66-4839-8E0D-C91379698D91} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-24] (Google Inc -> Google Inc.)
Task: {7C27F594-5DCD-4A69-BCB2-865246EEC6B2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {81BE7D74-79F1-4DA3-A396-DF92A0E7271F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9186097E-983A-4D84-BB26-9216699F1395} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [739624 2018-04-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {9379E455-6937-45B2-9A03-0DE71E3D1C71} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {95A3205A-A848-4726-AC72-0836ADC0A10F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4297536 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A83F3FA1-C523-434E-8264-A5021FCD5E9D} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ACAA27BD-81E6-41F5-A41E-44DBCE2EBC01} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [591344 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B00CE575-B644-4C6F-8AC2-C2E7322D0F84} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B3DE5B7E-7BD2-4B05-BE5B-1AD1422B830F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115440 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {B500592C-981B-45F8-B728-631D48872CAD} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648688 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B60F65D1-9B2D-4E15-94DA-AACE43DF1163} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {C2371763-EBEC-4AC6-9027-751034168CE8} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C4CEB2C3-55EC-4699-9546-2686156E0DC3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-15] (Piriform Software Ltd -> Piriform Ltd)
Task: {CF2C65F4-5565-4D3D-89B0-49BC82199711} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-15] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D7BCE153-9388-45E0-A672-7CB5A0923504} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F34190C4-8C4C-4F72-91B2-0A944DC34BB3} - System32\Tasks\AdwCleaner_onReboot => C:\Users\brota\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\adwcleaner_8.0.2 (1).exe [8356016 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
Task: {F4ADF389-0497-4BB7-8CB8-16F64F45C242} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4297536 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {F8B7BCA9-FB40-4DF6-922E-5A8D76FEF187} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-24] (Google Inc -> Google Inc.)
Task: {FB3478F1-DC2C-41AB-979D-8E348AE14B0A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849904 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FBCA5329-9662-46C0-B8DF-94FC95D5721B} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864 2010-05-18] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [193824 2010-05-18] (Apple Inc. -> Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{05d35386-9b31-40ef-9f75-55a86ff09de0}: [DhcpNameServer] 213.46.172.36 213.46.172.37
Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
DownloadDir: C:\Users\brota\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-2476800721-1003676090-773119307-1001 -> hxxp://www.seznam.cz/
Edge Notifications: HKU\S-1-5-21-2476800721-1003676090-773119307-1001 -> hxxps://www.facebook.com
FireFox:
========
FF DefaultProfile: 2mjnvct7.default
FF ProfilePath: C:\Users\brota\AppData\Roaming\Mozilla\Firefox\Profiles\2mjnvct7.default [2020-02-13]
FF Extension: (IBM Security Rapport) - C:\Users\brota\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\rapportext@trusteer.com.xpi [2019-03-30] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default [2020-02-13]
CHR Extension: (Prezentace) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-24]
CHR Extension: (Dokumenty) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-24]
CHR Extension: (Disk Google) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-24]
CHR Extension: (IBM Security Rapport) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2019-12-01]
CHR Extension: (YouTube) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-24]
CHR Extension: (Tabulky) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-09]
CHR Extension: (Avast Online Security) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-01-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-05]
CHR Profile: C:\Users\brota\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-02-13]
CHR Profile: C:\Users\brota\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-13]
CHR HKU\S-1-5-21-2476800721-1003676090-773119307-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
"RapportIaso" => service could not be unlocked. <==== ATTENTION
HKLM\SYSTEM\ControlSet001\Services\RapportIaso => c:\programdata\trusteer\rapport\store\exts\rapportms\baseline\rapportiaso64.sys [429072 2019-11-17] (IBM -> IBM Corp.) <==== ATTENTION (Rootkit!/Locked Service)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [255512 2015-08-09] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.28\atkexComSvc.exe [419264 2018-12-28] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-03-28] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11129712 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4131944 2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2018-11-24] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
R2 MeasDataAutodownloaderSvc; C:\Program Files (x86)\CometLoggers\Comet Vision\AutodownloaderService.exe [17392 2019-04-04] (COMET SYSTEM, s.r.o. -> )
R2 MeasDevsDataLogsCommSvc; C:\Program Files (x86)\CometLoggers\Communication Service for measuring devices and dataloggers\CommService.exe [18928 2019-04-04] (COMET SYSTEM, s.r.o. -> )
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [3001632 2019-10-06] (IBM -> IBM Corp.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5378320 2019-10-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AIDA64Driver; C:\Program Files\AIDA64 Extreme CZ\kerneld.x64 [47560 2018-09-19] (FinalWire Kft. -> )
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [21631512 2015-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [673816 2015-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33504 2019-01-01] (ASUSTeK Computer Inc. -> )
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R2 CLFCL5.18; C:\Windows\system32\DRIVERS\CLFCL5.18\000.fcl [46848 2018-04-19] (CyberLink Corp. -> CyberLink Corp.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 FTDIBUS; C:\Windows\system32\drivers\ftdibus.sys [129448 2017-09-19] (Future Technology Devices International Ltd -> Future Technology Devices International Ltd.)
S3 FTSER2K; C:\Windows\system32\drivers\ftser2k.sys [89792 2017-09-19] (Future Technology Devices International Ltd -> Future Technology Devices International Ltd.)
R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [19392 2018-04-23] (ASUSTeK Computer Inc. -> )
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [44480 2011-05-17] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] (ASUSTeK Computer Inc. -> )
S3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7a8e74171e1b8492\nvlddmkm.sys [20736208 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-02-26] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [70024 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [66792 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
R1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [429112 2019-10-06] (IBM -> IBM Corp.)
R1 RapportCerberus_1950099; c:\programdata\trusteer\rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1950099.sys [1466824 2019-11-17] (IBM -> IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [542112 2019-10-06] (IBM -> IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [395384 2019-10-06] (IBM -> IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [445240 2019-10-06] (IBM -> IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [560568 2019-10-06] (IBM -> IBM Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [711968 2019-06-04] (Realtek Semiconductor Corp. -> Realtek )
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R0 sptd2; C:\Windows\System32\Drivers\sptd2.sys [203296 2019-03-11] (Disc Soft Ltd -> Duplex Secure Ltd)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [45960 2020-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [376032 2020-02-01] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-01] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-13 15:05 - 2020-02-13 15:06 - 000031447 _____ C:\Users\brota\Desktop\FRST.txt
2020-02-13 15:04 - 2020-02-13 15:04 - 002279424 _____ (Farbar) C:\Users\brota\Desktop\FRST64.exe
2020-02-13 14:58 - 2020-02-13 14:58 - 000003324 _____ C:\Windows\system32\Tasks\AdwCleaner_onReboot
2020-02-13 14:57 - 2020-02-13 14:58 - 000000000 ____D C:\AdwCleaner
2020-02-13 14:47 - 2020-02-13 15:05 - 000000000 ____D C:\FRST
2020-02-12 20:13 - 2020-02-12 20:18 - 1934223484 _____ C:\Users\brota\Desktop\Le.Mans.'66-Ford.v.Ferrari(2019).1080p.EN.CZsub.Vykonavatel.mkv
2020-02-12 14:40 - 2020-02-12 14:40 - 000049427 _____ C:\Users\brota\Downloads\275357990257_2_1132_20200207.pdf
2020-02-12 14:39 - 2020-02-12 14:39 - 000044210 _____ C:\Users\brota\Downloads\275357990257_170_2027_20200108.pdf
2020-02-12 01:33 - 2020-02-12 01:33 - 000000000 ____D C:\ProgramData\ssh
2020-02-11 20:58 - 2020-02-11 20:58 - 026806784 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 024617472 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 023463424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 020816384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 019020288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 013013504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 012306432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 008906752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 007923712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 007870976 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 006061056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 005436936 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 004872704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 004658688 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 003904000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 003702784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 003626496 _____ (Microsoft Corporation) C:\Windows\system32\tellib.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 003550592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 002942976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 002469432 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 002323904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 002298880 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 002273080 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001877168 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001430672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001309696 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001292288 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001288856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001267216 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2020-02-11 20:58 - 2020-02-11 20:58 - 001247560 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 001229824 _____ (Microsoft Corporation) C:\Windows\system32\HoloSI.PCShell.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001224704 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001182720 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2020-02-11 20:58 - 2020-02-11 20:58 - 001166336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2020-02-11 20:58 - 2020-02-11 20:58 - 001071616 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 001062400 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000912384 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000883200 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000852480 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000796160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000703488 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000684544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000594432 _____ (Microsoft Corporation) C:\Windows\system32\HolographicExtensions.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 000560640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfrgui.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 000496128 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000430592 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 000428544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000370176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000269312 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 000263576 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000249344 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000218624 _____ (Microsoft Corporation) C:\Windows\system32\wscinterop.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000217088 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2020-02-11 20:58 - 2020-02-11 20:58 - 000212480 _____ (Microsoft Corporation) C:\Windows\system32\DiagSvc.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\recdisc.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 000180736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2020-02-11 20:58 - 2020-02-11 20:58 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000165888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscinterop.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWSD.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdSSDP.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\fveskybackup.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\RDSPnf.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\SrTasks.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 022137336 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 009669648 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 007888896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 007701200 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 007645392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 006943232 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 006546296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 006445568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 006318544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 005777920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 005608328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 005577656 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 005528576 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 005300736 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 005086208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 004628992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 004588776 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 004417552 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 004050944 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003874936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 003656704 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003636736 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 003577856 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003430400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003387392 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003363848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 003334496 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003334144 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003329536 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003269632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003006464 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002928640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002879488 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002848256 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002780296 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002770944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002765312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002707456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 002699264 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002634240 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002627600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 002590736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002437344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002426680 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.AppAgent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002417664 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 002348544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002292224 _____ (Microsoft Corporation) C:\Windows\system32\winmsipc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002280024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002192384 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002158592 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppAgent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002086400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002015608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001994976 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001963536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 001866240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001830928 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001824768 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001796920 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001751432 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001727496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.AppAgent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001726480 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001702392 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-02-11 20:57 - 2020-02-11 20:57 - 001677312 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001677088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001674752 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001674688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001665720 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001647104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmsipc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001608192 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001590072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001566720 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001538560 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001520232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001486680 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001479208 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001476096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001473088 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001387520 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001387512 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001360912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 001345984 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2020-02-11 20:57 - 2020-02-11 20:57 - 001319936 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001294488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001262592 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001260032 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001259832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 001258504 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001222672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001219584 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001193984 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001188352 _____ (Microsoft Corporation) C:\Windows\system32\AgentService.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001184256 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CommonBridge.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001183296 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001128960 _____ (Microsoft Corporation) C:\Windows\system32\ApplySettingsTemplateCatalog.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001114112 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001087800 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001076224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001056272 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001054952 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001051648 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001051136 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001049400 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001012736 _____ (Microsoft Corporation) C:\Windows\system32\refsutil.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001005056 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000985088 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000954368 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000953344 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000950272 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000930816 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthSSO.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000927232 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000917816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000902344 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000902144 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000898048 _____ (Microsoft Corporation) C:\Windows\system32\winipcsecproc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000888864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000879104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000876032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000872000 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000869888 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000866304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdlg.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000860160 _____ C:\Windows\system32\MBR2GPT.EXE
2020-02-11 20:57 - 2020-02-11 20:57 - 000856432 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000849920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000831800 _____ (Microsoft Corporation) C:\Windows\system32\AppVClient.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000820736 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000801280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcsecproc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000801280 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000779776 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000777728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000764216 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000762880 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.PrinterCustomActions.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000758928 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000751632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000741688 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_StorageSense.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000740864 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2013CustomActions.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000681472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000681416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000677144 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000662024 _____ (Microsoft Corporation) C:\Windows\system32\computecore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000657408 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000652088 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000629760 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000622080 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000615936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000613376 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000613176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000611840 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000606224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000591376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000590336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000588600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000541472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000531976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000520704 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000519992 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000519168 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000515584 _____ (Microsoft Corporation) C:\Windows\system32\cdpusersvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000510264 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000506200 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000501760 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000501248 _____ (Microsoft Corporation) C:\Windows\system32\winipcfile.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000494080 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000492032 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000485376 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000481280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000469504 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000465424 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000452608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000450912 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000449024 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000446480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000442880 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000431416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000422712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000410624 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000408064 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000405520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000403968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000402584 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000398416 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000395776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000389920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000376568 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000349696 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000349184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000348672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000333824 _____ (Microsoft Corporation) C:\Windows\system32\RasMediaManager.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000331104 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000313000 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000305664 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDirectoryClient.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000293856 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000286520 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthAgent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000281088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.AppDefaults.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000277504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000256512 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000253256 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000252024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000239616 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000226816 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000222720 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Geolocation.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000213816 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000203064 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\policymanagerprecheck.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000193336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000189496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000186880 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000169784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000164864 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000163240 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000156712 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000154624 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_AppExecutionAlias.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_BackgroundApps.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000147944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000137528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AppVStrm.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000128616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\omadmapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000109056 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000105784 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthProxyStub.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000103936 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000103736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000095760 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\keyiso.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000072704 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\keyiso.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppCore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\UsoClient.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\Websocket.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Websocket.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\rasphone.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\mciwave.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasphone.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciwave.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-02-02 17:28 - 2020-02-02 17:28 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\Windows\system32\Tasks\Apple
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\Users\brota\AppData\Local\Apple
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour Print Services
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\ProgramData\Apple
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\Program Files\Bonjour Print Services
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\Program Files\Bonjour
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\Program Files (x86)\Bonjour
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2020-02-02 15:38 - 2020-02-02 15:38 - 000001689 _____ C:\Users\brota\Desktop\Kodi.lnk
2020-02-02 15:32 - 2020-02-02 17:28 - 000000000 ____D C:\Users\brota\AppData\Roaming\Kodi
2020-02-02 15:30 - 2020-02-02 15:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2020-02-02 15:30 - 2020-02-02 15:30 - 000000000 ____D C:\Program Files\Kodi
2020-02-02 11:18 - 2020-02-02 11:18 - 000129536 _____ C:\Users\brota\Desktop\Cestovni_prikaz_formular_vzor.xls
2020-01-28 19:37 - 2020-01-28 19:37 - 000748816 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-01-22 22:20 - 2020-01-22 22:20 - 010164196 _____ C:\Users\brota\Desktop\7681_centro-125-160-servi (3).pdf
2020-01-20 14:55 - 2020-01-20 14:55 - 000419061 _____ C:\Users\brota\Desktop\AUTOTRACER_VSSZZZ5FZGR032112moje.pdf
2020-01-20 14:35 - 2020-01-20 14:35 - 000429494 _____ C:\Users\brota\Desktop\AUTOTRACER_VSSZZZ5FZGR116864.pdf
2020-01-16 10:28 - 2019-03-28 10:11 - 000029232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2020-01-16 10:28 - 2019-03-28 10:11 - 000017968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2020-01-16 10:28 - 2019-03-28 10:09 - 000032816 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2020-01-16 10:28 - 2019-03-28 10:09 - 000017968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2020-01-16 10:28 - 2019-03-28 07:35 - 000772176 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_clr0400.dll
2020-01-16 10:28 - 2019-03-28 07:35 - 000702400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase_clr0400.dll
2020-01-16 10:28 - 2019-03-28 07:35 - 000622832 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140_clr0400.dll
2020-01-16 10:28 - 2019-03-28 07:35 - 000433448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140_clr0400.dll
2020-01-16 10:28 - 2019-03-28 07:35 - 000087296 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140_clr0400.dll
2020-01-16 10:28 - 2019-03-28 07:35 - 000083768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140_clr0400.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 002149160 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001936520 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001721144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001701888 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001670800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001200920 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001084416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000930816 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000839680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000673792 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000651776 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000410616 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000378368 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000350416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticLogCSP.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000322048 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\ConhostV1.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000228864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000189440 _____ (Microsoft Corporation) C:\Windows\system32\sti_ci.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000154976 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2020-01-16 10:24 - 2020-01-16 10:24 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\wiadss.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000132608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tsusbhub.sys
2020-01-16 10:24 - 2020-01-16 10:24 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000122568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadss.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\enterpriseresourcemanager.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2020-01-16 10:24 - 2020-01-16 10:24 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enterpriseresourcemanager.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-13 15:03 - 2018-11-24 21:50 - 001693640 _____ C:\Windows\system32\PerfStringBackup.INI
2020-02-13 15:03 - 2018-09-15 18:39 - 000716944 _____ C:\Windows\system32\perfh005.dat
2020-02-13 15:03 - 2018-09-15 18:39 - 000145024 _____ C:\Windows\system32\perfc005.dat
2020-02-13 15:03 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-13 15:03 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\AppReadiness
2020-02-13 15:03 - 2018-09-15 08:31 - 000000000 ____D C:\Windows\INF
2020-02-13 15:01 - 2019-03-08 20:46 - 000000000 ____D C:\ProgramData\NVIDIA
2020-02-13 14:59 - 2018-11-25 01:01 - 000000000 ____D C:\Users\brota\AppData\Local\Sidebar7
2020-02-13 14:59 - 2018-11-24 21:41 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-13 14:59 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-13 14:58 - 2019-03-08 23:09 - 000000000 ____D C:\ProgramData\BSD
2020-02-13 14:58 - 2018-09-15 07:09 - 000524288 _____ C:\Windows\system32\config\BBI
2020-02-13 14:44 - 2019-05-27 14:17 - 000000000 ____D C:\Users\brota\AppData\Roaming\MPC-HC
2020-02-13 14:44 - 2019-03-08 23:37 - 000000000 ____D C:\Users\brota\AppData\Local\CrashDumps
2020-02-13 14:17 - 2018-11-24 21:41 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-02-12 19:15 - 2018-11-24 23:35 - 000000000 ____D C:\Users\Public\Logi
2020-02-12 17:36 - 2018-11-25 00:10 - 000003142 _____ C:\Windows\system32\Tasks\MSIAfterburner
2020-02-12 10:57 - 2018-09-15 08:23 - 000000000 ____D C:\Windows\CbsTemp
2020-02-12 01:47 - 2018-11-24 22:43 - 000000000 ____D C:\Users\brota\AppData\Roaming\vlc
2020-02-12 01:35 - 2018-11-24 21:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-02-12 01:35 - 2018-11-24 21:50 - 000000000 ___RD C:\Users\brota\3D Objects
2020-02-12 01:35 - 2018-11-24 21:41 - 000444384 _____ C:\Windows\system32\FNTCACHE.DAT
2020-02-12 01:35 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\SysWOW64\oobe
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\oobe
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\ShellExperiences
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\ShellComponents
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\PolicyDefinitions
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\bcastdvr
2020-02-12 01:33 - 2018-09-15 07:09 - 000000000 ____D C:\Windows\system32\Dism
2020-02-12 01:33 - 2018-09-15 07:09 - 000000000 ____D C:\Windows\servicing
2020-02-11 21:05 - 2018-11-24 22:01 - 000000000 ____D C:\Windows\system32\MRT
2020-02-11 21:01 - 2018-11-24 22:01 - 120407888 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-02-11 20:34 - 2018-11-24 23:22 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-11 00:37 - 2018-11-25 01:29 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-02-07 14:31 - 2018-11-24 22:02 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-02-05 11:34 - 2018-11-24 21:52 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2476800721-1003676090-773119307-1001
2020-02-05 11:34 - 2018-11-24 21:52 - 000000000 ___RD C:\Users\brota\OneDrive
2020-02-05 11:34 - 2018-11-24 21:47 - 000002361 _____ C:\Users\brota\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-02-04 13:51 - 2018-11-24 23:16 - 000003474 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-04 13:51 - 2018-11-24 23:16 - 000003350 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-03 22:41 - 2018-09-15 08:36 - 000835688 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-02-03 22:41 - 2018-09-15 08:36 - 000179608 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-02-02 15:32 - 2018-11-24 21:55 - 000000000 ____D C:\ProgramData\Package Cache
2020-02-02 11:18 - 2018-11-24 21:50 - 000000000 ____D C:\Users\brota\AppData\Local\Packages
2020-02-01 17:22 - 2018-11-24 21:41 - 000000000 ____D C:\Windows\system32\Drivers\wd
2020-01-28 17:16 - 2019-03-08 22:19 - 000000000 ____D C:\Users\brota\AppData\Local\ElevatedDiagnostics
2020-01-16 20:45 - 2019-06-19 09:03 - 000000000 ____D C:\Program Files\UNP
2020-01-16 20:41 - 2018-09-15 08:33 - 000000000 ___SD C:\Windows\system32\UNP
==================== Files in the root of some directories ========
2019-03-11 12:11 - 2002-08-29 18:33 - 000319488 ____R () C:\Users\brota\AppData\Roaming\MafiaSetup.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020
Ran by brota (13-02-2020 15:07:45)
Running from C:\Users\brota\Desktop
Windows 10 Pro Version 1809 17763.1039 (X64) (2018-11-24 20:46:04)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2476800721-1003676090-773119307-500 - Administrator - Disabled)
brota (S-1-5-21-2476800721-1003676090-773119307-1001 - Administrator - Enabled) => C:\Users\brota
DefaultAccount (S-1-5-21-2476800721-1003676090-773119307-503 - Limited - Disabled)
Guest (S-1-5-21-2476800721-1003676090-773119307-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2476800721-1003676090-773119307-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
8GadgetPack (HKLM-x32\...\{AEF55727-E650-4061-856B-A7951E50E53A}) (Version: 27.0.0 - 8GadgetPack.net)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
AI Suite (HKLM-x32\...\{310BC5E2-31AF-49BB-904D-E71EB93645DC}) (Version: - )
AIDA64 Extreme CZ v.5.98.4800 (HKLM-x32\...\AIDA64 Extreme CZ v.5.98.4800) (Version: v.5.98.4800 - Libbi)
Aktualizace NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden
AMD Catalyst Install Manager (HKLM\...\{66AFB595-BC05-2913-7696-6D58F9B733E1}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Software Update (HKLM-x32\...\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}) (Version: 2.1.1.116 - Apple Inc.)
ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.2.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM-x32\...\{71667bbb-81ab-429c-aeb4-e43c31e8fe14}) (Version: 2.2.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.19 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Display Component (HKLM-x32\...\{36aa03d4-9606-4f04-bf3e-a70ebe6650f3}) (Version: 1.1.19 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.9 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{2d85b111-aee4-468b-874b-a9272712f69b}) (Version: 1.0.9 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.1.16 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM-x32\...\{ac3dc320-7e5e-4f22-9572-4c2119fcdf85}) (Version: 1.1.16 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{D800D836-DE15-4B00-8273-521F022CD837}) (Version: 1.0.31 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{b31aaf98-0562-411d-a962-0c3d16a3527a}) (Version: 1.0.31 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM\...\{B5E322FB-C191-463E-BDDD-4F22290EDFDB}) (Version: 1.0.7 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM-x32\...\{a29279dc-f417-4442-8225-4db77f7d35b5}) (Version: 1.0.7 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.1.7 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{4f18ae01-4390-4b41-be3a-54ef4eacdd91}) (Version: 0.0.1.7 - ASUSTek COMPUTER INC. ) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{548dd834-70c5-4426-8065-fbeabdd2bb5d}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden
ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.0.27 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{210cdd08-c947-43a2-9378-bc288f651e41}) (Version: 1.0.27 - ASUSTek COMPUTER INC.) Hidden
ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS MB Peripheral Products (HKLM-x32\...\{3e9b91eb-5bb0-4272-8670-f88d353eb68b}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS Mouse HAL (HKLM\...\{1838F91B-D481-45AA-B92F-071C62D0A19A}) (Version: 1.0.24 - ASUSTek COMPUTER INC.) Hidden
ASUS Mouse HAL (HKLM-x32\...\{add3bacc-578f-4bf9-97e3-a0f0c3ae3323}) (Version: 1.0.24 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM\...\{723B40A4-5BF2-4DC6-834A-2ADF75F3CF7E}) (Version: 1.0.0.6 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM-x32\...\{cc37f609-4db9-4ce3-9e37-9cb1b432452e}) (Version: 1.0.0.6 - ASUSTek COMPUTER INC.) Hidden
AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.07.35 - ASUSTeK Computer Inc.)
AURA DRAM Component (HKLM\...\{3881F403-B6B7-4D2F-BDAC-7901EB677F52}) (Version: 1.0.26 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{dded177f-c7b2-4212-9c64-74884f3fd53b}) (Version: 1.0.26 - ASUS) Hidden
Avidemux 2.7 - 64 bits (HKLM-x32\...\Avidemux 2.7 - 64 bits (64-bit)) (Version: 2.7.1.180604 - )
Bandicam (HKLM-x32\...\Bandicam) (Version: 2.1.2.739 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.59.24655 - Electronic Arts)
Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.)
Bonjour Print Services (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{A16E186C-58C4-3BDC-5CCE-714EFEF5F27F}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{62098A5F-E03B-31A3-5F9C-51A7F7D25744}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{1757AD9B-0E3C-05F9-FE43-4343BED7DA85}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{66B06F29-EE4F-9130-D96A-754826093FEA}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{821D0A0E-F246-BE40-0D68-93883C14C410}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{88BD74C4-23AB-4554-915C-6E1F0C81F6CD}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{A48E2AB0-0866-7783-9657-E1709EB18D02}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{E61CEF9A-BAC3-EAEE-F735-E257D2354DF2}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{DA0326BB-657D-AAFC-752C-363E8FA33755}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{E42911E5-48F8-8557-ED20-D72AD1907D25}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B4C30EF4-B2C5-1395-B534-7B63BCB6E8E4}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{B873A1FB-5EA0-EE5F-A861-1E38880AD08E}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{EC9DF9FF-9D75-4CDD-1D58-A2E887B0A42E}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{7ABACA7E-6E59-0EF9-8FA3-6B32E5F58127}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{3E196AAF-F81C-B384-E2AB-28EE2398FE5F}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{DAEFFE0C-CD05-1355-6AFC-7B3D4106A820}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{E392A425-53A7-DF90-96A0-E287A75DD3B2}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{D6F47BB4-700A-F612-0671-5F69EA311BB7}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{01FD9A26-3F61-9236-B360-BE5D043D82C0}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{64D4CCC3-63DF-252D-D29D-03491670225D}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{8DF90937-B869-9F76-5D45-5A8BDA0A33B6}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
Comet Vision 2.0.7033.26098 (HKLM-x32\...\Comet Vision_is1) (Version: 2.0.7033.26098 - COMET System, s.r.o.)
Communication Service for measuring devices and dataloggers 1.0.7033.23577 (HKLM-x32\...\CommSvc_96E0DF56-388F-4AA5-A761-E5DB64492106_is1) (Version: 1.0.7033.23577 - COMET System, s.r.o.)
Cool & Quiet (HKLM-x32\...\{1ADE1AA0-7F82-4BB1-B1BD-727DE438057B}) (Version: - )
Corsair AURA DRAM Component (HKLM\...\{376E0869-A4F1-4DC7-A1FD-EBF3AFFEB832}) (Version: 1.0.6 - CORSAIR COMPONENTS INC.) Hidden
Corsair AURA DRAM Component (HKLM-x32\...\{da7ebf10-b0be-494e-a79d-568546795a51}) (Version: 1.0.6 - CORSAIR COMPONENTS INC.) Hidden
CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.)
CyberLink PowerDVD 18 (HKLM-x32\...\{0F4F617F-E8D5-46A3-A0F9-43855182A3B1}) (Version: 18.0.1619.62 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.10.0.0797 - Disc Soft Ltd)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.35 - NVIDIA Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{0E63B233-DC24-442C-BD38-0B91D90FEC5B}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GALAX GAMER RGB (HKLM\...\{06A16AA8-BBA7-4362-962E-16651962D87C}) (Version: 1.00.02 - Galaxy Microsystems Ltd.) Hidden
GALAX GAMER RGB (HKLM-x32\...\{1257fdeb-ffa3-4e17-9d4b-189075ea3656}) (Version: 1.00.02 - Galaxy Microsystems Ltd.)
Ghost Recon: Wildlands (HKLM-x32\...\Ghost Recon: Wildlands_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.100 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
HP DeskJet 4530 series Nápověda (HKLM-x32\...\{6533E793-4E8D-4C7C-B287-4115DA1F40E3}) (Version: 36.0.0 - Hewlett Packard)
HP Dropbox Plugin (HKLM-x32\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
Kingston AURA DRAM Component (HKLM\...\{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.9 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{d6cac989-7570-43fd-b147-e31d6280a3a6}) (Version: 1.0.9 - KINGSTON COMPONENTS INC.) Hidden
Kodi (HKU\S-1-5-21-2476800721-1003676090-773119307-1001\...\Kodi) (Version: - XBMC Foundation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Mafia (HKLM-x32\...\1595659240_is1) (Version: 1.3 - GOG.com)
Mafia Compatibility Database (HKLM\...\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb) (Version: - )
Metro Exodus (HKLM-x32\...\{F25D08D9-EBE0-4C15-AAD2-50B446E85B17}_is1) (Version: - 4A Games)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.12430.20184 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2476800721-1003676090-773119307-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mozilla Firefox 71.0 (x64 cs) (HKLM\...\Mozilla Firefox 71.0 (x64 cs)) (Version: 71.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.18.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.94 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.35 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.35 - NVIDIA Corporation)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{6F9D5A0B-202C-4161-BC7F-0664EA39E7E7}) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20184 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Ochrana koncového bodu Trusteer (HKLM-x32\...\Rapport_msi) (Version: 3.5.1950.120 - Trusteer)
Ovládací panel NVIDIA 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 419.35 - NVIDIA Corporation) Hidden
Patriot Viper RGB (HKLM\...\{E42E13B0-071E-49C1-B1CC-58198E82F302}) (Version: 1.00.05 - Patriot Memory) Hidden
Patriot Viper RGB (HKLM-x32\...\{0ea44351-5397-43b0-a9c7-c4c53d9948ef}) (Version: 1.00.05 - Patriot Memory)
Rapport (HKLM-x32\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.1950.120 - Trusteer) Hidden
Roblox Player for brota (HKU\S-1-5-21-2476800721-1003676090-773119307-1001\...\roblox-player) (Version: - Roblox Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
Studie vylepšování produktu HP DeskJet 4530 series (HKLM\...\{93AB5884-7DE1-4F7E-881D-0AA548DD32E5}) (Version: 40.11.1122.1796 - HP Inc.)
TuzemskaPracovniCesta (HKLM-x32\...\{7825A5DF-2101-43B6-9A6A-8E1FA4717EAE}) (Version: 1.0.0 - mb)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Základní software zařízení HP DeskJet 4530 series (HKLM\...\{BC36C273-E8B5-4673-826C-13D8CA9458F6}) (Version: 40.11.1122.1796 - HP Inc.)
Packages:
=========
7zipUnofficial -> C:\Program Files\WindowsApps\42109FactoriaDatacenter.3899856E1168F_19.0.0.0_neutral__zaf1c6h4vqsbt [2019-04-29] (Repackagerexpress.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1700.2.0_x86__kgqvnymyfvs32 [2020-02-13] (king.com)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.2204.0_x64__rz1tebttyb220 [2019-11-15] (Dolby Laboratories)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-03-08] (Fitbit)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-08] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-11] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.95.602.0_x64__mcm4njqhnhss8 [2019-10-24] (Netflix, Inc.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2476800721-1003676090-773119307-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\brota\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2476800721-1003676090-773119307-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\brota\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [$PowerDVD18] -> {EF1ED1FB-2224-4150-B12A-CDDE6D442D5A} => C:\ProgramData\CyberLink\PowerDVD18\OpenWith\PDVD_Shell64.dll [2018-04-19] (CyberLink Corp. -> CyberLink Corp.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) [File not signed]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2012-06-09] (Alexander Roshal) [File not signed]
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) [File not signed]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2012-06-09] (Alexander Roshal) [File not signed]
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\system32\bdmjpeg64.dll [25640 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\system32\bdmpegv64.dll [70200 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\system32\bdmpega64.acm [70712 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [23080 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [66104 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [66104 2013-08-05] (Bandisoft -> )
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-04-23 16:13 - 2018-04-23 16:13 - 000232448 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2018-04-23 16:13 - 2018-04-23 16:13 - 000057344 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2018-04-23 16:13 - 2018-04-23 16:13 - 000567808 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2018-04-23 16:13 - 2018-04-23 16:13 - 000072704 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2018-04-23 16:13 - 2018-04-23 16:13 - 000357888 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2018-07-18 15:27 - 2018-07-18 15:27 - 000747520 _____ () [File not signed] C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 000817152 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2015-08-04 00:25 - 2015-08-04 00:25 - 000214528 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 003650560 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 000144896 _____ () [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\libssh2.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 000077824 _____ () [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\zlib.dll
2018-11-25 01:01 - 2018-03-25 12:38 - 000015872 _____ () [File not signed] C:\Users\brota\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\AccentColor.64.dll
2020-02-12 23:40 - 2020-02-12 23:40 - 000204288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\81140b33bbb9cccdfe441691c3905e27\CCC.Implementation.ni.dll
2020-02-12 23:43 - 2020-02-12 23:43 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\c0fb443c6d47e38ab7363b4b70bf2cc8\CLI.Foundation.XManifest.ni.dll
2020-02-12 23:40 - 2020-02-12 23:40 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\09ccbabe89a15f06956e04a789f6839c\CLI.Foundation.ni.dll
2020-02-12 23:43 - 2020-02-12 23:43 - 000296960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\c5dd02382075e576d789cc48235ccf8b\LOG.Foundation.Implementation.ni.dll
2020-02-12 23:40 - 2020-02-12 23:40 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\d5e144c8b6b8677483ca7e3ddbea7827\LOG.Foundation.Private.ni.dll
2020-02-12 23:40 - 2020-02-12 23:40 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\04ec97c9dbc294dba312c52f0bd12c42\LOG.Foundation.Implementation.Private.ni.dll
2020-02-12 23:40 - 2020-02-12 23:40 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\969cef60dc1c328e834c218bebd9431c\LOG.Foundation.ni.dll
2020-02-12 23:40 - 2020-02-12 23:40 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\e12445d2c5b7968bc628bc21d0a0cdf8\MOM.Foundation.ni.dll
2020-02-12 23:43 - 2020-02-12 23:43 - 000402944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\d414b14da6e4f8b4f574d14491f6e064\MOM.Implementation.ni.dll
2018-11-24 23:54 - 2012-06-09 19:20 - 000196096 _____ (Alexander Roshal) [File not signed] C:\Program Files\WinRAR\rarext.dll
2018-11-25 01:01 - 2018-09-21 20:31 - 000633856 _____ (Helmut Buhler) [File not signed] C:\Program Files\Windows Sidebar\dwmapi.dll
2018-11-25 01:01 - 2018-09-21 19:25 - 000500736 _____ (Helmut Buhler) [File not signed] C:\Users\brota\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll
2018-11-25 01:01 - 2012-05-19 06:16 - 000083456 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Windows Sidebar\sbdrop.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 000355840 _____ (The cURL library, hxxp://curl.haxx.se/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\LIBCURL.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\LIBEAY32.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\SSLEAY32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [464]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 08:31 - 2019-10-09 23:46 - 000000913 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 bandicam.com
127.0.0.1 ssl.bandisoft.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2476800721-1003676090-773119307-1001\Control Panel\Desktop\\Wallpaper -> G:\Documents\fotky2\madeira\s8\20180824_102818.jpg
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{AFC3B2DC-9AC0-4158-AD8E-F7485E09BA94}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{907D00A2-A798-405F-B92D-2FC65D5C96A4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6F22B9EF-7DAA-4D85-A6B3-86F27FEEC5A6}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{3BBFD060-CAC9-4D7E-B025-B76A9CD7ABF0}] => (Allow) LPort=5357
FirewallRules: [{CF5E37C0-6809-4D9D-9C88-4F81D086C13F}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [TCP Query User{D0238B12-D59F-4346-BD6B-088339D1B291}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{6A0A85CC-A4D3-4D56-86D6-047C22CC85D5}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{FAF79ED6-F3AF-4EA6-BBB7-A71C5B972F26}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{81BFEBF1-C2CD-4010-AD7D-CDDD12674997}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{A6E458AC-0F7C-45EC-86E6-8630F1EE45F4}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{BCB280CE-0CF9-4EE6-A304-75FF71227949}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{B0890F54-D16F-4388-88AD-5D3C5E7DC0AC}C:\program files\aida64 extreme cz\aida64.exe] => (Allow) C:\program files\aida64 extreme cz\aida64.exe (FinalWire Kft. -> FinalWire Ltd.)
FirewallRules: [UDP Query User{68BA934F-11E8-4FA3-A420-EBCF564B2B16}C:\program files\aida64 extreme cz\aida64.exe] => (Allow) C:\program files\aida64 extreme cz\aida64.exe (FinalWire Kft. -> FinalWire Ltd.)
FirewallRules: [{6C803B7C-2F27-4A0D-9122-BEB5091D4C68}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{885F4B63-4076-48E9-85BB-935C86DA87B9}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{98204729-5879-460D-892E-5A6AC064351A}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{A0A49382-1ABC-478E-AD7B-BA43E6E46B00}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [{2055B62E-04E5-457F-A855-24A942CC804A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F8CAB2C7-D0E3-44FD-8AD4-3E19389DD7DE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BAB361E6-092A-4991-AB77-8061A65F6114}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{5773C193-CD48-45D8-A244-DC8A1C93333F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\Kernel\DMS\CLMSServerPDVD18.exe (CyberLink Corp. -> CyberLink)
FirewallRules: [{CEEE8F62-0078-41F5-8A19-57E03706A86A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\PowerDVD18Agent.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{832B3B0B-9DFB-4640-AB31-076EA8125C6E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{B1D11548-A023-450F-8D75-B7ADD70FC66A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\CastingStation.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{5645DCC2-B9A3-435E-B5FE-6D66640CC770}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C40FD780-50E6-4004-8006-5F765B1743C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{66983B8F-E06B-4750-A060-FC3697D01565}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [TCP Query User{A0351047-FA38-4477-8640-1F1A4C97646E}C:\program files\tom clancy's ghost recon - wildlands\grw.exe] => (Allow) C:\program files\tom clancy's ghost recon - wildlands\grw.exe (Blue Byte GmbH -> )
FirewallRules: [UDP Query User{CA86A6B1-9051-468A-84E1-FA0A9665A053}C:\program files\tom clancy's ghost recon - wildlands\grw.exe] => (Allow) C:\program files\tom clancy's ghost recon - wildlands\grw.exe (Blue Byte GmbH -> )
FirewallRules: [{617D579E-D698-4061-AF8D-06A5EA922257}] => (Allow) C:\Program Files (x86)\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{951308EB-0E4A-47DA-8EB7-B3A8D7AC5716}] => (Allow) C:\Program Files (x86)\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{5FDB3FAD-E037-462C-96E6-2396A8303B87}] => (Allow) C:\Program Files (x86)\Battlefield V\bfv.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [{820D7D00-FDD3-4870-9539-7F69E6733754}] => (Allow) C:\Program Files (x86)\Battlefield V\bfv.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [{BDC5F142-623D-406A-A47B-BA7EB5BC8441}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0E4B0C4E-BEA1-468A-89CB-6275646BEC06}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E74B4B13-7C29-4BF7-A403-C37CF9912E49}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{405F2DF9-4B6A-430D-A6B9-EF7D422FFD3D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{82171A97-6FFF-43D9-BB31-24BE5436160E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{784693E3-D928-4B43-BF04-42AA0D62BEF2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{69781E17-7EC2-425E-A0F9-C0FFE3E02D8F}] => (Allow) C:\Program Files (x86)\CometLoggers\Communication Service for measuring devices and dataloggers\CommService.exe (COMET SYSTEM, s.r.o. -> )
FirewallRules: [{4D8789DE-33B6-49CF-96DC-52372D24504E}] => (Allow) C:\Program Files (x86)\CometLoggers\Communication Service for measuring devices and dataloggers\CommService.exe (COMET SYSTEM, s.r.o. -> )
FirewallRules: [{8D9E7226-09D0-4927-8F42-B640D9B3ABB4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{EFA86430-B0A1-4843-AC5C-EFDAE5AA29E3}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{48CB07AE-DDFB-4F2A-9A75-675B1D59B1FB}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{5DF7BFC8-7690-4F73-8FCB-B2B75CFC723A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{27CE78AE-7BB9-4284-B361-E8DCD455B8FF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F3248620-BD2C-4E0A-909F-DFB0928193EA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
26-01-2020 19:17:04 Naplánovaný kontrolní bod
02-02-2020 15:30:34 Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012
11-02-2020 20:39:43 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/13/2020 02:43:24 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program MicrosoftEdgeCP.exe verze 11.0.17763.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 260c
Čas spuštění: 01d5e1d5122c2113
Čas ukončení: 15
Cesta k aplikaci: C:\Windows\System32\MicrosoftEdgeCP.exe
ID hlášení: ce63d960-c342-43a7-bcfb-77379d0c1eed
Úplný název balíčku s chybou: Microsoft.MicrosoftEdge_44.17763.831.0_neutral__8wekyb3d8bbwe
ID aplikace relativní podle balíčku s chybou: MicrosoftEdge
Typ zablokování: Unknown
Error: (02/13/2020 02:43:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program MicrosoftEdgeCP.exe verze 11.0.17763.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 253c
Čas spuštění: 01d5e25ba9390d1a
Čas ukončení: 9
Cesta k aplikaci: C:\Windows\System32\MicrosoftEdgeCP.exe
ID hlášení: 0b9aec5b-3a14-4be4-b7a6-af321d5d0956
Úplný název balíčku s chybou: Microsoft.MicrosoftEdge_44.17763.831.0_neutral__8wekyb3d8bbwe
ID aplikace relativní podle balíčku s chybou: MicrosoftEdge
Typ zablokování: Unknown
Error: (02/11/2020 10:22:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceive: mDNS_Unlock locking failure! mDNS_busy (1) != mDNS_reentrancy (0)
Error: (02/11/2020 10:22:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceive: mDNS_Lock locking failure! mDNS_busy (1) != mDNS_reentrancy (0)
Error: (02/11/2020 10:07:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LocalBridge.exe verze 18.1910.1283.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 401c
Čas spuštění: 01d5ce33a36320a3
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.1910.1283.0_x64__8wekyb3d8bbwe\LocalBridge.exe
ID hlášení: f48d5232-a664-4e8b-9d10-5b7678ed1dbc
Úplný název balíčku s chybou: Microsoft.MicrosoftOfficeHub_18.1910.1283.0_x64__8wekyb3d8bbwe
ID aplikace relativní podle balíčku s chybou: Microsoft.MicrosoftOfficeHub
Typ zablokování: Quiesce
Error: (02/11/2020 09:43:40 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceive: mDNS_Unlock locking failure! mDNS_busy (1) != mDNS_reentrancy (0)
Error: (02/11/2020 09:43:40 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceive: mDNS_Lock locking failure! mDNS_busy (1) != mDNS_reentrancy (0)
Error: (02/11/2020 03:31:05 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceive: mDNS_Unlock locking failure! mDNS_busy (1) != mDNS_reentrancy (0)
System errors:
=============
Error: (02/13/2020 03:00:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.SecurityAppBroker
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (02/13/2020 03:00:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscDataProtection
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (02/13/2020 03:00:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (02/13/2020 02:58:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RGLKL1Q)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/13/2020 02:58:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RGLKL1Q)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/13/2020 02:58:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RGLKL1Q)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/13/2020 02:58:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RGLKL1Q)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/13/2020 02:58:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RGLKL1Q)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2020-01-18 21:56:03.515
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {B7140F87-CD57-4CB3-8316-D11A559F9C57}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-01-18 21:34:56.709
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {8528D1FB-DA15-421A-8672-E99E2291506F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===================================
Date: 2020-02-13 15:09:18.862
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:09:18.859
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:09:12.491
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:09:12.489
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:03:55.593
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:03:55.590
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:03:09.672
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:03:09.669
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2301 08/09/2012
Motherboard: ASUSTeK Computer INC. M4A88TD-V EVO/USB3
Processor: AMD Phenom(tm) II X4 955 Processor
Percentage of memory in use: 41%
Total physical RAM: 8191.16 MB
Available physical RAM: 4782.64 MB
Total Virtual: 13055.16 MB
Available Virtual: 9468.07 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.22 GB) (Free:95.97 GB) NTFS
Drive e: (disk1TB) (Fixed) (Total:931.51 GB) (Free:83.26 GB) NTFS
Drive f: (disk 2TB) (Fixed) (Total:1863.01 GB) (Free:89.12 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive g: (Disk dokumenty) (Fixed) (Total:465.76 GB) (Free:176.14 GB) NTFS
\\?\Volume{29f80648-0000-0000-0000-100000000000}\ () (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS
\\?\Volume{8dc5e763-43ef-11e9-9a4a-20cf30f1326f}\ () (CDROM) (Total:0 GB) (Free:0 GB)
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 29F80648)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: EAE42532)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: A39FB1ED)
Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 30AF9F08)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Ran by brota (administrator) on DESKTOP-RGLKL1Q (13-02-2020 15:05:11)
Running from C:\Users\brota\Desktop
Loaded Profiles: brota (Available Profiles: brota)
Platform: Windows 10 Pro Version 1809 17763.1039 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Advanced Micro Devices, Inc.) [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.00.28\atkexComSvc.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTAgent.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(COMET SYSTEM, s.r.o. -> ) C:\Program Files (x86)\CometLoggers\Comet Vision\AutodownloaderService.exe
(COMET SYSTEM, s.r.o. -> ) C:\Program Files (x86)\CometLoggers\Communication Service for measuring devices and dataloggers\CommService.exe
(COMET SYSTEM, s.r.o. -> ) C:\Program Files (x86)\CometLoggers\Communication Service for measuring devices and dataloggers\CommServiceTrayIconTracer.exe
(Filefacts.net) [File not signed] C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe
(FinalWire Kft. -> FinalWire Ltd.) C:\Program Files\AIDA64 Extreme CZ\aida64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\ArxApplets\Discord\logitechg_discord.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LAClient\laclient.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\brota\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [File not signed] C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\NisSrv.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Piriform Software Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18727048 2018-10-05] (Logitech Inc -> Logitech Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [PowerDVD18Agent] => C:\Program Files (x86)\CyberLink\PowerDVD18\PowerDVD18Agent.exe [527400 2018-04-19] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [Smart File Advisor] => C:\Program Files (x86)\Smart File Advisor\sfa.exe [282352 2017-06-19] (Total PC -> Filefacts.net)
HKLM-x32\...\Run: [SFAUpdater] => C:\Program Files (x86)\Smart File Advisor\SFAUpdater.exe [656656 2015-03-27] (Filefacts.net) [File not signed]
HKU\S-1-5-21-2476800721-1003676090-773119307-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [24552064 2019-10-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-2476800721-1003676090-773119307-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [735336 2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKLM\Software\...\AppCompatFlags\Custom\Game.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\Custom\Setup.exe: [{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb] -> Mafia Compatibility Database
HKLM\Software\...\AppCompatFlags\InstalledSDB\{481dc351-bab0-4f86-b085-87a5626fe6dc}: [DatabasePath] -> C:\Windows\AppPatch\CustomSDB\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb [2017-10-31]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.100\Installer\chrmstp.exe [2020-02-11] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Communication Service Monitor.lnk [2019-08-10]
ShortcutTarget: Communication Service Monitor.lnk -> C:\Program Files (x86)\CometLoggers\Communication Service for measuring devices and dataloggers\CommServiceTrayIconTracer.exe (COMET SYSTEM, s.r.o. -> )
Startup: C:\Users\brota\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar651.lnk [2020-02-13]
ShortcutTarget: Sidebar651.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [File not signed]
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0083E689-9497-4FB1-8090-4B0CBAABBBBE} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1354064 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {0819F45D-EDB2-421A-9C16-A9B45DB8E0BF} - System32\Tasks\AIDA64 AutoStart => C:\Program Files\AIDA64 Extreme CZ\aida64.exe [19739544 2018-09-19] (FinalWire Kft. -> FinalWire Ltd.)
Task: {12372AF4-4915-4D57-962B-A083290E55B5} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115440 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {16265052-2ED0-4805-A31D-B577BA59D2B3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1C2AC8EB-8E54-4647-B226-191BBC8CBF62} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3729392 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1EB9C3DC-4B30-4ABB-8472-01F83A5E07E6} - System32\Tasks\HPCustParticipation HP DeskJet 4530 series => C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPCustPartic.exe [6438536 2017-04-06] (Hewlett Packard -> HP Inc.)
Task: {2204652B-4C5A-4585-9CCC-BFA381ADD106} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {52570703-3DA2-4455-A80D-4480542D9C14} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849904 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {565CB9E3-5940-4B2C-B80A-9F43923C48BD} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {57BBE2C4-0D2E-4F17-B0C3-3E97B4350AC9} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1354064 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {5D03AD08-370F-4C1D-BF3C-8F9BABE79B7B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [566592 2008-07-30] (Apple Inc. -> Apple Inc.)
Task: {65C07210-67B0-4952-9855-4BEAAAE8029D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6B45DBA2-FA66-4839-8E0D-C91379698D91} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-24] (Google Inc -> Google Inc.)
Task: {7C27F594-5DCD-4A69-BCB2-865246EEC6B2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {81BE7D74-79F1-4DA3-A396-DF92A0E7271F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9186097E-983A-4D84-BB26-9216699F1395} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [739624 2018-04-23] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {9379E455-6937-45B2-9A03-0DE71E3D1C71} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {95A3205A-A848-4726-AC72-0836ADC0A10F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4297536 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {A83F3FA1-C523-434E-8264-A5021FCD5E9D} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {ACAA27BD-81E6-41F5-A41E-44DBCE2EBC01} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [591344 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B00CE575-B644-4C6F-8AC2-C2E7322D0F84} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {B3DE5B7E-7BD2-4B05-BE5B-1AD1422B830F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115440 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {B500592C-981B-45F8-B728-631D48872CAD} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [648688 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B60F65D1-9B2D-4E15-94DA-AACE43DF1163} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24607520 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
Task: {C2371763-EBEC-4AC6-9027-751034168CE8} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C4CEB2C3-55EC-4699-9546-2686156E0DC3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-15] (Piriform Software Ltd -> Piriform Ltd)
Task: {CF2C65F4-5565-4D3D-89B0-49BC82199711} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-15] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D7BCE153-9388-45E0-A672-7CB5A0923504} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F34190C4-8C4C-4F72-91B2-0A944DC34BB3} - System32\Tasks\AdwCleaner_onReboot => C:\Users\brota\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\adwcleaner_8.0.2 (1).exe [8356016 2020-02-13] (Malwarebytes Inc -> Malwarebytes)
Task: {F4ADF389-0497-4BB7-8CB8-16F64F45C242} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4297536 2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {F8B7BCA9-FB40-4DF6-922E-5A8D76FEF187} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-11-24] (Google Inc -> Google Inc.)
Task: {FB3478F1-DC2C-41AB-979D-8E348AE14B0A} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [849904 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FBCA5329-9662-46C0-B8DF-94FC95D5721B} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877552 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864 2010-05-18] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [193824 2010-05-18] (Apple Inc. -> Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{05d35386-9b31-40ef-9f75-55a86ff09de0}: [DhcpNameServer] 213.46.172.36 213.46.172.37
Internet Explorer:
==================
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-02-06] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
DownloadDir: C:\Users\brota\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-2476800721-1003676090-773119307-1001 -> hxxp://www.seznam.cz/
Edge Notifications: HKU\S-1-5-21-2476800721-1003676090-773119307-1001 -> hxxps://www.facebook.com
FireFox:
========
FF DefaultProfile: 2mjnvct7.default
FF ProfilePath: C:\Users\brota\AppData\Roaming\Mozilla\Firefox\Profiles\2mjnvct7.default [2020-02-13]
FF Extension: (IBM Security Rapport) - C:\Users\brota\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\rapportext@trusteer.com.xpi [2019-03-30] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default [2020-02-13]
CHR Extension: (Prezentace) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-24]
CHR Extension: (Dokumenty) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-24]
CHR Extension: (Disk Google) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-24]
CHR Extension: (IBM Security Rapport) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2019-12-01]
CHR Extension: (YouTube) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-24]
CHR Extension: (Tabulky) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-24]
CHR Extension: (Dokumenty Google offline) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-09]
CHR Extension: (Avast Online Security) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-01-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\brota\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-05]
CHR Profile: C:\Users\brota\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-02-13]
CHR Profile: C:\Users\brota\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-13]
CHR HKU\S-1-5-21-2476800721-1003676090-773119307-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
"RapportIaso" => service could not be unlocked. <==== ATTENTION
HKLM\SYSTEM\ControlSet001\Services\RapportIaso => c:\programdata\trusteer\rapport\store\exts\rapportms\baseline\rapportiaso64.sys [429072 2019-11-17] (IBM -> IBM Corp.) <==== ATTENTION (Rootkit!/Locked Service)
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [255512 2015-08-09] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-04] (Advanced Micro Devices, Inc.) [File not signed]
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.00.28\atkexComSvc.exe [419264 2018-12-28] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8473200 2019-03-28] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11129712 2020-01-28] (Microsoft Corporation -> Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4131944 2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2018-11-24] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [206472 2018-10-05] (Logitech Inc -> Logitech Inc.)
R2 MeasDataAutodownloaderSvc; C:\Program Files (x86)\CometLoggers\Comet Vision\AutodownloaderService.exe [17392 2019-04-04] (COMET SYSTEM, s.r.o. -> )
R2 MeasDevsDataLogsCommSvc; C:\Program Files (x86)\CometLoggers\Communication Service for measuring devices and dataloggers\CommService.exe [18928 2019-04-04] (COMET SYSTEM, s.r.o. -> )
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [3001632 2019-10-06] (IBM -> IBM Corp.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5378320 2019-10-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-01] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AIDA64Driver; C:\Program Files\AIDA64 Extreme CZ\kerneld.x64 [47560 2018-09-19] (FinalWire Kft. -> )
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [21631512 2015-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [673816 2015-08-09] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] (ASUSTeK Computer Inc. -> )
R1 Asusgio2; C:\Windows\system32\drivers\AsIO2.sys [33504 2019-01-01] (ASUSTeK Computer Inc. -> )
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-07-22] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
R2 CLFCL5.18; C:\Windows\system32\DRIVERS\CLFCL5.18\000.fcl [46848 2018-04-19] (CyberLink Corp. -> CyberLink Corp.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [42256 2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [59360 2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 FTDIBUS; C:\Windows\system32\drivers\ftdibus.sys [129448 2017-09-19] (Future Technology Devices International Ltd -> Future Technology Devices International Ltd.)
S3 FTSER2K; C:\Windows\system32\drivers\ftser2k.sys [89792 2017-09-19] (Future Technology Devices International Ltd -> Future Technology Devices International Ltd.)
R1 GLCKIO2; C:\Windows\system32\drivers\GLCKIO2.sys [19392 2018-04-23] (ASUSTeK Computer Inc. -> )
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech -> Logitech)
R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [67736 2018-10-05] (Logitech Inc -> Logitech Inc.)
R3 libusb0; C:\Windows\system32\DRIVERS\libusb0.sys [44480 2011-05-17] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] (ASUSTeK Computer Inc. -> )
S3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_7a8e74171e1b8492\nvlddmkm.sys [20736208 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-02-26] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [70024 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [66792 2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
R1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [429112 2019-10-06] (IBM -> IBM Corp.)
R1 RapportCerberus_1950099; c:\programdata\trusteer\rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1950099.sys [1466824 2019-11-17] (IBM -> IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [542112 2019-10-06] (IBM -> IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [395384 2019-10-06] (IBM -> IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [445240 2019-10-06] (IBM -> IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [560568 2019-10-06] (IBM -> IBM Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [711968 2019-06-04] (Realtek Semiconductor Corp. -> Realtek )
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R0 sptd2; C:\Windows\System32\Drivers\sptd2.sys [203296 2019-03-11] (Disc Soft Ltd -> Duplex Secure Ltd)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [45960 2020-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [376032 2020-02-01] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-01] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-13 15:05 - 2020-02-13 15:06 - 000031447 _____ C:\Users\brota\Desktop\FRST.txt
2020-02-13 15:04 - 2020-02-13 15:04 - 002279424 _____ (Farbar) C:\Users\brota\Desktop\FRST64.exe
2020-02-13 14:58 - 2020-02-13 14:58 - 000003324 _____ C:\Windows\system32\Tasks\AdwCleaner_onReboot
2020-02-13 14:57 - 2020-02-13 14:58 - 000000000 ____D C:\AdwCleaner
2020-02-13 14:47 - 2020-02-13 15:05 - 000000000 ____D C:\FRST
2020-02-12 20:13 - 2020-02-12 20:18 - 1934223484 _____ C:\Users\brota\Desktop\Le.Mans.'66-Ford.v.Ferrari(2019).1080p.EN.CZsub.Vykonavatel.mkv
2020-02-12 14:40 - 2020-02-12 14:40 - 000049427 _____ C:\Users\brota\Downloads\275357990257_2_1132_20200207.pdf
2020-02-12 14:39 - 2020-02-12 14:39 - 000044210 _____ C:\Users\brota\Downloads\275357990257_170_2027_20200108.pdf
2020-02-12 01:33 - 2020-02-12 01:33 - 000000000 ____D C:\ProgramData\ssh
2020-02-11 20:58 - 2020-02-11 20:58 - 026806784 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 024617472 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 023463424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 020816384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 019020288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 013013504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 012306432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 008906752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 007923712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 007870976 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 006061056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 005436936 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 004872704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 004658688 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 003904000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 003702784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 003626496 _____ (Microsoft Corporation) C:\Windows\system32\tellib.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 003550592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 002942976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 002469432 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 002323904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 002298880 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 002273080 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001877168 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001430672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001309696 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001292288 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001288856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001267216 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2020-02-11 20:58 - 2020-02-11 20:58 - 001247560 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 001229824 _____ (Microsoft Corporation) C:\Windows\system32\HoloSI.PCShell.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001224704 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 001182720 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2020-02-11 20:58 - 2020-02-11 20:58 - 001166336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscui.cpl
2020-02-11 20:58 - 2020-02-11 20:58 - 001071616 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 001062400 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000912384 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000883200 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000852480 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000840192 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000796160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000703488 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000684544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000594432 _____ (Microsoft Corporation) C:\Windows\system32\HolographicExtensions.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 000560640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfrgui.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 000496128 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000430592 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 000428544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000370176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000310784 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000269312 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 000263576 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000249344 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000218624 _____ (Microsoft Corporation) C:\Windows\system32\wscinterop.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000217088 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2020-02-11 20:58 - 2020-02-11 20:58 - 000212480 _____ (Microsoft Corporation) C:\Windows\system32\DiagSvc.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\recdisc.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 000180736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2020-02-11 20:58 - 2020-02-11 20:58 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\rdsdwmdr.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000165888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscinterop.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWSD.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000122880 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdSSDP.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\fveskybackup.dll
2020-02-11 20:58 - 2020-02-11 20:58 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\RDSPnf.exe
2020-02-11 20:58 - 2020-02-11 20:58 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\SrTasks.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 022137336 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 009669648 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 007888896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 007701200 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 007645392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 006943232 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 006546296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 006445568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 006318544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 005777920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 005608328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 005577656 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 005528576 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 005300736 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 005086208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 004628992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 004588776 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 004417552 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 004050944 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003874936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 003656704 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003636736 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 003577856 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003430400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003387392 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003363848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 003334496 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003334144 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003329536 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003269632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 003006464 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002928640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002879488 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002848256 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002780296 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002770944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002765312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002707456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 002699264 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002634240 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002627600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 002590736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002437344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002426680 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.AppAgent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002417664 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 002348544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002292224 _____ (Microsoft Corporation) C:\Windows\system32\winmsipc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002280024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002192384 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002158592 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppAgent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002086400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 002015608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001994976 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001963536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 001866240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001830928 _____ (Microsoft Corporation) C:\Windows\system32\rdpserverbase.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001824768 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001796920 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001751432 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001727496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.AppAgent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001726480 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001702392 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-02-11 20:57 - 2020-02-11 20:57 - 001677312 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001677088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001674752 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001674688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001665720 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001647104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmsipc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001608192 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001590072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpserverbase.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001566720 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001538560 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001520232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001486680 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001479208 _____ (Microsoft Corporation) C:\Windows\system32\rdpbase.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001476096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001473088 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001387520 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvruserservice.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001387512 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001360912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 001345984 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2020-02-11 20:57 - 2020-02-11 20:57 - 001319936 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001294488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001262592 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001260032 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001259832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 001258504 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001222672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpbase.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001219584 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001193984 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001188352 _____ (Microsoft Corporation) C:\Windows\system32\AgentService.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001184256 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.CommonBridge.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001183296 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001128960 _____ (Microsoft Corporation) C:\Windows\system32\ApplySettingsTemplateCatalog.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001114112 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001087800 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001076224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001056272 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001054952 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001051648 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001051136 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 001049400 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001012736 _____ (Microsoft Corporation) C:\Windows\system32\refsutil.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 001005056 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000985088 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000954368 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000953344 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000950272 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000930816 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthSSO.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000927232 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000917816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000902344 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000902144 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000898048 _____ (Microsoft Corporation) C:\Windows\system32\winipcsecproc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000888864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000879104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000876032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000872000 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000869888 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000866304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdlg.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000860160 _____ C:\Windows\system32\MBR2GPT.EXE
2020-02-11 20:57 - 2020-02-11 20:57 - 000856432 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000849920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasgcw.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000831800 _____ (Microsoft Corporation) C:\Windows\system32\AppVClient.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000820736 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000801280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winipcsecproc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000801280 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000779776 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000777728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000764216 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000762880 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.PrinterCustomActions.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000758928 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000751632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000741688 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_StorageSense.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000740864 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.Office2013CustomActions.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000681472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000681416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000677144 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000662024 _____ (Microsoft Corporation) C:\Windows\system32\computecore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000657408 _____ (Microsoft Corporation) C:\Windows\system32\BootMenuUX.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000652088 _____ (Microsoft Corporation) C:\Windows\system32\securekernel.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000649728 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000629760 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000622080 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000615936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000613376 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000613176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000611840 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000606224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000591376 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000590336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000588600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000578560 _____ (Microsoft Corporation) C:\Windows\system32\SppExtComObj.Exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000541472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000531976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000520704 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000519992 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000519168 _____ (Microsoft Corporation) C:\Windows\system32\sppcext.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000515584 _____ (Microsoft Corporation) C:\Windows\system32\cdpusersvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000510264 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000506200 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000501760 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000501248 _____ (Microsoft Corporation) C:\Windows\system32\winipcfile.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000494080 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000492032 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000485376 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000481280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000469504 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000465424 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000452608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cldflt.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000450912 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000449024 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000446480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000442880 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000431416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000422712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000410624 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000408064 _____ (Microsoft Corporation) C:\Windows\system32\rascustom.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000405520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000403968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000402584 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000398416 _____ (Microsoft Corporation) C:\Windows\system32\SgrmEnclave_secure.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000395776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000389920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000376568 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000349696 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000349184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000348672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000333824 _____ (Microsoft Corporation) C:\Windows\system32\RasMediaManager.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000331104 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000313000 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000305664 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDirectoryClient.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000293856 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000286520 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthAgent.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000281088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.AppDefaults.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000277504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000256512 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000253256 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000252024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000239616 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000226816 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000224256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000222720 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Geolocation.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000213816 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000203064 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\policymanagerprecheck.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000198656 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000193336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000189496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000186880 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000182272 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000169784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wcifs.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000164864 _____ (Microsoft Corporation) C:\Windows\system32\dssvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000163240 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000156712 _____ (Microsoft Corporation) C:\Windows\system32\omadmapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000154624 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_AppExecutionAlias.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_BackgroundApps.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000149504 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000147944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000137528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AppVStrm.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000128616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\omadmapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000109056 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000108032 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000105784 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthProxyStub.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000103936 _____ (Microsoft Corporation) C:\Windows\system32\utcutil.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000103736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2020-02-11 20:57 - 2020-02-11 20:57 - 000095760 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\keyiso.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000072704 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\keyiso.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Uev.ModernAppCore.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\UsoClient.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\Websocket.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Websocket.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\rasphone.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\mciwave.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasphone.exe
2020-02-11 20:57 - 2020-02-11 20:57 - 000027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciwave.dll
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-02-11 20:57 - 2020-02-11 20:57 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-02-02 17:28 - 2020-02-02 17:28 - 000002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\Windows\system32\Tasks\Apple
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\Users\brota\AppData\Local\Apple
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour Print Services
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\ProgramData\Apple
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\Program Files\Bonjour Print Services
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\Program Files\Bonjour
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\Program Files (x86)\Bonjour
2020-02-02 17:28 - 2020-02-02 17:28 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2020-02-02 15:38 - 2020-02-02 15:38 - 000001689 _____ C:\Users\brota\Desktop\Kodi.lnk
2020-02-02 15:32 - 2020-02-02 17:28 - 000000000 ____D C:\Users\brota\AppData\Roaming\Kodi
2020-02-02 15:30 - 2020-02-02 15:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2020-02-02 15:30 - 2020-02-02 15:30 - 000000000 ____D C:\Program Files\Kodi
2020-02-02 11:18 - 2020-02-02 11:18 - 000129536 _____ C:\Users\brota\Desktop\Cestovni_prikaz_formular_vzor.xls
2020-01-28 19:37 - 2020-01-28 19:37 - 000748816 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2020-01-22 22:20 - 2020-01-22 22:20 - 010164196 _____ C:\Users\brota\Desktop\7681_centro-125-160-servi (3).pdf
2020-01-20 14:55 - 2020-01-20 14:55 - 000419061 _____ C:\Users\brota\Desktop\AUTOTRACER_VSSZZZ5FZGR032112moje.pdf
2020-01-20 14:35 - 2020-01-20 14:35 - 000429494 _____ C:\Users\brota\Desktop\AUTOTRACER_VSSZZZ5FZGR116864.pdf
2020-01-16 10:28 - 2019-03-28 10:11 - 000029232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2020-01-16 10:28 - 2019-03-28 10:11 - 000017968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2020-01-16 10:28 - 2019-03-28 10:09 - 000032816 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2020-01-16 10:28 - 2019-03-28 10:09 - 000017968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2020-01-16 10:28 - 2019-03-28 07:35 - 000772176 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_clr0400.dll
2020-01-16 10:28 - 2019-03-28 07:35 - 000702400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase_clr0400.dll
2020-01-16 10:28 - 2019-03-28 07:35 - 000622832 _____ (Microsoft Corporation) C:\Windows\system32\msvcp140_clr0400.dll
2020-01-16 10:28 - 2019-03-28 07:35 - 000433448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp140_clr0400.dll
2020-01-16 10:28 - 2019-03-28 07:35 - 000087296 _____ (Microsoft Corporation) C:\Windows\system32\vcruntime140_clr0400.dll
2020-01-16 10:28 - 2019-03-28 07:35 - 000083768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vcruntime140_clr0400.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 002149160 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001936520 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001721144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001708544 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001701888 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001670800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001200920 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 001084416 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000930816 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000839680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000673792 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000651776 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000410616 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000378368 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000350416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000326144 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticLogCSP.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000322048 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000315904 _____ (Microsoft Corporation) C:\Windows\system32\ConhostV1.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000289792 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000228864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000189440 _____ (Microsoft Corporation) C:\Windows\system32\sti_ci.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000154976 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2020-01-16 10:24 - 2020-01-16 10:24 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\wiadss.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000132608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tsusbhub.sys
2020-01-16 10:24 - 2020-01-16 10:24 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000122568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadss.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\enterpriseresourcemanager.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2020-01-16 10:24 - 2020-01-16 10:24 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enterpriseresourcemanager.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2020-01-16 10:24 - 2020-01-16 10:24 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-13 15:03 - 2018-11-24 21:50 - 001693640 _____ C:\Windows\system32\PerfStringBackup.INI
2020-02-13 15:03 - 2018-09-15 18:39 - 000716944 _____ C:\Windows\system32\perfh005.dat
2020-02-13 15:03 - 2018-09-15 18:39 - 000145024 _____ C:\Windows\system32\perfc005.dat
2020-02-13 15:03 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-13 15:03 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\AppReadiness
2020-02-13 15:03 - 2018-09-15 08:31 - 000000000 ____D C:\Windows\INF
2020-02-13 15:01 - 2019-03-08 20:46 - 000000000 ____D C:\ProgramData\NVIDIA
2020-02-13 14:59 - 2018-11-25 01:01 - 000000000 ____D C:\Users\brota\AppData\Local\Sidebar7
2020-02-13 14:59 - 2018-11-24 21:41 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-13 14:59 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-13 14:58 - 2019-03-08 23:09 - 000000000 ____D C:\ProgramData\BSD
2020-02-13 14:58 - 2018-09-15 07:09 - 000524288 _____ C:\Windows\system32\config\BBI
2020-02-13 14:44 - 2019-05-27 14:17 - 000000000 ____D C:\Users\brota\AppData\Roaming\MPC-HC
2020-02-13 14:44 - 2019-03-08 23:37 - 000000000 ____D C:\Users\brota\AppData\Local\CrashDumps
2020-02-13 14:17 - 2018-11-24 21:41 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-02-12 19:15 - 2018-11-24 23:35 - 000000000 ____D C:\Users\Public\Logi
2020-02-12 17:36 - 2018-11-25 00:10 - 000003142 _____ C:\Windows\system32\Tasks\MSIAfterburner
2020-02-12 10:57 - 2018-09-15 08:23 - 000000000 ____D C:\Windows\CbsTemp
2020-02-12 01:47 - 2018-11-24 22:43 - 000000000 ____D C:\Users\brota\AppData\Roaming\vlc
2020-02-12 01:35 - 2018-11-24 21:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-02-12 01:35 - 2018-11-24 21:50 - 000000000 ___RD C:\Users\brota\3D Objects
2020-02-12 01:35 - 2018-11-24 21:41 - 000444384 _____ C:\Windows\system32\FNTCACHE.DAT
2020-02-12 01:35 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\SysWOW64\oobe
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\SysWOW64\Dism
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\SystemResetPlatform
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\system32\oobe
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\ShellExperiences
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\ShellComponents
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\PolicyDefinitions
2020-02-12 01:33 - 2018-09-15 08:33 - 000000000 ____D C:\Windows\bcastdvr
2020-02-12 01:33 - 2018-09-15 07:09 - 000000000 ____D C:\Windows\system32\Dism
2020-02-12 01:33 - 2018-09-15 07:09 - 000000000 ____D C:\Windows\servicing
2020-02-11 21:05 - 2018-11-24 22:01 - 000000000 ____D C:\Windows\system32\MRT
2020-02-11 21:01 - 2018-11-24 22:01 - 120407888 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-02-11 20:34 - 2018-11-24 23:22 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-02-11 00:37 - 2018-11-25 01:29 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-02-07 14:31 - 2018-11-24 22:02 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-02-05 11:34 - 2018-11-24 21:52 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2476800721-1003676090-773119307-1001
2020-02-05 11:34 - 2018-11-24 21:52 - 000000000 ___RD C:\Users\brota\OneDrive
2020-02-05 11:34 - 2018-11-24 21:47 - 000002361 _____ C:\Users\brota\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-02-04 13:51 - 2018-11-24 23:16 - 000003474 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-04 13:51 - 2018-11-24 23:16 - 000003350 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-02-03 22:41 - 2018-09-15 08:36 - 000835688 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-02-03 22:41 - 2018-09-15 08:36 - 000179608 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-02-02 15:32 - 2018-11-24 21:55 - 000000000 ____D C:\ProgramData\Package Cache
2020-02-02 11:18 - 2018-11-24 21:50 - 000000000 ____D C:\Users\brota\AppData\Local\Packages
2020-02-01 17:22 - 2018-11-24 21:41 - 000000000 ____D C:\Windows\system32\Drivers\wd
2020-01-28 17:16 - 2019-03-08 22:19 - 000000000 ____D C:\Users\brota\AppData\Local\ElevatedDiagnostics
2020-01-16 20:45 - 2019-06-19 09:03 - 000000000 ____D C:\Program Files\UNP
2020-01-16 20:41 - 2018-09-15 08:33 - 000000000 ___SD C:\Windows\system32\UNP
==================== Files in the root of some directories ========
2019-03-11 12:11 - 2002-08-29 18:33 - 000319488 ____R () C:\Users\brota\AppData\Roaming\MafiaSetup.exe
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-02-2020
Ran by brota (13-02-2020 15:07:45)
Running from C:\Users\brota\Desktop
Windows 10 Pro Version 1809 17763.1039 (X64) (2018-11-24 20:46:04)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2476800721-1003676090-773119307-500 - Administrator - Disabled)
brota (S-1-5-21-2476800721-1003676090-773119307-1001 - Administrator - Enabled) => C:\Users\brota
DefaultAccount (S-1-5-21-2476800721-1003676090-773119307-503 - Limited - Disabled)
Guest (S-1-5-21-2476800721-1003676090-773119307-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2476800721-1003676090-773119307-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
8GadgetPack (HKLM-x32\...\{AEF55727-E650-4061-856B-A7951E50E53A}) (Version: 27.0.0 - 8GadgetPack.net)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
AI Suite (HKLM-x32\...\{310BC5E2-31AF-49BB-904D-E71EB93645DC}) (Version: - )
AIDA64 Extreme CZ v.5.98.4800 (HKLM-x32\...\AIDA64 Extreme CZ v.5.98.4800) (Version: v.5.98.4800 - Libbi)
Aktualizace NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden
AMD Catalyst Install Manager (HKLM\...\{66AFB595-BC05-2913-7696-6D58F9B733E1}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Software Update (HKLM-x32\...\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}) (Version: 2.1.1.116 - Apple Inc.)
ASUS Aac_NBDT HAL (HKLM\...\{01D3B7AA-D078-4506-B460-60877FCDDBD6}) (Version: 2.2.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Aac_NBDT HAL (HKLM-x32\...\{71667bbb-81ab-429c-aeb4-e43c31e8fe14}) (Version: 2.2.12.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Display Component (HKLM\...\{AFD1CF98-FE97-434C-A095-9F27C5BEA53C}) (Version: 1.1.19 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Display Component (HKLM-x32\...\{36aa03d4-9606-4f04-bf3e-a70ebe6650f3}) (Version: 1.1.19 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{2C39FF80-1BB2-42C5-A58D-DC90EFF048F6}) (Version: 1.0.9 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{2d85b111-aee4-468b-874b-a9272712f69b}) (Version: 1.0.9 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM\...\{A3C4120D-8096-4307-91A2-FFE37EBD5A3D}) (Version: 1.1.16 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Headset Component (HKLM-x32\...\{ac3dc320-7e5e-4f22-9572-4c2119fcdf85}) (Version: 1.1.16 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{D800D836-DE15-4B00-8273-521F022CD837}) (Version: 1.0.31 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{b31aaf98-0562-411d-a962-0c3d16a3527a}) (Version: 1.0.31 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM\...\{B5E322FB-C191-463E-BDDD-4F22290EDFDB}) (Version: 1.0.7 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Odd Component (HKLM-x32\...\{a29279dc-f417-4442-8225-4db77f7d35b5}) (Version: 1.0.7 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA VGA Component (HKLM\...\{71BB96A6-EAC4-45AE-A17D-D3ED43FF1D14}) (Version: 0.0.1.7 - ASUSTek COMPUTER INC. ) Hidden
ASUS AURA VGA Component (HKLM-x32\...\{4f18ae01-4390-4b41-be3a-54ef4eacdd91}) (Version: 0.0.1.7 - ASUSTek COMPUTER INC. ) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{548dd834-70c5-4426-8065-fbeabdd2bb5d}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden
ASUS GLCKIO2 Driver (HKLM-x32\...\{5960FD0F-BB3B-49AF-B175-F77DC91E995A}) (Version: 1.0.10 - ASUSTeK Computer Inc.) Hidden
ASUS Keyboard HAL (HKLM\...\{0FA0CDEE-5DC8-421E-A97D-C74FA6E66FC3}) (Version: 1.0.27 - ASUSTek COMPUTER INC.) Hidden
ASUS Keyboard HAL (HKLM-x32\...\{210cdd08-c947-43a2-9378-bc288f651e41}) (Version: 1.0.27 - ASUSTek COMPUTER INC.) Hidden
ASUS MB Peripheral Products (HKLM\...\{BFED9861-7D96-4528-89F1-B090ABBF11A7}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS MB Peripheral Products (HKLM-x32\...\{3e9b91eb-5bb0-4272-8670-f88d353eb68b}) (Version: 1.0.20 - ASUSTeK Computer Inc.) Hidden
ASUS Mouse HAL (HKLM\...\{1838F91B-D481-45AA-B92F-071C62D0A19A}) (Version: 1.0.24 - ASUSTek COMPUTER INC.) Hidden
ASUS Mouse HAL (HKLM-x32\...\{add3bacc-578f-4bf9-97e3-a0f0c3ae3323}) (Version: 1.0.24 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM\...\{723B40A4-5BF2-4DC6-834A-2ADF75F3CF7E}) (Version: 1.0.0.6 - ASUSTek COMPUTER INC.) Hidden
ASUS MousePad HAL (HKLM-x32\...\{cc37f609-4db9-4ce3-9e37-9cb1b432452e}) (Version: 1.0.0.6 - ASUSTek COMPUTER INC.) Hidden
AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.07.35 - ASUSTeK Computer Inc.)
AURA DRAM Component (HKLM\...\{3881F403-B6B7-4D2F-BDAC-7901EB677F52}) (Version: 1.0.26 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{dded177f-c7b2-4212-9c64-74884f3fd53b}) (Version: 1.0.26 - ASUS) Hidden
Avidemux 2.7 - 64 bits (HKLM-x32\...\Avidemux 2.7 - 64 bits (64-bit)) (Version: 2.7.1.180604 - )
Bandicam (HKLM-x32\...\Bandicam) (Version: 2.1.2.739 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.59.24655 - Electronic Arts)
Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.)
Bonjour Print Services (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{A16E186C-58C4-3BDC-5CCE-714EFEF5F27F}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{62098A5F-E03B-31A3-5F9C-51A7F7D25744}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{1757AD9B-0E3C-05F9-FE43-4343BED7DA85}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{66B06F29-EE4F-9130-D96A-754826093FEA}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{821D0A0E-F246-BE40-0D68-93883C14C410}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{88BD74C4-23AB-4554-915C-6E1F0C81F6CD}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{A48E2AB0-0866-7783-9657-E1709EB18D02}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{E61CEF9A-BAC3-EAEE-F735-E257D2354DF2}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{DA0326BB-657D-AAFC-752C-363E8FA33755}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{E42911E5-48F8-8557-ED20-D72AD1907D25}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B4C30EF4-B2C5-1395-B534-7B63BCB6E8E4}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{B873A1FB-5EA0-EE5F-A861-1E38880AD08E}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{EC9DF9FF-9D75-4CDD-1D58-A2E887B0A42E}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{7ABACA7E-6E59-0EF9-8FA3-6B32E5F58127}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{3E196AAF-F81C-B384-E2AB-28EE2398FE5F}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{DAEFFE0C-CD05-1355-6AFC-7B3D4106A820}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{E392A425-53A7-DF90-96A0-E287A75DD3B2}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{D6F47BB4-700A-F612-0671-5F69EA311BB7}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{01FD9A26-3F61-9236-B360-BE5D043D82C0}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{64D4CCC3-63DF-252D-D29D-03491670225D}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{8DF90937-B869-9F76-5D45-5A8BDA0A33B6}) (Version: 2017.0922.1659.28737 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
Comet Vision 2.0.7033.26098 (HKLM-x32\...\Comet Vision_is1) (Version: 2.0.7033.26098 - COMET System, s.r.o.)
Communication Service for measuring devices and dataloggers 1.0.7033.23577 (HKLM-x32\...\CommSvc_96E0DF56-388F-4AA5-A761-E5DB64492106_is1) (Version: 1.0.7033.23577 - COMET System, s.r.o.)
Cool & Quiet (HKLM-x32\...\{1ADE1AA0-7F82-4BB1-B1BD-727DE438057B}) (Version: - )
Corsair AURA DRAM Component (HKLM\...\{376E0869-A4F1-4DC7-A1FD-EBF3AFFEB832}) (Version: 1.0.6 - CORSAIR COMPONENTS INC.) Hidden
Corsair AURA DRAM Component (HKLM-x32\...\{da7ebf10-b0be-494e-a79d-568546795a51}) (Version: 1.0.6 - CORSAIR COMPONENTS INC.) Hidden
CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.)
CyberLink PowerDVD 18 (HKLM-x32\...\{0F4F617F-E8D5-46A3-A0F9-43855182A3B1}) (Version: 18.0.1619.62 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.10.0.0797 - Disc Soft Ltd)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.35 - NVIDIA Corporation) Hidden
Epic Games Launcher (HKLM-x32\...\{0E63B233-DC24-442C-BD38-0B91D90FEC5B}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GALAX GAMER RGB (HKLM\...\{06A16AA8-BBA7-4362-962E-16651962D87C}) (Version: 1.00.02 - Galaxy Microsystems Ltd.) Hidden
GALAX GAMER RGB (HKLM-x32\...\{1257fdeb-ffa3-4e17-9d4b-189075ea3656}) (Version: 1.00.02 - Galaxy Microsystems Ltd.)
Ghost Recon: Wildlands (HKLM-x32\...\Ghost Recon: Wildlands_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.100 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
HP DeskJet 4530 series Nápověda (HKLM-x32\...\{6533E793-4E8D-4C7C-B287-4115DA1F40E3}) (Version: 36.0.0 - Hewlett Packard)
HP Dropbox Plugin (HKLM-x32\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
Kingston AURA DRAM Component (HKLM\...\{6D2D2DAF-BFE4-45A6-BF40-8A9F7FF54F42}) (Version: 1.0.9 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{d6cac989-7570-43fd-b147-e31d6280a3a6}) (Version: 1.0.9 - KINGSTON COMPONENTS INC.) Hidden
Kodi (HKU\S-1-5-21-2476800721-1003676090-773119307-1001\...\Kodi) (Version: - XBMC Foundation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.65 - Logitech Inc.)
Mafia (HKLM-x32\...\1595659240_is1) (Version: 1.3 - GOG.com)
Mafia Compatibility Database (HKLM\...\{481dc351-bab0-4f86-b085-87a5626fe6dc}.sdb) (Version: - )
Metro Exodus (HKLM-x32\...\{F25D08D9-EBE0-4C15-AAD2-50B446E85B17}_is1) (Version: - 4A Games)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 16.0.12430.20184 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2476800721-1003676090-773119307-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012 (HKLM-x32\...\{427ada59-85e7-4bc8-b8d5-ebf59db60423}) (Version: 14.16.27012.6 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mozilla Firefox 71.0 (x64 cs) (HKLM\...\Mozilla Firefox 71.0 (x64 cs)) (Version: 71.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 64.0 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.18.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.94 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.35 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.35 - NVIDIA Corporation)
NVIDIA PhysX (Legacy) (HKLM-x32\...\{6F9D5A0B-202C-4161-BC7F-0664EA39E7E7}) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12430.20184 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.12430.20120 - Microsoft Corporation) Hidden
Ochrana koncového bodu Trusteer (HKLM-x32\...\Rapport_msi) (Version: 3.5.1950.120 - Trusteer)
Ovládací panel NVIDIA 419.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 419.35 - NVIDIA Corporation) Hidden
Patriot Viper RGB (HKLM\...\{E42E13B0-071E-49C1-B1CC-58198E82F302}) (Version: 1.00.05 - Patriot Memory) Hidden
Patriot Viper RGB (HKLM-x32\...\{0ea44351-5397-43b0-a9c7-c4c53d9948ef}) (Version: 1.00.05 - Patriot Memory)
Rapport (HKLM-x32\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.1950.120 - Trusteer) Hidden
Roblox Player for brota (HKU\S-1-5-21-2476800721-1003676090-773119307-1001\...\roblox-player) (Version: - Roblox Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.7.8 - Rockstar Games)
Studie vylepšování produktu HP DeskJet 4530 series (HKLM\...\{93AB5884-7DE1-4F7E-881D-0AA548DD32E5}) (Version: 40.11.1122.1796 - HP Inc.)
TuzemskaPracovniCesta (HKLM-x32\...\{7825A5DF-2101-43B6-9A6A-8E1FA4717EAE}) (Version: 1.0.0 - mb)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Základní software zařízení HP DeskJet 4530 series (HKLM\...\{BC36C273-E8B5-4673-826C-13D8CA9458F6}) (Version: 40.11.1122.1796 - HP Inc.)
Packages:
=========
7zipUnofficial -> C:\Program Files\WindowsApps\42109FactoriaDatacenter.3899856E1168F_19.0.0.0_neutral__zaf1c6h4vqsbt [2019-04-29] (Repackagerexpress.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1700.2.0_x86__kgqvnymyfvs32 [2020-02-13] (king.com)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.2204.0_x64__rz1tebttyb220 [2019-11-15] (Dolby Laboratories)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-03-08] (Fitbit)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-08] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-11] (Microsoft Studios) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.95.602.0_x64__mcm4njqhnhss8 [2019-10-24] (Netflix, Inc.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2476800721-1003676090-773119307-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\brota\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [File not signed]
CustomCLSID: HKU\S-1-5-21-2476800721-1003676090-773119307-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\brota\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [File not signed]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [$PowerDVD18] -> {EF1ED1FB-2224-4150-B12A-CDDE6D442D5A} => C:\ProgramData\CyberLink\PowerDVD18\OpenWith\PDVD_Shell64.dll [2018-04-19] (CyberLink Corp. -> CyberLink Corp.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) [File not signed]
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2012-06-09] (Alexander Roshal) [File not signed]
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-03-11] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-03-01] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal) [File not signed]
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2012-06-09] (Alexander Roshal) [File not signed]
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\system32\bdmjpeg64.dll [25640 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\system32\bdmpegv64.dll [70200 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\system32\bdmpega64.acm [70712 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [23080 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [66104 2013-08-05] (Bandisoft -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [66104 2013-08-05] (Bandisoft -> )
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-04-23 16:13 - 2018-04-23 16:13 - 000232448 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2018-04-23 16:13 - 2018-04-23 16:13 - 000057344 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2018-04-23 16:13 - 2018-04-23 16:13 - 000567808 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2018-04-23 16:13 - 2018-04-23 16:13 - 000072704 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2018-04-23 16:13 - 2018-04-23 16:13 - 000357888 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2018-07-18 15:27 - 2018-07-18 15:27 - 000747520 _____ () [File not signed] C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 000817152 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2015-08-04 00:25 - 2015-08-04 00:25 - 000214528 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 07:08 - 2014-02-11 07:08 - 003650560 _____ () [File not signed] C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 000144896 _____ () [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\libssh2.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 000077824 _____ () [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\zlib.dll
2018-11-25 01:01 - 2018-03-25 12:38 - 000015872 _____ () [File not signed] C:\Users\brota\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\AccentColor.64.dll
2020-02-12 23:40 - 2020-02-12 23:40 - 000204288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CCC.Implementation\81140b33bbb9cccdfe441691c3905e27\CCC.Implementation.ni.dll
2020-02-12 23:43 - 2020-02-12 23:43 - 000061440 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundat60cdf5df#\c0fb443c6d47e38ab7363b4b70bf2cc8\CLI.Foundation.XManifest.ni.dll
2020-02-12 23:40 - 2020-02-12 23:40 - 000301568 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\CLI.Foundation\09ccbabe89a15f06956e04a789f6839c\CLI.Foundation.ni.dll
2020-02-12 23:43 - 2020-02-12 23:43 - 000296960 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundat03490438#\c5dd02382075e576d789cc48235ccf8b\LOG.Foundation.Implementation.ni.dll
2020-02-12 23:40 - 2020-02-12 23:40 - 000150016 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundat5023f8e7#\d5e144c8b6b8677483ca7e3ddbea7827\LOG.Foundation.Private.ni.dll
2020-02-12 23:40 - 2020-02-12 23:40 - 000087552 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundatcaafa75b#\04ec97c9dbc294dba312c52f0bd12c42\LOG.Foundation.Implementation.Private.ni.dll
2020-02-12 23:40 - 2020-02-12 23:40 - 000132608 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\LOG.Foundation\969cef60dc1c328e834c218bebd9431c\LOG.Foundation.ni.dll
2020-02-12 23:40 - 2020-02-12 23:40 - 000012288 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\MOM.Foundation\e12445d2c5b7968bc628bc21d0a0cdf8\MOM.Foundation.ni.dll
2020-02-12 23:43 - 2020-02-12 23:43 - 000402944 _____ (Advanced Micro Devices Inc.) [File not signed] C:\Windows\assembly\NativeImages_v4.0.30319_64\MOM.Implementation\d414b14da6e4f8b4f574d14491f6e064\MOM.Implementation.ni.dll
2018-11-24 23:54 - 2012-06-09 19:20 - 000196096 _____ (Alexander Roshal) [File not signed] C:\Program Files\WinRAR\rarext.dll
2018-11-25 01:01 - 2018-09-21 20:31 - 000633856 _____ (Helmut Buhler) [File not signed] C:\Program Files\Windows Sidebar\dwmapi.dll
2018-11-25 01:01 - 2018-09-21 19:25 - 000500736 _____ (Helmut Buhler) [File not signed] C:\Users\brota\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll
2018-11-25 01:01 - 2012-05-19 06:16 - 000083456 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Windows Sidebar\sbdrop.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 000355840 _____ (The cURL library, hxxp://curl.haxx.se/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\LIBCURL.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\LIBEAY32.dll
2018-10-05 09:13 - 2018-10-05 09:13 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LAClient\SSLEAY32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\LIBEAY32.dll
2018-04-06 19:29 - 2018-04-06 19:29 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Logitech Gaming Software\ssleay32.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [464]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-09-15 08:31 - 2019-10-09 23:46 - 000000913 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 bandicam.com
127.0.0.1 ssl.bandisoft.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2476800721-1003676090-773119307-1001\Control Panel\Desktop\\Wallpaper -> G:\Documents\fotky2\madeira\s8\20180824_102818.jpg
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{AFC3B2DC-9AC0-4158-AD8E-F7485E09BA94}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{907D00A2-A798-405F-B92D-2FC65D5C96A4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6F22B9EF-7DAA-4D85-A6B3-86F27FEEC5A6}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{3BBFD060-CAC9-4D7E-B025-B76A9CD7ABF0}] => (Allow) LPort=5357
FirewallRules: [{CF5E37C0-6809-4D9D-9C88-4F81D086C13F}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [TCP Query User{D0238B12-D59F-4346-BD6B-088339D1B291}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{6A0A85CC-A4D3-4D56-86D6-047C22CC85D5}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{FAF79ED6-F3AF-4EA6-BBB7-A71C5B972F26}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{81BFEBF1-C2CD-4010-AD7D-CDDD12674997}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{A6E458AC-0F7C-45EC-86E6-8630F1EE45F4}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{BCB280CE-0CF9-4EE6-A304-75FF71227949}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{B0890F54-D16F-4388-88AD-5D3C5E7DC0AC}C:\program files\aida64 extreme cz\aida64.exe] => (Allow) C:\program files\aida64 extreme cz\aida64.exe (FinalWire Kft. -> FinalWire Ltd.)
FirewallRules: [UDP Query User{68BA934F-11E8-4FA3-A420-EBCF564B2B16}C:\program files\aida64 extreme cz\aida64.exe] => (Allow) C:\program files\aida64 extreme cz\aida64.exe (FinalWire Kft. -> FinalWire Ltd.)
FirewallRules: [{6C803B7C-2F27-4A0D-9122-BEB5091D4C68}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{885F4B63-4076-48E9-85BB-935C86DA87B9}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{98204729-5879-460D-892E-5A6AC064351A}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{A0A49382-1ABC-478E-AD7B-BA43E6E46B00}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe (Take-Two Interactive Software, Inc. -> Rockstar Games)
FirewallRules: [{2055B62E-04E5-457F-A855-24A942CC804A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{F8CAB2C7-D0E3-44FD-8AD4-3E19389DD7DE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BAB361E6-092A-4991-AB77-8061A65F6114}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{5773C193-CD48-45D8-A244-DC8A1C93333F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\Kernel\DMS\CLMSServerPDVD18.exe (CyberLink Corp. -> CyberLink)
FirewallRules: [{CEEE8F62-0078-41F5-8A19-57E03706A86A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\PowerDVD18Agent.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{832B3B0B-9DFB-4640-AB31-076EA8125C6E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{B1D11548-A023-450F-8D75-B7ADD70FC66A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\CastingStation.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{5645DCC2-B9A3-435E-B5FE-6D66640CC770}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C40FD780-50E6-4004-8006-5F765B1743C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{66983B8F-E06B-4750-A060-FC3697D01565}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [TCP Query User{A0351047-FA38-4477-8640-1F1A4C97646E}C:\program files\tom clancy's ghost recon - wildlands\grw.exe] => (Allow) C:\program files\tom clancy's ghost recon - wildlands\grw.exe (Blue Byte GmbH -> )
FirewallRules: [UDP Query User{CA86A6B1-9051-468A-84E1-FA0A9665A053}C:\program files\tom clancy's ghost recon - wildlands\grw.exe] => (Allow) C:\program files\tom clancy's ghost recon - wildlands\grw.exe (Blue Byte GmbH -> )
FirewallRules: [{617D579E-D698-4061-AF8D-06A5EA922257}] => (Allow) C:\Program Files (x86)\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{951308EB-0E4A-47DA-8EB7-B3A8D7AC5716}] => (Allow) C:\Program Files (x86)\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{5FDB3FAD-E037-462C-96E6-2396A8303B87}] => (Allow) C:\Program Files (x86)\Battlefield V\bfv.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [{820D7D00-FDD3-4870-9539-7F69E6733754}] => (Allow) C:\Program Files (x86)\Battlefield V\bfv.exe (EA Digital Illusions CE AB) [File not signed]
FirewallRules: [{BDC5F142-623D-406A-A47B-BA7EB5BC8441}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0E4B0C4E-BEA1-468A-89CB-6275646BEC06}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E74B4B13-7C29-4BF7-A403-C37CF9912E49}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{405F2DF9-4B6A-430D-A6B9-EF7D422FFD3D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{82171A97-6FFF-43D9-BB31-24BE5436160E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{784693E3-D928-4B43-BF04-42AA0D62BEF2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{69781E17-7EC2-425E-A0F9-C0FFE3E02D8F}] => (Allow) C:\Program Files (x86)\CometLoggers\Communication Service for measuring devices and dataloggers\CommService.exe (COMET SYSTEM, s.r.o. -> )
FirewallRules: [{4D8789DE-33B6-49CF-96DC-52372D24504E}] => (Allow) C:\Program Files (x86)\CometLoggers\Communication Service for measuring devices and dataloggers\CommService.exe (COMET SYSTEM, s.r.o. -> )
FirewallRules: [{8D9E7226-09D0-4927-8F42-B640D9B3ABB4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{EFA86430-B0A1-4843-AC5C-EFDAE5AA29E3}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [UDP Query User{48CB07AE-DDFB-4F2A-9A75-675B1D59B1FB}C:\program files\kodi\kodi.exe] => (Allow) C:\program files\kodi\kodi.exe (XBMC Foundation) [File not signed]
FirewallRules: [{5DF7BFC8-7690-4F73-8FCB-B2B75CFC723A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{27CE78AE-7BB9-4284-B361-E8DCD455B8FF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F3248620-BD2C-4E0A-909F-DFB0928193EA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
26-01-2020 19:17:04 Naplánovaný kontrolní bod
02-02-2020 15:30:34 Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27012
11-02-2020 20:39:43 Windows Update
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/13/2020 02:43:24 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program MicrosoftEdgeCP.exe verze 11.0.17763.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 260c
Čas spuštění: 01d5e1d5122c2113
Čas ukončení: 15
Cesta k aplikaci: C:\Windows\System32\MicrosoftEdgeCP.exe
ID hlášení: ce63d960-c342-43a7-bcfb-77379d0c1eed
Úplný název balíčku s chybou: Microsoft.MicrosoftEdge_44.17763.831.0_neutral__8wekyb3d8bbwe
ID aplikace relativní podle balíčku s chybou: MicrosoftEdge
Typ zablokování: Unknown
Error: (02/13/2020 02:43:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program MicrosoftEdgeCP.exe verze 11.0.17763.1 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 253c
Čas spuštění: 01d5e25ba9390d1a
Čas ukončení: 9
Cesta k aplikaci: C:\Windows\System32\MicrosoftEdgeCP.exe
ID hlášení: 0b9aec5b-3a14-4be4-b7a6-af321d5d0956
Úplný název balíčku s chybou: Microsoft.MicrosoftEdge_44.17763.831.0_neutral__8wekyb3d8bbwe
ID aplikace relativní podle balíčku s chybou: MicrosoftEdge
Typ zablokování: Unknown
Error: (02/11/2020 10:22:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceive: mDNS_Unlock locking failure! mDNS_busy (1) != mDNS_reentrancy (0)
Error: (02/11/2020 10:22:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceive: mDNS_Lock locking failure! mDNS_busy (1) != mDNS_reentrancy (0)
Error: (02/11/2020 10:07:05 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LocalBridge.exe verze 18.1910.1283.0 přestal spolupracovat s Windows a byl ukončen. Pokud chcete zjistit, jestli je k dispozici více informací o tomto problému, vyhledejte historii problému na ovládacím panelu Zabezpečení a údržba.
ID procesu: 401c
Čas spuštění: 01d5ce33a36320a3
Čas ukončení: 4294967295
Cesta k aplikaci: C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_18.1910.1283.0_x64__8wekyb3d8bbwe\LocalBridge.exe
ID hlášení: f48d5232-a664-4e8b-9d10-5b7678ed1dbc
Úplný název balíčku s chybou: Microsoft.MicrosoftOfficeHub_18.1910.1283.0_x64__8wekyb3d8bbwe
ID aplikace relativní podle balíčku s chybou: Microsoft.MicrosoftOfficeHub
Typ zablokování: Quiesce
Error: (02/11/2020 09:43:40 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceive: mDNS_Unlock locking failure! mDNS_busy (1) != mDNS_reentrancy (0)
Error: (02/11/2020 09:43:40 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceive: mDNS_Lock locking failure! mDNS_busy (1) != mDNS_reentrancy (0)
Error: (02/11/2020 03:31:05 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceive: mDNS_Unlock locking failure! mDNS_busy (1) != mDNS_reentrancy (0)
System errors:
=============
Error: (02/13/2020 03:00:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.SecurityAppBroker
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (02/13/2020 03:00:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscDataProtection
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (02/13/2020 03:00:00 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (02/13/2020 02:58:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RGLKL1Q)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/13/2020 02:58:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RGLKL1Q)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/13/2020 02:58:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RGLKL1Q)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/13/2020 02:58:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RGLKL1Q)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (02/13/2020 02:58:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-RGLKL1Q)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2020-01-18 21:56:03.515
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {B7140F87-CD57-4CB3-8316-D11A559F9C57}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2020-01-18 21:34:56.709
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {8528D1FB-DA15-421A-8672-E99E2291506F}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
CodeIntegrity:
===================================
Date: 2020-02-13 15:09:18.862
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:09:18.859
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:09:12.491
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:09:12.489
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:03:55.593
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:03:55.590
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:03:09.672
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-13 15:03:09.669
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 2301 08/09/2012
Motherboard: ASUSTeK Computer INC. M4A88TD-V EVO/USB3
Processor: AMD Phenom(tm) II X4 955 Processor
Percentage of memory in use: 41%
Total physical RAM: 8191.16 MB
Available physical RAM: 4782.64 MB
Total Virtual: 13055.16 MB
Available Virtual: 9468.07 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.22 GB) (Free:95.97 GB) NTFS
Drive e: (disk1TB) (Fixed) (Total:931.51 GB) (Free:83.26 GB) NTFS
Drive f: (disk 2TB) (Fixed) (Total:1863.01 GB) (Free:89.12 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive g: (Disk dokumenty) (Fixed) (Total:465.76 GB) (Free:176.14 GB) NTFS
\\?\Volume{29f80648-0000-0000-0000-100000000000}\ () (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS
\\?\Volume{8dc5e763-43ef-11e9-9a4a-20cf30f1326f}\ () (CDROM) (Total:0 GB) (Free:0 GB)
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 29F80648)
Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: EAE42532)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: A39FB1ED)
Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 30AF9F08)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
