VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Preventivní kontrola

https://forum.viry.cz:443/viewtopic.php?t=157471

Stránka 1 z 1

Preventivní kontrola

Napsal: 07 říj 2020 16:26
od PadiseK
Ahoj,

poprosím o kontrolu logu z FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-10-2020
Ran by tomas (administrator) on TOMÁŠ-PC (07-10-2020 17:21:03)
Running from C:\Users\tomas\AppData\Local\Temp\scoped_dir7164_1088056776
Loaded Profiles: tomas
Platform: Windows 10 Home Version 2004 19041.508 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Maintenance.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(Discord Inc. -> Discord Inc.) C:\Users\tomas\AppData\Local\Discord\app-0.0.307\Discord.exe <6>
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2008.2.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12009.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Opera Software AS -> Opera Software) C:\Users\tomas\AppData\Local\Programs\Opera\71.0.3770.198\opera.exe <54>
(Opera Software AS -> Opera Software) C:\Users\tomas\AppData\Local\Programs\Opera\71.0.3770.198\opera_crashreporter.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(SOKNO S.R.L. -> ) C:\Program Files (x86)\SpeedFan\speedfan.exe
(Spotify AB -> Spotify Ltd) C:\Users\tomas\AppData\Roaming\Spotify\Spotify.exe <5>
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [839968 2019-03-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [StartupDelayer] => C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe [1254400 2015-12-18] (r2 Studios) [File not signed]
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [754416 2018-09-20] (Acronis International GmbH -> )
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [704720 2020-09-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Discord] => C:\Users\tomas\AppData\Local\Discord\app-0.0.307\Discord.exe [91023672 2020-08-04] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3395360 2020-09-04] (Valve -> Valve Corporation)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32411536 2020-09-24] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3514096 2020-09-25] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [] => [X]
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Spotify] => C:\Users\tomas\AppData\Roaming\Spotify\Spotify.exe [23360232 2020-09-30] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Opera Browser Assistant] => C:\Users\tomas\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3085336 2020-10-06] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Policies\system: [shell] explorer.exe <==== ATTENTION
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Policies\Explorer: [NoPreviewPane] 0
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\MountPoints2: {a0194730-ec62-11ea-b235-a8a1590de685} - "I:\RunGame.exe"
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\MountPoints2: {a019473a-ec62-11ea-b235-a8a1590de685} - "J:\RunGame.exe"
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\MountPoints2: {a019473e-ec62-11ea-b235-a8a1590de685} - "K:\RunGame.exe"
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3514096 2020-09-25] (Razer USA Ltd. -> Razer Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0A0F5854-7BF1-4E03-B40D-65657BEE5991} - System32\Tasks\Microsoft\Windows\NetFramework\Microsoft .NET Framework => C:\Windows\Microsoft.NET\Framework\v3.5\mscorsvw.exe
Task: {13634E14-82E5-4F83-924B-B8CC9DBB706A} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {20DB9F9F-417B-4955-8816-91837CE3D2A3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {30A69619-3124-4325-856E-B2CDE211DA4E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {3880A755-D913-4564-8528-665C595AFD7D} - System32\Tasks\Opera scheduled Autoupdate 1597177063 => C:\Users\tomas\AppData\Local\Programs\Opera\launcher.exe [1712152 2020-09-29] (Opera Software AS -> Opera Software)
Task: {3FD5B007-B85D-4E53-9458-D941D06D5546} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-08-05] () [File not signed]
Task: {480A45A4-CF37-48FE-9F46-46D79FB8B1AF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {49348760-1E24-4299-999E-E85D9E116232} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {4F163FBF-B71B-455B-9307-D3F86ADA15BE} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2649200 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {95DE8670-05D2-4E7D-A855-B847F6EEAB74} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [30141648 2020-08-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {A09292AB-27C5-4FDD-BC38-C894382622F0} - System32\Tasks\Opera scheduled assistant Autoupdate 1597177064 => C:\Users\tomas\AppData\Local\Programs\Opera\launcher.exe [1712152 2020-09-29] (Opera Software AS -> Opera Software)
Task: {AFE102FF-028E-4C51-B047-A6809CC002F7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CA61A030-18E3-4928-9E6D-0E1A1FD6A83C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {D4E1F132-1C5D-4A63-B1CF-69A6F5B41CE8} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [230120 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {FEA947F6-1F63-42BE-AAF7-3F68F9C573F7} - System32\Tasks\SoundBass => C:\Users\tomas\AppData\Roaming\Unpacker\Unpacker.exe <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.100.160.1 10.100.160.7
Tcpip\..\Interfaces\{85c5651d-bb94-41ee-8868-137b4a2ac633}: [DhcpNameServer] 10.100.160.1 10.100.160.7

Edge:
======
Edge Profile: C:\Users\tomas\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-05]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-08-01] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]

Opera:
=======
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\tomas\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2020-09-11]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [3956952 2018-09-20] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1157592 2018-09-20] (Acronis International GmbH -> )
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6285616 2020-08-12] (Acronis International GmbH -> )
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1205960 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [537472 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483432 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483432 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [572752 2020-08-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [640760 2020-09-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [382728 2020-08-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [244376 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [161376 2020-08-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8686928 2020-09-01] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4582080 2020-08-12] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-08-11] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [14280 2019-12-06] (Microsoft Corporation -> Microsoft Corporation)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2018-09-20] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2018-09-20] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1762456 2018-09-20] (Acronis International GmbH -> )
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2020-06-24] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294128 2020-09-24] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533376 2020-09-23] (Razer USA Ltd. -> Razer Inc.)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7003048 2018-09-20] (Acronis International GmbH -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\NisSrv.exe [2343112 2020-09-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MsMpEng.exe [128360 2020-09-28] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-03-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [208024 2020-06-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199752 2020-04-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-08-12] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-08-12] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [660456 2020-08-12] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [390592 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [50248 2020-08-11] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [24000 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [51776 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_006e; C:\WINDOWS\System32\drivers\RzDev_006e.sys [52496 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0306; C:\WINDOWS\System32\drivers\RzDev_0306.sys [52504 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1310552 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [213336 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [690520 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [331976 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [243472 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48520 2020-09-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428256 2020-09-28] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69856 2020-09-28] (Microsoft Windows -> Microsoft Corporation)
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2061-07-11 11:07 - 2061-07-11 11:11 - 2027242857 _____ C:\Users\tomas\Desktop\Desktop.rar
2020-10-07 17:20 - 2020-10-07 17:21 - 000000000 ____D C:\FRST
2020-10-07 17:20 - 2020-10-07 17:20 - 002299392 _____ (Farbar) C:\Users\tomas\Downloads\FRST64.exe
2020-10-07 17:04 - 2020-10-07 17:04 - 002588891 _____ C:\Users\tomas\Downloads\ProcessExplorer.zip
2020-10-07 16:37 - 2020-10-07 16:37 - 000000000 ____D C:\Users\tomas\AppData\Local\Microsoft_Corporation
2020-10-07 16:34 - 2020-10-07 16:37 - 000000000 ____D C:\Users\tomas\AppData\Local\Windows Performance Analyzer
2020-10-07 16:34 - 2020-10-07 16:34 - 000000000 ____D C:\Users\tomas\Documents\WPA Files
2020-10-07 16:34 - 2020-10-07 16:34 - 000000000 ____D C:\SymCache
2020-10-07 16:31 - 2020-10-07 16:32 - 000000000 ____D C:\Users\tomas\Documents\WPR Files
2020-10-07 16:18 - 2020-10-07 16:18 - 000000000 ____D C:\ProgramData\WindowsPerformanceRecorder
2020-10-07 16:17 - 2020-10-07 16:17 - 005681152 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2020-10-07 16:17 - 2020-10-07 16:17 - 004468736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2020-10-07 16:17 - 2020-10-07 16:17 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DirectML.Debug.dll
2020-10-07 16:17 - 2019-12-06 21:25 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll
2020-10-07 16:17 - 2019-12-06 19:45 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll
2020-10-07 16:17 - 2019-12-06 17:00 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll
2020-10-07 16:17 - 2019-12-06 16:47 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll
2020-10-07 16:17 - 2019-12-06 16:36 - 018011136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll
2020-10-07 16:17 - 2019-12-06 16:35 - 000374784 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2020-10-07 16:17 - 2019-12-06 16:35 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2020-10-07 16:17 - 2019-12-06 16:34 - 000417792 _____ C:\WINDOWS\system32\d3dconfig.exe
2020-10-07 16:17 - 2019-12-06 16:34 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll
2020-10-07 16:17 - 2019-12-06 16:33 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
2020-10-07 16:17 - 2019-12-06 16:32 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll
2020-10-07 16:17 - 2019-12-06 16:31 - 001379328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2020-10-07 16:17 - 2019-12-06 16:30 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll
2020-10-07 16:17 - 2019-12-06 16:29 - 013957632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll
2020-10-07 16:17 - 2019-12-06 16:29 - 001985024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2020-10-07 16:17 - 2019-12-06 16:29 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll
2020-10-07 16:17 - 2019-12-06 16:28 - 001152512 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe
2020-10-07 16:17 - 2019-12-06 16:28 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll
2020-10-07 16:17 - 2019-12-06 16:27 - 004826624 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2020-10-07 16:17 - 2019-12-06 16:27 - 000347136 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2020-10-07 16:17 - 2019-12-06 16:26 - 004795392 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2020-10-07 16:17 - 2019-12-06 16:26 - 000365056 _____ C:\WINDOWS\SysWOW64\d3dconfig.exe
2020-10-07 16:17 - 2019-12-06 16:26 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll
2020-10-07 16:17 - 2019-12-06 16:26 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
2020-10-07 16:17 - 2019-12-06 16:26 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll
2020-10-07 16:17 - 2019-12-06 16:24 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll
2020-10-07 16:17 - 2019-12-06 16:23 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll
2020-10-07 16:17 - 2019-12-06 16:23 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll
2020-10-07 16:17 - 2019-12-06 16:23 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll
2020-10-07 16:17 - 2019-12-06 16:22 - 003578880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe
2020-10-07 16:17 - 2019-12-06 16:22 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll
2020-10-07 16:17 - 2019-12-06 16:22 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe
2020-10-07 16:17 - 2019-12-06 16:21 - 003592704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2020-10-07 16:17 - 2019-12-06 16:20 - 001411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll
2020-10-07 16:17 - 2019-12-06 16:19 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
2020-10-07 16:17 - 2019-12-06 16:19 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll
2020-10-07 16:17 - 2019-12-06 15:44 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DirectML.Debug.dll
2020-10-07 16:16 - 2020-10-07 16:17 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\ProgramData\Windows App Certification Kit
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\Program Files\Application Verifier
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\Program Files (x86)\Application Verifier
2020-10-07 16:13 - 2020-10-07 16:13 - 001354464 _____ (Microsoft Corporation) C:\Users\tomas\Downloads\winsdksetup.exe
2020-10-07 14:00 - 2020-10-07 14:00 - 000000567 _____ C:\Users\tomas\Desktop\Need for Speed Most Wanted.lnk
2020-10-07 13:04 - 2020-10-07 13:59 - 000000000 ____D C:\Users\tomas\Documents\NFS Most Wanted
2020-10-07 13:04 - 2020-10-07 13:04 - 000000000 ____D C:\Users\tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted
2020-10-07 13:04 - 2020-10-07 13:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted
2020-10-05 16:07 - 2020-10-05 16:07 - 000000000 ____D C:\Users\tomas\Documents\Zvukové záznamy
2020-09-30 00:20 - 2020-09-24 22:26 - 005510456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 002635752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 001759032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 000990520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 000195560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 000122344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 000083256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-09-30 00:20 - 2020-09-16 08:44 - 009302127 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-09-30 00:20 - 2020-06-13 04:59 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-09-30 00:19 - 2020-09-30 00:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-09-30 00:18 - 2020-09-26 01:41 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-09-30 00:18 - 2020-09-26 01:41 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-09-30 00:18 - 2020-09-26 01:41 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-09-30 00:18 - 2020-09-26 01:41 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-09-30 00:18 - 2020-09-26 01:41 - 001054944 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 001054944 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 000349936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 002097560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 001585048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 001506200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 001160600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000815856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000811248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000674200 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000670104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000656792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000555928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000540912 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 007705320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 006859152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 004174736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 002509200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 001733008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445655.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 001482984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445655.dll
2020-09-30 00:18 - 2020-09-26 01:35 - 006992184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-09-30 00:18 - 2020-09-26 01:35 - 005964496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-09-30 00:18 - 2020-09-25 00:55 - 001682368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-09-30 00:18 - 2020-09-25 00:55 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-09-30 00:18 - 2020-09-25 00:55 - 000058630 _____ C:\WINDOWS\system32\nvinfo.pb
2020-09-30 00:18 - 2020-09-25 00:55 - 000038816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-09-30 00:16 - 2020-09-30 00:17 - 000000000 ____D C:\Users\tomas\Downloads\DDU v18.0.3.3
2020-09-30 00:16 - 2020-09-30 00:16 - 001247231 _____ C:\Users\tomas\Downloads\[Guru3D.com]-DDU.zip
2020-09-30 00:03 - 2020-09-30 00:04 - 607519552 _____ (NVIDIA Corporation) C:\Users\tomas\Downloads\456.55-desktop-win10-64bit-international-whql.exe
2020-09-25 22:08 - 2020-09-25 22:08 - 000000000 ____D C:\Users\tomas\Documents\Call of Duty Modern Warfare
2020-09-25 22:08 - 2020-09-25 22:08 - 000000000 ____D C:\Users\tomas\ansel
2020-09-25 18:21 - 2020-09-25 18:21 - 000000000 ____D C:\Users\tomas\Documents\My Games
2020-09-25 18:15 - 2020-09-25 18:15 - 000003516 _____ C:\WINDOWS\system32\Tasks\SoundBass
2020-09-25 08:04 - 2020-10-06 22:43 - 000000000 ____D C:\Users\tomas\AppData\LocalLow\uTorrent
2020-09-24 21:32 - 2020-09-24 21:32 - 009604577 _____ C:\Users\tomas\Desktop\iCloud Photos.zip
2020-09-24 06:47 - 2020-09-24 06:47 - 000001189 _____ C:\Users\Public\Desktop\Avira.lnk
2020-09-24 06:47 - 2020-09-24 06:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2020-09-24 00:28 - 2020-09-24 00:28 - 000000287 _____ C:\Users\tomas\Desktop\Rocket League®.url
2020-09-23 18:49 - 2020-09-30 16:57 - 000000000 ____D C:\Users\tomas\AppData\Roaming\TS3Client
2020-09-23 18:49 - 2020-09-23 18:49 - 089014080 _____ (TeamSpeak Systems GmbH) C:\Users\tomas\Downloads\TeamSpeak3-Client-win64-3.5.3.exe
2020-09-23 18:49 - 2020-09-23 18:49 - 000001008 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2020-09-23 18:49 - 2020-09-23 18:49 - 000000970 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2020-09-23 18:49 - 2020-09-23 18:49 - 000000000 ____D C:\Users\tomas\AppData\Local\TeamSpeak 3
2020-09-23 18:49 - 2020-09-23 18:49 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2020-09-16 15:05 - 2020-09-16 15:05 - 000057247 _____ C:\Users\tomas\Desktop\E-38331934-756030469.xlsx
2020-09-16 10:49 - 2020-09-16 10:49 - 000000000 ____D C:\Users\tomas\AppData\Local\PunkBuster
2020-09-16 10:43 - 2020-10-03 12:02 - 000000000 ____D C:\Users\tomas\AppData\Local\CrashDumps
2020-09-16 10:42 - 2020-09-16 10:42 - 000000439 _____ C:\Users\Public\Desktop\Call of Duty(R) 2 Singleplayer.lnk
2020-09-16 10:42 - 2020-09-16 10:42 - 000000439 _____ C:\Users\Public\Desktop\Call of Duty(R) 2 Multiplayer.lnk
2020-09-16 10:42 - 2020-09-16 10:42 - 000000262 _____ C:\WINDOWS\game.ini
2020-09-16 10:42 - 2020-09-16 10:42 - 000000000 __SHD C:\WINDOWS\ftpcache
2020-09-16 10:42 - 2020-09-16 10:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision
2020-09-15 18:47 - 2020-09-15 18:47 - 000000000 ____D C:\Users\tomas\AppData\Local\DBG
2020-09-15 18:47 - 2020-09-15 18:47 - 000000000 ____D C:\Users\tomas\AppData\Local\CrashReportClient
2020-09-08 23:34 - 2020-09-08 23:34 - 032610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 031598936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 026272768 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 024264704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 023441408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 019869696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 018766848 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 018075136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 014754304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 010847552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 010336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 008897200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 007633360 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 007611904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 006417408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 006357032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 006197760 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 005993968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 005820416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 005430480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 005056000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 004892672 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 004820992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 004783344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 004747776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 004629328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 004523008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 004465664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 004362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 004304384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 004274688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 004009064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 003992576 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 003913728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 003875840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 003868672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 003819528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 003806720 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 003659264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 003587584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 003547784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 003505952 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 003364864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 003334656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 003082240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002991416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 002918736 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002851128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 002806152 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002772992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002757120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002749440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 002687488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002635640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002606592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002587448 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002541056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002519512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002452856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-09-08 23:34 - 2020-09-08 23:34 - 002451456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002433024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002338184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002306048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002265328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002206208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002178048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 002136744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-09-08 23:34 - 2020-09-08 23:34 - 002023704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001980728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001978656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001956032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001951232 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001868672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001866240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001856312 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001834496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001812368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001805192 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-09-08 23:34 - 2020-09-08 23:34 - 001777152 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001770040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001720832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001719096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001693208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001681408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001659904 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001654824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001649664 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001640888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001617088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001557816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 001542752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001541224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001538656 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 001506608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001504768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 001494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001485824 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001472824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 001449792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001449472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001438432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001430528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001414144 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 001411072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 001400208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001393480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-09-08 23:34 - 2020-09-08 23:34 - 001388544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001375232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001352232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001337344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001333248 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001329664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001314608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001309504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-09-08 23:34 - 2020-09-08 23:34 - 001301584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001296384 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001279288 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001260200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001255744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 001253376 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2020-09-08 23:34 - 2020-09-08 23:34 - 001239040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001209344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001209096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 001198288 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 001191592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001183256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001181200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001128544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 001126488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001117344 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001081856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001068112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001061376 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001056768 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001048064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2020-09-08 23:34 - 2020-09-08 23:34 - 001044880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001014864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 001003320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000976680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000975872 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000969216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000966144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFS.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000961192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000946712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000943408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000920896 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000913776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000907440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000894768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000890944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000887304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000869376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000857344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000843376 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000827912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000819200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000801544 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000794624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000775776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000763840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000759792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2020-09-08 23:34 - 2020-09-08 23:34 - 000757192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000755576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000750976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000749056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000748360 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000744240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2020-09-08 23:34 - 2020-09-08 23:34 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BTAGService.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000707584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000705560 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000702792 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000688960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000680664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2020-09-08 23:34 - 2020-09-08 23:34 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000676680 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFSR.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000665264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2020-09-08 23:34 - 2020-09-08 23:34 - 000651776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000647480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000643584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000639928 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000635824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000634680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000634240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000603464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000602184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000588288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000585696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000583608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StateRepository.Core.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000573752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000568120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxdiagn.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000546464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000539136 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000538120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000531448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000530440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000528352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\glmf32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UiaManager.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000509440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000507904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000502592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-09-08 23:34 - 2020-09-08 23:34 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000500968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000495848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000482304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000457728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxdiagn.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000455480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSE.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000420920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000412688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000408576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000403768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glmf32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000390144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000387072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000377344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000374072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000373560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000367416 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000360024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2020-09-08 23:34 - 2020-09-08 23:34 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000337768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000322376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msquic.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\syncutil.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000303288 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000303168 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnputil.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000286024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000259888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlancfg.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Gpu.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOVER.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glu32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000240136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000233984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000230392 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000230376 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2020-09-08 23:34 - 2020-09-08 23:34 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000223744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\VideoHandlers.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000217920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000213344 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000212760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000202240 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000196768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2020-09-08 23:34 - 2020-09-08 23:34 - 000190792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxApplicabilityEngine.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSUTILITY.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvcext.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrahc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000180024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000167880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\glu32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidpolicyconverter.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000153400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000147256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000143104 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000141008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000138936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000133736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000125016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000119608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadWamExtension.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000118072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000117056 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000110504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000109992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspptp.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000099640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlgpclnt.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000095032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000092952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000091448 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rassstp.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000069752 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000069728 _____ (Microsoft Corporation) C:\WINDOWS\system32\iumcrypt.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000069432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000068928 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000064824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000064008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000061752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000059448 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagnosticdataquery.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCShellCommonProxyStub.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edpnotify.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.SystemId.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000042320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryCore.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfctrs.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfdisk.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfos.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMPOSERES.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCShellCommonProxyStub.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootim.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfnet.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msacm32.drv
2020-09-08 23:34 - 2020-09-08 23:34 - 000021312 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidtel.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragproxy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
2020-09-08 23:34 - 2020-09-08 23:34 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\midimap.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2020-09-08 23:34 - 2020-09-08 23:34 - 000017216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000009277 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-09-08 23:34 - 2020-09-08 23:34 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragres.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-09-08 23:34 - 2020-09-08 23:34 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-09-08 23:33 - 2020-09-08 23:34 - 003815424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 009034752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 008006248 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 007979416 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 006193664 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 005870496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 005776544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 005729280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 004727296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 004592136 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 003779384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 003749376 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 003436544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 003303936 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 003181056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 003062784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 002975744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 002951680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 002647040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 002631168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 002422784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 002319216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 002259968 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 002248192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 002131032 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 002103704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 002102784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsudk.shellcommon.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001924608 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001905664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001825280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001766912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001701368 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001700352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001514496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001498624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001492480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001473024 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001426944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001378568 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001337176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001277440 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001261056 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001257984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001145344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001140928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001114112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001104384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001094472 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001092392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001089344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001059328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001046528 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2020-09-08 23:33 - 2020-09-08 23:33 - 001030656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001028288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001027344 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001021952 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 001008696 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000999744 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000978760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000939448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000935936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000934912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000929792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000914216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000903992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000887296 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2020-09-08 23:33 - 2020-09-08 23:33 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000809280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000799544 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000795136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000753152 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000725608 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000702776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UiaManager.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000602440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-09-08 23:33 - 2020-09-08 23:33 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000586752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000583168 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000527880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2020-09-08 23:33 - 2020-09-08 23:33 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000472376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000454960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000437760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000428672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000420456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000418816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000418800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000393728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000361472 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_InputPersonalization.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlancfg.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000305472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\directxdatabaseupdater.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000278016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000269624 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000255296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000249664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000239432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxApplicabilityEngine.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgiadaptercache.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000223040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000186472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000185672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000185664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000183112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000180040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000169456 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwbase.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000160064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000159048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000155952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000152376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadWamExtension.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000132928 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000132728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcDecoderHost.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlgpclnt.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000117048 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000116024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-09-08 23:33 - 2020-09-08 23:33 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000090400 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000078528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000070976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.PlatformExtension.DevicePickerExperience.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.SystemId.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000060744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000056648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-09-08 23:33 - 2020-09-08 23:33 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2020-09-08 23:33 - 2020-09-08 23:33 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msacm32.drv
2020-09-08 23:33 - 2020-09-08 23:33 - 000030024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000029456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\midimap.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdiagnostics.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000019776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2020-09-08 23:33 - 2020-09-08 23:33 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-09-08 23:33 - 2020-09-08 23:33 - 000016704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys
2020-09-08 23:30 - 2020-08-25 05:42 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-09-08 23:30 - 2020-08-25 05:36 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-10-07 17:21 - 2020-08-11 22:29 - 000000000 ____D C:\Users\tomas\AppData\Roaming\discord
2020-10-07 17:16 - 2020-08-31 01:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-07 17:16 - 2020-08-31 01:00 - 000008192 ___SH C:\DumpStack.log.tmp
2020-10-07 17:16 - 2020-08-12 12:42 - 000000000 ____D C:\Users\tomas\AppData\Local\Spotify
2020-10-07 17:16 - 2020-08-11 23:30 - 000000000 ____D C:\Program Files (x86)\Steam
2020-10-07 17:16 - 2020-08-11 22:48 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2020-10-07 17:16 - 2020-08-11 22:27 - 000000000 ____D C:\Users\tomas\AppData\Roaming\Spotify
2020-10-07 17:16 - 2020-08-11 22:14 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-07 17:16 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-07 17:16 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-10-07 17:15 - 2020-08-31 01:04 - 000003128 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2020-10-07 17:07 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-10-07 16:52 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-07 16:17 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-10-07 16:16 - 2020-08-11 22:18 - 000000000 ____D C:\ProgramData\Package Cache
2020-10-07 12:24 - 2020-08-11 23:29 - 000000000 ____D C:\ProgramData\Riot Games
2020-10-07 11:56 - 2020-08-31 01:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-07 08:06 - 2020-09-02 00:20 - 000000000 ____D C:\Users\tomas\AppData\Local\ElevatedDiagnostics
2020-10-07 08:01 - 2020-08-31 01:01 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-07 08:01 - 2019-12-07 16:41 - 000716612 _____ C:\WINDOWS\system32\perfh005.dat
2020-10-07 08:01 - 2019-12-07 16:41 - 000144790 _____ C:\WINDOWS\system32\perfc005.dat
2020-10-07 07:56 - 2020-08-25 21:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2020-10-06 22:43 - 2020-08-11 23:39 - 000000000 ____D C:\Users\tomas\AppData\Roaming\uTorrent
2020-10-06 22:05 - 2020-08-12 02:00 - 000000000 ____D C:\Users\tomas\AppData\Local\BitTorrentHelper
2020-10-06 18:35 - 2020-08-31 01:04 - 000004418 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1597177064
2020-10-06 18:29 - 2020-08-31 01:00 - 000000000 ____D C:\Users\tomas
2020-10-06 18:12 - 2020-08-31 01:04 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-10-06 09:13 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-06 09:13 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-04 10:33 - 2020-08-31 01:04 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-04 10:33 - 2020-08-31 01:04 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-03 23:38 - 2020-08-31 01:04 - 000003704 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update
2020-10-03 00:11 - 2020-08-14 23:45 - 000002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-10-03 00:11 - 2020-08-14 23:45 - 000002257 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-10-02 14:13 - 2020-08-31 01:04 - 000004164 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1597177063
2020-10-02 14:13 - 2020-08-11 22:17 - 000001409 _____ C:\Users\tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2020-09-30 00:25 - 2020-08-11 22:50 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-09-30 00:20 - 2020-08-11 22:14 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-09-30 00:20 - 2020-08-11 22:14 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-09-30 00:19 - 2020-08-12 01:09 - 000000000 ____D C:\Users\tomas\AppData\Local\NVIDIA
2020-09-30 00:19 - 2020-08-11 22:14 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-09-28 04:55 - 2020-08-11 23:13 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-09-26 01:42 - 2020-08-12 11:15 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-09-26 01:40 - 2020-08-12 11:15 - 000000000 ____D C:\Users\tomas\AppData\Local\Battle.net
2020-09-25 22:08 - 2020-08-11 23:27 - 000000000 ____D C:\Users\tomas\AppData\Local\D3DSCache
2020-09-25 21:57 - 2020-08-31 01:04 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-09-25 21:57 - 2020-08-18 22:32 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-09-16 15:05 - 2020-08-11 22:11 - 000000000 ____D C:\Users\tomas\AppData\Local\Packages
2020-09-16 10:43 - 2020-08-11 22:20 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-09-15 18:38 - 2020-08-19 16:29 - 000000000 ____D C:\Users\tomas\AppData\Local\NVIDIA Corporation
2020-09-11 12:14 - 2020-08-30 18:14 - 000000000 ___DC C:\WINDOWS\Panther
2020-09-11 12:10 - 2020-08-11 22:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-11 12:08 - 2020-08-11 22:27 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-10 23:45 - 2020-08-11 22:29 - 000002231 _____ C:\Users\tomas\Desktop\Discord.lnk
2020-09-10 23:45 - 2020-08-11 22:29 - 000000000 ____D C:\Users\tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-09-10 23:45 - 2020-08-11 22:29 - 000000000 ____D C:\Users\tomas\AppData\Local\Discord
2020-09-09 00:10 - 2020-08-31 01:00 - 000357024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-09-08 23:36 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2020-09-08 23:33 - 2020-08-31 01:01 - 002876416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-09-08 23:29 - 2020-08-12 02:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013

==================== Files in the root of some directories ========

2020-08-12 01:30 - 2020-08-12 01:31 - 001065984 _____ () C:\Users\tomas\AppData\Local\file__0.localstorage

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Re: Preventivní kontrola

Napsal: 08 říj 2020 05:51
od Diallix
Dobry den.

:arrow: Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.

Re: Preventivní kontrola

Napsal: 09 říj 2020 08:37
od PadiseK
# -------------------------------
# Malwarebytes AdwCleaner 8.0.7.0
# -------------------------------
# Build: 07-22-2020
# Database: 2020-09-29.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 10-09-2020
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 6
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion

***** [ Files ] *****

Deleted C:\END

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKLM\Software\Wow6432Node\Lavasoft\Web Companion

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1846 octets] - [09/10/2020 09:35:23]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Re: Preventivní kontrola

Napsal: 09 říj 2020 08:44
od Diallix
Dobre.

Poprosim o nove logy FRST + ADDITION

Re: Preventivní kontrola

Napsal: 09 říj 2020 09:07
od PadiseK
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-10-2020
Ran by tomas (administrator) on TOMÁŠ-PC (09-10-2020 10:04:50)
Running from C:\Users\tomas\AppData\Local\Temp\scoped_dir15172_1789377390
Loaded Profiles: tomas
Platform: Windows 10 Home Version 2004 19041.508 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(Discord Inc. -> Discord Inc.) C:\Users\tomas\AppData\Local\Discord\app-0.0.307\Discord.exe <6>
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12009.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Opera Software AS -> Opera Software) C:\Users\tomas\AppData\Local\Programs\Opera\71.0.3770.228\opera.exe <40>
(Opera Software AS -> Opera Software) C:\Users\tomas\AppData\Local\Programs\Opera\71.0.3770.228\opera_crashreporter.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(SOKNO S.R.L. -> ) C:\Program Files (x86)\SpeedFan\speedfan.exe
(Spotify AB -> Spotify Ltd) C:\Users\tomas\AppData\Roaming\Spotify\Spotify.exe <5>
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [839968 2019-03-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [StartupDelayer] => C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe [1254400 2015-12-18] (r2 Studios) [File not signed]
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [754416 2018-09-20] (Acronis International GmbH -> )
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [704720 2020-09-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Discord] => C:\Users\tomas\AppData\Local\Discord\app-0.0.307\Discord.exe [91023672 2020-08-04] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3416352 2020-10-07] (Valve -> Valve Corporation)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32411536 2020-09-24] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3514096 2020-09-25] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [] => [X]
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Spotify] => C:\Users\tomas\AppData\Roaming\Spotify\Spotify.exe [23360232 2020-09-30] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Opera Browser Assistant] => C:\Users\tomas\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3085336 2020-10-06] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Policies\system: [shell] explorer.exe <==== ATTENTION
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Policies\Explorer: [NoPreviewPane] 0
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\MountPoints2: {a0194730-ec62-11ea-b235-a8a1590de685} - "I:\RunGame.exe"
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\MountPoints2: {a019473a-ec62-11ea-b235-a8a1590de685} - "J:\RunGame.exe"
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\MountPoints2: {a019473e-ec62-11ea-b235-a8a1590de685} - "K:\RunGame.exe"
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3514096 2020-09-25] (Razer USA Ltd. -> Razer Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0A0F5854-7BF1-4E03-B40D-65657BEE5991} - System32\Tasks\Microsoft\Windows\NetFramework\Microsoft .NET Framework => C:\Windows\Microsoft.NET\Framework\v3.5\mscorsvw.exe
Task: {20DB9F9F-417B-4955-8816-91837CE3D2A3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {30A69619-3124-4325-856E-B2CDE211DA4E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {3B83A1ED-7967-4D87-9C74-E11749BC54A9} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {3FD5B007-B85D-4E53-9458-D941D06D5546} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-08-05] () [File not signed]
Task: {480A45A4-CF37-48FE-9F46-46D79FB8B1AF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {49348760-1E24-4299-999E-E85D9E116232} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {4F163FBF-B71B-455B-9307-D3F86ADA15BE} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2649200 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {95DE8670-05D2-4E7D-A855-B847F6EEAB74} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [30141648 2020-08-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {A09292AB-27C5-4FDD-BC38-C894382622F0} - System32\Tasks\Opera scheduled assistant Autoupdate 1597177064 => C:\Users\tomas\AppData\Local\Programs\Opera\launcher.exe [1712152 2020-10-06] (Opera Software AS -> Opera Software)
Task: {AFE102FF-028E-4C51-B047-A6809CC002F7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CA61A030-18E3-4928-9E6D-0E1A1FD6A83C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {D4E1F132-1C5D-4A63-B1CF-69A6F5B41CE8} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [230120 2020-10-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {F7C9797F-608E-4AEF-B881-4674DEE1CA0A} - System32\Tasks\Opera scheduled Autoupdate 1597177063 => C:\Users\tomas\AppData\Local\Programs\Opera\launcher.exe [1712152 2020-10-06] (Opera Software AS -> Opera Software)
Task: {FEA947F6-1F63-42BE-AAF7-3F68F9C573F7} - System32\Tasks\SoundBass => C:\Users\tomas\AppData\Roaming\Unpacker\Unpacker.exe <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.100.160.1 10.100.160.7
Tcpip\..\Interfaces\{85c5651d-bb94-41ee-8868-137b4a2ac633}: [DhcpNameServer] 10.100.160.1 10.100.160.7

Edge:
======
Edge Profile: C:\Users\tomas\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-05]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-08-01] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]

Opera:
=======
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\tomas\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2020-09-11]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [3956952 2018-09-20] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1157592 2018-09-20] (Acronis International GmbH -> )
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6285616 2020-08-12] (Acronis International GmbH -> )
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1205960 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [537472 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483432 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483432 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [572752 2020-08-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [640760 2020-09-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [382728 2020-08-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [245904 2020-10-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [161376 2020-08-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8686928 2020-09-01] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4582080 2020-08-12] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-08-11] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [14280 2019-12-06] (Microsoft Corporation -> Microsoft Corporation)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2018-09-20] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2018-09-20] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1762456 2018-09-20] (Acronis International GmbH -> )
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2020-06-24] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294128 2020-09-24] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533376 2020-09-23] (Razer USA Ltd. -> Razer Inc.)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7003048 2018-09-20] (Acronis International GmbH -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\NisSrv.exe [2343112 2020-09-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MsMpEng.exe [128360 2020-09-28] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-03-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [208024 2020-06-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199752 2020-04-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-08-12] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-08-12] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [660456 2020-08-12] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [390592 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [50248 2020-08-11] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [24000 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [51776 2020-02-17] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_006e; C:\WINDOWS\System32\drivers\RzDev_006e.sys [52496 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0306; C:\WINDOWS\System32\drivers\RzDev_0306.sys [52504 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1310552 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [213336 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [690520 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [331976 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [243472 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48520 2020-09-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428256 2020-09-28] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69856 2020-09-28] (Microsoft Windows -> Microsoft Corporation)
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2061-07-11 11:07 - 2061-07-11 11:11 - 2027242857 _____ C:\Users\tomas\Desktop\Desktop.rar
2020-10-09 09:34 - 2020-10-09 09:36 - 000000000 ____D C:\AdwCleaner
2020-10-09 09:34 - 2020-10-09 09:34 - 008414384 _____ (Malwarebytes) C:\Users\tomas\Desktop\adwcleaner_8.0.7.exe
2020-10-07 17:20 - 2020-10-09 10:05 - 000000000 ____D C:\FRST
2020-10-07 17:20 - 2020-10-07 17:20 - 002299392 _____ (Farbar) C:\Users\tomas\Downloads\FRST64.exe
2020-10-07 17:04 - 2020-10-07 17:04 - 002588891 _____ C:\Users\tomas\Downloads\ProcessExplorer.zip
2020-10-07 16:37 - 2020-10-07 16:37 - 000000000 ____D C:\Users\tomas\AppData\Local\Microsoft_Corporation
2020-10-07 16:34 - 2020-10-07 16:37 - 000000000 ____D C:\Users\tomas\AppData\Local\Windows Performance Analyzer
2020-10-07 16:34 - 2020-10-07 16:34 - 000000000 ____D C:\Users\tomas\Documents\WPA Files
2020-10-07 16:34 - 2020-10-07 16:34 - 000000000 ____D C:\SymCache
2020-10-07 16:31 - 2020-10-07 16:32 - 000000000 ____D C:\Users\tomas\Documents\WPR Files
2020-10-07 16:18 - 2020-10-07 16:18 - 000000000 ____D C:\ProgramData\WindowsPerformanceRecorder
2020-10-07 16:17 - 2020-10-07 16:17 - 005681152 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2020-10-07 16:17 - 2020-10-07 16:17 - 004468736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2020-10-07 16:17 - 2020-10-07 16:17 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DirectML.Debug.dll
2020-10-07 16:17 - 2019-12-06 21:25 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll
2020-10-07 16:17 - 2019-12-06 19:45 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll
2020-10-07 16:17 - 2019-12-06 17:00 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll
2020-10-07 16:17 - 2019-12-06 16:47 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll
2020-10-07 16:17 - 2019-12-06 16:36 - 018011136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll
2020-10-07 16:17 - 2019-12-06 16:35 - 000374784 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2020-10-07 16:17 - 2019-12-06 16:35 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2020-10-07 16:17 - 2019-12-06 16:34 - 000417792 _____ C:\WINDOWS\system32\d3dconfig.exe
2020-10-07 16:17 - 2019-12-06 16:34 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll
2020-10-07 16:17 - 2019-12-06 16:33 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
2020-10-07 16:17 - 2019-12-06 16:32 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll
2020-10-07 16:17 - 2019-12-06 16:31 - 001379328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2020-10-07 16:17 - 2019-12-06 16:30 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll
2020-10-07 16:17 - 2019-12-06 16:29 - 013957632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll
2020-10-07 16:17 - 2019-12-06 16:29 - 001985024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2020-10-07 16:17 - 2019-12-06 16:29 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll
2020-10-07 16:17 - 2019-12-06 16:28 - 001152512 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe
2020-10-07 16:17 - 2019-12-06 16:28 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll
2020-10-07 16:17 - 2019-12-06 16:27 - 004826624 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2020-10-07 16:17 - 2019-12-06 16:27 - 000347136 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2020-10-07 16:17 - 2019-12-06 16:26 - 004795392 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2020-10-07 16:17 - 2019-12-06 16:26 - 000365056 _____ C:\WINDOWS\SysWOW64\d3dconfig.exe
2020-10-07 16:17 - 2019-12-06 16:26 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll
2020-10-07 16:17 - 2019-12-06 16:26 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
2020-10-07 16:17 - 2019-12-06 16:26 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll
2020-10-07 16:17 - 2019-12-06 16:24 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll
2020-10-07 16:17 - 2019-12-06 16:23 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll
2020-10-07 16:17 - 2019-12-06 16:23 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll
2020-10-07 16:17 - 2019-12-06 16:23 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll
2020-10-07 16:17 - 2019-12-06 16:22 - 003578880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe
2020-10-07 16:17 - 2019-12-06 16:22 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll
2020-10-07 16:17 - 2019-12-06 16:22 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe
2020-10-07 16:17 - 2019-12-06 16:21 - 003592704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2020-10-07 16:17 - 2019-12-06 16:20 - 001411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll
2020-10-07 16:17 - 2019-12-06 16:19 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
2020-10-07 16:17 - 2019-12-06 16:19 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll
2020-10-07 16:17 - 2019-12-06 15:44 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DirectML.Debug.dll
2020-10-07 16:16 - 2020-10-07 16:17 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\ProgramData\Windows App Certification Kit
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\Program Files\Application Verifier
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\Program Files (x86)\Application Verifier
2020-10-07 16:13 - 2020-10-07 16:13 - 001354464 _____ (Microsoft Corporation) C:\Users\tomas\Downloads\winsdksetup.exe
2020-10-07 14:00 - 2020-10-07 14:00 - 000000567 _____ C:\Users\tomas\Desktop\Need for Speed Most Wanted.lnk
2020-10-07 13:04 - 2020-10-07 13:59 - 000000000 ____D C:\Users\tomas\Documents\NFS Most Wanted
2020-10-07 13:04 - 2020-10-07 13:04 - 000000000 ____D C:\Users\tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted
2020-10-07 13:04 - 2020-10-07 13:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted
2020-10-05 16:07 - 2020-10-05 16:07 - 000000000 ____D C:\Users\tomas\Documents\Zvukové záznamy
2020-09-30 00:20 - 2020-09-24 22:26 - 005510456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 002635752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 001759032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 000990520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 000195560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 000122344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 000083256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-09-30 00:20 - 2020-09-16 08:44 - 009302127 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-09-30 00:20 - 2020-06-13 04:59 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-09-30 00:19 - 2020-09-30 00:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-09-30 00:18 - 2020-09-26 01:41 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-09-30 00:18 - 2020-09-26 01:41 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-09-30 00:18 - 2020-09-26 01:41 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-09-30 00:18 - 2020-09-26 01:41 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-09-30 00:18 - 2020-09-26 01:41 - 001054944 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 001054944 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 000349936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 002097560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 001585048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 001506200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 001160600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000815856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000811248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000674200 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000670104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000656792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000555928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000540912 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 007705320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 006859152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 004174736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 002509200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 001733008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445655.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 001482984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445655.dll
2020-09-30 00:18 - 2020-09-26 01:35 - 006992184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-09-30 00:18 - 2020-09-26 01:35 - 005964496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-09-30 00:18 - 2020-09-25 00:55 - 001682368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-09-30 00:18 - 2020-09-25 00:55 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-09-30 00:18 - 2020-09-25 00:55 - 000058630 _____ C:\WINDOWS\system32\nvinfo.pb
2020-09-30 00:18 - 2020-09-25 00:55 - 000038816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-09-30 00:16 - 2020-09-30 00:17 - 000000000 ____D C:\Users\tomas\Downloads\DDU v18.0.3.3
2020-09-30 00:16 - 2020-09-30 00:16 - 001247231 _____ C:\Users\tomas\Downloads\[Guru3D.com]-DDU.zip
2020-09-30 00:03 - 2020-09-30 00:04 - 607519552 _____ (NVIDIA Corporation) C:\Users\tomas\Downloads\456.55-desktop-win10-64bit-international-whql.exe
2020-09-25 22:08 - 2020-09-25 22:08 - 000000000 ____D C:\Users\tomas\Documents\Call of Duty Modern Warfare
2020-09-25 22:08 - 2020-09-25 22:08 - 000000000 ____D C:\Users\tomas\ansel
2020-09-25 18:21 - 2020-09-25 18:21 - 000000000 ____D C:\Users\tomas\Documents\My Games
2020-09-25 18:15 - 2020-09-25 18:15 - 000003516 _____ C:\WINDOWS\system32\Tasks\SoundBass
2020-09-25 08:04 - 2020-10-06 22:43 - 000000000 ____D C:\Users\tomas\AppData\LocalLow\uTorrent
2020-09-24 21:32 - 2020-09-24 21:32 - 009604577 _____ C:\Users\tomas\Desktop\iCloud Photos.zip
2020-09-24 06:47 - 2020-09-24 06:47 - 000001189 _____ C:\Users\Public\Desktop\Avira.lnk
2020-09-24 06:47 - 2020-09-24 06:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2020-09-24 00:28 - 2020-09-24 00:28 - 000000287 _____ C:\Users\tomas\Desktop\Rocket League®.url
2020-09-23 18:49 - 2020-09-30 16:57 - 000000000 ____D C:\Users\tomas\AppData\Roaming\TS3Client
2020-09-23 18:49 - 2020-09-23 18:49 - 089014080 _____ (TeamSpeak Systems GmbH) C:\Users\tomas\Downloads\TeamSpeak3-Client-win64-3.5.3.exe
2020-09-23 18:49 - 2020-09-23 18:49 - 000001008 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2020-09-23 18:49 - 2020-09-23 18:49 - 000000970 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2020-09-23 18:49 - 2020-09-23 18:49 - 000000000 ____D C:\Users\tomas\AppData\Local\TeamSpeak 3
2020-09-23 18:49 - 2020-09-23 18:49 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2020-09-16 15:05 - 2020-09-16 15:05 - 000057247 _____ C:\Users\tomas\Desktop\E-38331934-756030469.xlsx
2020-09-16 10:49 - 2020-09-16 10:49 - 000000000 ____D C:\Users\tomas\AppData\Local\PunkBuster
2020-09-16 10:43 - 2020-10-03 12:02 - 000000000 ____D C:\Users\tomas\AppData\Local\CrashDumps
2020-09-16 10:42 - 2020-09-16 10:42 - 000000439 _____ C:\Users\Public\Desktop\Call of Duty(R) 2 Singleplayer.lnk
2020-09-16 10:42 - 2020-09-16 10:42 - 000000439 _____ C:\Users\Public\Desktop\Call of Duty(R) 2 Multiplayer.lnk
2020-09-16 10:42 - 2020-09-16 10:42 - 000000262 _____ C:\WINDOWS\game.ini
2020-09-16 10:42 - 2020-09-16 10:42 - 000000000 __SHD C:\WINDOWS\ftpcache
2020-09-16 10:42 - 2020-09-16 10:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision
2020-09-15 18:47 - 2020-09-15 18:47 - 000000000 ____D C:\Users\tomas\AppData\Local\DBG
2020-09-15 18:47 - 2020-09-15 18:47 - 000000000 ____D C:\Users\tomas\AppData\Local\CrashReportClient

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-10-09 09:56 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-09 09:43 - 2020-08-31 01:04 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-09 09:43 - 2020-08-31 01:04 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-09 09:43 - 2020-08-31 01:01 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-09 09:43 - 2019-12-07 16:41 - 000716612 _____ C:\WINDOWS\system32\perfh005.dat
2020-10-09 09:43 - 2019-12-07 16:41 - 000144790 _____ C:\WINDOWS\system32\perfc005.dat
2020-10-09 09:43 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-10-09 09:38 - 2020-08-11 22:29 - 000000000 ____D C:\Users\tomas\AppData\Roaming\discord
2020-10-09 09:36 - 2020-08-31 01:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-09 09:36 - 2020-08-31 01:00 - 000008192 ___SH C:\DumpStack.log.tmp
2020-10-09 09:36 - 2020-08-12 12:42 - 000000000 ____D C:\Users\tomas\AppData\Local\Spotify
2020-10-09 09:36 - 2020-08-11 23:30 - 000000000 ____D C:\Program Files (x86)\Steam
2020-10-09 09:36 - 2020-08-11 22:48 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2020-10-09 09:36 - 2020-08-11 22:27 - 000000000 ____D C:\Users\tomas\AppData\Roaming\Spotify
2020-10-09 09:36 - 2020-08-11 22:14 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-09 09:36 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-10-09 01:04 - 2020-08-31 01:04 - 000003128 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2020-10-08 23:06 - 2020-08-11 23:29 - 000000000 ____D C:\ProgramData\Riot Games
2020-10-08 23:04 - 2020-08-31 01:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-08 21:24 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-08 21:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-08 16:45 - 2020-08-31 01:04 - 000003704 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update
2020-10-08 14:13 - 2020-08-31 01:04 - 000004164 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1597177063
2020-10-08 14:13 - 2020-08-11 22:17 - 000001409 _____ C:\Users\tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2020-10-08 09:39 - 2020-08-14 23:45 - 000002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-10-08 09:39 - 2020-08-14 23:45 - 000002257 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-10-07 16:52 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-07 16:17 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-10-07 16:16 - 2020-08-11 22:18 - 000000000 ____D C:\ProgramData\Package Cache
2020-10-07 08:06 - 2020-09-02 00:20 - 000000000 ____D C:\Users\tomas\AppData\Local\ElevatedDiagnostics
2020-10-07 07:56 - 2020-08-25 21:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2020-10-06 22:43 - 2020-08-11 23:39 - 000000000 ____D C:\Users\tomas\AppData\Roaming\uTorrent
2020-10-06 22:05 - 2020-08-12 02:00 - 000000000 ____D C:\Users\tomas\AppData\Local\BitTorrentHelper
2020-10-06 18:35 - 2020-08-31 01:04 - 000004418 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1597177064
2020-10-06 18:29 - 2020-08-31 01:00 - 000000000 ____D C:\Users\tomas
2020-10-06 18:12 - 2020-08-31 01:04 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-09-30 00:25 - 2020-08-11 22:50 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-09-30 00:20 - 2020-08-11 22:14 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-09-30 00:20 - 2020-08-11 22:14 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-09-30 00:19 - 2020-08-12 01:09 - 000000000 ____D C:\Users\tomas\AppData\Local\NVIDIA
2020-09-30 00:19 - 2020-08-11 22:14 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-09-28 04:55 - 2020-08-11 23:13 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-09-26 01:42 - 2020-08-12 11:15 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-09-26 01:40 - 2020-08-12 11:15 - 000000000 ____D C:\Users\tomas\AppData\Local\Battle.net
2020-09-25 22:08 - 2020-08-11 23:27 - 000000000 ____D C:\Users\tomas\AppData\Local\D3DSCache
2020-09-25 21:57 - 2020-08-31 01:04 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-09-25 21:57 - 2020-08-18 22:32 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-09-16 15:05 - 2020-08-11 22:11 - 000000000 ____D C:\Users\tomas\AppData\Local\Packages
2020-09-16 10:43 - 2020-08-11 22:20 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-09-15 18:38 - 2020-08-19 16:29 - 000000000 ____D C:\Users\tomas\AppData\Local\NVIDIA Corporation
2020-09-11 12:14 - 2020-08-30 18:14 - 000000000 ___DC C:\WINDOWS\Panther
2020-09-11 12:10 - 2020-08-11 22:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-11 12:08 - 2020-08-11 22:27 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-10 23:45 - 2020-08-11 22:29 - 000002231 _____ C:\Users\tomas\Desktop\Discord.lnk
2020-09-10 23:45 - 2020-08-11 22:29 - 000000000 ____D C:\Users\tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-09-10 23:45 - 2020-08-11 22:29 - 000000000 ____D C:\Users\tomas\AppData\Local\Discord
2020-09-09 00:10 - 2020-08-31 01:00 - 000357024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr

==================== Files in the root of some directories ========

2020-08-12 01:30 - 2020-08-12 01:31 - 001065984 _____ () C:\Users\tomas\AppData\Local\file__0.localstorage

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

ADDITION

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-10-2020
Ran by tomas (09-10-2020 10:05:56)
Running from C:\Users\tomas\AppData\Local\Temp\scoped_dir15172_1789377390
Windows 10 Home Version 2004 19041.508 (X64) (2020-08-30 23:04:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2526790174-1192949421-3020548935-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2526790174-1192949421-3020548935-503 - Limited - Disabled)
Guest (S-1-5-21-2526790174-1192949421-3020548935-501 - Limited - Disabled)
tomas (S-1-5-21-2526790174-1192949421-3020548935-1001 - Administrator - Enabled) => C:\Users\tomas
WDAGUtilityAccount (S-1-5-21-2526790174-1192949421-3020548935-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {88AE6B46-DC3C-455A-A21B-085F285A3546}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Disabled - Out of date) {05BC7AB5-FF0E-71EC-1054-15DA19B62DC7}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\uTorrent) (Version: 3.5.5.45790 - BitTorrent Inc.)
Acronis True Image (HKLM-x32\...\{62528BBA-21CF-4023-84EC-BB529662D496}) (Version: 23.3.14110 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{62528BBA-21CF-4023-84EC-BB529662D496}Visible) (Version: 23.3.14110 - Acronis)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
Application Verifier x64 External Package (HKLM\...\{634A88E5-3478-F27D-6260-C9B62848D7AA}) (Version: 10.1.19041.1 - Microsoft) Hidden
Avira (HKLM-x32\...\{47430B15-7CE6-46CF-903E-B85CD2D29A7D}) (Version: 1.2.151.3852 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{f24507a8-a438-4e46-9563-6d53c727bd7e}) (Version: 1.2.151.3852 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.2009.1995 - Avira Operations GmbH & Co. KG) Hidden
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.35.1.21885 - Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32\...\Avira Security_is1) (Version: 1.0.37.12157 - Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32\...\AviraSecurityUninstaller) (Version: - Avira Operations GmbH & Co. KG;)
Avira Software Updater (HKLM-x32\...\{073825B9-FF06-4690-8CE4-3C0B72036122}) (Version: 2.0.6.37231 - Avira Operations GmbH & Co. KG) Hidden
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.6.0.10959 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
Call of Duty(R) 2 (HKLM-x32\...\{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 2 (HKLM-x32\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.3 - Activision)
Call of Duty(R) 2 Patch 1.3 (HKLM-x32\...\{7B4A5C13-069F-4AFE-AE57-C497B4E33C7E}) (Version: 1.3 - ) Hidden
Canon MF Toolbox 4.9.1.1.mf18 (HKLM-x32\...\{6767DFEE-8909-453A-B553-C7693912B2EB}) (Version: 4.9.1.1.mf18 - CANON INC.)
Canon MF8000 Series (HKLM\...\{5BE226B3-1722-4fd0-9E39-997712B68F67}) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
CPUID CPU-Z 1.93 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.93 - CPUID, Inc.)
CrystalDiskInfo 8.8.1 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.8.1 - Crystal Dew World)
CrystalDiskMark 7.0.0h (HKLM\...\CrystalDiskMark7_is1) (Version: 7.0.0h - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.13.0.1371 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Discord) (Version: 0.0.308 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{0EE6DDEF-E36B-45EB-9E03-5A266EC8A8F8}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.55.5319 - GOM & Company)
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
Intel(R) Ethernet Connection Driver (HKLM-x32\...\Intel(R) Ethernet Connection Driver_is1) (Version: - )
Intel® Chipset Device Software (HKLM-x32\...\{ffddf9dd-c47f-453a-92f5-ac6c98af8b5b}) (Version: 10.1.17968.8131 - Intel(R) Corporation)
Kits Configuration Installer (HKLM-x32\...\{8867E8B9-1539-18F3-54AB-B1F1E641AC14}) (Version: 10.1.19041.1 - Microsoft) Hidden
K-Lite Mega Codec Pack 15.6.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.6.5 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Microsoft .NET Framework 4.8 SDK (HKLM-x32\...\{DA855582-B360-4532-B8C4-ECD1E5A7095B}) (Version: 4.8.04084 - Microsoft Corporation)
Microsoft .NET Framework 4.8 Targeting Pack (HKLM-x32\...\{7D846F37-3C30-47C5-BCEA-2929EE09BE9A}) (Version: 4.8.04084 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.70 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.41 - )
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{406C9ADB-1325-4FD0-9D13-C119CFF64E0A}) (Version: 2.65.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
MSI Development Tools (HKLM-x32\...\{EEA4F337-23C8-A799-9331-18B5746625CE}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Need for Speed Most Wanted (black edition) (HKLM-x32\...\Need for Speed Most Wanted (black edition)) (Version: 1.3 - Electronic Arts)
NVIDIA Ovladač HD audia 1.3.38.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.35 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 456.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.55 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Opera Stable 71.0.3770.228 (HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Opera 71.0.3770.228) (Version: 71.0.3770.228 - Opera Software)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 456.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 456.55 - NVIDIA Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.5.0930.092510 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8668 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
SDK ARM Additions (HKLM-x32\...\{622AAEB8-DF41-C024-C136-E37D23F9EE3C}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
SDK ARM Redistributables (HKLM-x32\...\{2800EFA4-8E00-EEF9-2890-FACDF8EBBB49}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
SDK Debuggers (HKLM-x32\...\{91C073DA-2474-72C0-3022-3D00A221F43C}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spotify (HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Spotify) (Version: 1.1.43.700.g20acee0f - Spotify AB)
Startup Delayer v3.0 (build 366) (HKLM-x32\...\Startup Delayer) (Version: 3.0 (build 366) - r2 Studios)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH)
Universal CRT Extension SDK (HKLM-x32\...\{4F74E68F-8E9A-854A-267F-B207D8BA293A}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{75B4003C-872E-7D47-51F7-D855F1B2B3F2}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{48210A4B-CF20-C3C7-75E6-D564DCABA0FF}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{EEDE15C8-BB1F-EB52-B01F-055BEB4209D6}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{09645C4C-3570-8804-9ED6-C3C335679287}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{ECB7B330-3BAC-7593-7F5D-FD68A54EA0EF}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{0BAA0A93-3AD3-4B19-9105-4C8C3FA92A83}) (Version: 2.67.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
WinAppDeploy (HKLM-x32\...\{A566DCBF-C346-9707-31E4-7F3ACAB776B6}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Windows SDK AddOn (HKLM-x32\...\{3E59EFF5-CD7A-4860-A7EC-C33A4FC7297C}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.19041.1 (HKLM-x32\...\{1aef9cb5-faba-471c-b24a-c45dd69d37ea}) (Version: 10.1.19041.1 - Microsoft Corporation)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{D451C34E-ED59-596E-715B-C5C9ABBB34B9}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{816A6296-C73E-CDB2-0597-5F142130DFBE}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{2D9D58E6-3F54-6320-42E0-0E9012DC249C}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E90226BA-8398-FFB7-FA98-11D8A64A54E6}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense Mobile - en-us (HKLM-x32\...\{1EED3649-5FA4-E992-9693-5E22F804DD2A}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{BA05971B-E447-0F2C-C89C-888D6431995B}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{2FA86110-E0B2-44A0-72A8-13759C5C266F}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{0A6D1458-0861-EF51-9995-C69C9157CB36}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{C69004DC-E31D-AB88-AC5B-B5CB9C37B53B}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WPT Redistributables (HKLM-x32\...\{AE00264D-F001-A1D3-F3B8-74A9D2193E7F}) (Version: 10.1.19041.1 - Microsoft) Hidden
WPTx64 (HKLM-x32\...\{FD439F85-AD64-B3E5-9FC5-444AE8C8AF7B}) (Version: 10.1.19041.1 - Microsoft) Hidden

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-09-02] (Microsoft Studios) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2020-08-11] (Realtek Semiconductor Corp)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2018-09-20] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2018-09-20] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2018-09-20] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2018-09-20] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-23] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-08-12] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-08-12] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-23] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-09-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-23] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.X264] => C:\WINDOWS\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\WINDOWS\system32\lagarith.dll [148992 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\WINDOWS\system32\xvidvfw.dll [310784 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\WINDOWS\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-09-20 20:07 - 2018-09-20 20:07 - 000277538 _____ () [File not signed] C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\LIBMAGIC.dll
2020-08-11 23:38 - 2020-08-11 23:38 - 098275328 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2020-08-11 23:38 - 2020-08-11 23:38 - 000092672 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2020-08-11 23:38 - 2020-08-11 23:38 - 003922432 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2019-10-26 13:04 - 2019-10-26 13:04 - 000232960 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2019-10-26 13:03 - 2019-10-26 13:03 - 000057344 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2019-10-26 13:04 - 2019-10-26 13:04 - 000650240 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2019-10-26 13:03 - 2019-10-26 13:03 - 000074240 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2019-10-26 13:03 - 2019-10-26 13:03 - 000369664 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2020-09-26 11:16 - 2020-10-09 09:36 - 000192512 _____ () [File not signed] C:\Users\tomas\AppData\Local\Temp\sfamcc00001.dll
2020-10-09 09:24 - 2020-10-09 09:36 - 000158720 _____ () [File not signed] C:\Users\tomas\AppData\Local\Temp\sfareca00001.dll
2018-09-20 20:55 - 2018-09-24 18:19 - 022984336 _____ (Acronis International GmbH -> ) [File not signed] [File is in use] C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers.dll
2019-12-06 19:37 - 2019-12-06 19:37 - 000262144 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbPc.DLL
2020-08-11 23:38 - 2020-08-11 23:38 - 000547840 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2018-09-20 20:09 - 2018-09-24 18:20 - 001477120 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Common Files\Acronis\Home\libcrypto10.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [492]

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT171101&iDate=2020-08-11 09:39:57&bName=
SearchScopes: HKU\S-1-5-21-2526790174-1192949421-3020548935-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2019-08-19] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\sharepoint.com -> hxxps://wistron.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\tomas\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\8k-ultra-hd-wallpapers-4038458.jpg
DNS Servers: 10.100.160.1 - 10.100.160.7
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{41AF1E2C-B142-4AAA-91E4-F8EB7D3A88B1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{00492394-9330-460E-823F-50ABAA9E6774}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{93424B9F-1096-46C3-9E0F-393A7B1017CB}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{C39A6037-9513-4A36-A2EB-0E60C25568CC}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{392AFE48-5A28-4B41-AD3E-6CE98DADB5A3}] => (Allow) E:\Steam\steamapps\common\Battalion 1944\Battalion.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{51EB8F6A-EDCE-41FD-A71E-4FC3A98D45BD}] => (Allow) E:\Steam\steamapps\common\Battalion 1944\Battalion.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [UDP Query User{5695046C-E671-46EB-9544-D6F1DBE8178F}C:\users\tomas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tomas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{E8E6B561-18A9-467B-8E55-AEBAB0A06894}C:\users\tomas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tomas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E9B7631C-1015-4676-ACFC-14764C9CDF70}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3FB1C434-E7D5-4C58-8A5C-DDFF5AC2EB6A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FF498B20-6531-4DF3-85E4-219586AED3F6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1B3630E5-7FB5-4D39-A333-80C54A1D2CE4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{01E910EB-F8BC-4F42-8A49-97F09535D9E8}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{5D945905-2707-419F-993C-1119A06DF3C5}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{ACD3D268-FE73-49AD-92C0-A63CD86F8DD6}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{8E1BF989-59EA-4E75-8B57-6797E844E254}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> )
FirewallRules: [{BDCF0DB1-DE1F-4820-8392-8D52E87B7854}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{D30BA685-B248-4A7E-B006-579C43EDBF8C}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> )
FirewallRules: [{4F09F42C-B4FD-44B9-9341-3B77F485E501}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{94400813-AA8A-4CE2-AEC9-33F0EE0D91AF}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{673DF246-21D1-4FCD-8C10-3558276BB3AE}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{67074CF5-7160-49F2-91F9-20DBC901D18A}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{90D2211A-196A-4DB9-B7C5-A6F2A183E6A0}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{3E8E3FFD-2665-4EBF-9829-A4F81AB3D975}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{9364F5D9-F8A3-4CA3-9AD6-A91B1B80F988}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{8F365553-08F5-4177-AE6E-EC4DCDEBC976}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> )
FirewallRules: [{9FDCDC5A-EA5F-468A-9523-2AF22A400CD3}] => (Allow) E:\Steam\steamapps\common\Age2HD\Launcher.exe (TODO: <Company name>) [File not signed]
FirewallRules: [{BB1E5609-AA7A-40E8-9818-88A2CA8B59C9}] => (Allow) E:\Steam\steamapps\common\Age2HD\Launcher.exe (TODO: <Company name>) [File not signed]
FirewallRules: [{A2CEBA5E-CFA5-46CD-96C5-09BEFE639A1E}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{56CC3731-CFF0-4AAC-A8EA-E1F8FBF0E76D}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{0085E1FD-9085-4656-B8D9-D02D3836B3CA}] => (Allow) C:\Users\tomas\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{83BDEF11-31F9-4055-84AE-8166D064AB94}] => (Allow) C:\Users\tomas\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{76042A73-22ED-428D-B399-6EECCF17A6EB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{568F7319-86E7-4879-9AF2-B363801D397A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{BF65E028-EB69-40F2-AA48-E5A8551FF880}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{302CD591-B6B7-4F05-B9CE-7CCE7E022754}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{0F6C222D-305E-446B-A5CC-E7E27598A30A}C:\users\tomas\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Allow) C:\users\tomas\appdata\local\programs\opera\70.0.3728.178\opera.exe => No File
FirewallRules: [UDP Query User{D2FCF657-1B8D-4A23-9670-87B8B2CBDE8C}C:\users\tomas\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Allow) C:\users\tomas\appdata\local\programs\opera\70.0.3728.178\opera.exe => No File
FirewallRules: [TCP Query User{45804D89-664D-4FE0-BCE7-FAECB395D61C}E:\call of duty 2\cod2mp_s.exe] => (Allow) E:\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [UDP Query User{464D85C5-72AE-4C90-8FE8-38CB5345AC79}E:\call of duty 2\cod2mp_s.exe] => (Allow) E:\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [TCP Query User{A875292B-7AFE-42C5-8FD3-1E8A3C9C14B5}C:\users\tomas\appdata\local\programs\opera\70.0.3728.189\opera.exe] => (Allow) C:\users\tomas\appdata\local\programs\opera\70.0.3728.189\opera.exe => No File
FirewallRules: [UDP Query User{130806E7-F30B-4428-B4B9-4BC2A83D9394}C:\users\tomas\appdata\local\programs\opera\70.0.3728.189\opera.exe] => (Allow) C:\users\tomas\appdata\local\programs\opera\70.0.3728.189\opera.exe => No File
FirewallRules: [TCP Query User{8248B145-440E-40B2-8689-28E583307C79}E:\call of duty warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\call of duty warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{6AA10B81-62F9-44D1-B09C-ED427A782920}E:\call of duty warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\call of duty warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [TCP Query User{0AB2496D-42D1-4ADE-82D5-740A9F599407}C:\users\tomas\appdata\local\programs\opera\71.0.3770.198\opera.exe] => (Allow) C:\users\tomas\appdata\local\programs\opera\71.0.3770.198\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [UDP Query User{C93941DE-AD56-4B32-94BE-AE965146C16F}C:\users\tomas\appdata\local\programs\opera\71.0.3770.198\opera.exe] => (Allow) C:\users\tomas\appdata\local\programs\opera\71.0.3770.198\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [TCP Query User{0DAC6F52-EA43-4EA2-9848-D1798689E476}C:\users\tomas\appdata\local\programs\opera\71.0.3770.228\opera.exe] => (Block) C:\users\tomas\appdata\local\programs\opera\71.0.3770.228\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [UDP Query User{B1A0F48A-5766-4B43-8345-F96C2AF84900}C:\users\tomas\appdata\local\programs\opera\71.0.3770.228\opera.exe] => (Block) C:\users\tomas\appdata\local\programs\opera\71.0.3770.228\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{3C334902-088F-49B1-AD2C-4288AC9A8BB5}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{BA60E53B-DA1C-46E6-BC17-B830E54D0936}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{F94CC010-EDC4-4CD1-B5D0-C53B0717DAD6}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

==================== Restore Points =========================

02-10-2020 17:47:20 Naplánovaný kontrolní bod
07-10-2020 07:54:52 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (10/09/2020 09:26:59 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/09/2020 09:24:11 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\WINDOWS\system32\sysmain.dll (kód chyby Win32 126).

Error: (10/08/2020 09:29:40 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/08/2020 12:29:34 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (10/08/2020 12:29:34 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (10/08/2020 12:29:34 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (10/08/2020 12:29:34 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (10/07/2020 05:16:30 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\WINDOWS\system32\sysmain.dll (kód chyby Win32 126).


System errors:
=============
Error: (10/09/2020 09:36:39 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba MBAMChameleon neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (10/09/2020 09:36:24 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Acronis Sync Agent Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (10/09/2020 09:36:24 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba Winmgmt se nemohla přihlásit jako NT AUTHORITY\SYSTEM s aktuálně konfigurovaným heslem z důvodu následující chyby:
Požadavek není podporován.


Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (10/09/2020 09:36:14 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Acronis Sync Agent Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (10/09/2020 09:36:14 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Razer Game Manager byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/09/2020 09:36:14 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Steam Client Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/09/2020 09:36:14 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Disc Soft Lite Bus Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/09/2020 09:36:14 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avira Optimizer Host byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.


Windows Defender:
===================================
Date: 2020-08-31 08:50:33.9830000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.321.2085.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17300.4
Kód chyby: 0x80240017
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2020-09-30 22:29:40.9560000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume9\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-09-29 15:08:26.6340000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume9\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-09-28 04:54:56.9240000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume9\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-09-11 00:35:55.0160000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-09-11 00:35:54.2210000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-09-11 00:35:54.1930000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-09-11 00:35:54.1590000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-09-11 00:35:54.0790000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. P4.20 05/15/2019
Motherboard: ASRock B365 Pro4
Processor: Intel(R) Core(TM) i7-9700F CPU @ 3.00GHz
Percentage of memory in use: 20%
Total physical RAM: 32701.09 MB
Available physical RAM: 26032.35 MB
Total Virtual: 56253.09 MB
Available Virtual: 47820.43 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:476.34 GB) (Free:371.76 GB) NTFS
Drive d: (Místní disk) (Fixed) (Total:238.46 GB) (Free:74.94 GB) NTFS
Drive e: (Místní disk) (Fixed) (Total:953.87 GB) (Free:624.66 GB) NTFS
Drive f: (Místní disk) (Fixed) (Total:1863.01 GB) (Free:125.27 GB) NTFS
Drive g: (Místní disk) (Fixed) (Total:931.51 GB) (Free:732.67 GB) NTFS

\\?\Volume{81c993a6-7072-43e5-ad40-0acb3f101196}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS
\\?\Volume{8d2b6573-65d1-48a3-928b-ab4380f6f8ca}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 91719114)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 3F3E7046)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 3 (Protective MBR) (Size: 238.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 4 (Protective MBR) (Size: 476.9 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Preventivní kontrola

Napsal: 09 říj 2020 09:23
od Diallix
Do poznamkoveho bloku skopirujte obsah dole:

Kód: Vybrat vše

CloseProcesses:
CreateRestorePoint:

C:\Users\tomas\AppData\Roaming\Unpacker\Unpacker.exe
C:\Users\tomas\AppData\Roaming\Unpacker

HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Policies\system: [shell] explorer.exe <==== ATTENTION
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Policies\Explorer: [NoPreviewPane] 0
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\MountPoints2: {a0194730-ec62-11ea-b235-a8a1590de685} - "I:\RunGame.exe"
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\MountPoints2: {a019473a-ec62-11ea-b235-a8a1590de685} - "J:\RunGame.exe"
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\MountPoints2: {a019473e-ec62-11ea-b235-a8a1590de685} - "K:\RunGame.exe"
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKLM\...\Run: [] => [X]
Task: {FEA947F6-1F63-42BE-AAF7-3F68F9C573F7} - System32\Tasks\SoundBass => C:\Users\tomas\AppData\Roaming\Unpacker\Unpacker.exe <==== ATTENTION
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
2020-09-26 11:16 - 2020-10-09 09:36 - 000192512 _____ () [File not signed] C:\Users\tomas\AppData\Local\Temp\sfamcc00001.dll
2020-10-09 09:24 - 2020-10-09 09:36 - 000158720 _____ () [File not signed] C:\Users\tomas\AppData\Local\Temp\sfareca00001.dll
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [492]

EmptyTemp:
Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.

Re: Preventivní kontrola

Napsal: 09 říj 2020 09:32
od PadiseK
Fix result of Farbar Recovery Scan Tool (x64) Version: 04-10-2020
Ran by tomas (09-10-2020 10:30:47) Run:1
Running from C:\Users\tomas\Desktop\FRST
Loaded Profiles: tomas
Boot Mode: Normal
==============================================

fixlist content:
*****************
CloseProcesses:
CreateRestorePoint:

C:\Users\tomas\AppData\Roaming\Unpacker\Unpacker.exe
C:\Users\tomas\AppData\Roaming\Unpacker

HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Policies\system: [shell] explorer.exe <==== ATTENTION
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Policies\Explorer: [NoPreviewPane] 0
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\MountPoints2: {a0194730-ec62-11ea-b235-a8a1590de685} - "I:\RunGame.exe"
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\MountPoints2: {a019473a-ec62-11ea-b235-a8a1590de685} - "J:\RunGame.exe"
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\MountPoints2: {a019473e-ec62-11ea-b235-a8a1590de685} - "K:\RunGame.exe"
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKLM\...\Run: [] => [X]
Task: {FEA947F6-1F63-42BE-AAF7-3F68F9C573F7} - System32\Tasks\SoundBass => C:\Users\tomas\AppData\Roaming\Unpacker\Unpacker.exe <==== ATTENTION
S2 MBAMChameleon; \SystemRoot\System32\Drivers\MbamChameleon.sys [X]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
2020-09-26 11:16 - 2020-10-09 09:36 - 000192512 _____ () [File not signed] C:\Users\tomas\AppData\Local\Temp\sfamcc00001.dll
2020-10-09 09:24 - 2020-10-09 09:36 - 000158720 _____ () [File not signed] C:\Users\tomas\AppData\Local\Temp\sfareca00001.dll
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [492]

EmptyTemp:

*****************

Processes closed successfully.
Restore point was successfully created.
"C:\Users\tomas\AppData\Roaming\Unpacker\Unpacker.exe" => not found
"C:\Users\tomas\AppData\Roaming\Unpacker" => not found
"HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\Software\Microsoft\Windows\CurrentVersion\Policies\system\\shell" => removed successfully
"HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoPreviewPane" => removed successfully
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a0194730-ec62-11ea-b235-a8a1590de685} => removed successfully
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a019473a-ec62-11ea-b235-a8a1590de685} => removed successfully
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a019473e-ec62-11ea-b235-a8a1590de685} => removed successfully
"HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\Software\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FEA947F6-1F63-42BE-AAF7-3F68F9C573F7}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FEA947F6-1F63-42BE-AAF7-3F68F9C573F7}" => removed successfully
C:\WINDOWS\System32\Tasks\SoundBass => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SoundBass" => removed successfully
HKLM\System\CurrentControlSet\Services\MBAMChameleon => removed successfully
MBAMChameleon => service removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => removed successfully
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
C:\Users\tomas\AppData\Local\Temp\sfamcc00001.dll => moved successfully
C:\Users\tomas\AppData\Local\Temp\sfareca00001.dll => moved successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 7364608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 111963372 B
Java, Flash, Steam htmlcache => 228651876 B
Windows/system/drivers => 155385766 B
Edge => 837063 B
Chrome => 0 B
Firefox => 0 B
Opera => 448632542 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 323718 B
NetworkService => 365856 B
tomas => 1765406870 B

RecycleBin => 175728 B
EmptyTemp: => 2.5 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 10:31:19 ====

Re: Preventivní kontrola

Napsal: 09 říj 2020 09:37
od Diallix
Dobre.

Poprosim o nove logy FRST + ADDITION.

Re: Preventivní kontrola

Napsal: 09 říj 2020 09:41
od PadiseK
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 04-10-2020
Ran by tomas (administrator) on TOMÁŠ-PC (09-10-2020 10:39:26)
Running from C:\Users\tomas\Desktop\FRST
Loaded Profiles: tomas
Platform: Windows 10 Home Version 2004 19041.508 (X64) Language: Čeština (Česko)
Default browser: Opera
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Maintenance.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(Discord Inc. -> Discord Inc.) C:\Users\tomas\AppData\Local\Discord\app-0.0.307\Discord.exe <6>
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
(Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> ) C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(Opera Software AS -> Opera Software) C:\Users\tomas\AppData\Local\Programs\Opera\71.0.3770.228\opera.exe <44>
(Opera Software AS -> Opera Software) C:\Users\tomas\AppData\Local\Programs\Opera\71.0.3770.228\opera_crashreporter.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <2>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(SOKNO S.R.L. -> ) C:\Program Files (x86)\SpeedFan\speedfan.exe
(Spotify AB -> Spotify Ltd) C:\Users\tomas\AppData\Roaming\Spotify\Spotify.exe <5>
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [839968 2019-03-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [StartupDelayer] => C:\Program Files\r2 Studios\Startup Delayer\Startup Launcher.exe [1254400 2015-12-18] (r2 Studios) [File not signed]
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [754416 2018-09-20] (Acronis International GmbH -> )
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [704720 2020-09-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Discord] => C:\Users\tomas\AppData\Local\Discord\app-0.0.307\Discord.exe [91023672 2020-08-04] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3416352 2020-10-07] (Valve -> Valve Corporation)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [32411536 2020-09-24] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3514096 2020-09-25] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Spotify] => C:\Users\tomas\AppData\Roaming\Spotify\Spotify.exe [23360232 2020-09-30] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Run: [Opera Browser Assistant] => C:\Users\tomas\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3085336 2020-10-06] (Opera Software AS -> Opera Software)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3514096 2020-09-25] (Razer USA Ltd. -> Razer Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0A0F5854-7BF1-4E03-B40D-65657BEE5991} - System32\Tasks\Microsoft\Windows\NetFramework\Microsoft .NET Framework => C:\Windows\Microsoft.NET\Framework\v3.5\mscorsvw.exe
Task: {20DB9F9F-417B-4955-8816-91837CE3D2A3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24770744 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {30A69619-3124-4325-856E-B2CDE211DA4E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {3B83A1ED-7967-4D87-9C74-E11749BC54A9} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [782320 2019-10-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {3FD5B007-B85D-4E53-9458-D941D06D5546} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-08-05] () [File not signed]
Task: {480A45A4-CF37-48FE-9F46-46D79FB8B1AF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {49348760-1E24-4299-999E-E85D9E116232} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {4F163FBF-B71B-455B-9307-D3F86ADA15BE} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2649200 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {95DE8670-05D2-4E7D-A855-B847F6EEAB74} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [30141648 2020-08-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {A09292AB-27C5-4FDD-BC38-C894382622F0} - System32\Tasks\Opera scheduled assistant Autoupdate 1597177064 => C:\Users\tomas\AppData\Local\Programs\Opera\launcher.exe [1712152 2020-10-06] (Opera Software AS -> Opera Software)
Task: {AFE102FF-028E-4C51-B047-A6809CC002F7} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-08-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CA61A030-18E3-4928-9E6D-0E1A1FD6A83C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {D4E1F132-1C5D-4A63-B1CF-69A6F5B41CE8} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [230120 2020-10-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {F7C9797F-608E-4AEF-B881-4674DEE1CA0A} - System32\Tasks\Opera scheduled Autoupdate 1597177063 => C:\Users\tomas\AppData\Local\Programs\Opera\launcher.exe [1712152 2020-10-06] (Opera Software AS -> Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.100.160.1 10.100.160.7
Tcpip\..\Interfaces\{85c5651d-bb94-41ee-8868-137b4a2ac633}: [DhcpNameServer] 10.100.160.1 10.100.160.7

Edge:
======
Edge Profile: C:\Users\tomas\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-05]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-08-01] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]

Opera:
=======
OPR Extension: (Adblock Plus - free ad blocker) - C:\Users\tomas\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2020-09-11]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AcronisActiveProtectionService; C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe [3956952 2018-09-20] (Acronis International GmbH -> Acronis International GmbH)
R2 AcrSch2Svc; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [1157592 2018-09-20] (Acronis International GmbH -> )
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169544 2020-09-06] (Adobe Inc. -> Adobe Inc.)
R2 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [6285616 2020-08-12] (Acronis International GmbH -> )
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1205960 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [537472 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483432 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483432 2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [572752 2020-08-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [640760 2020-09-22] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [382728 2020-08-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [245904 2020-10-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [161376 2020-08-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8686928 2020-09-01] (BattlEye Innovations e.K. -> )
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [4582080 2020-08-12] (AVB Disc Soft, SIA -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2020-08-11] (EasyAntiCheat Oy -> Epic Games, Inc)
R2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [14280 2019-12-06] (Microsoft Corporation -> Microsoft Corporation)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4808088 2018-09-20] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [3004128 2018-09-20] (Acronis International GmbH -> Acronis International GmbH)
S3 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1762456 2018-09-20] (Acronis International GmbH -> )
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2020-06-24] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [294128 2020-09-24] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [533376 2020-09-23] (Razer USA Ltd. -> Razer Inc.)
R2 syncagentsrv; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7003048 2018-09-20] (Acronis International GmbH -> )
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\NisSrv.exe [2343112 2020-09-28] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2008.9-0\MsMpEng.exe [128360 2020-09-28] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-03-20] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [208024 2020-06-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199752 2020-04-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [42256 2020-08-12] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [59360 2020-08-12] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 file_protector; C:\WINDOWS\System32\DRIVERS\file_protector.sys [660456 2020-08-12] (Acronis International GmbH -> Acronis International GmbH)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [390592 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [50248 2020-08-11] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [24000 2019-09-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
R3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [51776 2020-02-17] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_006e; C:\WINDOWS\System32\drivers\RzDev_006e.sys [52496 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R3 RzDev_0306; C:\WINDOWS\System32\drivers\RzDev_0306.sys [52504 2020-02-17] (Razer USA Ltd. -> Razer Inc)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [1310552 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [213336 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [690520 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 virtual_file; C:\WINDOWS\System32\DRIVERS\virtual_file.sys [331976 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 volume_tracker; C:\WINDOWS\System32\DRIVERS\volume_tracker.sys [243472 2020-08-12] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48520 2020-09-28] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [428256 2020-09-28] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [69856 2020-09-28] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2061-07-11 11:07 - 2061-07-11 11:11 - 2027242857 _____ C:\Users\tomas\Desktop\Desktop.rar
2020-10-09 10:30 - 2020-10-09 10:39 - 000000000 ____D C:\Users\tomas\Desktop\FRST
2020-10-09 09:34 - 2020-10-09 09:36 - 000000000 ____D C:\AdwCleaner
2020-10-09 09:34 - 2020-10-09 09:34 - 008414384 _____ (Malwarebytes) C:\Users\tomas\Desktop\adwcleaner_8.0.7.exe
2020-10-07 17:20 - 2020-10-09 10:39 - 000000000 ____D C:\FRST
2020-10-07 17:04 - 2020-10-07 17:04 - 002588891 _____ C:\Users\tomas\Downloads\ProcessExplorer.zip
2020-10-07 16:37 - 2020-10-07 16:37 - 000000000 ____D C:\Users\tomas\AppData\Local\Microsoft_Corporation
2020-10-07 16:34 - 2020-10-07 16:37 - 000000000 ____D C:\Users\tomas\AppData\Local\Windows Performance Analyzer
2020-10-07 16:34 - 2020-10-07 16:34 - 000000000 ____D C:\Users\tomas\Documents\WPA Files
2020-10-07 16:34 - 2020-10-07 16:34 - 000000000 ____D C:\SymCache
2020-10-07 16:31 - 2020-10-07 16:32 - 000000000 ____D C:\Users\tomas\Documents\WPR Files
2020-10-07 16:18 - 2020-10-07 16:18 - 000000000 ____D C:\ProgramData\WindowsPerformanceRecorder
2020-10-07 16:17 - 2020-10-07 16:17 - 005681152 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsDesktopEngine.exe
2020-10-07 16:17 - 2020-10-07 16:17 - 004468736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2020-10-07 16:17 - 2020-10-07 16:17 - 000258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DirectML.Debug.dll
2020-10-07 16:17 - 2019-12-06 21:25 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\perf_gputiming.dll
2020-10-07 16:17 - 2019-12-06 19:45 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perf_gputiming.dll
2020-10-07 16:17 - 2019-12-06 17:00 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\DxToolsReportGenerator.dll
2020-10-07 16:17 - 2019-12-06 16:47 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DxToolsReportGenerator.dll
2020-10-07 16:17 - 2019-12-06 16:36 - 018011136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCaptureReplay.dll
2020-10-07 16:17 - 2019-12-06 16:35 - 000374784 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\DXCpl.exe
2020-10-07 16:17 - 2019-12-06 16:35 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsProxyStub.dll
2020-10-07 16:17 - 2019-12-06 16:34 - 000417792 _____ C:\WINDOWS\system32\d3dconfig.exe
2020-10-07 16:17 - 2019-12-06 16:34 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXGIDebug.dll
2020-10-07 16:17 - 2019-12-06 16:33 - 000133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSD3DWARPDebug.dll
2020-10-07 16:17 - 2019-12-06 16:32 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsMonitor.dll
2020-10-07 16:17 - 2019-12-06 16:31 - 001379328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11_3SDKLayers.dll
2020-10-07 16:17 - 2019-12-06 16:30 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsCapture.dll
2020-10-07 16:17 - 2019-12-06 16:29 - 013957632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCaptureReplay.dll
2020-10-07 16:17 - 2019-12-06 16:29 - 001985024 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsOfflineAnalysis.dll
2020-10-07 16:17 - 2019-12-06 16:29 - 000574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1debug3.dll
2020-10-07 16:17 - 2019-12-06 16:28 - 001152512 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXCap.exe
2020-10-07 16:17 - 2019-12-06 16:28 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsExperiment.dll
2020-10-07 16:17 - 2019-12-06 16:27 - 004826624 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2020-10-07 16:17 - 2019-12-06 16:27 - 000347136 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\SysWOW64\DXCpl.exe
2020-10-07 16:17 - 2019-12-06 16:26 - 004795392 _____ (Microsoft Corporation) C:\WINDOWS\system32\VsGraphicsRemoteEngine.exe
2020-10-07 16:17 - 2019-12-06 16:26 - 000365056 _____ C:\WINDOWS\SysWOW64\d3dconfig.exe
2020-10-07 16:17 - 2019-12-06 16:26 - 000235008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXGIDebug.dll
2020-10-07 16:17 - 2019-12-06 16:26 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VSD3DWARPDebug.dll
2020-10-07 16:17 - 2019-12-06 16:26 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsProxyStub.dll
2020-10-07 16:17 - 2019-12-06 16:24 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXToolsReporting.dll
2020-10-07 16:17 - 2019-12-06 16:23 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsExperiment.dll
2020-10-07 16:17 - 2019-12-06 16:23 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsMonitor.dll
2020-10-07 16:17 - 2019-12-06 16:23 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsCapture.dll
2020-10-07 16:17 - 2019-12-06 16:22 - 003578880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsRemoteEngine.exe
2020-10-07 16:17 - 2019-12-06 16:22 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11_3SDKLayers.dll
2020-10-07 16:17 - 2019-12-06 16:22 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXCap.exe
2020-10-07 16:17 - 2019-12-06 16:21 - 003592704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2020-10-07 16:17 - 2019-12-06 16:20 - 001411584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsOfflineAnalysis.dll
2020-10-07 16:17 - 2019-12-06 16:19 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
2020-10-07 16:17 - 2019-12-06 16:19 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DXToolsReporting.dll
2020-10-07 16:17 - 2019-12-06 15:44 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DirectML.Debug.dll
2020-10-07 16:16 - 2020-10-07 16:17 - 000000000 ____D C:\Program Files (x86)\Microsoft SDKs
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\ProgramData\Windows App Certification Kit
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\Program Files\Application Verifier
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\Program Files (x86)\Windows Kits
2020-10-07 16:16 - 2020-10-07 16:16 - 000000000 ____D C:\Program Files (x86)\Application Verifier
2020-10-07 16:13 - 2020-10-07 16:13 - 001354464 _____ (Microsoft Corporation) C:\Users\tomas\Downloads\winsdksetup.exe
2020-10-07 14:00 - 2020-10-07 14:00 - 000000567 _____ C:\Users\tomas\Desktop\Need for Speed Most Wanted.lnk
2020-10-07 13:04 - 2020-10-07 13:59 - 000000000 ____D C:\Users\tomas\Documents\NFS Most Wanted
2020-10-07 13:04 - 2020-10-07 13:04 - 000000000 ____D C:\Users\tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted
2020-10-07 13:04 - 2020-10-07 13:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NFS Most Wanted
2020-10-05 16:07 - 2020-10-05 16:07 - 000000000 ____D C:\Users\tomas\Documents\Zvukové záznamy
2020-09-30 00:20 - 2020-09-24 22:26 - 005510456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 002635752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 001759032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 000990520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 000195560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 000122344 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2020-09-30 00:20 - 2020-09-24 22:26 - 000083256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2020-09-30 00:20 - 2020-09-16 08:44 - 009302127 _____ C:\WINDOWS\system32\nvcoproc.bin
2020-09-30 00:20 - 2020-06-13 04:59 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2020-09-30 00:19 - 2020-09-30 00:19 - 000000000 ____D C:\WINDOWS\system32\Drivers\NVIDIA Corporation
2020-09-30 00:18 - 2020-09-26 01:41 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-09-30 00:18 - 2020-09-26 01:41 - 001769688 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-09-30 00:18 - 2020-09-26 01:41 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-09-30 00:18 - 2020-09-26 01:41 - 001370328 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-09-30 00:18 - 2020-09-26 01:41 - 001054944 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 001054944 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 000917728 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 000455408 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-09-30 00:18 - 2020-09-26 01:41 - 000349936 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 002097560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 001585048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 001506200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 001160600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000815856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000811248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000674200 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000670104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000656792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000555928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-09-30 00:18 - 2020-09-26 01:40 - 000540912 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 007705320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 006859152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 004174736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 002509200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 001733008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6445655.dll
2020-09-30 00:18 - 2020-09-26 01:39 - 001482984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6445655.dll
2020-09-30 00:18 - 2020-09-26 01:35 - 006992184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-09-30 00:18 - 2020-09-26 01:35 - 005964496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-09-30 00:18 - 2020-09-25 00:55 - 001682368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2020-09-30 00:18 - 2020-09-25 00:55 - 000222112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2020-09-30 00:18 - 2020-09-25 00:55 - 000058630 _____ C:\WINDOWS\system32\nvinfo.pb
2020-09-30 00:18 - 2020-09-25 00:55 - 000038816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2020-09-30 00:16 - 2020-09-30 00:17 - 000000000 ____D C:\Users\tomas\Downloads\DDU v18.0.3.3
2020-09-30 00:16 - 2020-09-30 00:16 - 001247231 _____ C:\Users\tomas\Downloads\[Guru3D.com]-DDU.zip
2020-09-30 00:03 - 2020-09-30 00:04 - 607519552 _____ (NVIDIA Corporation) C:\Users\tomas\Downloads\456.55-desktop-win10-64bit-international-whql.exe
2020-09-25 22:08 - 2020-09-25 22:08 - 000000000 ____D C:\Users\tomas\Documents\Call of Duty Modern Warfare
2020-09-25 22:08 - 2020-09-25 22:08 - 000000000 ____D C:\Users\tomas\ansel
2020-09-25 18:21 - 2020-09-25 18:21 - 000000000 ____D C:\Users\tomas\Documents\My Games
2020-09-25 08:04 - 2020-10-06 22:43 - 000000000 ____D C:\Users\tomas\AppData\LocalLow\uTorrent
2020-09-24 21:32 - 2020-09-24 21:32 - 009604577 _____ C:\Users\tomas\Desktop\iCloud Photos.zip
2020-09-24 06:47 - 2020-09-24 06:47 - 000001189 _____ C:\Users\Public\Desktop\Avira.lnk
2020-09-24 06:47 - 2020-09-24 06:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2020-09-24 00:28 - 2020-09-24 00:28 - 000000287 _____ C:\Users\tomas\Desktop\Rocket League®.url
2020-09-23 18:49 - 2020-09-30 16:57 - 000000000 ____D C:\Users\tomas\AppData\Roaming\TS3Client
2020-09-23 18:49 - 2020-09-23 18:49 - 089014080 _____ (TeamSpeak Systems GmbH) C:\Users\tomas\Downloads\TeamSpeak3-Client-win64-3.5.3.exe
2020-09-23 18:49 - 2020-09-23 18:49 - 000001008 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2020-09-23 18:49 - 2020-09-23 18:49 - 000000970 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2020-09-23 18:49 - 2020-09-23 18:49 - 000000000 ____D C:\Users\tomas\AppData\Local\TeamSpeak 3
2020-09-23 18:49 - 2020-09-23 18:49 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2020-09-16 15:05 - 2020-09-16 15:05 - 000057247 _____ C:\Users\tomas\Desktop\E-38331934-756030469.xlsx
2020-09-16 10:49 - 2020-09-16 10:49 - 000000000 ____D C:\Users\tomas\AppData\Local\PunkBuster
2020-09-16 10:43 - 2020-10-03 12:02 - 000000000 ____D C:\Users\tomas\AppData\Local\CrashDumps
2020-09-16 10:42 - 2020-09-16 10:42 - 000000439 _____ C:\Users\Public\Desktop\Call of Duty(R) 2 Singleplayer.lnk
2020-09-16 10:42 - 2020-09-16 10:42 - 000000439 _____ C:\Users\Public\Desktop\Call of Duty(R) 2 Multiplayer.lnk
2020-09-16 10:42 - 2020-09-16 10:42 - 000000262 _____ C:\WINDOWS\game.ini
2020-09-16 10:42 - 2020-09-16 10:42 - 000000000 __SHD C:\WINDOWS\ftpcache
2020-09-16 10:42 - 2020-09-16 10:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision
2020-09-15 18:47 - 2020-09-15 18:47 - 000000000 ____D C:\Users\tomas\AppData\Local\DBG
2020-09-15 18:47 - 2020-09-15 18:47 - 000000000 ____D C:\Users\tomas\AppData\Local\CrashReportClient

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-10-09 10:38 - 2020-08-31 01:04 - 000003584 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-09 10:38 - 2020-08-31 01:04 - 000003460 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-09 10:38 - 2020-08-31 01:01 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-09 10:38 - 2019-12-07 16:41 - 000716612 _____ C:\WINDOWS\system32\perfh005.dat
2020-10-09 10:38 - 2019-12-07 16:41 - 000144790 _____ C:\WINDOWS\system32\perfc005.dat
2020-10-09 10:38 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-10-09 10:32 - 2020-08-12 12:42 - 000000000 ____D C:\Users\tomas\AppData\Local\Spotify
2020-10-09 10:32 - 2020-08-11 23:30 - 000000000 ____D C:\Program Files (x86)\Steam
2020-10-09 10:32 - 2020-08-11 22:29 - 000000000 ____D C:\Users\tomas\AppData\Roaming\discord
2020-10-09 10:32 - 2020-08-11 22:27 - 000000000 ____D C:\Users\tomas\AppData\Roaming\Spotify
2020-10-09 10:31 - 2020-08-31 01:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-09 10:31 - 2020-08-31 01:00 - 000008192 ___SH C:\DumpStack.log.tmp
2020-10-09 10:31 - 2020-08-11 22:48 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2020-10-09 10:31 - 2020-08-11 22:14 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-09 10:31 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-09 10:31 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-10-09 01:04 - 2020-08-31 01:04 - 000003128 _____ C:\WINDOWS\system32\Tasks\MSIAfterburner
2020-10-08 23:06 - 2020-08-11 23:29 - 000000000 ____D C:\ProgramData\Riot Games
2020-10-08 23:04 - 2020-08-31 01:00 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-08 21:24 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-08 21:24 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-08 16:45 - 2020-08-31 01:04 - 000003704 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update
2020-10-08 14:13 - 2020-08-31 01:04 - 000004164 _____ C:\WINDOWS\system32\Tasks\Opera scheduled Autoupdate 1597177063
2020-10-08 14:13 - 2020-08-11 22:17 - 000001409 _____ C:\Users\tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2020-10-08 09:39 - 2020-08-14 23:45 - 000002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-10-08 09:39 - 2020-08-14 23:45 - 000002257 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-10-07 16:52 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-07 16:17 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-10-07 16:16 - 2020-08-11 22:18 - 000000000 ____D C:\ProgramData\Package Cache
2020-10-07 08:06 - 2020-09-02 00:20 - 000000000 ____D C:\Users\tomas\AppData\Local\ElevatedDiagnostics
2020-10-07 07:56 - 2020-08-25 21:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2020-10-06 22:43 - 2020-08-11 23:39 - 000000000 ____D C:\Users\tomas\AppData\Roaming\uTorrent
2020-10-06 22:05 - 2020-08-12 02:00 - 000000000 ____D C:\Users\tomas\AppData\Local\BitTorrentHelper
2020-10-06 18:35 - 2020-08-31 01:04 - 000004418 _____ C:\WINDOWS\system32\Tasks\Opera scheduled assistant Autoupdate 1597177064
2020-10-06 18:29 - 2020-08-31 01:00 - 000000000 ____D C:\Users\tomas
2020-10-06 18:12 - 2020-08-31 01:04 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-09-30 00:25 - 2020-08-11 22:50 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2020-09-30 00:20 - 2020-08-11 22:14 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2020-09-30 00:20 - 2020-08-11 22:14 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-09-30 00:19 - 2020-08-12 01:09 - 000000000 ____D C:\Users\tomas\AppData\Local\NVIDIA
2020-09-30 00:19 - 2020-08-11 22:14 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-09-28 04:55 - 2020-08-11 23:13 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-09-26 01:42 - 2020-08-12 11:15 - 000000000 ____D C:\Program Files (x86)\Battle.net
2020-09-26 01:40 - 2020-08-12 11:15 - 000000000 ____D C:\Users\tomas\AppData\Local\Battle.net
2020-09-25 22:08 - 2020-08-11 23:27 - 000000000 ____D C:\Users\tomas\AppData\Local\D3DSCache
2020-09-25 21:57 - 2020-08-31 01:04 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-09-25 21:57 - 2020-08-18 22:32 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-09-16 15:05 - 2020-08-11 22:11 - 000000000 ____D C:\Users\tomas\AppData\Local\Packages
2020-09-16 10:43 - 2020-08-11 22:20 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-09-15 18:38 - 2020-08-19 16:29 - 000000000 ____D C:\Users\tomas\AppData\Local\NVIDIA Corporation
2020-09-11 12:14 - 2020-08-30 18:14 - 000000000 ___DC C:\WINDOWS\Panther
2020-09-11 12:10 - 2020-08-11 22:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-09-11 12:08 - 2020-08-11 22:27 - 129170736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-09-10 23:45 - 2020-08-11 22:29 - 000002231 _____ C:\Users\tomas\Desktop\Discord.lnk
2020-09-10 23:45 - 2020-08-11 22:29 - 000000000 ____D C:\Users\tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2020-09-10 23:45 - 2020-08-11 22:29 - 000000000 ____D C:\Users\tomas\AppData\Local\Discord
2020-09-09 00:10 - 2020-08-31 01:00 - 000357024 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-09-09 00:09 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr

==================== Files in the root of some directories ========

2020-08-12 01:30 - 2020-08-12 01:31 - 001065984 _____ () C:\Users\tomas\AppData\Local\file__0.localstorage

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

ADDITION

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-10-2020
Ran by tomas (09-10-2020 10:40:21)
Running from C:\Users\tomas\Desktop\FRST
Windows 10 Home Version 2004 19041.508 (X64) (2020-08-30 23:04:21)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2526790174-1192949421-3020548935-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2526790174-1192949421-3020548935-503 - Limited - Disabled)
Guest (S-1-5-21-2526790174-1192949421-3020548935-501 - Limited - Disabled)
tomas (S-1-5-21-2526790174-1192949421-3020548935-1001 - Administrator - Enabled) => C:\Users\tomas
WDAGUtilityAccount (S-1-5-21-2526790174-1192949421-3020548935-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Antivirus (Enabled - Up to date) {88AE6B46-DC3C-455A-A21B-085F285A3546}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Disabled - Out of date) {05BC7AB5-FF0E-71EC-1054-15DA19B62DC7}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\uTorrent) (Version: 3.5.5.45790 - BitTorrent Inc.)
Acronis True Image (HKLM-x32\...\{62528BBA-21CF-4023-84EC-BB529662D496}) (Version: 23.3.14110 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{62528BBA-21CF-4023-84EC-BB529662D496}Visible) (Version: 23.3.14110 - Acronis)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
Application Verifier x64 External Package (HKLM\...\{634A88E5-3478-F27D-6260-C9B62848D7AA}) (Version: 10.1.19041.1 - Microsoft) Hidden
Avira (HKLM-x32\...\{47430B15-7CE6-46CF-903E-B85CD2D29A7D}) (Version: 1.2.151.3852 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{f24507a8-a438-4e46-9563-6d53c727bd7e}) (Version: 1.2.151.3852 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.2009.1995 - Avira Operations GmbH & Co. KG) Hidden
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.35.1.21885 - Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32\...\Avira Security_is1) (Version: 1.0.37.12157 - Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32\...\AviraSecurityUninstaller) (Version: - Avira Operations GmbH & Co. KG;)
Avira Software Updater (HKLM-x32\...\{073825B9-FF06-4690-8CE4-3C0B72036122}) (Version: 2.0.6.37231 - Avira Operations GmbH & Co. KG) Hidden
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.6.0.10959 - Avira Operations GmbH & Co. KG) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
Call of Duty(R) 2 (HKLM-x32\...\{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty(R) 2 (HKLM-x32\...\InstallShield_{D0A05794-48C2-4424-A15A-9F20FCFDD374}) (Version: 1.3 - Activision)
Call of Duty(R) 2 Patch 1.3 (HKLM-x32\...\{7B4A5C13-069F-4AFE-AE57-C497B4E33C7E}) (Version: 1.3 - ) Hidden
Canon MF Toolbox 4.9.1.1.mf18 (HKLM-x32\...\{6767DFEE-8909-453A-B553-C7693912B2EB}) (Version: 4.9.1.1.mf18 - CANON INC.)
Canon MF8000 Series (HKLM\...\{5BE226B3-1722-4fd0-9E39-997712B68F67}) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
CPUID CPU-Z 1.93 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.93 - CPUID, Inc.)
CrystalDiskInfo 8.8.1 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.8.1 - Crystal Dew World)
CrystalDiskMark 7.0.0h (HKLM\...\CrystalDiskMark7_is1) (Version: 7.0.0h - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.13.0.1371 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Discord) (Version: 0.0.308 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{0EE6DDEF-E36B-45EB-9E03-5A266EC8A8F8}) (Version: 1.1.279.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.55.5319 - GOM & Company)
Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)
Intel(R) Ethernet Connection Driver (HKLM-x32\...\Intel(R) Ethernet Connection Driver_is1) (Version: - )
Intel® Chipset Device Software (HKLM-x32\...\{ffddf9dd-c47f-453a-92f5-ac6c98af8b5b}) (Version: 10.1.17968.8131 - Intel(R) Corporation)
Kits Configuration Installer (HKLM-x32\...\{8867E8B9-1539-18F3-54AB-B1F1E641AC14}) (Version: 10.1.19041.1 - Microsoft) Hidden
K-Lite Mega Codec Pack 15.6.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.6.5 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Microsoft .NET Framework 4.8 SDK (HKLM-x32\...\{DA855582-B360-4532-B8C4-ECD1E5A7095B}) (Version: 4.8.04084 - Microsoft Corporation)
Microsoft .NET Framework 4.8 Targeting Pack (HKLM-x32\...\{7D846F37-3C30-47C5-BCEA-2929EE09BE9A}) (Version: 4.8.04084 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.70 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.41 - )
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{406C9ADB-1325-4FD0-9D13-C119CFF64E0A}) (Version: 2.65.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MSI Afterburner 4.6.2 (HKLM-x32\...\Afterburner) (Version: 4.6.2 - MSI Co., LTD)
MSI Development Tools (HKLM-x32\...\{EEA4F337-23C8-A799-9331-18B5746625CE}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Need for Speed Most Wanted (black edition) (HKLM-x32\...\Need for Speed Most Wanted (black edition)) (Version: 1.3 - Electronic Arts)
NVIDIA Ovladač HD audia 1.3.38.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.35 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 456.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.55 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
Opera Stable 71.0.3770.228 (HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Opera 71.0.3770.228) (Version: 71.0.3770.228 - Opera Software)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 456.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 456.55 - NVIDIA Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.5.0930.092510 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8668 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 7.2.3 (HKLM-x32\...\RTSS) (Version: 7.2.3 - Unwinder)
SDK ARM Additions (HKLM-x32\...\{622AAEB8-DF41-C024-C136-E37D23F9EE3C}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
SDK ARM Redistributables (HKLM-x32\...\{2800EFA4-8E00-EEF9-2890-FACDF8EBBB49}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
SDK Debuggers (HKLM-x32\...\{91C073DA-2474-72C0-3022-3D00A221F43C}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spotify (HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\Spotify) (Version: 1.1.43.700.g20acee0f - Spotify AB)
Startup Delayer v3.0 (build 366) (HKLM-x32\...\Startup Delayer) (Version: 3.0 (build 366) - r2 Studios)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.5.3 - TeamSpeak Systems GmbH)
Universal CRT Extension SDK (HKLM-x32\...\{4F74E68F-8E9A-854A-267F-B207D8BA293A}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{75B4003C-872E-7D47-51F7-D855F1B2B3F2}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{48210A4B-CF20-C3C7-75E6-D564DCABA0FF}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{EEDE15C8-BB1F-EB52-B01F-055BEB4209D6}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{09645C4C-3570-8804-9ED6-C3C335679287}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{ECB7B330-3BAC-7593-7F5D-FD68A54EA0EF}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{1C76EBD9-0A70-4094-A543-00CAA3B62113}) (Version: - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{0BAA0A93-3AD3-4B19-9105-4C8C3FA92A83}) (Version: 2.67.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation)
WinAppDeploy (HKLM-x32\...\{A566DCBF-C346-9707-31E4-7F3ACAB776B6}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
Windows SDK AddOn (HKLM-x32\...\{3E59EFF5-CD7A-4860-A7EC-C33A4FC7297C}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.19041.1 (HKLM-x32\...\{1aef9cb5-faba-471c-b24a-c45dd69d37ea}) (Version: 10.1.19041.1 - Microsoft Corporation)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{D451C34E-ED59-596E-715B-C5C9ABBB34B9}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{816A6296-C73E-CDB2-0597-5F142130DFBE}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{2D9D58E6-3F54-6320-42E0-0E9012DC249C}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E90226BA-8398-FFB7-FA98-11D8A64A54E6}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense Mobile - en-us (HKLM-x32\...\{1EED3649-5FA4-E992-9693-5E22F804DD2A}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{BA05971B-E447-0F2C-C89C-888D6431995B}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{2FA86110-E0B2-44A0-72A8-13759C5C266F}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{0A6D1458-0861-EF51-9995-C69C9157CB36}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{C69004DC-E31D-AB88-AC5B-B5CB9C37B53B}) (Version: 10.1.19041.1 - Microsoft Corporation) Hidden
WPT Redistributables (HKLM-x32\...\{AE00264D-F001-A1D3-F3B8-74A9D2193E7F}) (Version: 10.1.19041.1 - Microsoft) Hidden
WPTx64 (HKLM-x32\...\{FD439F85-AD64-B3E5-9FC5-444AE8C8AF7B}) (Version: 10.1.19041.1 - Microsoft) Hidden

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-09-02] (Microsoft Studios) [MS Ad]
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2020-08-11] (Realtek Semiconductor Corp)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2018-09-20] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2018-09-20] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2018-09-20] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2018-09-20] (Acronis International GmbH -> )
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-23] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-08-12] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-08-12] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-23] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-09-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-06-23] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-09-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [VIDC.RTV1] => C:\WINDOWS\system32\rtvcvfw64.dll [246272 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.X264] => C:\WINDOWS\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\WINDOWS\system32\lagarith.dll [148992 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\WINDOWS\system32\xvidvfw.dll [310784 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\WINDOWS\system32\ac3acm.acm [180736 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [File not signed]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\SysWOW64\x264vfw.dll [3850240 2017-07-30] (x264vfw project) [File not signed]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [File not signed]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [284160 2019-12-28] () [File not signed]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\ac3acm.acm [122880 2012-07-21] (fccHandler) [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112128 2015-10-24] () [File not signed]

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2018-09-20 20:07 - 2018-09-20 20:07 - 000277538 _____ () [File not signed] C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\LIBMAGIC.dll
2020-08-11 23:38 - 2020-08-11 23:38 - 098275328 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libcef.dll
2020-08-11 23:38 - 2020-08-11 23:38 - 000092672 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libEGL.dll
2020-08-11 23:38 - 2020-08-11 23:38 - 003922432 _____ () [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\libGLESv2.dll
2019-10-26 13:04 - 2019-10-26 13:04 - 000232960 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2019-10-26 13:03 - 2019-10-26 13:03 - 000057344 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2019-10-26 13:04 - 2019-10-26 13:04 - 000650240 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2019-10-26 13:03 - 2019-10-26 13:03 - 000074240 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2019-10-26 13:03 - 2019-10-26 13:03 - 000369664 _____ () [File not signed] C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2020-10-09 10:31 - 2020-10-09 10:31 - 000192512 _____ () [File not signed] C:\Users\tomas\AppData\Local\Temp\sfamcc00001.dll
2020-10-09 10:31 - 2020-10-09 10:31 - 000158720 _____ () [File not signed] C:\Users\tomas\AppData\Local\Temp\sfareca00001.dll
2018-09-20 20:55 - 2018-09-24 18:19 - 022984336 _____ (Acronis International GmbH -> ) [File not signed] [File is in use] C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers.dll
2019-12-06 19:37 - 2019-12-06 19:37 - 000262144 _____ (Microsoft Corporation) [File not signed] C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbPc.DLL
2020-08-11 23:38 - 2020-08-11 23:38 - 000547840 _____ (The Chromium Authors) [File not signed] C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\ThirdParty\CEF3\Win64\chrome_elf.dll
2018-09-20 20:09 - 2018-09-24 18:20 - 001477120 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\Common Files\Acronis\Home\libcrypto10.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://securesearch.org/homepage?hp=2&pId=BT171101&iDate=2020-08-11 09:39:57&bName=
SearchScopes: HKU\S-1-5-21-2526790174-1192949421-3020548935-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2019-08-19] (Microsoft Corporation -> Microsoft Corporation)

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\...\sharepoint.com -> hxxps://wistron.sharepoint.com

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2017-09-29 15:44 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2526790174-1192949421-3020548935-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\tomas\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\8k-ultra-hd-wallpapers-4038458.jpg
DNS Servers: 10.100.160.1 - 10.100.160.7
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{41AF1E2C-B142-4AAA-91E4-F8EB7D3A88B1}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{00492394-9330-460E-823F-50ABAA9E6774}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{93424B9F-1096-46C3-9E0F-393A7B1017CB}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{C39A6037-9513-4A36-A2EB-0E60C25568CC}] => (Allow) E:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{392AFE48-5A28-4B41-AD3E-6CE98DADB5A3}] => (Allow) E:\Steam\steamapps\common\Battalion 1944\Battalion.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{51EB8F6A-EDCE-41FD-A71E-4FC3A98D45BD}] => (Allow) E:\Steam\steamapps\common\Battalion 1944\Battalion.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [UDP Query User{5695046C-E671-46EB-9544-D6F1DBE8178F}C:\users\tomas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tomas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{E8E6B561-18A9-467B-8E55-AEBAB0A06894}C:\users\tomas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tomas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E9B7631C-1015-4676-ACFC-14764C9CDF70}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3FB1C434-E7D5-4C58-8A5C-DDFF5AC2EB6A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FF498B20-6531-4DF3-85E4-219586AED3F6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1B3630E5-7FB5-4D39-A333-80C54A1D2CE4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{01E910EB-F8BC-4F42-8A49-97F09535D9E8}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{5D945905-2707-419F-993C-1119A06DF3C5}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{ACD3D268-FE73-49AD-92C0-A63CD86F8DD6}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{8E1BF989-59EA-4E75-8B57-6797E844E254}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> )
FirewallRules: [{BDCF0DB1-DE1F-4820-8392-8D52E87B7854}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{D30BA685-B248-4A7E-B006-579C43EDBF8C}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> )
FirewallRules: [{4F09F42C-B4FD-44B9-9341-3B77F485E501}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{94400813-AA8A-4CE2-AEC9-33F0EE0D91AF}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{673DF246-21D1-4FCD-8C10-3558276BB3AE}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{67074CF5-7160-49F2-91F9-20DBC901D18A}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{90D2211A-196A-4DB9-B7C5-A6F2A183E6A0}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{3E8E3FFD-2665-4EBF-9829-A4F81AB3D975}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{9364F5D9-F8A3-4CA3-9AD6-A91B1B80F988}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{8F365553-08F5-4177-AE6E-EC4DCDEBC976}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> )
FirewallRules: [{9FDCDC5A-EA5F-468A-9523-2AF22A400CD3}] => (Allow) E:\Steam\steamapps\common\Age2HD\Launcher.exe (TODO: <Company name>) [File not signed]
FirewallRules: [{BB1E5609-AA7A-40E8-9818-88A2CA8B59C9}] => (Allow) E:\Steam\steamapps\common\Age2HD\Launcher.exe (TODO: <Company name>) [File not signed]
FirewallRules: [{A2CEBA5E-CFA5-46CD-96C5-09BEFE639A1E}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{56CC3731-CFF0-4AAC-A8EA-E1F8FBF0E76D}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{0085E1FD-9085-4656-B8D9-D02D3836B3CA}] => (Allow) C:\Users\tomas\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{83BDEF11-31F9-4055-84AE-8166D064AB94}] => (Allow) C:\Users\tomas\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{76042A73-22ED-428D-B399-6EECCF17A6EB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{568F7319-86E7-4879-9AF2-B363801D397A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{BF65E028-EB69-40F2-AA48-E5A8551FF880}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{302CD591-B6B7-4F05-B9CE-7CCE7E022754}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{0F6C222D-305E-446B-A5CC-E7E27598A30A}C:\users\tomas\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Allow) C:\users\tomas\appdata\local\programs\opera\70.0.3728.178\opera.exe => No File
FirewallRules: [UDP Query User{D2FCF657-1B8D-4A23-9670-87B8B2CBDE8C}C:\users\tomas\appdata\local\programs\opera\70.0.3728.178\opera.exe] => (Allow) C:\users\tomas\appdata\local\programs\opera\70.0.3728.178\opera.exe => No File
FirewallRules: [TCP Query User{45804D89-664D-4FE0-BCE7-FAECB395D61C}E:\call of duty 2\cod2mp_s.exe] => (Allow) E:\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [UDP Query User{464D85C5-72AE-4C90-8FE8-38CB5345AC79}E:\call of duty 2\cod2mp_s.exe] => (Allow) E:\call of duty 2\cod2mp_s.exe () [File not signed]
FirewallRules: [TCP Query User{A875292B-7AFE-42C5-8FD3-1E8A3C9C14B5}C:\users\tomas\appdata\local\programs\opera\70.0.3728.189\opera.exe] => (Allow) C:\users\tomas\appdata\local\programs\opera\70.0.3728.189\opera.exe => No File
FirewallRules: [UDP Query User{130806E7-F30B-4428-B4B9-4BC2A83D9394}C:\users\tomas\appdata\local\programs\opera\70.0.3728.189\opera.exe] => (Allow) C:\users\tomas\appdata\local\programs\opera\70.0.3728.189\opera.exe => No File
FirewallRules: [TCP Query User{8248B145-440E-40B2-8689-28E583307C79}E:\call of duty warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\call of duty warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{6AA10B81-62F9-44D1-B09C-ED427A782920}E:\call of duty warzone\call of duty modern warfare\modernwarfare.exe] => (Allow) E:\call of duty warzone\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [TCP Query User{0AB2496D-42D1-4ADE-82D5-740A9F599407}C:\users\tomas\appdata\local\programs\opera\71.0.3770.198\opera.exe] => (Allow) C:\users\tomas\appdata\local\programs\opera\71.0.3770.198\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [UDP Query User{C93941DE-AD56-4B32-94BE-AE965146C16F}C:\users\tomas\appdata\local\programs\opera\71.0.3770.198\opera.exe] => (Allow) C:\users\tomas\appdata\local\programs\opera\71.0.3770.198\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [TCP Query User{0DAC6F52-EA43-4EA2-9848-D1798689E476}C:\users\tomas\appdata\local\programs\opera\71.0.3770.228\opera.exe] => (Block) C:\users\tomas\appdata\local\programs\opera\71.0.3770.228\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [UDP Query User{B1A0F48A-5766-4B43-8345-F96C2AF84900}C:\users\tomas\appdata\local\programs\opera\71.0.3770.228\opera.exe] => (Block) C:\users\tomas\appdata\local\programs\opera\71.0.3770.228\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{303A64AB-2C24-4234-8BC8-CBB335FCC44B}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{AC10211F-35D6-45A4-88A6-B7D110FEE987}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{3EBEF397-BC86-4F3A-B332-87260E02CDD5}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)

==================== Restore Points =========================

02-10-2020 17:47:20 Naplánovaný kontrolní bod
07-10-2020 07:54:52 Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (10/09/2020 10:30:57 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x8007001f, Zařízení připojené k systému nefunguje.
.


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (10/09/2020 10:30:49 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen.
.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.


Operace:
Shromažďování dat modulu pro zápis

Kontext:
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {7c7cac1b-ef31-4114-97fb-b8f04cda3e5a}

Error: (10/09/2020 09:26:59 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/09/2020 09:24:11 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT AUTHORITY)
Description: Systém Windows nemůže načíst knihovnu DLL rozšiřitelných čítačů C:\WINDOWS\system32\sysmain.dll (kód chyby Win32 126).

Error: (10/08/2020 09:29:40 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (10/08/2020 12:29:34 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (10/08/2020 12:29:34 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (10/08/2020 12:29:34 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.


System errors:
=============
Error: (10/09/2020 10:31:23 AM) (Source: DCOM) (EventID: 10010) (User: TOMÁŠ-PC)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/09/2020 10:31:23 AM) (Source: DCOM) (EventID: 10010) (User: TOMÁŠ-PC)
Description: Server {9BA05972-F6A8-11CF-A442-00A0C90A8F39} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/09/2020 10:30:49 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Acronis Sync Agent Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (10/09/2020 10:30:49 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Razer Synapse Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/09/2020 10:30:49 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (10/09/2020 10:30:49 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Steam Client Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (10/09/2020 10:30:49 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Avira Optimizer Host byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (10/09/2020 10:30:49 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Razer Central Service byla neočekávaně ukončena. Tento stav nastal již 1krát.


Windows Defender:
===================================
Date: 2020-08-31 08:50:33.9830000Z
Description:
Antivirová ochrana v programu Microsoft Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.321.2085.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.17300.4
Kód chyby: 0x80240017
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2020-09-30 22:29:40.9560000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume9\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-09-29 15:08:26.6340000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume9\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-09-28 04:54:56.9240000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume9\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-09-11 00:35:55.0160000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-09-11 00:35:54.2210000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-09-11 00:35:54.1930000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-09-11 00:35:54.1590000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-09-11 00:35:54.0790000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume9\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume9\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: American Megatrends Inc. P4.20 05/15/2019
Motherboard: ASRock B365 Pro4
Processor: Intel(R) Core(TM) i7-9700F CPU @ 3.00GHz
Percentage of memory in use: 20%
Total physical RAM: 32701.09 MB
Available physical RAM: 26072.46 MB
Total Virtual: 56253.09 MB
Available Virtual: 47985.01 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:476.34 GB) (Free:373.27 GB) NTFS
Drive d: (Místní disk) (Fixed) (Total:238.46 GB) (Free:74.94 GB) NTFS
Drive e: (Místní disk) (Fixed) (Total:953.87 GB) (Free:624.66 GB) NTFS
Drive f: (Místní disk) (Fixed) (Total:1863.01 GB) (Free:125.27 GB) NTFS
Drive g: (Místní disk) (Fixed) (Total:931.51 GB) (Free:732.67 GB) NTFS

\\?\Volume{81c993a6-7072-43e5-ad40-0acb3f101196}\ (Obnovení) (Fixed) (Total:0.49 GB) (Free:0.06 GB) NTFS
\\?\Volume{8d2b6573-65d1-48a3-928b-ab4380f6f8ca}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 91719114)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 3F3E7046)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (Protective MBR) (Size: 953.9 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 3 (Protective MBR) (Size: 238.5 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 4 (Protective MBR) (Size: 476.9 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt =======================

Re: Preventivní kontrola

Napsal: 09 říj 2020 17:42
od Diallix
Doporucujem precistit pocitac programom CCLEANER.


Ako je na tom pocitac?

Re: Preventivní kontrola

Napsal: 09 říj 2020 18:48
od PadiseK
Vše OK. Díky :)

Re: Preventivní kontrola

Napsal: 10 říj 2020 03:56
od Diallix
Dobre. Nemate zac.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz