VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Disk jede na 100%

https://forum.viry.cz:443/viewtopic.php?t=157946

Stránka 1 z 1

Disk jede na 100%

Napsal: 13 bře 2021 14:36
od dorkon
Dobrý den,prosím o pomoc s počítačem. Včera jsem měl puštěný počítač asi 90 minut a po celou dobu běžel pevný disk na 100%. Dnes asi půl hodiny na maximum a potom zatížení kleslo na minimum. Nejvíce zatěžoval disk program Check Point Endpoint Forensic. Zkoušel jsem zaslat log z FRST,ale log se na konci nevytvořil ani po opakovaném skenu. Proto posílám log z RSIT. Předem dík za kontrolu.

Logfile of random's system information tool 1.10 (written by random/random)
Run by 72pav at 2021-03-13 14:21:18
Microsoft Windows 10 Home
System drive C: has 28 GB (33%) free of 85 GB
Total RAM: 3072 MB (40% free)


======Scheduled tasks folder======

C:\WINDOWS\tasks\SUPERAntiSpyware Scheduled Task 99b5634c-c380-4d49-bae8-090ee5c46ba3.job - C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:99b5634c-c380-4d49-bae8-090ee5c46ba3
C:\WINDOWS\tasks\SUPERAntiSpyware Scheduled Task d18cda89-6355-43ae-9192-0d34bed54668.job - C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:d18cda89-6355-43ae-9192-0d34bed54668
C:\WINDOWS\tasks\X-Rite Device Services Software Updater.job - C:\Program Files\X-Rite\Devices\Services\XRD Software Update.exe
C:\WINDOWS\tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}.job - C:\Users\72pav\AppData\Local\Temp\is-ELM4U.tmp\XRD Manager.exe /exenoupdates /exelang 1029 /noprereqs /qr TRANSFORMS=":1029" TARGETDIR="E:\" APPDIR="C:\Program Files\X-Rite\Devices\" AI_RESUME=1 ADDLOCAL=MainFeature,XRDdrivers32 ADDLOCAL="MainFeature,XRDdrivers32" ACTION="INSTALL" EXECUTEACTION="INSTALL" ROOTDRIVE="E:\" TRANSFORMS=":1029" AI_PREREQFILES="C:\Users\72pav\AppData\Local\Temp\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}\drivers32.msi" AI_PREREQDIRS="C:\Users\72pav\AppData\Local\Temp" AI_SETUPEXEPATH="C:\Users\72pav\AppData\Local\Temp\is-ELM4U.tmp\XRD Manager.exe" SETUPEXEDIR="C:\Users\72pav\AppData\Local\Temp\is-ELM4U.tmp\" TARGETDIR="E:\" APPDIR="C:\Program Files\X-Rite\Devices\"

=========Mozilla firefox=========

ProfilePath - C:\Users\72pav\AppData\Roaming\Mozilla\Firefox\Profiles\lxw2l5mn.default

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.281.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.281.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD49718-1D00-4B19-AF5F-070AF6D5D54C}]
IEToEdge BHO - C:\Program Files\Microsoft\Edge\Application\89.0.774.50\BHO\ie_to_edge_bho.dll [2021-03-10 409992]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_281\bin\ssv.dll [2021-01-22 616616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-01-22 280232]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2019-12-07 74752]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2015-10-04 14476032]
"Ulead Memory Card Detector"=C:\Program Files\Ulead Systems\Ulead Photo Explorer 7.0\Monitor.exe [2002-09-10 28672]
"Nikon Message Center 2"=C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe [2019-11-18 612304]
"ZoneAlarm"=C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [2018-05-18 146800]
"ZaAntiRansomware"=C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAAR.exe [2019-11-27 4230368]
"AdobeGCInvoker-1.0"=C:\Program Files\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2021-02-17 3412680]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2021-02-28 104160]
"NvBackend"=C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2016-11-14 2397120]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap.dll [2016-11-14 1377752]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2020-12-09 706680]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
i1Profiler Tray.lnk - C:\Program Files\X-Rite\i1Profiler\i1ProfilerTray.exe
XRGamma.lnk - C:\Program Files\X-Rite\i1Profiler\XRGamma.exe

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aswSP.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CBDHSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsQuic]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcCtnrSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NgcSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"aux"=wdmaud.drv
"midi"=wdmaud.drv
"midimapper"=midimap.dll
"mixer"=wdmaud.drv
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wave"=wdmaud.drv
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave1"=wdmaud.drv
"aux1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave2"=wdmaud.drv

======File associations======

.inf - install -
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2021-03-13 14:21:19 ----D---- C:\Program Files\trend micro
2021-03-13 14:21:18 ----D---- C:\rsit
2021-03-13 01:28:33 ----A---- C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2021-03-12 23:24:26 ----A---- C:\WINDOWS\system32\bdesvc.dll
2021-03-12 23:24:24 ----A---- C:\WINDOWS\system32\WinBioDataModelOOBE.exe
2021-03-12 23:24:24 ----A---- C:\WINDOWS\system32\WinBioDataModel.dll
2021-03-12 23:24:24 ----A---- C:\WINDOWS\system32\ConsoleLogon.dll
2021-03-12 23:22:58 ----A---- C:\WINDOWS\system32\WalletService.dll
2021-03-12 23:22:57 ----A---- C:\WINDOWS\system32\cdp.dll
2021-03-12 23:19:12 ----A---- C:\WINDOWS\system32\DolbyDecMFT.dll
2021-03-12 23:19:10 ----A---- C:\WINDOWS\system32\WMVCORE.DLL
2021-03-12 23:19:09 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2021-03-12 23:19:08 ----A---- C:\WINDOWS\system32\WMVXENCD.DLL
2021-03-12 23:19:08 ----A---- C:\WINDOWS\system32\VIDRESZR.DLL
2021-03-12 23:19:08 ----A---- C:\WINDOWS\system32\COLORCNV.DLL
2021-03-12 23:19:07 ----A---- C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2021-03-12 23:19:02 ----A---- C:\WINDOWS\system32\mfcore.dll
2021-03-12 23:19:02 ----A---- C:\WINDOWS\system32\mfasfsrcsnk.dll
2021-03-12 23:18:44 ----A---- C:\WINDOWS\system32\provplatformdesktop.dll
2021-03-12 23:18:43 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2021-03-12 23:18:43 ----A---- C:\WINDOWS\system32\WorkFolders.exe
2021-03-12 23:18:42 ----A---- C:\WINDOWS\system32\WorkFoldersShell.dll
2021-03-12 23:18:42 ----A---- C:\WINDOWS\system32\WorkfoldersControl.dll
2021-03-12 23:18:41 ----A---- C:\WINDOWS\system32\SIHClient.exe
2021-03-12 23:18:40 ----A---- C:\WINDOWS\system32\tsgqec.dll
2021-03-12 23:18:38 ----A---- C:\WINDOWS\system32\mstscax.dll
2021-03-12 23:18:35 ----A---- C:\WINDOWS\system32\wsp_health.dll
2021-03-12 23:18:35 ----A---- C:\WINDOWS\system32\wsp_fs.dll
2021-03-12 23:18:34 ----A---- C:\WINDOWS\system32\reseteng.dll
2021-03-12 23:18:32 ----A---- C:\WINDOWS\system32\glu32.dll
2021-03-12 23:18:31 ----A---- C:\WINDOWS\system32\opengl32.dll
2021-03-12 23:18:30 ----A---- C:\WINDOWS\system32\msimsg.dll
2021-03-12 23:18:29 ----A---- C:\WINDOWS\system32\msi.dll
2021-03-12 23:18:25 ----A---- C:\WINDOWS\system32\dbnetlib.dll
2021-03-12 23:18:23 ----A---- C:\WINDOWS\system32\IESettingSync.exe
2021-03-12 23:18:23 ----A---- C:\WINDOWS\system32\iemigplugin.dll
2021-03-12 23:18:20 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2021-03-12 23:18:20 ----A---- C:\WINDOWS\system32\ieframe.dll
2021-03-12 23:18:19 ----A---- C:\WINDOWS\system32\jscript9.dll
2021-03-12 23:18:18 ----A---- C:\WINDOWS\system32\IndexedDbLegacy.dll
2021-03-12 23:18:18 ----A---- C:\WINDOWS\system32\ieproxy.dll
2021-03-12 23:18:15 ----A---- C:\WINDOWS\system32\mshtml.dll
2021-03-12 23:18:14 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2021-03-12 23:18:13 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2021-03-12 23:18:09 ----A---- C:\WINDOWS\system32\edgehtml.dll
2021-03-12 23:18:08 ----A---- C:\WINDOWS\system32\jscript.dll
2021-03-12 23:17:58 ----A---- C:\WINDOWS\system32\XInput1_4.dll
2021-03-12 23:17:58 ----A---- C:\WINDOWS\system32\werui.dll
2021-03-12 23:17:55 ----A---- C:\WINDOWS\system32\smphost.dll
2021-03-12 23:17:55 ----A---- C:\WINDOWS\system32\mispace.dll
2021-03-12 23:17:53 ----A---- C:\WINDOWS\system32\spaceman.exe
2021-03-12 23:17:53 ----A---- C:\WINDOWS\system32\spacebridge.dll
2021-03-12 23:17:52 ----A---- C:\WINDOWS\system32\MDMAppInstaller.exe
2021-03-12 23:17:50 ----A---- C:\WINDOWS\system32\net1.exe
2021-03-12 23:17:49 ----A---- C:\WINDOWS\system32\upnpcont.exe
2021-03-12 23:17:49 ----A---- C:\WINDOWS\system32\udhisapi.dll
2021-03-12 23:17:48 ----A---- C:\WINDOWS\system32\upnphost.dll
2021-03-12 23:17:48 ----A---- C:\WINDOWS\system32\PayloadRestrictions.dll
2021-03-12 23:17:45 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2021-03-12 23:17:44 ----A---- C:\WINDOWS\system32\Windows.UI.FileExplorer.dll
2021-03-12 23:17:43 ----A---- C:\WINDOWS\system32\comdlg32.dll
2021-03-12 23:17:43 ----A---- C:\WINDOWS\system32\comctl32.dll
2021-03-12 23:17:42 ----A---- C:\WINDOWS\system32\MBR2GPT.EXE
2021-03-12 23:17:40 ----A---- C:\WINDOWS\system32\sppwinob.dll
2021-03-12 23:17:39 ----A---- C:\WINDOWS\system32\WinSCard.dll
2021-03-12 23:17:39 ----A---- C:\WINDOWS\system32\sppcext.dll
2021-03-12 23:17:38 ----A---- C:\WINDOWS\system32\drivers\scfilter.sys
2021-03-12 23:17:37 ----A---- C:\WINDOWS\system32\ScDeviceEnum.dll
2021-03-12 23:17:37 ----A---- C:\WINDOWS\system32\SCardDlg.dll
2021-03-12 23:17:37 ----A---- C:\WINDOWS\system32\SCardBi.dll
2021-03-12 23:17:37 ----A---- C:\WINDOWS\system32\certprop.dll
2021-03-12 23:17:36 ----A---- C:\WINDOWS\system32\SCardSvr.dll
2021-03-12 23:17:31 ----A---- C:\WINDOWS\system32\shell32.dll
2021-03-12 23:17:30 ----A---- C:\WINDOWS\system32\ntshrui.dll
2021-03-12 23:17:29 ----A---- C:\WINDOWS\system32\rasdlg.dll
2021-03-12 23:17:28 ----A---- C:\WINDOWS\system32\rasmans.dll
2021-03-12 23:17:28 ----A---- C:\WINDOWS\system32\rasapi32.dll
2021-03-12 23:17:27 ----A---- C:\WINDOWS\system32\iprtrmgr.dll
2021-03-12 23:17:27 ----A---- C:\WINDOWS\system32\iprtprio.dll
2021-03-12 23:17:26 ----A---- C:\WINDOWS\system32\rtm.dll
2021-03-12 23:17:26 ----A---- C:\WINDOWS\system32\mprdim.dll
2021-03-12 23:17:25 ----A---- C:\WINDOWS\system32\rasplap.dll
2021-03-12 23:17:25 ----A---- C:\WINDOWS\system32\drvsetup.dll
2021-03-12 23:17:25 ----A---- C:\WINDOWS\system32\drvinst.exe
2021-03-12 23:17:24 ----A---- C:\WINDOWS\system32\spfileq.dll
2021-03-12 23:17:24 ----A---- C:\WINDOWS\system32\drvstore.dll
2021-03-12 23:15:32 ----A---- C:\WINDOWS\system32\setupapi.dll
2021-03-12 23:15:32 ----A---- C:\WINDOWS\system32\newdev.dll
2021-03-12 23:15:31 ----A---- C:\WINDOWS\system32\SystemSettings.Handlers.dll
2021-03-12 23:15:31 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2021-03-12 23:15:30 ----A---- C:\WINDOWS\system32\SettingsHandlers_IME.dll
2021-03-12 23:15:29 ----A---- C:\WINDOWS\system32\rasgcw.dll
2021-03-12 23:15:28 ----A---- C:\WINDOWS\system32\pnidui.dll
2021-03-12 23:15:24 ----A---- C:\WINDOWS\system32\vdsbas.dll
2021-03-12 23:15:23 ----A---- C:\WINDOWS\system32\wudriver.dll
2021-03-12 23:15:23 ----A---- C:\WINDOWS\system32\windowsudk.shellcommon.dll
2021-03-12 23:15:22 ----A---- C:\WINDOWS\system32\LaunchWinApp.exe
2021-03-12 23:15:21 ----A---- C:\WINDOWS\system32\twinui.dll
2021-03-12 23:15:21 ----A---- C:\WINDOWS\system32\twinapi.dll
2021-03-12 23:15:21 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2021-03-12 23:15:20 ----A---- C:\WINDOWS\system32\msxml3r.dll
2021-03-12 23:15:20 ----A---- C:\WINDOWS\system32\msxml3.dll
2021-03-12 23:15:20 ----A---- C:\WINDOWS\system32\input.dll
2021-03-12 23:15:20 ----A---- C:\WINDOWS\system32\AxInstUI.exe
2021-03-12 23:15:19 ----A---- C:\WINDOWS\system32\AxInstSv.dll
2021-03-12 23:15:18 ----A---- C:\WINDOWS\system32\drivers\luafv.sys
2021-03-12 23:15:17 ----A---- C:\WINDOWS\system32\LockAppBroker.dll
2021-03-12 23:15:17 ----A---- C:\WINDOWS\system32\AboveLockAppHost.dll
2021-03-12 23:15:16 ----A---- C:\WINDOWS\system32\LockHostingFramework.dll
2021-03-12 23:15:16 ----A---- C:\WINDOWS\system32\LockController.dll
2021-03-12 23:15:16 ----A---- C:\WINDOWS\system32\edgeIso.dll
2021-03-12 23:15:15 ----A---- C:\WINDOWS\system32\msIso.dll
2021-03-12 23:15:14 ----A---- C:\WINDOWS\system32\iertutil.dll
2021-03-12 23:15:13 ----A---- C:\WINDOWS\system32\urlmon.dll
2021-03-12 23:15:13 ----A---- C:\WINDOWS\system32\jsproxy.dll
2021-03-12 23:15:12 ----A---- C:\WINDOWS\system32\wininet.dll
2021-03-12 23:15:11 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2021-03-12 23:15:11 ----A---- C:\WINDOWS\system32\actxprxy.dll
2021-03-12 23:15:10 ----A---- C:\WINDOWS\system32\gpsvc.dll
2021-03-12 23:15:10 ----A---- C:\WINDOWS\system32\gpapi.dll
2021-03-12 23:15:09 ----A---- C:\WINDOWS\system32\profsvcext.dll
2021-03-12 23:15:09 ----A---- C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2021-03-12 23:15:08 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2021-03-12 23:15:08 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2021-03-12 23:15:08 ----A---- C:\WINDOWS\system32\enrollmentapi.dll
2021-03-12 23:15:07 ----A---- C:\WINDOWS\system32\omadmprc.exe
2021-03-12 23:15:07 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2021-03-12 23:15:06 ----A---- C:\WINDOWS\system32\omadmclient.exe
2021-03-12 23:15:05 ----A---- C:\WINDOWS\system32\omadmapi.dll
2021-03-12 23:15:05 ----A---- C:\WINDOWS\system32\dmenterprisediagnostics.dll
2021-03-12 23:15:04 ----A---- C:\WINDOWS\system32\enterprisecsps.dll
2021-03-12 23:15:03 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2021-03-12 23:15:03 ----A---- C:\WINDOWS\system32\dmpushproxy.dll
2021-03-12 23:15:02 ----A---- C:\WINDOWS\system32\dmcertinst.exe
2021-03-12 23:15:00 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2021-03-12 23:15:00 ----A---- C:\WINDOWS\system32\credprovs.dll
2021-03-12 23:14:59 ----A---- C:\WINDOWS\system32\LogonController.dll
2021-03-12 23:14:58 ----A---- C:\WINDOWS\system32\wuuhext.dll
2021-03-12 23:14:57 ----A---- C:\WINDOWS\system32\winlogon.exe
2021-03-12 23:14:57 ----A---- C:\WINDOWS\system32\usermgr.dll
2021-03-12 23:14:56 ----A---- C:\WINDOWS\system32\drivers\clfs.sys
2021-03-12 23:14:55 ----A---- C:\WINDOWS\system32\msctf.dll
2021-03-12 23:14:54 ----A---- C:\WINDOWS\system32\wkssvc.dll
2021-03-12 23:14:54 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2021-03-12 23:14:52 ----A---- C:\WINDOWS\system32\profapi.dll
2021-03-12 23:14:52 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2021-03-12 23:14:50 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2021-03-12 23:14:49 ----A---- C:\WINDOWS\system32\ntdll.dll
2021-03-12 23:14:46 ----A---- C:\WINDOWS\system32\halmacpi.dll
2021-03-12 23:14:45 ----A---- C:\WINDOWS\system32\hal.dll
2021-03-12 23:14:43 ----A---- C:\WINDOWS\system32\WerEnc.dll
2021-03-12 23:14:42 ----A---- C:\WINDOWS\system32\WerFaultSecure.exe
2021-03-12 23:14:42 ----A---- C:\WINDOWS\system32\WerFault.exe
2021-03-12 23:14:42 ----A---- C:\WINDOWS\system32\Faultrep.dll
2021-03-12 23:14:41 ----A---- C:\WINDOWS\system32\pacjsworker.exe
2021-03-12 23:14:41 ----A---- C:\WINDOWS\system32\dbghelp.dll
2021-03-12 23:14:40 ----A---- C:\WINDOWS\system32\winhttp.dll
2021-03-12 23:14:38 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2021-03-12 23:14:37 ----A---- C:\WINDOWS\system32\samsrv.dll
2021-03-12 23:14:37 ----A---- C:\WINDOWS\system32\samlib.dll
2021-03-12 23:14:37 ----A---- C:\WINDOWS\system32\offlinesam.dll
2021-03-12 23:14:36 ----A---- C:\WINDOWS\system32\WinTypes.dll
2021-03-12 23:14:36 ----A---- C:\WINDOWS\system32\wincorlib.dll
2021-03-12 23:14:36 ----A---- C:\WINDOWS\system32\crypt32.dll
2021-03-12 23:14:35 ----A---- C:\WINDOWS\system32\combase.dll
2021-03-12 23:14:34 ----A---- C:\WINDOWS\system32\dcomp.dll
2021-03-12 23:14:32 ----A---- C:\WINDOWS\system32\dwmcore.dll
2021-03-12 23:14:31 ----A---- C:\WINDOWS\system32\wimserv.exe
2021-03-12 23:14:31 ----A---- C:\WINDOWS\system32\wimgapi.dll
2021-03-12 23:14:28 ----A---- C:\WINDOWS\system32\CloudExperienceHost.dll
2021-03-12 23:14:24 ----A---- C:\WINDOWS\system32\winresume.exe
2021-03-12 23:14:23 ----A---- C:\WINDOWS\system32\winload.exe
2021-03-12 23:14:14 ----A---- C:\WINDOWS\system32\cldapi.dll
2021-03-12 23:14:12 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2021-03-12 23:14:09 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2021-03-12 23:14:09 ----A---- C:\WINDOWS\system32\acmigration.dll
2021-03-12 23:14:08 ----A---- C:\WINDOWS\system32\appraiser.dll
2021-03-12 23:14:05 ----A---- C:\WINDOWS\system32\LaunchTM.exe
2021-03-12 23:14:03 ----A---- C:\WINDOWS\system32\tier2punctuations.dll
2021-03-12 23:14:03 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2021-03-12 23:14:02 ----A---- C:\WINDOWS\system32\SRH.dll
2021-03-12 23:13:59 ----A---- C:\WINDOWS\system32\SettingsHandlers_Region.dll
2021-03-12 23:13:57 ----A---- C:\WINDOWS\system32\SettingsHandlers_Language.dll
2021-03-12 23:09:52 ----A---- C:\WINDOWS\system32\WMPhoto.dll
2021-03-12 23:09:50 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2021-03-12 23:09:46 ----A---- C:\WINDOWS\system32\ApplicationFrame.dll
2021-03-12 23:09:41 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2021-03-12 23:09:40 ----A---- C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2021-03-12 23:09:39 ----A---- C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2021-03-12 23:09:38 ----A---- C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2021-03-12 23:09:35 ----A---- C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2021-03-12 23:09:34 ----A---- C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2021-03-12 23:09:33 ----A---- C:\WINDOWS\system32\AppResolver.dll
2021-03-12 23:09:31 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2021-03-12 23:09:31 ----A---- C:\WINDOWS\system32\wuauclt.exe
2021-03-12 23:09:30 ----A---- C:\WINDOWS\system32\wups2.dll
2021-03-12 23:09:30 ----A---- C:\WINDOWS\system32\wuaueng.dll
2021-03-12 23:09:29 ----A---- C:\WINDOWS\system32\UpdateDeploymentProvider.dll
2021-03-12 23:09:28 ----A---- C:\WINDOWS\system32\wuapi.dll
2021-03-12 23:09:26 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2021-03-12 23:09:25 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2021-03-12 23:09:24 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2021-03-12 23:09:23 ----A---- C:\WINDOWS\system32\MusNotification.exe
2021-03-12 23:09:22 ----A---- C:\WINDOWS\system32\upshared.dll
2021-03-12 23:09:20 ----A---- C:\WINDOWS\system32\UsoClient.exe
2021-03-12 23:09:20 ----A---- C:\WINDOWS\system32\updatecsp.dll
2021-03-12 23:09:19 ----A---- C:\WINDOWS\system32\usocoreworker.exe
2021-03-12 23:09:19 ----A---- C:\WINDOWS\system32\MoUsoCoreWorker.exe
2021-03-12 23:09:18 ----A---- C:\WINDOWS\system32\usosvc.dll
2021-03-12 23:09:17 ----A---- C:\WINDOWS\system32\usoapi.dll
2021-03-12 23:09:17 ----A---- C:\WINDOWS\system32\DuCsps.dll
2021-03-12 23:09:16 ----A---- C:\WINDOWS\system32\SettingsHandlers_Authentication.dll
2021-03-12 23:09:13 ----A---- C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2021-03-12 23:09:10 ----A---- C:\WINDOWS\system32\wevtutil.exe
2021-03-12 23:09:09 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2021-03-12 23:09:09 ----A---- C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2021-03-12 23:09:08 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2021-03-12 23:09:06 ----A---- C:\WINDOWS\system32\mdmregistration.dll
2021-03-12 23:09:06 ----A---- C:\WINDOWS\system32\MdmDiagnosticsTool.exe
2021-03-12 23:09:05 ----A---- C:\WINDOWS\system32\daxexec.dll
2021-03-12 23:09:05 ----A---- C:\WINDOWS\system32\aadjcsp.dll
2021-03-12 23:09:04 ----A---- C:\WINDOWS\system32\win32kfull.sys
2021-03-12 23:09:03 ----A---- C:\WINDOWS\system32\win32u.dll
2021-03-12 23:09:03 ----A---- C:\WINDOWS\system32\win32k.sys
2021-03-12 23:09:02 ----A---- C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2021-03-12 23:09:02 ----A---- C:\WINDOWS\system32\rdpserverbase.dll
2021-03-12 23:09:01 ----A---- C:\WINDOWS\system32\wpncore.dll
2021-03-12 23:09:00 ----A---- C:\WINDOWS\system32\FWPUCLNT.DLL
2021-03-12 23:09:00 ----A---- C:\WINDOWS\system32\drivers\wfplwfs.sys
2021-03-12 23:08:59 ----A---- C:\WINDOWS\system32\IKEEXT.DLL
2021-03-12 23:08:59 ----A---- C:\WINDOWS\system32\BFE.DLL
2021-03-12 23:08:58 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.Resources.th.dll
2021-03-12 23:08:57 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2021-03-12 23:08:57 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2021-03-12 23:08:57 ----A---- C:\WINDOWS\system32\StateRepository.Core.dll
2021-03-12 23:08:56 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2021-03-12 23:08:56 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2021-03-12 23:08:55 ----A---- C:\WINDOWS\system32\Windows.StateRepositoryPS.dll
2021-03-12 23:08:54 ----A---- C:\WINDOWS\system32\Windows.StateRepository.dll
2021-03-12 23:08:54 ----A---- C:\WINDOWS\system32\profext.dll
2021-03-12 23:08:53 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2021-03-12 23:08:52 ----A---- C:\WINDOWS\system32\windows.storage.dll
2021-03-12 23:08:52 ----A---- C:\WINDOWS\system32\storewuauth.dll
2021-03-12 23:08:51 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2021-03-12 23:08:51 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2021-03-12 23:08:50 ----A---- C:\WINDOWS\system32\TileDataRepository.dll
2021-03-12 23:08:50 ----A---- C:\WINDOWS\system32\InstallServiceTasks.dll
2021-03-12 23:08:50 ----A---- C:\WINDOWS\system32\InstallService.dll
2021-03-12 23:08:49 ----A---- C:\WINDOWS\system32\fidocredprov.dll
2021-03-12 23:08:48 ----A---- C:\WINDOWS\system32\ISM.dll
2021-03-12 23:08:47 ----A---- C:\WINDOWS\system32\tsf3gip.dll
2021-03-12 23:08:47 ----A---- C:\WINDOWS\system32\TextInputFramework.dll
2021-03-12 23:08:47 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2021-03-12 23:08:46 ----A---- C:\WINDOWS\system32\WordBreakers.dll
2021-03-12 23:08:46 ----A---- C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2021-03-12 23:08:46 ----A---- C:\WINDOWS\system32\EditBufferTestHook.dll
2021-03-12 23:08:45 ----A---- C:\WINDOWS\system32\InputService.dll
2021-03-12 23:08:43 ----A---- C:\WINDOWS\system32\tquery.dll
2021-03-12 23:08:42 ----A---- C:\WINDOWS\system32\mssrch.dll
2021-03-12 23:08:42 ----A---- C:\WINDOWS\system32\mssprxy.dll
2021-03-12 23:08:40 ----A---- C:\WINDOWS\system32\mssvp.dll
2021-03-12 23:08:39 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2021-03-12 23:08:38 ----A---- C:\WINDOWS\system32\mssph.dll
2021-03-12 23:08:37 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2021-03-12 23:08:36 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2021-03-12 23:08:35 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2021-03-12 23:08:35 ----A---- C:\WINDOWS\system32\mssitlb.dll
2021-03-12 23:08:35 ----A---- C:\WINDOWS\system32\msscntrs.dll
2021-03-12 23:08:32 ----A---- C:\WINDOWS\system32\win32kbase.sys
2021-03-12 23:08:31 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2021-03-12 23:08:31 ----A---- C:\WINDOWS\system32\TextShaping.dll
2021-03-12 23:08:30 ----A---- C:\WINDOWS\system32\d3d9on12.dll
2021-03-12 23:08:29 ----A---- C:\WINDOWS\system32\d3d11on12.dll
2021-03-12 23:08:27 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2021-03-12 23:08:24 ----A---- C:\WINDOWS\system32\msxml6r.dll
2021-03-12 23:08:23 ----A---- C:\WINDOWS\system32\msxml6.dll
2021-03-12 23:08:22 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2021-03-12 23:08:21 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2021-03-12 23:08:18 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2021-03-12 23:08:18 ----A---- C:\WINDOWS\system32\cdd.dll
2021-03-12 23:08:14 ----A---- C:\WINDOWS\system32\Windows.Management.Workplace.dll
2021-03-12 23:08:14 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2021-03-12 23:08:13 ----A---- C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2021-03-12 23:08:13 ----A---- C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2021-03-12 23:08:12 ----A---- C:\WINDOWS\system32\appinfo.dll
2021-03-12 23:08:11 ----A---- C:\WINDOWS\system32\ActivationManager.dll
2021-03-12 23:05:32 ----A---- C:\WINDOWS\system32\smartscreenps.dll
2021-03-12 23:05:32 ----A---- C:\WINDOWS\system32\smartscreen.exe
2021-03-12 23:05:31 ----A---- C:\WINDOWS\system32\GameInput.dll
2021-03-12 23:05:31 ----A---- C:\WINDOWS\system32\cloudAP.dll
2021-03-12 23:05:29 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2021-03-12 23:05:29 ----A---- C:\WINDOWS\system32\AssignedAccessRuntime.dll
2021-03-12 23:05:28 ----A---- C:\WINDOWS\system32\CustomInstallExec.exe
2021-03-12 23:05:26 ----A---- C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2021-03-12 23:05:26 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2021-03-12 23:05:25 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2021-03-12 23:05:24 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2021-03-12 23:05:23 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2021-03-12 23:05:22 ----A---- C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2021-03-12 23:05:20 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2021-03-12 23:05:15 ----A---- C:\WINDOWS\system32\ReAgent.dll
2021-03-12 23:05:15 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2021-03-12 23:05:11 ----A---- C:\WINDOWS\system32\wsmprovhost.exe
2021-03-12 23:05:11 ----A---- C:\WINDOWS\system32\wsmplpxy.dll
2021-03-12 23:05:11 ----A---- C:\WINDOWS\system32\winrscmd.dll
2021-03-12 23:05:10 ----A---- C:\WINDOWS\system32\WsmRes.dll
2021-03-12 23:05:10 ----A---- C:\WINDOWS\system32\WSManMigrationPlugin.dll
2021-03-12 23:05:10 ----A---- C:\WINDOWS\system32\WSManHTTPConfig.exe
2021-03-12 23:05:10 ----A---- C:\WINDOWS\system32\WsmAgent.dll
2021-03-12 23:05:09 ----A---- C:\WINDOWS\system32\WsmWmiPl.dll
2021-03-12 23:05:09 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2021-03-12 23:05:09 ----A---- C:\WINDOWS\system32\WsmAuto.dll
2021-03-12 23:05:08 ----A---- C:\WINDOWS\system32\StartTileData.dll
2021-03-12 23:05:07 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2021-03-12 23:05:07 ----A---- C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2021-03-12 23:05:06 ----A---- C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2021-03-12 23:05:05 ----A---- C:\WINDOWS\system32\drivers\WdiWiFi.sys
2021-03-12 23:05:00 ----A---- C:\WINDOWS\system32\drivers\nwifi.sys
2021-03-12 23:04:23 ----A---- C:\WINDOWS\system32\taskbarcpl.dll
2021-03-12 23:04:21 ----A---- C:\WINDOWS\explorer.exe
2021-03-12 23:04:20 ----A---- C:\WINDOWS\system32\dsreg.dll
2021-03-12 23:04:19 ----A---- C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll
2021-03-12 23:04:18 ----A---- C:\WINDOWS\system32\TpmCertResources.dll
2021-03-12 23:04:17 ----A---- C:\WINDOWS\system32\TpmCoreProvisioning.dll
2021-03-12 23:04:16 ----A---- C:\WINDOWS\system32\SettingSync.dll
2021-03-12 23:04:14 ----A---- C:\WINDOWS\system32\wbemcomn.dll
2021-03-12 23:04:13 ----A---- C:\WINDOWS\system32\ncobjapi.dll
2021-03-12 23:04:08 ----A---- C:\WINDOWS\system32\framedynos.dll
2021-03-12 23:04:05 ----A---- C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2021-03-12 23:04:04 ----A---- C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2021-03-12 23:04:04 ----A---- C:\WINDOWS\system32\ProvPluginEng.dll
2021-03-12 23:04:03 ----A---- C:\WINDOWS\system32\provops.dll
2021-03-12 23:04:02 ----A---- C:\WINDOWS\system32\provisioningcsp.dll
2021-03-12 23:04:02 ----A---- C:\WINDOWS\system32\provhandlers.dll
2021-03-12 23:04:01 ----A---- C:\WINDOWS\system32\provengine.dll
2021-03-12 23:04:01 ----A---- C:\WINDOWS\system32\provdatastore.dll
2021-03-12 23:04:00 ----A---- C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2021-03-12 23:04:00 ----A---- C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2021-03-12 23:03:59 ----A---- C:\WINDOWS\system32\KnobsCsp.dll
2021-03-12 23:03:59 ----A---- C:\WINDOWS\system32\KnobsCore.dll
2021-03-12 23:03:58 ----A---- C:\WINDOWS\system32\provtool.exe
2021-03-12 23:03:57 ----A---- C:\WINDOWS\system32\printfilterpipelinesvc.exe
2021-03-12 23:03:57 ----A---- C:\WINDOWS\system32\printfilterpipelineprxy.dll
2021-03-12 23:03:56 ----A---- C:\WINDOWS\system32\FaxPrinterInstaller.dll
2021-03-12 23:03:55 ----A---- C:\WINDOWS\system32\localspl.dll
2021-03-12 23:03:47 ----A---- C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2021-03-12 23:03:46 ----A---- C:\WINDOWS\system32\WpcTok.exe
2021-03-12 23:03:45 ----A---- C:\WINDOWS\system32\ofdeploy.exe
2021-03-12 23:03:43 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2021-03-12 23:03:42 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2021-03-12 23:03:38 ----A---- C:\WINDOWS\system32\drivers\storport.sys
2021-03-12 23:03:32 ----A---- C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2021-03-12 23:03:31 ----A---- C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2021-03-12 23:03:31 ----A---- C:\WINDOWS\system32\AarSvc.dll
2021-03-12 23:03:30 ----A---- C:\WINDOWS\system32\agentactivationruntime.dll
2021-03-12 23:03:29 ----A---- C:\WINDOWS\system32\agentactivationruntimewindows.dll
2021-03-12 23:03:26 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2021-03-12 23:03:25 ----A---- C:\WINDOWS\system32\DTUHandlerPS.dll
2021-03-12 23:03:25 ----A---- C:\WINDOWS\system32\DTUHandler.exe
2021-03-12 23:03:24 ----A---- C:\WINDOWS\system32\PhoneProviders.dll
2021-03-12 23:03:22 ----A---- C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2021-03-12 23:03:22 ----A---- C:\WINDOWS\system32\autopilotdiag.dll
2021-03-12 23:03:21 ----A---- C:\WINDOWS\system32\autopilot.dll
2021-03-12 23:03:20 ----A---- C:\WINDOWS\system32\Windows.Management.Service.dll
2021-03-12 23:03:18 ----A---- C:\WINDOWS\system32\xboxgipsvc.dll
2021-03-12 23:02:35 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2021-03-12 23:02:29 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2021-03-12 23:02:27 ----A---- C:\WINDOWS\system32\drivers\BthMini.SYS
2021-03-12 23:02:24 ----A---- C:\WINDOWS\system32\drivers\bthenum.sys
2021-03-12 23:02:17 ----A---- C:\WINDOWS\system32\drivers\stornvme.sys
2021-03-12 23:02:14 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2021-03-12 23:02:12 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2021-03-12 23:02:09 ----A---- C:\WINDOWS\system32\drivers\xinputhid.sys
2021-03-12 23:02:07 ----A---- C:\WINDOWS\system32\drivers\devauthe.sys
2021-03-12 23:01:52 ----A---- C:\WINDOWS\system32\drivers\xboxgip.sys
2021-03-12 21:16:34 ----A---- C:\WINDOWS\system32\poqexec.exe
2021-03-11 21:27:02 ----D---- C:\Users\72pav\AppData\Roaming\SUPERAntiSpyware.com
2021-03-11 21:25:42 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2021-03-11 21:25:42 ----D---- C:\Program Files\SUPERAntiSpyware
2021-03-11 20:17:50 ----D---- C:\ProgramData\Malwarebytes
2021-03-11 19:40:34 ----A---- C:\WINDOWS\system32\drivers\HWiNFO32_160.SYS
2021-03-11 19:02:45 ----D---- C:\Users\72pav\AppData\Roaming\GHISLER
2021-03-11 19:02:45 ----D---- C:\totalcmd
2021-02-28 10:25:55 ----A---- C:\WINDOWS\system32\aswBoot.exe
2021-02-28 10:25:53 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2021-02-22 15:03:15 ----D---- C:\WINDOWS\system32\Logs
2021-02-22 15:03:15 ----A---- C:\WINDOWS\system32\sedplugins.dll
2021-02-22 15:03:15 ----A---- C:\WINDOWS\system32\QualityUpdateAssistant.dll
2021-02-22 15:03:13 ----D---- C:\Program Files\Microsoft Update Health Tools
2021-02-16 20:07:50 ----D---- C:\ProgramData\SafeNet Sentinel
2021-02-16 20:07:42 ----A---- C:\WINDOWS\system32\drivers\aksfridge.sys
2021-02-16 20:07:41 ----A---- C:\WINDOWS\system32\drivers\hardlock.sys
2021-02-16 20:07:29 ----A---- C:\WINDOWS\system32\hlvdd.dll

======List of files/folders modified in the last 1 month======

2021-03-13 14:21:42 ----D---- C:\WINDOWS\Temp
2021-03-13 14:21:25 ----D---- C:\WINDOWS\Prefetch
2021-03-13 14:21:19 ----RD---- C:\Program Files
2021-03-13 14:18:45 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2021-03-13 14:17:44 ----D---- C:\ProgramData\Mozilla
2021-03-13 14:03:40 ----SHD---- C:\System Volume Information
2021-03-13 13:33:09 ----D---- C:\WINDOWS\system32\sru
2021-03-13 13:32:45 ----D---- C:\Program Files\CCleaner
2021-03-13 01:49:00 ----D---- C:\ProgramData\AVAST Software
2021-03-13 01:47:06 ----D---- C:\WINDOWS\system32\config
2021-03-13 01:43:16 ----RD---- C:\WINDOWS\Microsoft.NET
2021-03-13 01:38:05 ----D---- C:\Windows
2021-03-13 01:37:51 ----D---- C:\WINDOWS\WinSxS
2021-03-13 01:37:22 ----D---- C:\ProgramData\NVIDIA
2021-03-13 01:37:19 ----ASH---- C:\DumpStack.log.tmp
2021-03-13 01:36:03 ----D---- C:\WINDOWS\system32\catroot2
2021-03-13 01:34:59 ----D---- C:\WINDOWS\System32
2021-03-13 01:33:12 ----D---- C:\WINDOWS\CbsTemp
2021-03-13 01:18:46 ----D---- C:\WINDOWS\AppReadiness
2021-03-13 01:18:39 ----HD---- C:\Program Files\WindowsApps
2021-03-13 01:15:04 ----SHD---- C:\Boot
2021-03-13 01:14:37 ----D---- C:\WINDOWS\INF
2021-03-13 01:13:57 ----D---- C:\WINDOWS\system32\DriverStore
2021-03-13 01:10:52 ----D---- C:\WINDOWS\system32\CatRoot
2021-03-13 01:08:01 ----D---- C:\WINDOWS\SystemResources
2021-03-13 01:07:58 ----D---- C:\WINDOWS\system32\WinBioPlugins
2021-03-13 01:07:58 ----D---- C:\WINDOWS\system32\wbem
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\SystemResetPlatform
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\setup
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\oobe
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\migration
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\en-US
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\drivers
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\Dism
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\cs-CZ
2021-03-13 01:07:57 ----D---- C:\WINDOWS\system32\Boot
2021-03-13 01:07:48 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2021-03-13 01:07:48 ----D---- C:\WINDOWS\Provisioning
2021-03-13 01:07:48 ----D---- C:\WINDOWS\PolicyDefinitions
2021-03-13 01:07:48 ----D---- C:\WINDOWS\bcastdvr
2021-03-13 01:07:48 ----D---- C:\WINDOWS\apppatch
2021-03-13 01:03:21 ----D---- C:\WINDOWS\system32\SleepStudy
2021-03-12 00:16:10 ----SHD---- C:\WINDOWS\Installer
2021-03-12 00:13:09 ----D---- C:\WINDOWS\Downloaded Installations
2021-03-11 23:20:24 ----D---- C:\WINDOWS\system32\Tasks
2021-03-11 23:20:23 ----D---- C:\WINDOWS\Tasks
2021-03-11 21:26:58 ----HD---- C:\ProgramData
2021-03-11 21:00:39 ----D---- C:\WINDOWS\debug
2021-03-11 20:55:47 ----HD---- C:\WINDOWS\ELAMBKUP
2021-03-11 20:51:18 ----D---- C:\ProgramData\Solvusoft
2021-03-11 19:39:54 ----D---- C:\Program Files\HWiNFO32
2021-03-10 19:30:56 ----D---- C:\WINDOWS\system32\MRT
2021-03-10 19:02:17 ----AC---- C:\WINDOWS\system32\MRT.exe
2021-03-03 18:36:58 ----D---- C:\WINDOWS\Minidump
2021-03-03 18:36:58 ----D---- C:\WINDOWS\LiveKernelReports
2021-03-02 22:46:57 ----D---- C:\WINDOWS\system32\NDF
2021-03-02 20:03:10 ----D---- C:\Program Files\Mozilla Firefox
2021-02-26 16:45:48 ----D---- C:\WINDOWS\Logs
2021-02-16 14:31:43 ----D---- C:\WINDOWS\SoftwareDistribution

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2021-02-28 33544]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2021-02-28 206304]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2021-02-28 91616]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2021-01-04 16320]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2021-02-28 71352]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2021-02-28 276960]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-12-07 45584]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\drivers\PxHelp20.sys [2013-09-03 46096]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2020-09-07 29696]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2021-02-28 175872]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2021-02-28 287192]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2021-02-28 39248]
R1 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2021-02-28 147728]
R1 aswNetHub;aswNetHub; C:\WINDOWS\system32\drivers\aswNetHub.sys [2021-02-28 376840]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2021-02-28 92696]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2021-02-28 690144]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2021-02-28 384136]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2019-12-07 69432]
R1 CimFS;CimFS; C:\WINDOWS\system32\drivers\CimFS.sys [2019-12-07 68096]
R1 CPEPMon;CPEPMon; C:\WINDOWS\system32\DRIVERS\CPEPMon.sys [2019-11-05 92960]
R1 epnetflt;Endpoint Security Network Filter Driver; \??\C:\WINDOWS\system32\drivers\epnetflt.sys [2019-10-06 103824]
R1 epregflt;Endpoint Security Registry Filter Driver; \??\C:\WINDOWS\system32\drivers\epregflt.sys [2019-05-01 108736]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2019-12-07 45568]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2019-12-07 8192]
R1 HWiNFO;HWiNFO Kernel Driver; \??\C:\WINDOWS\system32\drivers\HWiNFO32.SYS [2020-02-22 52624]
R1 HWiNFO_160;HWiNFO Kernel Driver (v160); \??\C:\WINDOWS\system32\drivers\HWiNFO32_160.SYS [2021-03-11 55568]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2021-01-09 12880]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2021-01-09 67664]
R2 aksfridge;aksfridge; \??\C:\WINDOWS\system32\drivers\aksfridge.sys [2020-05-29 444752]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2021-02-28 161312]
R2 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2020-12-09 112456]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2021-02-10 380416]
R2 cpbak;cpbak; C:\WINDOWS\system32\DRIVERS\cpbak.sys [2019-11-05 55584]
R2 hardlock;hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys [2020-05-29 605624]
R2 ISWKL;ISWKL; \??\C:\Program Files\CheckPoint\Endpoint Security\Endpoint Common\bin\ISWKL.sys [2019-08-12 57584]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2020-10-15 37376]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHDA.sys [2015-10-04 3596544]
R3 MsQuic;@%SystemRoot%\system32\drivers\msquic.sys,-1; C:\WINDOWS\system32\drivers\msquic.sys [2020-09-07 237368]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2016-11-14 10711488]
R3 NVNET;@netnvm32.inf,%NVENETFD.Service.DispName%;NVIDIA nForce Ethernet Driver; C:\WINDOWS\System32\drivers\nvmf6232.sys [2019-12-07 291456]
R3 nvvad_WaveExtensible;@oem2.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad32v.sys [2016-11-14 50744]
R3 rt640x86;@oem25.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x86.sys [2015-07-28 746752]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2019-12-07 692536]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2019-12-07 139792]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2019-12-07 103440]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2019-12-07 112656]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2019-12-07 72208]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2019-12-07 87568]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2019-12-07 51728]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2019-12-07 59408]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2019-12-07 33808]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2019-12-07 15360]
S3 Acx01000;@%SystemRoot%\system32\drivers\Acx01000.sys,-1000; C:\WINDOWS\system32\drivers\Acx01000.sys [2019-12-07 296448]
S3 amdiox86;AMD IO Driver; C:\WINDOWS\System32\drivers\amdiox86.sys [2015-09-25 37944]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2020-10-15 13312]
S3 avchv;avchv Function Driver; C:\WINDOWS\System32\drivers\avchv.sys [2016-08-29 265424]
S3 BthA2dp;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\System32\drivers\BthA2dp.sys [2019-12-07 200192]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2021-03-12 91136]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2020-09-07 78848]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2021-03-12 30720]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\drivers\BTHport.sys [2021-03-12 1175552]
S3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\drivers\BTHUSB.sys [2021-03-12 76288]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2019-12-07 31232]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2019-12-07 55608]
S3 cpuz137;cpuz137; \??\C:\Program Files\CPUID\PC Wizard 2015\pcwiz_x32.sys [2014-02-17 26856]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_x86_9fb34a6bf4965cb2\genericusbfn.sys [2019-12-07 18944]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2019-12-07 22016]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2019-12-07 41272]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2019-12-07 45056]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2019-12-07 21504]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2019-12-07 28672]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2019-12-07 73728]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2019-12-07 57856]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2020-10-15 32768]
S3 intelpmax;@intelpmax.inf,%SvcDesc%;Intel(R) Dynamic Device Peak Power Manager Driver; C:\WINDOWS\System32\drivers\intelpmax.sys [2019-12-07 22016]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2019-12-07 45368]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2019-12-07 426808]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2019-12-07 47632]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2020-08-16 296960]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2019-12-07 46080]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2021-02-10 145408]
S3 nvstor32;nvstor32; C:\WINDOWS\System32\drivers\nvstor32.sys [2015-11-13 110624]
S3 NvStUSB;NVIDIA Stereoscopic 3D USB driver; C:\WINDOWS\System32\drivers\nvstusb.sys [2016-12-09 444784]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2020-11-12 87872]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2019-12-07 13312]
S3 portcfg;portcfg; C:\WINDOWS\System32\drivers\portcfg.sys [2019-12-07 19968]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2019-12-07 159744]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2019-12-07 79360]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2021-01-09 143776]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe [2021-02-17 3780296]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021-02-17 3548360]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2021-02-28 563416]
R2 avast! Tools;Avast Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2021-02-28 330976]
R2 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2021-02-28 56904]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R2 CDPUserSvc_28b539;Uživatelská služba platformy připojených zařízení_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R2 CPEFR;Check Point Endpoint EFR; C:\Program Files\CheckPoint\Endpoint Security\EFR\EFRService.exe [2019-11-27 2825976]
R2 CpSbaCipolla;Check Point Sandblast Agent Cipolla; C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [2019-10-29 33016]
R2 CpSbaUpdater;Check Point Sandblast Agent Updater; C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [2019-10-29 33016]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
R2 DispBrokerDesktopSvc;@%SystemRoot%\system32\dispbroker.desktop.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2016-11-14 930240]
R2 hasplms;Sentinel LDK License Manager; C:\Program Files\Common Files\Aladdin Shared\HASP\hasplms.exe [2020-05-29 5730312]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [2016-11-14 1879488]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2016-11-14 677312]
R2 OneSyncSvc_28b539;Hostitel synchronizace_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R2 RemediationService;Check Point Endpoint Remediation; C:\Program Files\CheckPoint\Endpoint Security\Remediation\RemediationService.exe [2019-11-04 18168]
R3 AarSvc_28b539;Agent Activation Runtime_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2021-03-03 7195160]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R3 cbdhsvc_28b539;Uživatelská služba schránky_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
R3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
R3 PimIndexMaintenanceSvc_28b539;Data kontaktů_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2021-02-10 800040]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S2 edgeupdate;Služba Microsoft Edge Update (edgeupdate); C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-08 224160]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2018-01-15 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016-11-14 2016704]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 AarSvc;@%SystemRoot%\system32\AarSvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 autotimesvc;@%SystemRoot%\System32\autotimesvc.dll,-6; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 BcastDVRUserService_28b539;Uživatelská služba pro GameDVR a vysílání her_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 BluetoothUserService_28b539;Služba pro podporu uživatelů Bluetooth_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 brlapi;BRLAPI; C:\WINDOWS\brltty\bin\brltty.exe [2020-08-16 847886]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 CaptureService_28b539;CaptureService_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 ConsentUxUserSvc_28b539;ConsentUX_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 CredentialEnrollmentManagerUserSvc;@%SystemRoot%\system32\CredentialEnrollmentManager.exe,-100; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-03-12 293368]
S3 CredentialEnrollmentManagerUserSvc_28b539;CredentialEnrollmentManagerUserSvc_28b539; C:\WINDOWS\system32\CredentialEnrollmentManager.exe [2021-03-12 293368]
S3 DeviceAssociationBrokerSvc;@%SystemRoot%\system32\deviceaccess.dll,-107; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DeviceAssociationBrokerSvc_28b539;DeviceAssociationBroker_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DevicePickerUserSvc_28b539;DevicePicker_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DevicesFlowUserSvc_28b539;Tok zařízení_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2021-01-15 71680]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 edgeupdatem;Služba Microsoft Edge Update (edgeupdatem); C:\Program Files\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe [2020-06-08 224160]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2019-12-03 45976]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files\Google\Chrome\Application\89.0.4389.82\elevation_service.exe [2021-03-05 1151592]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2018-01-15 153168]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 MessagingService_28b539;Služba zasílání zpráv_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 MicrosoftEdgeElevationService;Microsoft Edge Elevation Service; C:\Program Files\Microsoft\Edge\Application\89.0.774.50\elevation_service.exe [2021-03-10 1192840]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2021-01-15 80896]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 PrintWorkflowUserSvc_28b539;PrintWorkflow_28b539; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2021-01-15 870912]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2020-10-15 47016]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2021-01-15 627712]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2020-10-15 47016]

-----------------EOF-----------------

Re: Disk jede na 100%

Napsal: 13 bře 2021 15:29
od Rudy
Zdravím!
Pro vyčištění nemohu použít RSIT, ke s desítkami nekompatibilní a může poškodit oper. systém. Proces patří k softwaru Check Point EFR Light Agent. Není nezbytný pro chod systému a lze ho i odinstalovat standardně přes ovl. panely.

Re: Disk jede na 100%

Napsal: 13 bře 2021 15:50
od dorkon
V ovládacích panelech ten program není. Zkoušel jsem to přes total comander ,ale tam to také nešlo,jelikož je program stále používán. Vypnutí přes správce úloh se podaří jenom na chvíli.

Re: Disk jede na 100%

Napsal: 13 bře 2021 17:02
od Rudy
Tak ho zakažte v services. Do příkazového řádku napište:
services.msc
a odentrujte

Otevře se okno služeb. Službu najděte, klikněe na ni prvým myšítkem a v rozbalovacím menu vyberte "zakázat". Restartujte PC.

Re: Disk jede na 100%

Napsal: 13 bře 2021 18:46
od dorkon
Přes servces se to podařilo zakázat a také jsem získal logy z FRST.


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{6ed484b7-7dae-41f3-b9b0-380db601314d}: [DhcpNameServer] 192.168.0.1
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION

Edge:
=======
Edge Profile: C:\Users\72pav\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-13]

FireFox:
========
FF DefaultProfile: lxw2l5mn.default
FF ProfilePath: C:\Users\72pav\AppData\Roaming\Mozilla\Firefox\Profiles\lxw2l5mn.default [2021-03-13]
FF Homepage: Mozilla\Firefox\Profiles\lxw2l5mn.default -> hxxps://www.seznam.cz/
FF Notifications: Mozilla\Firefox\Profiles\lxw2l5mn.default -> hxxps://pusshnetwork.com
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: {ea614400-e918-4741-9a97-7a972ff7c30b}
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: wikipedia@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: mapy-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: heureka-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: ddg@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: seznam-cz@search.mozilla.org
FF NewTabOverride: Mozilla\Firefox\Profiles\lxw2l5mn.default -> Enabled: google@search.mozilla.org
FF Extension: (Seznam doplněk - Esko) - C:\Users\72pav\AppData\Roaming\Mozilla\Firefox\Profiles\lxw2l5mn.default\Extensions\sko-extension@firma.seznam.cz.xpi [2020-04-27]
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]

Chrome:
=======
CHR Profile: C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default [2021-03-13]
CHR HomePage: Default -> hxxp://www.google.com
CHR Extension: (Prezentace) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-15]
CHR Extension: (Dokumenty) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-15]
CHR Extension: (Disk Google) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-15]
CHR Extension: (YouTube) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-15]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-10-02]
CHR Extension: (Tabulky) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-19]
CHR Extension: (Gmail) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-11-19]
CHR Extension: (Chrome Media Router) - C:\Users\72pav\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-02]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [143776 2021-01-09] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
R2 AGMService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGMService.exe [3780296 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe [3548360 2021-02-17] (Adobe Inc. -> Adobe Systems, Incorporated)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [7195160 2021-03-03] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [563416 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [330976 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [56904 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
S3 brlapi; C:\WINDOWS\brltty\bin\brltty.exe [847886 2020-08-16] (Microsoft Windows -> )
S4 CPEFR; C:\Program Files\CheckPoint\Endpoint Security\EFR\EFRService.exe [2825976 2019-11-27] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S4 CpSbaCipolla; C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33016 2019-10-29] (Check Point Software Technologies Ltd. -> )
S4 CpSbaUpdater; C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\SBACipollaSrvHost.exe [33016 2019-10-29] (Check Point Software Technologies Ltd. -> )
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [930240 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 hasplms; C:\Program Files\Common Files\Aladdin Shared\HASP\hasplms.exe [5730312 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2016704 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
S4 RemediationService; C:\Program Files\CheckPoint\Endpoint Security\Remediation\RemediationService.exe [18168 2019-11-04] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S4 TESvc; C:\Program Files\CheckPoint\Endpoint Security\Threat Emulation\TESvc.exe [301304 2019-11-04] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S4 uhssvc; C:\Program Files\Microsoft Update Health Tools\uhssvc.exe [259904 2021-02-05] (Microsoft Windows -> Microsoft Corporation)
R2 vsmon; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [4292984 2018-05-18] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [2250992 2020-01-05] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [85240 2020-01-05] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 XperiaCompanionService; C:\Program Files\Sony\Xperia Companion\Service\XperiaCompanionService.exe [2032136 2021-01-05] (Sony Mobile Communications AB -> Sony)
R2 xrdd.exe; C:\Program Files\X-Rite\Devices\Services\xrdd.exe [91048 2020-06-01] (X-Rite Incorporated -> X-Rite Inc.)
R2 ZA NET ICM Service; C:\Program Files\CheckPoint\ICM\ICM-Service-NET.exe [42208 2020-03-13] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
R2 ZAARUpdateService; C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\ZAARUpdateService.exe [51936 2019-11-27] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 ZAPrivacyService; C:\Program Files\CheckPoint\ZoneAlarm\ZaPrivacyService.exe [114936 2018-05-15] (Check Point Software Technologies Ltd. -> Check Point Software Technologies, Ltd.)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aksfridge; C:\WINDOWS\system32\drivers\aksfridge.sys [444752 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.)
S3 amdiox86; C:\WINDOWS\System32\drivers\amdiox86.sys [37944 2015-09-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [33544 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [175872 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [287192 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206304 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [91616 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16320 2021-01-04] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [39248 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [147728 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [376840 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [92696 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [71352 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [690144 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [384136 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [161312 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [276960 2021-02-28] (Avast Software s.r.o. -> AVAST Software)
S3 avchv; C:\WINDOWS\System32\drivers\avchv.sys [265424 2016-08-29] (Bitdefender SRL -> BitDefender)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [200192 2019-12-07] (Microsoft Corporation) [File not signed]
R2 cpbak; C:\WINDOWS\System32\DRIVERS\cpbak.sys [55584 2019-11-05] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 CPEPMon; C:\WINDOWS\System32\DRIVERS\CPEPMon.sys [92960 2019-11-05] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
S3 cpuz137; C:\Program Files\CPUID\PC Wizard 2015\pcwiz_x32.sys [26856 2014-02-17] (CPUID -> CPUID)
R1 epnetflt; C:\WINDOWS\system32\drivers\epnetflt.sys [103824 2019-10-06] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R1 epregflt; C:\WINDOWS\system32\drivers\epregflt.sys [108736 2019-05-01] (Check Point Software Technologies Ltd. -> Check Point Software Technologies)
R2 hardlock; C:\WINDOWS\system32\drivers\hardlock.sys [605624 2020-05-29] (Gemalto, Inc. -> SafeNet, Inc.)
R1 HWiNFO; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [52624 2020-02-22] (Martin Malik - REALiX -> REALiX(tm))
R1 HWiNFO_160; C:\WINDOWS\system32\drivers\HWiNFO32_160.SYS [55568 2021-03-11] (Martin Malik - REALiX -> REALiX(tm))
R2 ISWKL; C:\Program Files\CheckPoint\Endpoint Security\Endpoint Common\bin\ISWKL.sys [57584 2019-08-12] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 NvStUSB; C:\WINDOWS\System32\drivers\nvstusb.sys [444784 2016-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [50744 2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
R0 PxHelp20; C:\WINDOWS\System32\drivers\PxHelp20.sys [46096 2013-09-03] (Corel Corporation -> Corel Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [746752 2015-07-28] (Realtek Semiconductor Corp -> Realtek)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2021-01-09] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [15872 2020-09-07] (Microsoft Windows -> Microsoft Corporation)
R1 Vsdatant; C:\WINDOWS\system32\DRIVERS\vsdatant.sys [365496 2018-05-15] (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [37472 2020-01-05] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [278456 2020-01-05] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [39368 2020-01-05] (Microsoft Windows -> Microsoft Corporation)
R2 WinI2C-DDC; C:\WINDOWS\system32\drivers\DDCDrv.sys [10240 2016-10-28] (Nicomsoft Ltd.) [File not signed]
S3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [213504 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
U3 iswSvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-13 18:27 - 2021-03-13 18:30 - 000014077 _____ C:\Users\72pav\Desktop\FRST.txt
2021-03-13 18:26 - 2021-03-13 18:28 - 000000000 ____D C:\FRST
2021-03-13 18:06 - 2021-03-13 18:30 - 007337536 _____ C:\WINDOWS\cpepmon.mlf
2021-03-13 17:53 - 2021-03-13 17:53 - 002013696 _____ (Farbar) C:\Users\72pav\Desktop\FRST.exe
2021-03-13 14:21 - 2021-03-13 14:21 - 000000000 ____D C:\rsit
2021-03-13 14:21 - 2021-03-13 14:21 - 000000000 ____D C:\Program Files\trend micro
2021-03-12 23:18 - 2021-03-12 23:18 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-03-12 23:17 - 2021-03-12 23:17 - 000941568 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-03-12 23:14 - 2021-03-12 23:14 - 001432296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-03-12 23:14 - 2021-03-12 23:14 - 001128520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-03-12 23:08 - 2021-03-12 23:08 - 000611952 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-11 23:47 - 2021-03-11 23:48 - 356282440 _____ C:\Users\72pav\Downloads\S-NXD___-010605WF-ALLIN-ALL___.exe
2021-03-11 23:20 - 2021-03-13 18:08 - 000000542 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task d18cda89-6355-43ae-9192-0d34bed54668.job
2021-03-11 23:20 - 2021-03-13 17:19 - 000003386 _____ C:\WINDOWS\system32\Tasks\SUPERAntiSpyware Scheduled Task d18cda89-6355-43ae-9192-0d34bed54668
2021-03-11 21:27 - 2021-03-13 18:08 - 000000542 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 99b5634c-c380-4d49-bae8-090ee5c46ba3.job
2021-03-11 21:27 - 2021-03-13 17:19 - 000003128 _____ C:\WINDOWS\system32\Tasks\SUPERAntiSpyware Scheduled Task 99b5634c-c380-4d49-bae8-090ee5c46ba3
2021-03-11 21:27 - 2021-03-11 21:27 - 000000000 ____D C:\Users\72pav\AppData\Roaming\SUPERAntiSpyware.com
2021-03-11 21:25 - 2021-03-11 21:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2021-03-11 21:25 - 2021-03-11 21:26 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2021-03-11 21:25 - 2021-03-11 21:25 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2021-03-11 20:20 - 2021-03-11 20:20 - 000000000 ____D C:\Users\72pav\AppData\Local\mbam
2021-03-11 20:17 - 2021-03-11 20:17 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-03-11 19:40 - 2021-03-11 19:40 - 000055568 _____ (REALiX(tm)) C:\WINDOWS\system32\Drivers\HWiNFO32_160.SYS
2021-03-11 19:03 - 2021-03-11 19:03 - 000000000 ____D C:\Users\72pav\AppData\Local\GHISLER
2021-03-11 19:02 - 2021-03-11 19:47 - 000000000 ____D C:\Users\72pav\AppData\Roaming\GHISLER
2021-03-11 19:02 - 2021-03-11 19:47 - 000000000 ____D C:\totalcmd
2021-02-28 10:25 - 2021-02-28 10:25 - 000286944 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2021-02-28 10:25 - 2021-02-28 10:25 - 000161312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2021-02-24 10:00 - 2021-02-24 10:00 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-02-22 15:03 - 2021-02-22 15:03 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-20 20:04 - 2021-02-26 18:39 - 000000000 ____D C:\Users\72pav\Desktop\2021_02_20 Lišaj oleandrový
2021-02-16 20:07 - 2021-02-16 20:07 - 000000000 ____D C:\ProgramData\SafeNet Sentinel
2021-02-16 20:07 - 2020-05-29 10:11 - 000605624 _____ (SafeNet, Inc.) C:\WINDOWS\system32\Drivers\hardlock.sys
2021-02-16 20:07 - 2020-05-29 10:11 - 000444752 _____ (SafeNet, Inc.) C:\WINDOWS\system32\Drivers\aksfridge.sys
2021-02-16 20:07 - 2020-05-29 10:11 - 000206800 _____ (Aladdin Knowledge Systems Ltd.) C:\WINDOWS\system32\hlvdd.dll
2021-02-15 11:38 - 2021-02-27 13:59 - 000002365 _____ C:\Users\72pav\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-11 19:30 - 2021-03-03 18:36 - 000000000 ____D C:\WINDOWS\Minidump

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-03-13 18:24 - 2019-12-07 07:12 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-13 18:12 - 2019-04-19 20:50 - 000000000 ____D C:\Program Files\CCleaner
2021-03-13 18:08 - 2020-08-16 02:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-13 18:08 - 2020-08-16 02:12 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-13 18:08 - 2018-07-24 16:27 - 000001590 ____H C:\WINDOWS\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}.job
2021-03-13 18:08 - 2018-07-24 16:26 - 000000416 _____ C:\WINDOWS\Tasks\X-Rite Device Services Software Updater.job
2021-03-13 18:08 - 2018-01-14 19:47 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-13 18:07 - 2019-12-07 07:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-03-13 18:06 - 2018-01-15 20:08 - 000000000 ____D C:\ProgramData\AVAST Software
2021-03-13 18:00 - 2019-12-07 07:10 - 000000000 ____D C:\WINDOWS\INF
2021-03-13 17:54 - 2019-01-29 18:43 - 000000000 ____D C:\ProgramData\Mozilla
2021-03-13 17:53 - 2018-01-17 19:43 - 000000000 ____D C:\Users\72pav\AppData\LocalLow\Mozilla
2021-03-13 17:19 - 2020-08-16 02:56 - 000003626 _____ C:\WINDOWS\system32\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}
2021-03-13 17:19 - 2020-08-16 02:56 - 000003500 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-13 17:19 - 2020-08-16 02:56 - 000003388 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-03-13 17:19 - 2020-08-16 02:56 - 000003276 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-03-13 17:19 - 2020-08-16 02:56 - 000003164 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-03-13 17:19 - 2020-08-16 02:56 - 000002988 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-03-13 17:19 - 2020-08-16 02:56 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2217886342-2387461023-2343114404-1001
2021-03-13 17:19 - 2020-08-16 02:56 - 000002600 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2021-03-13 17:19 - 2020-08-16 02:56 - 000002574 _____ C:\WINDOWS\system32\Tasks\X-Rite Device Services Software Updater
2021-03-13 17:19 - 2020-08-16 02:56 - 000002238 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-03-13 17:11 - 2018-01-14 19:06 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2021-03-13 14:54 - 2020-08-16 02:56 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2021-03-13 14:05 - 2018-06-23 22:42 - 000000000 ____D C:\Users\72pav\AppData\Local\AVAST Software
2021-03-13 01:40 - 2020-08-16 02:56 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2021-03-13 01:33 - 2019-12-07 07:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-03-13 01:18 - 2019-12-07 07:12 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-13 01:18 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-13 01:14 - 2020-08-16 02:12 - 000284232 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-03-13 01:08 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\SystemResources
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugins
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\setup
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\Provisioning
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-03-13 01:07 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-03-13 01:03 - 2020-08-16 02:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-12 23:14 - 2015-07-10 11:53 - 000413702 __RSH C:\bootmgr
2021-03-12 21:54 - 2020-06-08 14:12 - 000002382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-12 00:15 - 2018-01-19 20:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2
2021-03-12 00:13 - 2020-03-04 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picture Control Utility 2
2021-03-12 00:13 - 2018-01-16 20:03 - 000000000 ____D C:\WINDOWS\Downloaded Installations
2021-03-12 00:12 - 2018-01-19 20:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Capture NX-D
2021-03-12 00:11 - 2018-01-19 20:13 - 000000000 ____D C:\Users\72pav\AppData\Local\Downloaded Installations
2021-03-11 20:55 - 2019-12-07 07:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-03-11 20:51 - 2018-03-29 20:58 - 000000000 ____D C:\ProgramData\Solvusoft
2021-03-11 19:39 - 2018-02-18 21:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO32
2021-03-11 19:39 - 2018-02-18 21:15 - 000000000 ____D C:\Program Files\HWiNFO32
2021-03-10 19:30 - 2018-01-15 19:56 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-10 19:02 - 2018-01-15 19:55 - 127268096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-09 18:54 - 2018-07-01 13:55 - 000000000 ____D C:\Users\72pav\AppData\Local\CrashDumps
2021-03-05 22:44 - 2018-01-15 20:15 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-03-03 18:36 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-03-02 22:46 - 2019-12-07 07:12 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-03-02 20:03 - 2019-12-05 19:53 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-02-28 10:27 - 2020-10-26 20:07 - 000147728 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2021-02-28 10:27 - 2020-01-14 19:23 - 000384136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2021-02-28 10:25 - 2020-04-03 19:16 - 000376840 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000276960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000206304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000092696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000091616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000071352 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2021-02-28 10:25 - 2020-01-14 19:23 - 000039248 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2021-02-28 10:24 - 2020-01-14 19:23 - 000690144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2021-02-28 10:24 - 2020-01-14 19:23 - 000287192 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2021-02-28 10:24 - 2020-01-14 19:23 - 000175872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2021-02-28 10:24 - 2020-01-14 19:23 - 000033544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2021-02-27 13:59 - 2018-01-14 20:13 - 000000000 ___RD C:\Users\72pav\OneDrive
2021-02-24 10:00 - 2018-01-17 19:43 - 000001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-02-11 19:38 - 2020-08-16 02:29 - 001693136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-11 19:38 - 2019-12-07 13:21 - 000716602 _____ C:\WINDOWS\system32\perfh005.dat
2021-02-11 19:38 - 2019-12-07 13:21 - 000144780 _____ C:\WINDOWS\system32\perfc005.dat

==================== Files in the root of some directories ========

2018-09-01 19:17 - 2018-09-01 19:17 - 000000028 _____ () C:\Users\72pav\AppData\Roaming\kulerdata.json
2019-10-28 21:17 - 2019-10-28 21:18 - 000019447 _____ () C:\Users\72pav\AppData\Local\kritacrash.log
2020-01-15 19:43 - 2020-01-15 19:43 - 000000039 _____ () C:\Users\72pav\AppData\Local\kritadisplayrc
2018-09-04 19:09 - 2020-01-15 19:43 - 000018088 _____ () C:\Users\72pav\AppData\Local\kritarc
2018-09-30 08:41 - 2018-09-30 08:41 - 000000000 _____ () C:\Users\72pav\AppData\Local\oobelibMkey.log
2018-10-27 01:04 - 2018-10-27 01:04 - 000005112 _____ () C:\Users\72pav\AppData\Local\recently-used.xbel
2018-02-07 00:34 - 2018-02-07 00:34 - 000000017 _____ () C:\Users\72pav\AppData\Local\resmon.resmoncfg

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2021
Ran by 72pav (13-03-2021 18:32:02)
Running from C:\Users\72pav\Desktop
Microsoft Windows 10 Home Version 20H2 19042.867 (X86) (2020-08-16 01:58:42)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

72pav (S-1-5-21-2217886342-2387461023-2343114404-1001 - Administrator - Enabled) => C:\Users\72pav
Administrator (S-1-5-21-2217886342-2387461023-2343114404-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2217886342-2387461023-2343114404-503 - Limited - Disabled)
Guest (S-1-5-21-2217886342-2387461023-2343114404-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2217886342-2387461023-2343114404-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: ZoneAlarm Free Firewall Firewall (Enabled) {3EB84D8C-4821-F4B8-2DD8-2831FAA29B21}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Genuine Service (HKLM\...\AdobeGenuineService) (Version: - Adobe)
Aktualizace NVIDIA 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 21.1.2449 - Avast Software)
Camera Support Core Library (HKLM\...\{A1D0D14A-B776-4907-BC00-5149F2298086}) (Version: 7.3.0.4 - Canon) Hidden
Camera Window DS (HKLM\...\{0A146245-DB79-4197-BF5D-FE1A699A2CC7}) (Version: 5.3.1 - Canon) Hidden
Camera Window DVC (HKLM\...\{A2EB8F2E-6D9B-4F8B-96EB-F976D33F416F}) (Version: 5.4.4 - Canon) Hidden
Camera Window MC (HKLM\...\{36C65B50-37BA-4467-AAD5-0523EFDF6F62}) (Version: 5.4.3 - Canon) Hidden
Canon Camera Support Core Library (HKLM\...\InstallShield_{A1D0D14A-B776-4907-BC00-5149F2298086}) (Version: 7.3.0.4 - Canon)
Canon Camera WIA Driver (HKLM\...\{33CF7CDF-9805-4500-9CC7-D19D52AD63C4}) (Version: 5.6 - Canon) Hidden
Canon Camera Window DC_DV 5 for ZoomBrowser EX (HKLM\...\InstallShield_{A2EB8F2E-6D9B-4F8B-96EB-F976D33F416F}) (Version: 5.4.4 - Canon)
Canon Camera Window DSLR 5 for ZoomBrowser EX (HKLM\...\InstallShield_{0A146245-DB79-4197-BF5D-FE1A699A2CC7}) (Version: 5.3.1 - Canon)
Canon Camera Window MC 5 for ZoomBrowser EX (HKLM\...\InstallShield_{36C65B50-37BA-4467-AAD5-0523EFDF6F62}) (Version: 5.4.3 - Canon)
Canon EOS Kiss_N REBEL_XT 350D WIA Driver (HKLM\...\InstallShield_{33CF7CDF-9805-4500-9CC7-D19D52AD63C4}) (Version: 5.6 - Canon)
CANON iMAGE GATEWAY Task (HKLM\...\{33711828-7194-4446-8C05-0DC0E59A0C1B}) (Version: 1.0.0.23 - Canon) Hidden
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM\...\InstallShield_{33711828-7194-4446-8C05-0DC0E59A0C1B}) (Version: 1.0.0.23 - Canon)
Canon Internet Library for ZoomBrowser EX (HKLM\...\InstallShield_{D0E8C34D-19D2-49FD-A900-88DEB788FF86}) (Version: 1.4.0 - Canon Inc.)
Canon PhotoRecord (HKLM\...\{BBBC2B89-E193-4348-A83C-C8DD8210A4AC}) (Version: 02.02.03002 - Cisra)
Canon RAW Image Task for ZoomBrowser EX (HKLM\...\InstallShield_{BAA43DA2-B6C5-46EC-B163-0E8EEAF975A4}) (Version: 2.2 - Canon)
Canon Utilities Digital Photo Professional (HKLM\...\Digital Photo Professional) (Version: 3.15.0.0 - Canon Inc.)
Canon Utilities Digital Photo Professional 4 (HKLM\...\Digital Photo Professional 4 (x86)) (Version: 4.11.0.2 - Canon Inc.)
Canon Utilities EOS Capture 1.5 (HKLM\...\InstallShield_{589D17BB-C997-48C0-BCD2-CC8DC3375FE8}) (Version: 1.5 - Canon)
Canon Utilities EOS Lens Registration Tool (HKLM\...\EOS Lens Registration Tool) (Version: 1.11.0.0 - Canon Inc.)
Canon Utilities PhotoStitch 3.1 (HKLM\...\InstallShield_{874E44F3-B9A7-4AA1-B4BA-83E5684ED9C6}) (Version: 3.1.16 - Canon)
Canon Utilities Picture Style Editor (HKLM\...\Picture Style Editor) (Version: 1.19.10.0 - Canon Inc.)
Canon ZoomBrowser EX (E) (HKLM\...\{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}) (Version: 5.05.0000 - Canon)
Capture NX-D (HKLM\...\{5396D01F-ABC2-4B1C-ACFE-22BD75DA4BD2}) (Version: 1.6.5 - Nikon Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.77 - Piriform)
EOS Capture 1.5 (HKLM\...\{589D17BB-C997-48C0-BCD2-CC8DC3375FE8}) (Version: 1.5 - Canon) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 89.0.4389.82 - Google LLC)
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
HWiNFO32 Version 7.00 (HKLM\...\HWiNFO32_is1) (Version: 7.00 - Martin Malik - REALiX)
Check Point SBA (HKLM\...\{F2C3D172-994D-4E0A-93FB-5C121E373B19}) (Version: 86.5.9511 - Check Point Software Technologies Ltd.) Hidden
i1Profiler (HKLM\...\i1Profiler_is1) (Version: 3.3.0.13493 - X-Rite)
Internet Library (HKLM\...\{D0E8C34D-19D2-49FD-A900-88DEB788FF86}) (Version: 1.4.0 - Canon Inc.) Hidden
Java 8 Update 281 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180281F0}) (Version: 8.0.2810.9 - Oracle Corporation)
Microcular (HKLM\...\{2CBD0ADE-0EB2-491A-BDF8-17A738CFE264}) (Version: 0.1.3.5.0 - PC Camera) Hidden
Microcular (HKLM\...\InstallShield_{2CBD0ADE-0EB2-491A-BDF8-17A738CFE264}) (Version: 0.1.3.5.0 - PC Camera)
Microsoft Edge (HKLM\...\Microsoft Edge) (Version: 89.0.774.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM\...\Microsoft Edge Update) (Version: 1.3.141.63 - )
Microsoft OneDrive (HKU\S-1-5-21-2217886342-2387461023-2343114404-1001\...\OneDriveSetup.exe) (Version: 21.016.0124.0003 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{9733902C-4FFF-4543-8612-C376A55574A5}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27012 (HKLM\...\{67f67547-9693-4937-aa13-56e296bd40f6}) (Version: 14.16.27012.6 - Microsoft Corporation)
Mozilla Firefox 86.0 (x86 cs) (HKLM\...\Mozilla Firefox 86.0 (x86 cs)) (Version: 86.0 - Mozilla)
MSVC80_x86_v2 (HKLM\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (HKLM\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
Nikon Message Center 2 (HKLM\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.4.1 - Nikon Corporation)
Nikon Transfer 2 (HKLM\...\{757DBE04-3DC8-4741-B10B-4628745E96FE}) (Version: 2.13.7 - Nikon Corporation)
NVIDIA GeForce Experience 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.125 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OpenOffice 4.1.5 (HKLM\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Ovládací panel NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
PhotoStitch (HKLM\...\{874E44F3-B9A7-4AA1-B4BA-83E5684ED9C6}) (Version: 3.1.16 - Canon) Hidden
Picture Control Utility 2 (HKLM\...\{814B3246-517B-4AF1-9D70-D48D255E1C93}) (Version: 2.4.7 - Nikon Corporation)
RAW Image Task 2.2 (HKLM\...\{BAA43DA2-B6C5-46EC-B163-0E8EEAF975A4}) (Version: 2.2 - Canon) Hidden
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.3.723.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7572 - Realtek Semiconductor Corp.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Služba Xperia Companion (HKLM\...\{F7D83289-8833-4B2A-A579-9CE04B90E48A}) (Version: 2.11.5.0 - Sony) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 10.0.1220 - SUPERAntiSpyware.com)
TomTom MyDrive Connect 4.2.11.4200 (HKLM\...\MyDriveConnect) (Version: 4.2.11.4200 - TomTom)
Ulead Photo Explorer 7.0 SE (HKLM\...\{7C6D8763-EEB7-433E-A75E-2AB44892FCA2}) (Version: - Ulead Systems, Inc.)
Ulead Photo Explorer 8.5 Trial (HKLM\...\{025C3792-E9C6-432A-92C1-661F99D021CA}) (Version: - Ulead Systems, Inc.)
ViewNX-i (HKLM\...\{CF16D3B2-7923-49B6-9021-10688783D56A}) (Version: 1.4.4 - Nikon Corporation)
Xperia Companion (HKLM\...\{661E8A68-8643-4318-B269-C4BEE64367CF}) (Version: 2.11.5.0 - Sony) Hidden
Xperia Companion (HKLM\...\{88bf2ea0-8f90-4309-b41d-01811d88acd7}) (Version: 2.11.5.0 - Sony)
X-Rite Device Services Manager (HKLM\...\{55440983-A1BA-4166-885C-076DB9284D38}) (Version: 3.1.119.139 - X-Rite)
ZoneAlarm Anti-Ransomware (HKLM\...\{0B8C3231-9818-4CB9-8213-4AB839836791}) (Version: 1.002.1006 - Check Point Software) Hidden
ZoneAlarm Firewall (HKLM\...\{B136506E-D077-4943-9F0D-B22494BAC3BA}) (Version: 15.3.060.17669 - Check Point Software Technologies Ltd.) Hidden
ZoneAlarm Free Firewall (HKLM\...\ZoneAlarm Free Firewall) (Version: 15.3.060.17669 - Check Point)
ZoneAlarm Security (HKLM\...\{21085985-346F-4750-B57C-270359D3BB83}) (Version: 15.3.060.17669 - Check Point Software Technologies Ltd.) Hidden

Packages:
=========
Doplněk multimediálního modulu pro aplikaci Fotografie -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x86__8wekyb3d8bbwe [2020-01-11] (Microsoft Corporation)
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x86__8wekyb3d8bbwe [2018-09-14] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x86__8wekyb3d8bbwe [2021-01-30] (Microsoft Studios) [MS Ad]

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-02-28] (Avast Software s.r.o. -> AVAST Software)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2020-06-01 18:13 - 2020-06-01 18:13 - 001664512 _____ () [File not signed] C:\Program Files\X-Rite\Devices\rm200\GoldenEye.dll
2018-05-15 01:18 - 2018-05-15 01:18 - 000986112 _____ (Microsoft Corporation) [File not signed] C:\Program Files\CheckPoint\ZoneAlarm\dbghelp.dll
2018-01-16 20:00 - 2000-10-23 11:22 - 000995383 ____N (Microsoft Corporation) [File not signed] C:\Program Files\Ulead Systems\Ulead Photo Explorer 7.0\MFC42.DLL
2020-01-19 18:35 - 2016-11-14 13:35 - 001157000 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll
2020-08-16 02:29 - 2016-11-14 10:45 - 001220424 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPI.dll
2019-11-27 11:27 - 2019-11-27 11:27 - 001189888 _____ (Robert Simpson, et al.) [File not signed] C:\Program Files\CheckPoint\Endpoint Security\TPCommon\Cipolla\x86\SQLite.Interop.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 001502208 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro\i1iO.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 003962368 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro\i1Pro.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 001529344 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro3\i1iO3.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 003986432 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro3\i1Pro3.dll
2020-06-01 18:15 - 2020-06-01 18:15 - 000151040 _____ (X-Rite Inc.) [File not signed] C:\Program Files\X-Rite\Devices\i1pro3\i1pro3.xrdevice
2020-06-01 18:13 - 2020-06-01 18:13 - 002359296 _____ (X-Rite) [File not signed] C:\Program Files\X-Rite\Devices\i1isis\EyeOne_iSis.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 001019392 _____ (X-Rite) [File not signed] C:\Program Files\X-Rite\Devices\i1pro\i1Fun.dll
2020-06-01 18:14 - 2020-06-01 18:14 - 001162752 _____ (X-Rite) [File not signed] C:\Program Files\X-Rite\Devices\i1pro3\i1Pro3Fun.dll

==================== Alternate Data Streams (Whitelisted) ========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\system32\AcpiServiceVnA.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTACap.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTARen.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\audioLibVc.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CX32APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPD32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPO32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOProp.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv201.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv211.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBassEnhancementDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBoostDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGainCompensatorDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPONS.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLimiterDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSNeoPCDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2SpeakerDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSSymmetryDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PGFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PLFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PREC32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSVoiceClarityDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\FMAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\HiFiDAX2API.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\ICEsoundAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\KAAPORT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO50.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO60.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO70.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPOShell.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioEQ.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioRealtek.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxSpeechAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVolumeSDAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MISS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICAPOlfx.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NahimicAPONSControl.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICV2apo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEA32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RltkAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DAA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DHT32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkApoApi.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoInstII.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoLDR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkPgExt.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTSndMgr.cpl:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEAPO32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SECOMN32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEHDRA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFNHK.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFSS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sl3apo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slcnt32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slprp32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sltech32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRRPTR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSHP360.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSHD.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSXT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSWOW.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo2.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\TepeqAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosade.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosasfapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\toseaeapo32.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\tossaeapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tossaemaxapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesGUILib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesLib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\amdiox86.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\RTKVHDA.sys:$CmdTcID [64]
AlternateDataStreams: C:\Users\72pav\Desktop\Pigomo.exe:$CmdTcID [64]

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver"

==================== Association (Whitelisted) =================

==================== Internet Explorer (Whitelisted) ==========

BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_281\bin\ssv.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_281\bin\jp2ssv.dll [2021-01-22] (Oracle America, Inc. -> Oracle Corporation)

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-01-14 19:07 - 2018-01-14 19:04 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\NVIDIA Corporation\PhysX\Common;C:\Program Files\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Common Files\Ulead Systems\MPEG;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Common Files\Ulead Systems\DVD
HKU\S-1-5-21-2217886342-2387461023-2343114404-1001\Control Panel\Desktop\\Wallpaper -> c:\users\72pav\desktop\dpp_100.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{178DEE5C-E041-4016-83B7-6E6AB23B7649}] => (Allow) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{7C8C78A0-6B40-4D3A-A543-62C5B5551FA8}] => (Allow) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{4348E2CC-AEF0-4C88-B317-7914788D5F82}] => (Allow) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{B1603454-A8BC-478B-86E8-E7258C7BAEB0}] => (Allow) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe (Check Point Software Technologies Ltd. -> Check Point Software Technologies Ltd.)
FirewallRules: [{EDB2D607-EA37-4C97-B021-FF404F688B9B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BCFFB500-F137-4C25-A08B-1768F0950D74}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B4F35460-3A05-40B8-8D11-FF5C88CDBCEE}] => (Allow) C:\Program Files\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{1995F709-98FC-4320-AD96-E04DC59E09E9}] => (Allow) C:\Program Files\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony)
FirewallRules: [{D77C99F6-54E9-4D7F-8869-97E0D62BD1FF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4567716F-CF35-4A6F-8C8A-B0D930A88B07}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DF3B5167-7DEA-4A2B-BA27-DA6C64DC6771}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{32B852EF-65C6-4073-97D2-27FF99F6C894}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D3CA726A-500D-4600-8391-C112F84C68A4}] => (Allow) LPort=5454
FirewallRules: [{88A7862C-C0C0-446A-B2A9-D4A4ADF3D3D5}] => (Allow) C:\Program Files\Common Files\Aladdin Shared\HASP\hasplms.exe (Gemalto, Inc. -> SafeNet, Inc.)
FirewallRules: [{0AB565EB-74C1-4389-B543-8F45E50319D6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

24-02-2021 10:58:56 Naplánovaný kontrolní bod
04-03-2021 18:19:30 Naplánovaný kontrolní bod
11-03-2021 22:57:09 Naplánovaný kontrolní bod
12-03-2021 00:09:51 Installed "Capture NX-D"
12-03-2021 21:14:41 Instalační služba modulů systému Windows
12-03-2021 21:56:10 Instalační služba modulů systému Windows
13-03-2021 01:27:13 Instalační služba modulů systému Windows
13-03-2021 01:30:03 Instalační služba modulů systému Windows
13-03-2021 01:31:27 Instalační služba modulů systému Windows

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (03/13/2021 01:35:47 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (03/13/2021 01:35:47 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny CoCreateInstance došlo k neočekávané chybě. hr= 0x8007045b, Probíhá vypnutí systému.
.

Error: (03/13/2021 01:35:47 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (03/13/2021 01:35:47 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]

Error: (03/13/2021 01:31:29 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (03/13/2021 01:30:05 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (03/13/2021 01:27:39 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (03/12/2021 09:57:02 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.


System errors:
=============
Error: (03/13/2021 06:06:36 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Check Point Endpoint EFR se po přijetí pokynu pro vypnutí neukončila správně.

Error: (03/13/2021 01:43:09 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.

Error: (03/13/2021 01:40:08 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby CPEFR bylo dosaženo časového limitu (30000 ms).

Error: (03/13/2021 01:39:38 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby avast! Tools bylo dosaženo časového limitu (30000 ms).

Error: (03/13/2021 01:35:46 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Check Point Endpoint EFR se po přijetí pokynu pro vypnutí neukončila správně.

Error: (03/13/2021 01:18:33 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.

Error: (03/13/2021 01:17:01 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby avast! Tools bylo dosaženo časového limitu (30000 ms).

Error: (03/13/2021 01:10:18 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Check Point Endpoint EFR se po přijetí pokynu pro vypnutí neukončila správně.


CodeIntegrity:
===============
Date: 2021-03-13 18:28:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Common Files\Adobe\AdobeGCClient\AGSService.exe) attempted to load \Device\HarddiskVolume1\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2021-03-13 18:14:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Memory info ===========================

BIOS: Award Software International, Inc. GBT - 42302e31 01/24/2008
Motherboard: Gigabyte Technology Co., Ltd. M55S-S3
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 6000+
Percentage of memory in use: 63%
Total physical RAM: 3071.55 MB
Available physical RAM: 1134.66 MB
Total Virtual: 5503.55 MB
Available Virtual: 3359.19 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:82.57 GB) (Free:27.2 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: () (Fixed) (Total:149.87 GB) (Free:92.25 GB) NTFS

\\?\Volume{da8afb11-0000-0000-0000-70a414000000}\ () (Fixed) (Total:0.44 GB) (Free:0.09 GB) NTFS

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: DA8AFB11)
Partition 1: (Active) - (Size=82.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=449 MB) - (Type=27)
Partition 3: (Not Active) - (Size=149.9 GB) - (Type=0F Extended)

==================== End of Addition.txt =======================

Re: Disk jede na 100%

Napsal: 13 bře 2021 18:55
od Rudy
OK. Spusťte teď tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

Re: Disk jede na 100%

Napsal: 13 bře 2021 20:08
od dorkon
Tady je log z Malwarebytes:
Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 13.03.21
Čas skenování: 19:48
Logovací soubor: a542c5a0-842c-11eb-8ce2-0016e6d91c61.json

-Informace o softwaru-
Verze: 4.3.0.98
Verze komponentů: 1.0.1217
Aktualizovat verzi balíku komponent: 1.0.38115
Licence: Zkušební

-Systémová informace-
OS: Windows 10 (Build 19042.867)
CPU: x86
Systém souborů: NTFS
Uživatel: DESKTOP-23MVDJ4\72pav

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Dokončeno
Skenované objekty: 194358
Zjištěné hrozby: 0
Hrozby umístěné do karantény: 0
Uplynulý čas: 10 min, 8 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)

Re: Disk jede na 100%

Napsal: 13 bře 2021 20:55
od Rudy
Toto je OK. Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
U3 iswSvc; no ImagePath
C:\WINDOWS\system32\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
AlternateDataStreams: C:\WINDOWS\system32\AcpiServiceVnA.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTACap.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTARen.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\audioLibVc.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CX32APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPD32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPO32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOProp.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv201.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv211.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBassEnhancementDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBoostDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGainCompensatorDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPONS.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLimiterDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSNeoPCDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2SpeakerDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSSymmetryDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PGFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PLFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PREC32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSVoiceClarityDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\FMAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\HiFiDAX2API.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\ICEsoundAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\KAAPORT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO50.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO60.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO70.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPOShell.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioEQ.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioRealtek.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxSpeechAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVolumeSDAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MISS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICAPOlfx.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NahimicAPONSControl.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICV2apo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEA32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RltkAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DAA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DHT32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkApoApi.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoInstII.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoLDR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkPgExt.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTSndMgr.cpl:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEAPO32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SECOMN32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEHDRA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFNHK.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFSS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sl3apo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slcnt32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slprp32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sltech32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRRPTR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSHP360.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSHD.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSXT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSWOW.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo2.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\TepeqAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosade.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosasfapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\toseaeapo32.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\tossaeapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tossaemaxapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesGUILib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesLib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\amdiox86.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\RTKVHDA.sys:$CmdTcID [64]
AlternateDataStreams: C:\Users\72pav\Desktop\Pigomo.exe:$CmdTcID [64]

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Re: Disk jede na 100%

Napsal: 13 bře 2021 22:33
od dorkon
Malwarebytes mě nechtěl pustit na forum viry.cz z důvodu možného trojanu. Doufám.že je to zbytečná obava a přístup jsem povolil.
Tady je fixlog:
Fix result of Farbar Recovery Scan Tool (x86) Version: 13-03-2021
Ran by 72pav (13-03-2021 21:39:36) Run:1
Running from C:\Users\72pav\Desktop
Loaded Profiles: 72pav
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
U3 iswSvc; no ImagePath
C:\WINDOWS\system32\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1}
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
AlternateDataStreams: C:\WINDOWS\system32\AcpiServiceVnA.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTACap.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\AERTARen.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\audioLibVc.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\CX32APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPD32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPO32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DDPP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOProp.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv201.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DolbyDAX2APOv211.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBassEnhancementDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSBoostDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGainCompensatorDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSGFXAPONS.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLFXAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSLimiterDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSNeoPCDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSS2SpeakerDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSSymmetryDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PGFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PLFX32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSU2PREC32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\DTSVoiceClarityDLL.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\FMAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\HiFiDAX2API.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\ICEsoundAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\KAAPORT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO50.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO60.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPO70.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioAPOShell.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioEQ.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxAudioRealtek.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxSpeechAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO20.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO30.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVoiceAPO40.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MaxxVolumeSDAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\MISS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICAPOlfx.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NahimicAPONSControl.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\NAHIMICV2apo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEA32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\R4EEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RltkAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DAA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RP3DHT32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEED32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEG32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEL32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTEEP32A.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkApoApi.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoInstII.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkCoLDR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RtkPgExt.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\RTSndMgr.cpl:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEAPO32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SECOMN32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SEHDRA32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFNHK.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SFSS_APO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sl3apo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slcnt32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\slprp32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\sltech32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRCOM.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRRPTR.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSHP360.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSHD.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSTSXT.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\SRSWOW.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tadefxapo2.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\TepeqAPO.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosade.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tosasfapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\toseaeapo32.dll:$CmdTcID [130]
AlternateDataStreams: C:\WINDOWS\system32\tossaeapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\tossaemaxapo32.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesGUILib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\WavesLib.dll:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\amdiox86.sys:$CmdTcID [64]
AlternateDataStreams: C:\WINDOWS\system32\Drivers\RTKVHDA.sys:$CmdTcID [64]
AlternateDataStreams: C:\Users\72pav\Desktop\Pigomo.exe:$CmdTcID [64]

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => removed successfully.
HKLM\System\CurrentControlSet\Services\iswSvc => removed successfully.
iswSvc => service removed successfully.
C:\WINDOWS\system32\Tasks\{F592568D-6651-4ED4-B5CA-948BA1E38ED1} => moved successfully
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\WINDOWS\system32\AcpiServiceVnA.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\AERTACap.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\AERTARen.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\audioLibVc.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\CX32APO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DDPA32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DDPD32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DDPO32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DDPP32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DolbyDAX2APOProp.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DolbyDAX2APOv201.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DolbyDAX2APOv211.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSBassEnhancementDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSBoostDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSGainCompensatorDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSGFXAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSGFXAPONS.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSLFXAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSLimiterDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSNeoPCDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSS2HeadphoneDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSS2SpeakerDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSSymmetryDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSU2PGFX32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSU2PLFX32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSU2PREC32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\DTSVoiceClarityDLL.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\FMAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\HiFiDAX2API.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\ICEsoundAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\KAAPORT.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO20.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO30.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO40.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO50.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO60.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPO70.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioAPOShell.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioEQ.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxAudioRealtek.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxSpeechAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxVoiceAPO20.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxVoiceAPO30.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxVoiceAPO40.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MaxxVolumeSDAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\MISS_APO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\NAHIMICAPOlfx.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\NahimicAPONSControl.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\NAHIMICV2apo.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EEA32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EED32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EEG32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EEL32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\R4EEP32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RltkAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RP3DAA32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RP3DHT32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTEED32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTEEG32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTEEL32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTEEP32A.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RtkApoApi.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RtkCoInstII.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RtkCoLDR.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RtkPgExt.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\RTSndMgr.cpl => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SEAPO32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SECOMN32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SEHDRA32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SFAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SFCOM.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SFNHK.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SFSS_APO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\sl3apo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\slcnt32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\slprp32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\sltech32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRCOM.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRRPTR.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRSHP360.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRSTSHD.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRSTSXT.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\SRSWOW.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tadefxapo.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tadefxapo2.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\TepeqAPO.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tosade.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tosasfapo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\toseaeapo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tossaeapo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\tossaemaxapo32.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\WavesGUILib.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\WavesLib.dll => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\Drivers\amdiox86.sys => ":$CmdTcID" ADS removed successfully.
C:\WINDOWS\system32\Drivers\RTKVHDA.sys => ":$CmdTcID" ADS removed successfully.
C:\Users\72pav\Desktop\Pigomo.exe => ":$CmdTcID" ADS removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 10248192 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14763152 B
Java, Flash, Steam htmlcache => 1172 B
Windows/system/drivers => 2770381 B
Edge => 178727 B
Chrome => 206004 B
Firefox => 146905504 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 5356 B
NetworkService => 5356 B
72pav => 277327243 B

RecycleBin => 0 B
EmptyTemp: => 431.5 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:43:04 ====

Re: Disk jede na 100%

Napsal: 14 bře 2021 11:24
od Rudy
Učinil jste správně, některým AV se FRST nelíbí. Je to ale pouze nástroj na mazání. Bylo smazáno, log je již OK.

Re: Disk jede na 100%

Napsal: 14 bře 2021 11:49
od dorkon
Disk už se tolik nepřetěžuje, proto Vám moc děkuji za pomoc.

Re: Disk jede na 100%

Napsal: 14 bře 2021 12:37
od Rudy
Rádo se stalo! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz