Zdravím, mohl bych poprosit o kontrolu logu. Stává se mi, že drátová myš přestane reagovat a pomůže pouze odpojení a znovuzapojení.
Internet se zdá být pomalejší a prohlížeč opera občas místo otevření stránky zobrazí Výhral jste IPHONE:-)
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02.08.2018
Ran by PC3-DM (administrator) on PC3-DM (09-08-2018 12:09:01)
Running from C:\Users\PC3-DM\Desktop
Loaded Profiles: PC3-DM (Available Profiles: PC3-DM & PH)
Platform: Microsoft Windows 10 Pro Version 1803 17134.165 (X86) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Cisco Systems, Inc.) C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\scheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Pulse Secure, LLC) C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epag.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\bdredline.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epintegrationservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epprotectedservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epupdateservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epsecurityservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Update Server\bin\epupdateserver.exe
(SafeNet, Inc.) C:\Program Files\SafeNet\Authentication\SAC\x32\SACSrv.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FCDBLog.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiESNAC.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSSLVPNdaemon.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(SafeNet, Inc.) C:\Program Files\SafeNet\Authentication\SAC\x32\SACMonitor.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(HP Inc.) C:\Program Files\HP\HP PageWide 377dw MFP\Bin\ScanToPCActivationApp.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epconsole.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(HP Inc.) C:\Program Files\HP\HP PageWide 377dw MFP\Bin\HPNetworkCommunicatorCom.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\PC3-DM\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [486816 2018-04-11] (Microsoft Corporation)
HKLM\...\Run: [SafeNetCertMngr] => C:\Program Files\SafeNet\Authentication\SAC\x32\SACMonitor.exe [1044680 2011-01-13] (SafeNet, Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12009176 2013-09-13] (Realtek Semiconductor)
HKLM\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1224704 2017-04-07] (Cisco Systems, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\Run: [HP PageWide 377dw MFP (NET)] => C:\Program Files\HP\HP PageWide 377dw MFP\Bin\ScanToPCActivationApp.exe [2628744 2017-11-10] (HP Inc.)
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a33e-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a3d4-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a538-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526aab7-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
GroupPolicy: Restriction ? <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{4465909f-a697-47af-ae7c-0c88b9bb9d97}: [NameServer] 192.168.1.20,192.168.1.21
Tcpip\..\Interfaces\{5442b510-1f9a-4725-ba3c-a955ec37c91a}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{62e3092f-9ed7-4a1a-8ba1-34b6b36d4810}: [NameServer] 192.168.18.111,192.168.18.114
Tcpip\..\Interfaces\{6b1c4475-9d93-4c1a-a4b1-f5d297bbfd44}: [DhcpNameServer] 192.168.1.20
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00
SearchScopes: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
SearchScopes: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll [2018-07-18] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-18] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2018-05-28] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: eph9ww3h.default
FF ProfilePath: C:\Users\PC3-DM\AppData\Roaming\Mozilla\Firefox\Profiles\eph9ww3h.default [2018-07-30]
FF Extension: (uBlock Origin) - C:\Users\PC3-DM\AppData\Roaming\Mozilla\Firefox\Profiles\eph9ww3h.default\Extensions\uBlock0@raymondhill.net.xpi [2018-07-25]
FF Plugin: @FortinetCacheClean -> C:\Program Files\Fortinet\FortiClient\npccplugin.dll [2017-06-15] (Fortinet Inc.)
FF Plugin: @FortinetCacheCleanEx -> C:\Program Files\Fortinet\FortiClient\npccpluginex.dll [2017-06-15] (Fortinet Inc.)
FF Plugin: @FortinetTunnelControl -> C:\Program Files\Fortinet\FortiClient\nptcplugin.dll [2017-06-15] (Fortinet Inc.)
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2018-05-28] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\PC3-DM\AppData\Roaming\mozilla\plugins\npatgpc.dll [2017-10-16] (Cisco WebEx LLC)
Chrome:
=======
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default [2018-08-09]
CHR Extension: (Prezentace) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-16]
CHR Extension: (HD for YouTube™) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgihagponf [2018-04-13]
CHR Extension: (Dokumenty) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Disk Google) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-31]
CHR Extension: (YouTube) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-31]
CHR Extension: (uBlock Origin) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2018-07-19]
CHR Extension: (Adobe Acrobat) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-18]
CHR Extension: (Tabulky) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-31]
CHR Extension: (AdBlock) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-07-30]
CHR Extension: (FormApps Extension) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-08-22]
CHR Extension: (Cisco Webex Extension) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2018-07-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-10]
CHR Extension: (uBlock Origin Extra) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgdnlhfefecpicbbihgmbmffkjpaplco [2018-07-09]
CHR Extension: (Gmail) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-31]
CHR Extension: (Chrome Media Router) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-07]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [2054360 2017-12-12] (Microsoft Corporation)
R2 dsNcService; C:\Program Files\Juniper Networks\Common Files\dsNcService.exe [673744 2017-01-10] (Pulse Secure, LLC)
R2 epag; C:\Program Files\Bitdefender\Endpoint Security\epag.exe [2967256 2018-06-28] (Bitdefender)
R2 EPIntegrationService; C:\Program Files\Bitdefender\Endpoint Security\EPIntegrationService.exe [94952 2018-05-24] (Bitdefender)
R2 EPProtectedService; C:\Program Files\Bitdefender\Endpoint Security\EPProtectedService.exe [94952 2018-08-02] (Bitdefender)
R2 epredline; C:\Program Files\Bitdefender\Endpoint Security\bdredline.exe [1945904 2018-06-28] (Bitdefender)
R2 EPSecurityService; C:\Program Files\Bitdefender\Endpoint Security\EPSecurityService.exe [94952 2018-05-24] (Bitdefender)
R2 EPUpdateServer; C:\Program Files\Bitdefender\Endpoint Update Server\bin\EPUpdateServer.exe [628456 2018-08-02] (Bitdefender)
R2 EPUpdateService; C:\Program Files\Bitdefender\Endpoint Security\EPUpdateService.exe [94944 2018-05-24] (Bitdefender)
R2 FA_Scheduler; C:\Program Files\Fortinet\FortiClient\scheduler.exe [127296 2017-06-15] (Fortinet Inc.)
S4 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [239184 2014-02-15] ()
R2 SACSrv; C:\Program Files\SafeNet\Authentication\SAC\x32\SACSrv.exe [8392 2011-01-13] (SafeNet, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3151784 2018-04-12] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [353792 2018-03-19] ()
R2 vpnagent; C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [643584 2017-04-07] (Cisco Systems, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3650472 2018-04-11] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [85016 2018-06-08] (Microsoft Corporation)
S4 WSWNA3100M; C:\Program Files\NETGEAR\WNA3100M\WifiSvc.exe [316120 2014-08-18] ()
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 acsock; C:\WINDOWS\system32\DRIVERS\acsock.sys [201336 2017-04-07] (Cisco Systems, Inc.)
R3 AKSIFDH; C:\WINDOWS\System32\drivers\aksifdh.sys [48296 2008-07-29] (Aladdin Knowledge Systems, Ltd.)
R3 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1010256 2018-06-28] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1419144 2018-05-24] (BitDefender)
S3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [720368 2018-05-24] (BitDefender)
R3 bddevflt; C:\Program Files\Bitdefender\Endpoint Security\bddevflt.sys [88648 2018-05-24] (BitDefender LLC)
S0 BDElam; C:\WINDOWS\System32\drivers\bdelam.sys [19960 2018-05-24] (Bitdefender)
R1 Bdfwfpf; C:\Program Files\Bitdefender\Endpoint Security\bdfwfpf.sys [113584 2018-05-24] (BitDefender LLC)
R0 bdupflt; C:\WINDOWS\System32\drivers\bdupflt.sys [56936 2018-06-28] ()
R3 dsNcAdpt; C:\WINDOWS\System32\drivers\dsNcAdpt.sys [27648 2017-01-10] (Juniper Networks)
S3 fortiapd; C:\WINDOWS\System32\drivers\fortiapd.sys [15440 2017-06-15] (Fortinet Inc)
R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [40176 2015-08-26] (Fortinet Inc)
S1 FortiFW; C:\WINDOWS\System32\drivers\FortiFW2.sys [32336 2017-06-15] (Fortinet Inc)
S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [128592 2017-06-15] (Fortinet Inc)
R1 FortiShield; C:\WINDOWS\System32\drivers\FortiShield.sys [66128 2017-06-15] (Fortinet Inc)
S3 fortisniff; C:\WINDOWS\System32\drivers\fortisniff2.sys [78928 2017-06-15] (Fortinet Inc)
R3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [59944 2017-04-24] (Fortinet Inc.)
R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [58120 2015-08-26] (Fortinet Inc)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [157256 2018-06-28] (BitDefender LLC)
R0 Ignis; C:\WINDOWS\System32\drivers\ignis.sys [156168 2018-05-24] (Bitdefender)
R3 iKeyEnum; C:\WINDOWS\System32\drivers\ikeyenum.sys [11616 2010-04-29] (SafeNet, Inc.)
R3 iKeyIFD; C:\WINDOWS\System32\drivers\ikeyifd.sys [18080 2010-04-29] (SafeNet, Inc.)
R3 pppop; C:\WINDOWS\System32\drivers\pppop.sys [47696 2016-03-29] (Fortinet Inc.)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [504832 2018-04-11] (Realtek )
R2 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [374904 2018-05-24] (BitDefender S.R.L.)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva-6.sys [43888 2016-12-09] (Cisco Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37448 2018-04-11] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [271776 2018-04-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [30208 2018-04-11] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [189952 2018-04-11] (Microsoft Corporation)
U5 RnbToken; C:\Windows\System32\Drivers\RnbToken.sys [21472 2010-04-29] (SafeNet, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-08-09 12:09 - 2018-08-09 12:09 - 000017779 _____ C:\Users\PC3-DM\Desktop\FRST.txt
2018-08-09 12:05 - 2018-08-09 12:09 - 000000000 ____D C:\FRST
2018-08-09 12:05 - 2018-08-09 12:04 - 001773056 _____ (Farbar) C:\Users\PC3-DM\Desktop\FRST.exe
2018-08-09 12:05 - 2018-08-09 12:03 - 000112640 _____ (forum.viry.cz) C:\Users\PC3-DM\Desktop\FRSTLauncher.exe
2018-08-09 12:04 - 2018-08-09 12:04 - 001773056 _____ (Farbar) C:\Users\PC3-DM\Downloads\FRST.exe
2018-08-09 12:03 - 2018-08-09 12:03 - 000112640 _____ (forum.viry.cz) C:\Users\PC3-DM\Downloads\FRSTLauncher.exe
2018-08-09 11:50 - 2018-08-09 11:51 - 000000000 ____D C:\AdwCleaner
2018-08-09 11:49 - 2018-08-09 11:49 - 007417040 _____ (Malwarebytes) C:\Users\PC3-DM\Downloads\adwcleaner_7.2.2.exe
2018-08-08 14:19 - 2018-08-08 14:19 - 000000000 ___HD C:\ProgramData\{4A1C4BC0-62AD-43D6-9BC9-620EED62DE65}
2018-08-07 13:53 - 2018-08-07 13:53 - 000000000 ___HD C:\ProgramData\{E25F37A4-E513-4B61-A976-060DDD2FA040}
2018-08-06 12:52 - 2018-08-06 12:52 - 000000000 ___HD C:\WINDOWS\AxInstSV
2018-07-30 16:01 - 2018-07-31 13:11 - 000000000 ____D C:\WINDOWS\Minidump
2018-07-30 12:06 - 2018-07-30 12:06 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2018-07-30 12:06 - 2016-11-14 14:35 - 000067520 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 024208440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv32.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 015301056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 014497712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dum.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 011270656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 011208312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 003995192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 000913856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 000876480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC.dll
2018-07-30 12:01 - 2018-07-30 12:01 - 250574008 _____ (NVIDIA Corporation) C:\Users\PC3-DM\Downloads\342.01-desktop-win10-32bit-international.exe
2018-07-30 10:28 - 2018-07-30 11:17 - 000321496 _____ C:\WINDOWS\ntbtlog.txt
2018-07-30 10:28 - 2018-07-30 10:28 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2018-07-30 10:26 - 2018-07-30 10:26 - 034693240 ____N (SUPERAntiSpyware) C:\Users\PC3-DM\Downloads\SUPERAntiSpyware.exe
2018-07-25 13:19 - 2018-07-25 13:19 - 001204720 _____ (Adobe Systems Incorporated) C:\Users\PC3-DM\Downloads\flashplayer30pp_fa_install.exe
2018-07-23 11:12 - 2018-07-23 11:12 - 000000000 ____D C:\Users\PC3-DM\Documents\e2968b_p5n-e_sli
2018-07-18 08:45 - 2018-07-18 08:45 - 000000000 ____D C:\Program Files\Common Files\Oracle
2018-07-18 08:45 - 2018-07-18 08:45 - 000000000 ____D C:\Program Files\Common Files\Java
2018-07-17 14:09 - 2018-07-10 13:50 - 001368911 _____ C:\Users\PC3-DM\Desktop\2018-06-all-5_76687_10_00_100003-01-fsd-mob-xml.zip
2018-07-17 14:09 - 2018-07-10 13:47 - 000069199 _____ C:\Users\PC3-DM\Desktop\2018-06-all-5_76687_11_00_100000-01-fsd-mob-xml.zip
2018-07-13 13:58 - 2018-07-13 13:58 - 000000721 _____ C:\Users\PC3-DM\AppData\Local\recently-used.xbel
2018-07-13 13:47 - 2018-07-13 13:47 - 000000000 ____D C:\Users\PC3-DM\AppData\Local\fontconfig
2018-07-12 13:46 - 2018-07-12 13:46 - 000000000 ___HD C:\ProgramData\{D139E978-C59B-43D3-A923-98F59496275C}
2018-07-11 09:02 - 2018-07-06 14:28 - 002712480 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-07-11 09:02 - 2018-07-06 14:28 - 001367968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-07-11 09:02 - 2018-07-06 14:28 - 000628120 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-07-11 09:02 - 2018-07-06 14:28 - 000563104 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-07-11 09:02 - 2018-07-06 14:28 - 000520088 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-07-11 09:02 - 2018-07-06 14:28 - 000367512 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-07-11 09:02 - 2018-07-06 14:06 - 003611368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-07-11 09:02 - 2018-07-06 13:57 - 003254272 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-07-11 09:02 - 2018-07-06 13:52 - 002895360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-07-11 09:02 - 2018-07-06 09:24 - 000380824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-07-11 09:02 - 2018-07-06 09:14 - 006710176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-07-11 09:02 - 2018-07-06 09:14 - 002242208 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-07-11 09:02 - 2018-07-06 09:14 - 002139032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-07-11 09:02 - 2018-07-06 09:14 - 002031008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-07-11 09:02 - 2018-07-06 09:14 - 001990160 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-07-11 09:02 - 2018-07-06 09:14 - 001618280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-07-11 09:02 - 2018-07-06 09:14 - 001175568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-07-11 09:02 - 2018-07-06 09:07 - 022006272 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-07-11 09:02 - 2018-07-06 09:00 - 019403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-07-11 09:02 - 2018-07-06 08:57 - 005779456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-07-11 09:02 - 2018-07-06 08:57 - 003712512 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-07-11 09:02 - 2018-07-06 08:55 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-07-11 09:02 - 2018-07-06 08:54 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-07-11 09:02 - 2018-07-06 08:54 - 001755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-07-11 09:02 - 2018-07-06 08:52 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-07-11 09:02 - 2018-06-15 17:25 - 020383720 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-07-11 09:02 - 2018-06-15 17:07 - 011901952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-07-11 09:02 - 2018-06-15 17:06 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-07-11 09:02 - 2018-06-15 17:02 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-07-11 09:02 - 2018-06-15 17:02 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-07-11 09:02 - 2018-06-15 07:20 - 001020184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2018-07-11 09:02 - 2018-06-15 07:17 - 000994368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-07-11 09:02 - 2018-06-15 07:05 - 000550608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-07-11 09:02 - 2018-06-15 07:04 - 002331576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-07-11 09:02 - 2018-06-15 07:04 - 001462824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 006572000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 006528600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 006043600 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 004788504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 002535032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 002163184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001710240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001559368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001380192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001144120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001020160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-07-11 09:02 - 2018-06-15 06:50 - 003245568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-07-11 09:02 - 2018-06-15 06:49 - 002962944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-07-11 09:02 - 2018-06-15 06:48 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-07-11 09:02 - 2018-06-15 06:48 - 002805760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-07-11 09:02 - 2018-06-15 06:46 - 004333568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-07-11 09:02 - 2018-06-15 06:45 - 002412032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-07-11 09:02 - 2018-06-15 06:45 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-07-11 09:02 - 2018-06-15 06:44 - 001657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-07-11 09:02 - 2018-06-15 06:43 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-07-11 09:01 - 2018-07-06 14:28 - 000254872 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-07-11 09:01 - 2018-07-06 14:28 - 000126360 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-07-11 09:01 - 2018-07-06 14:28 - 000062360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-07-11 09:01 - 2018-07-06 14:12 - 001539000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems32.dll
2018-07-11 09:01 - 2018-07-06 14:09 - 000456600 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-07-11 09:01 - 2018-07-06 13:54 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2018-07-11 09:01 - 2018-07-06 13:54 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-07-11 09:01 - 2018-07-06 13:53 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2018-07-11 09:01 - 2018-07-06 13:53 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-07-11 09:01 - 2018-07-06 13:53 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2018-07-11 09:01 - 2018-07-06 13:53 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-07-11 09:01 - 2018-07-06 13:52 - 001452544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2018-07-11 09:01 - 2018-07-06 13:52 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2018-07-11 09:01 - 2018-07-06 13:52 - 001082880 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-07-11 09:01 - 2018-07-06 13:51 - 002401280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-07-11 09:01 - 2018-07-06 13:51 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2018-07-11 09:01 - 2018-07-06 09:25 - 000030624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-07-11 09:01 - 2018-07-06 09:24 - 000364960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 001190600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-07-11 09:01 - 2018-07-06 09:14 - 001050584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-07-11 09:01 - 2018-07-06 09:14 - 000988640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 000831624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-07-11 09:01 - 2018-07-06 09:14 - 000829856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-07-11 09:01 - 2018-07-06 09:14 - 000802208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-07-11 09:01 - 2018-07-06 09:14 - 000679728 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 000573904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 000539792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-07-11 09:01 - 2018-07-06 09:14 - 000220576 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 000142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-07-11 09:01 - 2018-07-06 09:14 - 000104888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-07-11 09:01 - 2018-07-06 08:58 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2018-07-11 09:01 - 2018-07-06 08:58 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2018-07-11 09:01 - 2018-07-06 08:58 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2018-07-11 09:01 - 2018-07-06 08:57 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2018-07-11 09:01 - 2018-07-06 08:57 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-07-11 09:01 - 2018-07-06 08:57 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProv2faHelper.dll
2018-07-11 09:01 - 2018-07-06 08:55 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-07-11 09:01 - 2018-07-06 08:55 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-07-11 09:01 - 2018-07-06 08:55 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-07-11 09:01 - 2018-07-06 08:55 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 001173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 000999936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2018-07-11 09:01 - 2018-07-06 08:53 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeangle.dll
2018-07-11 09:01 - 2018-07-06 08:53 - 000879104 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2018-07-11 09:01 - 2018-07-06 08:53 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2018-07-11 09:01 - 2018-07-06 08:53 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2018-07-11 09:01 - 2018-06-15 17:46 - 000148896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe
2018-07-11 09:01 - 2018-06-15 17:42 - 000439040 _____ C:\WINDOWS\system32\FaceProcessorCore.dll
2018-07-11 09:01 - 2018-06-15 17:25 - 000260896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2018-07-11 09:01 - 2018-06-15 17:22 - 001026896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-07-11 09:01 - 2018-06-15 17:20 - 000316152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-07-11 09:01 - 2018-06-15 17:16 - 002206528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2018-07-11 09:01 - 2018-06-15 17:06 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2018-07-11 09:01 - 2018-06-15 17:05 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2018-07-11 09:01 - 2018-06-15 17:04 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2018-07-11 09:01 - 2018-06-15 17:04 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2018-07-11 09:01 - 2018-06-15 17:04 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2018-07-11 09:01 - 2018-06-15 17:04 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2018-07-11 09:01 - 2018-06-15 17:04 - 000373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2018-07-11 09:01 - 2018-06-15 17:04 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2018-07-11 09:01 - 2018-06-15 17:04 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DsmUserTask.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000958976 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000789504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-07-11 09:01 - 2018-06-15 17:03 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2018-07-11 09:01 - 2018-06-15 17:03 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2018-07-11 09:01 - 2018-06-15 17:03 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-07-11 09:01 - 2018-06-15 17:02 - 001075712 _____ C:\WINDOWS\system32\FaceProcessor.dll
2018-07-11 09:01 - 2018-06-15 17:02 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-07-11 09:01 - 2018-06-15 17:02 - 000296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2018-07-11 09:01 - 2018-06-15 17:01 - 002015744 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-07-11 09:01 - 2018-06-15 17:01 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2018-07-11 09:01 - 2018-06-15 17:01 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll
2018-07-11 09:01 - 2018-06-15 17:01 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2018-07-11 09:01 - 2018-06-15 16:36 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe
2018-07-11 09:01 - 2018-06-15 16:32 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppCore.dll
2018-07-11 09:01 - 2018-06-15 09:01 - 000039840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2018-07-11 09:01 - 2018-06-15 08:54 - 000477592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-07-11 09:01 - 2018-06-15 08:54 - 000065440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-07-11 09:01 - 2018-06-15 07:19 - 000205208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-07-11 09:01 - 2018-06-15 07:18 - 000049568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-07-11 09:01 - 2018-06-15 07:15 - 000625520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-07-11 09:01 - 2018-06-15 07:15 - 000096672 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe
2018-07-11 09:01 - 2018-06-15 07:12 - 000661152 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2018-07-11 09:01 - 2018-06-15 07:05 - 001629616 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2018-07-11 09:01 - 2018-06-15 07:05 - 000444240 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 002359704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-07-11 09:01 - 2018-06-15 07:04 - 001397192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 001251736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 000719552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 000493984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-07-11 09:01 - 2018-06-15 07:04 - 000359832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-07-11 09:01 - 2018-06-15 07:04 - 000281080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 000105376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 001924000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 001805752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 001011968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000770152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000542616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000502704 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-07-11 09:01 - 2018-06-15 07:03 - 000472136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000356960 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000232488 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2018-07-11 09:01 - 2018-06-15 07:03 - 000129192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000054312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2018-07-11 09:01 - 2018-06-15 06:48 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-07-11 09:01 - 2018-06-15 06:48 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-07-11 09:01 - 2018-06-15 06:48 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2018-07-11 09:01 - 2018-06-15 06:48 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2018-07-11 09:01 - 2018-06-15 06:48 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2018-07-11 09:01 - 2018-06-15 06:48 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2018-07-11 09:01 - 2018-06-15 06:48 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-07-11 09:01 - 2018-06-15 06:47 - 001867776 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2018-07-11 09:01 - 2018-06-15 06:47 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2018-07-11 09:01 - 2018-06-15 06:47 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2018-07-11 09:01 - 2018-06-15 06:47 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-07-11 09:01 - 2018-06-15 06:47 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-07-11 09:01 - 2018-06-15 06:47 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\VideoHandlers.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 001356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 001130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000683520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-07-11 09:01 - 2018-06-15 06:46 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 002198016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000871424 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2018-07-11 09:01 - 2018-06-15 06:45 - 000740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2018-07-11 09:01 - 2018-06-15 06:44 - 001342976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2018-07-11 09:01 - 2018-06-15 06:44 - 001272832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-07-11 09:01 - 2018-06-15 06:44 - 000728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-07-11 09:01 - 2018-06-15 06:44 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000700928 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-07-11 09:01 - 2018-06-15 06:42 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdrom.sys
2018-07-11 09:01 - 2018-06-08 04:14 - 000058524 _____ C:\WINDOWS\system32\srms.dat
2018-07-11 09:01 - 2018-05-20 13:38 - 000949952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-07-11 09:01 - 2018-05-20 13:32 - 000633240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-07-11 09:01 - 2018-05-20 13:32 - 000342936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-08-09 12:03 - 2018-04-11 22:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-08-09 11:53 - 2018-05-17 14:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-08-09 11:51 - 2018-04-11 14:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-08-09 11:50 - 2017-07-31 13:26 - 000000000 ____D C:\Users\PC3-DM\Documents\Soubory aplikace Outlook
2018-08-09 11:47 - 2018-05-17 14:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-08-09 11:47 - 2017-07-31 13:51 - 000000000 ___RD C:\Unreal Commander
2018-08-09 09:10 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-08-09 09:08 - 2017-07-31 12:45 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-08-09 09:08 - 2017-07-31 12:45 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-08-08 14:40 - 2017-07-31 15:48 - 000002302 ____H C:\Users\PC3-DM\Documents\Default.rdp
2018-08-08 14:19 - 2017-08-07 11:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WIN-TEL
2018-08-07 16:38 - 2018-04-11 22:36 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2018-08-07 13:30 - 2018-04-11 22:36 - 000000000 ___HD C:\Program Files\WindowsApps
2018-08-07 13:14 - 2017-10-20 09:58 - 000000000 ____D C:\Program Files\Opera
2018-08-07 12:55 - 2018-01-03 10:50 - 000000000 ____D C:\Users\PC3-DM\AppData\Local\Packages
2018-08-06 10:37 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-08-02 12:36 - 2018-05-17 14:22 - 000000000 ____D C:\Users\PC3-DM
2018-08-02 10:29 - 2018-06-21 10:01 - 000000000 ____D C:\ProgramData\Packages
2018-07-31 13:14 - 2017-10-20 09:58 - 000001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2018-07-30 12:07 - 2018-05-17 14:32 - 001601516 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-07-30 12:07 - 2018-04-19 13:13 - 000000000 ____D C:\Temp
2018-07-30 12:07 - 2018-04-12 06:53 - 000680616 _____ C:\WINDOWS\system32\perfh005.dat
2018-07-30 12:07 - 2018-04-12 06:53 - 000136548 _____ C:\WINDOWS\system32\perfc005.dat
2018-07-30 12:07 - 2018-04-11 22:31 - 000000000 ____D C:\WINDOWS\INF
2018-07-30 12:07 - 2017-07-31 12:48 - 000000000 ____D C:\ProgramData\NVIDIA
2018-07-25 13:21 - 2017-10-20 09:56 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-07-25 13:19 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-07-25 13:19 - 2017-09-18 09:32 - 000000000 ____D C:\Users\PC3-DM\AppData\Local\Adobe
2018-07-25 13:17 - 2017-10-20 09:56 - 000000000 ____D C:\Users\PC3-DM\AppData\LocalLow\Mozilla
2018-07-25 13:14 - 2017-10-20 09:56 - 000001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-07-25 13:14 - 2017-10-20 09:56 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-07-25 08:57 - 2017-08-07 10:03 - 000000000 ____D C:\Users\PC3-DM\AppData\Roaming\TeamViewer
2018-07-23 16:21 - 2018-07-02 10:07 - 000000000 ____D C:\Users\PC3-DM\Desktop\hry
2018-07-18 08:45 - 2017-07-31 12:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-07-18 08:45 - 2017-07-31 12:51 - 000000000 ____D C:\Program Files\Java
2018-07-18 08:44 - 2017-07-31 12:51 - 000096632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2018-07-13 09:03 - 2017-09-18 09:33 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-07-11 10:28 - 2018-05-17 14:15 - 000339080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-07-11 10:26 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-07-11 10:26 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-07-11 10:26 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-07-11 09:13 - 2018-04-11 22:25 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-07-11 09:13 - 2017-07-31 14:12 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-07-11 09:09 - 2017-07-31 14:11 - 131626216 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Files in the root of some directories =======
2018-07-13 13:58 - 2018-07-13 13:58 - 000000721 _____ () C:\Users\PC3-DM\AppData\Local\recently-used.xbel
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\Users\PC3-DM\Documents\FortiClientOnlineInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\PC3-DM\Documents\TeamViewer_Setup.exe:BDU [0]
==================== Security Center ==================
AV: Bitdefender Endpoint Security Tools Antimalware (Enabled - Up to date) {92356E98-E159-03AA-2BF0-6FE55F131038}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Endpoint Security Tools Antimalware (Enabled - Up to date) {29548F7C-C763-0C24-1140-549724945A85}
FW: Bitdefender Endpoint Security Tools Firewall (Disabled) {AA0EEFBD-AB36-02F2-00AF-C6D0A1C05743}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\PC3-DM\Desktop" je 12 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Díky za případnou pomoc.
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Kontrola logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Kontrola logu
- Přílohy
-
- Addition.zip
- (10.69 KiB) Staženo 66 x
-
Rudy
- Site Admin
- Příspěvky: 118270
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu
Přikládám LOG, který jsem měl již připravený:-)
# -------------------------------
# Malwarebytes AdwCleaner 7.2.2.0
# -------------------------------
# Build: 07-17-2018
# Database: 2018-08-07.3
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-09-2018
# Duration: 00:00:06
# OS: Windows 10 Pro
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
Deleted SearchGol
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1249 octets] - [09/08/2018 11:51:08]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# -------------------------------
# Malwarebytes AdwCleaner 7.2.2.0
# -------------------------------
# Build: 07-17-2018
# Database: 2018-08-07.3
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-09-2018
# Duration: 00:00:06
# OS: Windows 10 Pro
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
Deleted SearchGol
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1249 octets] - [09/08/2018 11:51:08]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118270
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02.08.2018
Ran by PC3-DM (administrator) on PC3-DM (09-08-2018 14:09:30)
Running from C:\Users\PC3-DM\Desktop
Loaded Profiles: PC3-DM (Available Profiles: PC3-DM & PH)
Platform: Microsoft Windows 10 Pro Version 1803 17134.165 (X86) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Cisco Systems, Inc.) C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\scheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Pulse Secure, LLC) C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epag.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\bdredline.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epintegrationservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epprotectedservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epupdateservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epsecurityservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Update Server\bin\epupdateserver.exe
(SafeNet, Inc.) C:\Program Files\SafeNet\Authentication\SAC\x32\SACSrv.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FCDBLog.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiESNAC.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSSLVPNdaemon.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(SafeNet, Inc.) C:\Program Files\SafeNet\Authentication\SAC\x32\SACMonitor.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(HP Inc.) C:\Program Files\HP\HP PageWide 377dw MFP\Bin\ScanToPCActivationApp.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epconsole.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(HP Inc.) C:\Program Files\HP\HP PageWide 377dw MFP\Bin\HPNetworkCommunicatorCom.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Unreal Commander\UnrealCommander32.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\update_task.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\PC3-DM\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [486816 2018-04-11] (Microsoft Corporation)
HKLM\...\Run: [SafeNetCertMngr] => C:\Program Files\SafeNet\Authentication\SAC\x32\SACMonitor.exe [1044680 2011-01-13] (SafeNet, Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12009176 2013-09-13] (Realtek Semiconductor)
HKLM\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1224704 2017-04-07] (Cisco Systems, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\Run: [HP PageWide 377dw MFP (NET)] => C:\Program Files\HP\HP PageWide 377dw MFP\Bin\ScanToPCActivationApp.exe [2628744 2017-11-10] (HP Inc.)
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a33e-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a3d4-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a538-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526aab7-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
GroupPolicy: Restriction ? <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{4465909f-a697-47af-ae7c-0c88b9bb9d97}: [NameServer] 192.168.1.20,192.168.1.21
Tcpip\..\Interfaces\{5442b510-1f9a-4725-ba3c-a955ec37c91a}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{62e3092f-9ed7-4a1a-8ba1-34b6b36d4810}: [NameServer] 192.168.18.111,192.168.18.114
Tcpip\..\Interfaces\{6b1c4475-9d93-4c1a-a4b1-f5d297bbfd44}: [DhcpNameServer] 192.168.1.20
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00
SearchScopes: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
SearchScopes: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll [2018-07-18] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-18] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2018-05-28] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: eph9ww3h.default
FF ProfilePath: C:\Users\PC3-DM\AppData\Roaming\Mozilla\Firefox\Profiles\eph9ww3h.default [2018-07-30]
FF Extension: (uBlock Origin) - C:\Users\PC3-DM\AppData\Roaming\Mozilla\Firefox\Profiles\eph9ww3h.default\Extensions\uBlock0@raymondhill.net.xpi [2018-07-25]
FF Plugin: @FortinetCacheClean -> C:\Program Files\Fortinet\FortiClient\npccplugin.dll [2017-06-15] (Fortinet Inc.)
FF Plugin: @FortinetCacheCleanEx -> C:\Program Files\Fortinet\FortiClient\npccpluginex.dll [2017-06-15] (Fortinet Inc.)
FF Plugin: @FortinetTunnelControl -> C:\Program Files\Fortinet\FortiClient\nptcplugin.dll [2017-06-15] (Fortinet Inc.)
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2018-05-28] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\PC3-DM\AppData\Roaming\mozilla\plugins\npatgpc.dll [2017-10-16] (Cisco WebEx LLC)
Chrome:
=======
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default [2018-08-09]
CHR Extension: (Prezentace) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-16]
CHR Extension: (HD for YouTube™) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgihagponf [2018-04-13]
CHR Extension: (Dokumenty) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Disk Google) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-31]
CHR Extension: (YouTube) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-31]
CHR Extension: (uBlock Origin) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2018-07-19]
CHR Extension: (Adobe Acrobat) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-18]
CHR Extension: (Tabulky) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-31]
CHR Extension: (AdBlock) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-07-30]
CHR Extension: (FormApps Extension) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-08-22]
CHR Extension: (Cisco Webex Extension) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2018-07-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-10]
CHR Extension: (uBlock Origin Extra) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgdnlhfefecpicbbihgmbmffkjpaplco [2018-07-09]
CHR Extension: (Gmail) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-31]
CHR Extension: (Chrome Media Router) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-07]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [2054360 2017-12-12] (Microsoft Corporation)
R2 dsNcService; C:\Program Files\Juniper Networks\Common Files\dsNcService.exe [673744 2017-01-10] (Pulse Secure, LLC)
R2 epag; C:\Program Files\Bitdefender\Endpoint Security\epag.exe [2967256 2018-06-28] (Bitdefender)
R2 EPIntegrationService; C:\Program Files\Bitdefender\Endpoint Security\EPIntegrationService.exe [94952 2018-05-24] (Bitdefender)
R2 EPProtectedService; C:\Program Files\Bitdefender\Endpoint Security\EPProtectedService.exe [94952 2018-08-02] (Bitdefender)
R2 epredline; C:\Program Files\Bitdefender\Endpoint Security\bdredline.exe [1945904 2018-06-28] (Bitdefender)
R2 EPSecurityService; C:\Program Files\Bitdefender\Endpoint Security\EPSecurityService.exe [94952 2018-05-24] (Bitdefender)
R2 EPUpdateServer; C:\Program Files\Bitdefender\Endpoint Update Server\bin\EPUpdateServer.exe [628456 2018-08-02] (Bitdefender)
R2 EPUpdateService; C:\Program Files\Bitdefender\Endpoint Security\EPUpdateService.exe [94944 2018-05-24] (Bitdefender)
R2 FA_Scheduler; C:\Program Files\Fortinet\FortiClient\scheduler.exe [127296 2017-06-15] (Fortinet Inc.)
S4 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [239184 2014-02-15] ()
R2 SACSrv; C:\Program Files\SafeNet\Authentication\SAC\x32\SACSrv.exe [8392 2011-01-13] (SafeNet, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3151784 2018-04-12] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [353792 2018-03-19] ()
R2 vpnagent; C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [643584 2017-04-07] (Cisco Systems, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3650472 2018-04-11] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [85016 2018-06-08] (Microsoft Corporation)
S4 WSWNA3100M; C:\Program Files\NETGEAR\WNA3100M\WifiSvc.exe [316120 2014-08-18] ()
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 acsock; C:\WINDOWS\system32\DRIVERS\acsock.sys [201336 2017-04-07] (Cisco Systems, Inc.)
R3 AKSIFDH; C:\WINDOWS\System32\drivers\aksifdh.sys [48296 2008-07-29] (Aladdin Knowledge Systems, Ltd.)
R3 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1010256 2018-06-28] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1419144 2018-05-24] (BitDefender)
S3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [720368 2018-05-24] (BitDefender)
R3 bddevflt; C:\Program Files\Bitdefender\Endpoint Security\bddevflt.sys [88648 2018-05-24] (BitDefender LLC)
S0 BDElam; C:\WINDOWS\System32\drivers\bdelam.sys [19960 2018-05-24] (Bitdefender)
R1 Bdfwfpf; C:\Program Files\Bitdefender\Endpoint Security\bdfwfpf.sys [113584 2018-05-24] (BitDefender LLC)
R0 bdupflt; C:\WINDOWS\System32\drivers\bdupflt.sys [56936 2018-06-28] ()
R3 dsNcAdpt; C:\WINDOWS\System32\drivers\dsNcAdpt.sys [27648 2017-01-10] (Juniper Networks)
S3 fortiapd; C:\WINDOWS\System32\drivers\fortiapd.sys [15440 2017-06-15] (Fortinet Inc)
R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [40176 2015-08-26] (Fortinet Inc)
S1 FortiFW; C:\WINDOWS\System32\drivers\FortiFW2.sys [32336 2017-06-15] (Fortinet Inc)
S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [128592 2017-06-15] (Fortinet Inc)
R1 FortiShield; C:\WINDOWS\System32\drivers\FortiShield.sys [66128 2017-06-15] (Fortinet Inc)
S3 fortisniff; C:\WINDOWS\System32\drivers\fortisniff2.sys [78928 2017-06-15] (Fortinet Inc)
R3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [59944 2017-04-24] (Fortinet Inc.)
R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [58120 2015-08-26] (Fortinet Inc)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [157256 2018-06-28] (BitDefender LLC)
R0 Ignis; C:\WINDOWS\System32\drivers\ignis.sys [156168 2018-05-24] (Bitdefender)
R3 iKeyEnum; C:\WINDOWS\System32\drivers\ikeyenum.sys [11616 2010-04-29] (SafeNet, Inc.)
R3 iKeyIFD; C:\WINDOWS\System32\drivers\ikeyifd.sys [18080 2010-04-29] (SafeNet, Inc.)
R3 pppop; C:\WINDOWS\System32\drivers\pppop.sys [47696 2016-03-29] (Fortinet Inc.)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [504832 2018-04-11] (Realtek )
R2 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [374904 2018-05-24] (BitDefender S.R.L.)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva-6.sys [43888 2016-12-09] (Cisco Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37448 2018-04-11] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [271776 2018-04-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [30208 2018-04-11] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [189952 2018-04-11] (Microsoft Corporation)
U5 RnbToken; C:\Windows\System32\Drivers\RnbToken.sys [21472 2010-04-29] (SafeNet, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-08-09 12:14 - 2018-08-09 12:14 - 000010946 _____ C:\Users\PC3-DM\Desktop\Addition.zip
2018-08-09 12:09 - 2018-08-09 14:10 - 000018214 _____ C:\Users\PC3-DM\Desktop\FRST.txt
2018-08-09 12:05 - 2018-08-09 12:09 - 000000000 ____D C:\FRST
2018-08-09 12:05 - 2018-08-09 12:04 - 001773056 _____ (Farbar) C:\Users\PC3-DM\Desktop\FRST.exe
2018-08-09 12:05 - 2018-08-09 12:03 - 000112640 _____ (forum.viry.cz) C:\Users\PC3-DM\Desktop\FRSTLauncher.exe
2018-08-09 12:04 - 2018-08-09 12:04 - 001773056 _____ (Farbar) C:\Users\PC3-DM\Downloads\FRST.exe
2018-08-09 12:03 - 2018-08-09 12:03 - 000112640 _____ (forum.viry.cz) C:\Users\PC3-DM\Downloads\FRSTLauncher.exe
2018-08-09 11:50 - 2018-08-09 11:51 - 000000000 ____D C:\AdwCleaner
2018-08-09 11:49 - 2018-08-09 11:49 - 007417040 _____ (Malwarebytes) C:\Users\PC3-DM\Downloads\adwcleaner_7.2.2.exe
2018-08-08 14:19 - 2018-08-08 14:19 - 000000000 ___HD C:\ProgramData\{4A1C4BC0-62AD-43D6-9BC9-620EED62DE65}
2018-08-07 13:53 - 2018-08-07 13:53 - 000000000 ___HD C:\ProgramData\{E25F37A4-E513-4B61-A976-060DDD2FA040}
2018-08-06 12:52 - 2018-08-06 12:52 - 000000000 ___HD C:\WINDOWS\AxInstSV
2018-07-30 16:01 - 2018-07-31 13:11 - 000000000 ____D C:\WINDOWS\Minidump
2018-07-30 12:06 - 2018-07-30 12:06 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2018-07-30 12:06 - 2016-11-14 14:35 - 000067520 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 024208440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv32.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 015301056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 014497712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dum.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 011270656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 011208312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 003995192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 000913856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 000876480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC.dll
2018-07-30 12:01 - 2018-07-30 12:01 - 250574008 _____ (NVIDIA Corporation) C:\Users\PC3-DM\Downloads\342.01-desktop-win10-32bit-international.exe
2018-07-30 10:28 - 2018-07-30 11:17 - 000321496 _____ C:\WINDOWS\ntbtlog.txt
2018-07-30 10:28 - 2018-07-30 10:28 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2018-07-30 10:26 - 2018-07-30 10:26 - 034693240 ____N (SUPERAntiSpyware) C:\Users\PC3-DM\Downloads\SUPERAntiSpyware.exe
2018-07-25 13:19 - 2018-07-25 13:19 - 001204720 _____ (Adobe Systems Incorporated) C:\Users\PC3-DM\Downloads\flashplayer30pp_fa_install.exe
2018-07-23 11:12 - 2018-07-23 11:12 - 000000000 ____D C:\Users\PC3-DM\Documents\e2968b_p5n-e_sli
2018-07-18 08:45 - 2018-07-18 08:45 - 000000000 ____D C:\Program Files\Common Files\Oracle
2018-07-18 08:45 - 2018-07-18 08:45 - 000000000 ____D C:\Program Files\Common Files\Java
2018-07-17 14:09 - 2018-07-10 13:50 - 001368911 _____ C:\Users\PC3-DM\Desktop\2018-06-all-5_76687_10_00_100003-01-fsd-mob-xml.zip
2018-07-17 14:09 - 2018-07-10 13:47 - 000069199 _____ C:\Users\PC3-DM\Desktop\2018-06-all-5_76687_11_00_100000-01-fsd-mob-xml.zip
2018-07-13 13:58 - 2018-07-13 13:58 - 000000721 _____ C:\Users\PC3-DM\AppData\Local\recently-used.xbel
2018-07-13 13:47 - 2018-07-13 13:47 - 000000000 ____D C:\Users\PC3-DM\AppData\Local\fontconfig
2018-07-12 13:46 - 2018-07-12 13:46 - 000000000 ___HD C:\ProgramData\{D139E978-C59B-43D3-A923-98F59496275C}
2018-07-11 09:02 - 2018-07-06 14:28 - 002712480 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-07-11 09:02 - 2018-07-06 14:28 - 001367968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-07-11 09:02 - 2018-07-06 14:28 - 000628120 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-07-11 09:02 - 2018-07-06 14:28 - 000563104 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-07-11 09:02 - 2018-07-06 14:28 - 000520088 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-07-11 09:02 - 2018-07-06 14:28 - 000367512 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-07-11 09:02 - 2018-07-06 14:06 - 003611368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-07-11 09:02 - 2018-07-06 13:57 - 003254272 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-07-11 09:02 - 2018-07-06 13:52 - 002895360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-07-11 09:02 - 2018-07-06 09:24 - 000380824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-07-11 09:02 - 2018-07-06 09:14 - 006710176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-07-11 09:02 - 2018-07-06 09:14 - 002242208 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-07-11 09:02 - 2018-07-06 09:14 - 002139032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-07-11 09:02 - 2018-07-06 09:14 - 002031008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-07-11 09:02 - 2018-07-06 09:14 - 001990160 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-07-11 09:02 - 2018-07-06 09:14 - 001618280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-07-11 09:02 - 2018-07-06 09:14 - 001175568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-07-11 09:02 - 2018-07-06 09:07 - 022006272 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-07-11 09:02 - 2018-07-06 09:00 - 019403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-07-11 09:02 - 2018-07-06 08:57 - 005779456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-07-11 09:02 - 2018-07-06 08:57 - 003712512 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-07-11 09:02 - 2018-07-06 08:55 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-07-11 09:02 - 2018-07-06 08:54 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-07-11 09:02 - 2018-07-06 08:54 - 001755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-07-11 09:02 - 2018-07-06 08:52 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-07-11 09:02 - 2018-06-15 17:25 - 020383720 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-07-11 09:02 - 2018-06-15 17:07 - 011901952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-07-11 09:02 - 2018-06-15 17:06 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-07-11 09:02 - 2018-06-15 17:02 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-07-11 09:02 - 2018-06-15 17:02 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-07-11 09:02 - 2018-06-15 07:20 - 001020184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2018-07-11 09:02 - 2018-06-15 07:17 - 000994368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-07-11 09:02 - 2018-06-15 07:05 - 000550608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-07-11 09:02 - 2018-06-15 07:04 - 002331576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-07-11 09:02 - 2018-06-15 07:04 - 001462824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 006572000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 006528600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 006043600 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 004788504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 002535032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 002163184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001710240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001559368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001380192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001144120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001020160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-07-11 09:02 - 2018-06-15 06:50 - 003245568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-07-11 09:02 - 2018-06-15 06:49 - 002962944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-07-11 09:02 - 2018-06-15 06:48 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-07-11 09:02 - 2018-06-15 06:48 - 002805760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-07-11 09:02 - 2018-06-15 06:46 - 004333568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-07-11 09:02 - 2018-06-15 06:45 - 002412032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-07-11 09:02 - 2018-06-15 06:45 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-07-11 09:02 - 2018-06-15 06:44 - 001657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-07-11 09:02 - 2018-06-15 06:43 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-07-11 09:01 - 2018-07-06 14:28 - 000254872 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-07-11 09:01 - 2018-07-06 14:28 - 000126360 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-07-11 09:01 - 2018-07-06 14:28 - 000062360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-07-11 09:01 - 2018-07-06 14:12 - 001539000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems32.dll
2018-07-11 09:01 - 2018-07-06 14:09 - 000456600 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-07-11 09:01 - 2018-07-06 13:54 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2018-07-11 09:01 - 2018-07-06 13:54 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-07-11 09:01 - 2018-07-06 13:53 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2018-07-11 09:01 - 2018-07-06 13:53 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-07-11 09:01 - 2018-07-06 13:53 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2018-07-11 09:01 - 2018-07-06 13:53 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-07-11 09:01 - 2018-07-06 13:52 - 001452544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2018-07-11 09:01 - 2018-07-06 13:52 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2018-07-11 09:01 - 2018-07-06 13:52 - 001082880 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-07-11 09:01 - 2018-07-06 13:51 - 002401280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-07-11 09:01 - 2018-07-06 13:51 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2018-07-11 09:01 - 2018-07-06 09:25 - 000030624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-07-11 09:01 - 2018-07-06 09:24 - 000364960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 001190600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-07-11 09:01 - 2018-07-06 09:14 - 001050584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-07-11 09:01 - 2018-07-06 09:14 - 000988640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 000831624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-07-11 09:01 - 2018-07-06 09:14 - 000829856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-07-11 09:01 - 2018-07-06 09:14 - 000802208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-07-11 09:01 - 2018-07-06 09:14 - 000679728 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 000573904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 000539792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-07-11 09:01 - 2018-07-06 09:14 - 000220576 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 000142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-07-11 09:01 - 2018-07-06 09:14 - 000104888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-07-11 09:01 - 2018-07-06 08:58 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2018-07-11 09:01 - 2018-07-06 08:58 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2018-07-11 09:01 - 2018-07-06 08:58 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2018-07-11 09:01 - 2018-07-06 08:57 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2018-07-11 09:01 - 2018-07-06 08:57 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-07-11 09:01 - 2018-07-06 08:57 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProv2faHelper.dll
2018-07-11 09:01 - 2018-07-06 08:55 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-07-11 09:01 - 2018-07-06 08:55 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-07-11 09:01 - 2018-07-06 08:55 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-07-11 09:01 - 2018-07-06 08:55 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 001173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 000999936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2018-07-11 09:01 - 2018-07-06 08:53 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeangle.dll
2018-07-11 09:01 - 2018-07-06 08:53 - 000879104 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2018-07-11 09:01 - 2018-07-06 08:53 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2018-07-11 09:01 - 2018-07-06 08:53 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2018-07-11 09:01 - 2018-06-15 17:46 - 000148896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe
2018-07-11 09:01 - 2018-06-15 17:42 - 000439040 _____ C:\WINDOWS\system32\FaceProcessorCore.dll
2018-07-11 09:01 - 2018-06-15 17:25 - 000260896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2018-07-11 09:01 - 2018-06-15 17:22 - 001026896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-07-11 09:01 - 2018-06-15 17:20 - 000316152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-07-11 09:01 - 2018-06-15 17:16 - 002206528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2018-07-11 09:01 - 2018-06-15 17:06 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2018-07-11 09:01 - 2018-06-15 17:05 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2018-07-11 09:01 - 2018-06-15 17:04 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2018-07-11 09:01 - 2018-06-15 17:04 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2018-07-11 09:01 - 2018-06-15 17:04 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2018-07-11 09:01 - 2018-06-15 17:04 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2018-07-11 09:01 - 2018-06-15 17:04 - 000373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2018-07-11 09:01 - 2018-06-15 17:04 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2018-07-11 09:01 - 2018-06-15 17:04 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DsmUserTask.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000958976 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000789504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-07-11 09:01 - 2018-06-15 17:03 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2018-07-11 09:01 - 2018-06-15 17:03 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2018-07-11 09:01 - 2018-06-15 17:03 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-07-11 09:01 - 2018-06-15 17:02 - 001075712 _____ C:\WINDOWS\system32\FaceProcessor.dll
2018-07-11 09:01 - 2018-06-15 17:02 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-07-11 09:01 - 2018-06-15 17:02 - 000296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2018-07-11 09:01 - 2018-06-15 17:01 - 002015744 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-07-11 09:01 - 2018-06-15 17:01 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2018-07-11 09:01 - 2018-06-15 17:01 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll
2018-07-11 09:01 - 2018-06-15 17:01 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2018-07-11 09:01 - 2018-06-15 16:36 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe
2018-07-11 09:01 - 2018-06-15 16:32 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppCore.dll
2018-07-11 09:01 - 2018-06-15 09:01 - 000039840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2018-07-11 09:01 - 2018-06-15 08:54 - 000477592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-07-11 09:01 - 2018-06-15 08:54 - 000065440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-07-11 09:01 - 2018-06-15 07:19 - 000205208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-07-11 09:01 - 2018-06-15 07:18 - 000049568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-07-11 09:01 - 2018-06-15 07:15 - 000625520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-07-11 09:01 - 2018-06-15 07:15 - 000096672 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe
2018-07-11 09:01 - 2018-06-15 07:12 - 000661152 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2018-07-11 09:01 - 2018-06-15 07:05 - 001629616 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2018-07-11 09:01 - 2018-06-15 07:05 - 000444240 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 002359704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-07-11 09:01 - 2018-06-15 07:04 - 001397192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 001251736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 000719552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 000493984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-07-11 09:01 - 2018-06-15 07:04 - 000359832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-07-11 09:01 - 2018-06-15 07:04 - 000281080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 000105376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 001924000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 001805752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 001011968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000770152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000542616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000502704 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-07-11 09:01 - 2018-06-15 07:03 - 000472136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000356960 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000232488 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2018-07-11 09:01 - 2018-06-15 07:03 - 000129192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000054312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2018-07-11 09:01 - 2018-06-15 06:48 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-07-11 09:01 - 2018-06-15 06:48 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-07-11 09:01 - 2018-06-15 06:48 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2018-07-11 09:01 - 2018-06-15 06:48 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2018-07-11 09:01 - 2018-06-15 06:48 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2018-07-11 09:01 - 2018-06-15 06:48 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2018-07-11 09:01 - 2018-06-15 06:48 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-07-11 09:01 - 2018-06-15 06:47 - 001867776 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2018-07-11 09:01 - 2018-06-15 06:47 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2018-07-11 09:01 - 2018-06-15 06:47 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2018-07-11 09:01 - 2018-06-15 06:47 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-07-11 09:01 - 2018-06-15 06:47 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-07-11 09:01 - 2018-06-15 06:47 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\VideoHandlers.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 001356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 001130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000683520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-07-11 09:01 - 2018-06-15 06:46 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 002198016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000871424 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2018-07-11 09:01 - 2018-06-15 06:45 - 000740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2018-07-11 09:01 - 2018-06-15 06:44 - 001342976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2018-07-11 09:01 - 2018-06-15 06:44 - 001272832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-07-11 09:01 - 2018-06-15 06:44 - 000728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-07-11 09:01 - 2018-06-15 06:44 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000700928 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-07-11 09:01 - 2018-06-15 06:42 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdrom.sys
2018-07-11 09:01 - 2018-06-08 04:14 - 000058524 _____ C:\WINDOWS\system32\srms.dat
2018-07-11 09:01 - 2018-05-20 13:38 - 000949952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-07-11 09:01 - 2018-05-20 13:32 - 000633240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-07-11 09:01 - 2018-05-20 13:32 - 000342936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-08-09 14:01 - 2018-04-11 22:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-08-09 13:17 - 2017-07-31 13:26 - 000000000 ____D C:\Users\PC3-DM\Documents\Soubory aplikace Outlook
2018-08-09 12:18 - 2017-07-31 13:51 - 000000000 ___RD C:\Unreal Commander
2018-08-09 11:53 - 2018-05-17 14:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-08-09 11:51 - 2018-04-11 14:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-08-09 11:47 - 2018-05-17 14:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-08-09 09:10 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-08-09 09:08 - 2017-07-31 12:45 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-08-09 09:08 - 2017-07-31 12:45 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-08-08 14:40 - 2017-07-31 15:48 - 000002302 ____H C:\Users\PC3-DM\Documents\Default.rdp
2018-08-08 14:19 - 2017-08-07 11:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WIN-TEL
2018-08-07 16:38 - 2018-04-11 22:36 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2018-08-07 13:30 - 2018-04-11 22:36 - 000000000 ___HD C:\Program Files\WindowsApps
2018-08-07 13:14 - 2017-10-20 09:58 - 000000000 ____D C:\Program Files\Opera
2018-08-07 12:55 - 2018-01-03 10:50 - 000000000 ____D C:\Users\PC3-DM\AppData\Local\Packages
2018-08-06 10:37 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-08-02 12:36 - 2018-05-17 14:22 - 000000000 ____D C:\Users\PC3-DM
2018-08-02 10:29 - 2018-06-21 10:01 - 000000000 ____D C:\ProgramData\Packages
2018-07-31 13:14 - 2017-10-20 09:58 - 000001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2018-07-30 12:07 - 2018-05-17 14:32 - 001601516 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-07-30 12:07 - 2018-04-19 13:13 - 000000000 ____D C:\Temp
2018-07-30 12:07 - 2018-04-12 06:53 - 000680616 _____ C:\WINDOWS\system32\perfh005.dat
2018-07-30 12:07 - 2018-04-12 06:53 - 000136548 _____ C:\WINDOWS\system32\perfc005.dat
2018-07-30 12:07 - 2018-04-11 22:31 - 000000000 ____D C:\WINDOWS\INF
2018-07-30 12:07 - 2017-07-31 12:48 - 000000000 ____D C:\ProgramData\NVIDIA
2018-07-25 13:21 - 2017-10-20 09:56 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-07-25 13:19 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-07-25 13:19 - 2017-09-18 09:32 - 000000000 ____D C:\Users\PC3-DM\AppData\Local\Adobe
2018-07-25 13:17 - 2017-10-20 09:56 - 000000000 ____D C:\Users\PC3-DM\AppData\LocalLow\Mozilla
2018-07-25 13:14 - 2017-10-20 09:56 - 000001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-07-25 13:14 - 2017-10-20 09:56 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-07-25 08:57 - 2017-08-07 10:03 - 000000000 ____D C:\Users\PC3-DM\AppData\Roaming\TeamViewer
2018-07-23 16:21 - 2018-07-02 10:07 - 000000000 ____D C:\Users\PC3-DM\Desktop\hry
2018-07-18 08:45 - 2017-07-31 12:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-07-18 08:45 - 2017-07-31 12:51 - 000000000 ____D C:\Program Files\Java
2018-07-18 08:44 - 2017-07-31 12:51 - 000096632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2018-07-13 09:03 - 2017-09-18 09:33 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-07-11 10:28 - 2018-05-17 14:15 - 000339080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-07-11 10:26 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-07-11 10:26 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-07-11 10:26 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-07-11 09:13 - 2018-04-11 22:25 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-07-11 09:13 - 2017-07-31 14:12 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-07-11 09:09 - 2017-07-31 14:11 - 131626216 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Files in the root of some directories =======
2018-07-13 13:58 - 2018-07-13 13:58 - 000000721 _____ () C:\Users\PC3-DM\AppData\Local\recently-used.xbel
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\Users\PC3-DM\Documents\FortiClientOnlineInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\PC3-DM\Documents\TeamViewer_Setup.exe:BDU [0]
==================== Security Center ==================
AV: Bitdefender Endpoint Security Tools Antimalware (Enabled - Up to date) {92356E98-E159-03AA-2BF0-6FE55F131038}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Endpoint Security Tools Antimalware (Enabled - Up to date) {29548F7C-C763-0C24-1140-549724945A85}
FW: Bitdefender Endpoint Security Tools Firewall (Disabled) {AA0EEFBD-AB36-02F2-00AF-C6D0A1C05743}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\PC3-DM\Desktop" je 12 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Ran by PC3-DM (administrator) on PC3-DM (09-08-2018 14:09:30)
Running from C:\Users\PC3-DM\Desktop
Loaded Profiles: PC3-DM (Available Profiles: PC3-DM & PH)
Platform: Microsoft Windows 10 Pro Version 1803 17134.165 (X86) Language: Čeština (Česko)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Cisco Systems, Inc.) C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\scheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Pulse Secure, LLC) C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epag.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\bdredline.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epintegrationservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epprotectedservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epupdateservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epsecurityservice.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Update Server\bin\epupdateserver.exe
(SafeNet, Inc.) C:\Program Files\SafeNet\Authentication\SAC\x32\SACSrv.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FCDBLog.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiESNAC.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiSSLVPNdaemon.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\FortiTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(SafeNet, Inc.) C:\Program Files\SafeNet\Authentication\SAC\x32\SACMonitor.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(HP Inc.) C:\Program Files\HP\HP PageWide 377dw MFP\Bin\ScanToPCActivationApp.exe
(Bitdefender) C:\Program Files\Bitdefender\Endpoint Security\epconsole.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(HP Inc.) C:\Program Files\HP\HP PageWide 377dw MFP\Bin\HPNetworkCommunicatorCom.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Unreal Commander\UnrealCommander32.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
(Opera Software) C:\Program Files\Opera\54.0.2952.64\opera.exe
(Fortinet Inc.) C:\Program Files\Fortinet\FortiClient\update_task.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\PC3-DM\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [486816 2018-04-11] (Microsoft Corporation)
HKLM\...\Run: [SafeNetCertMngr] => C:\Program Files\SafeNet\Authentication\SAC\x32\SACMonitor.exe [1044680 2011-01-13] (SafeNet, Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12009176 2013-09-13] (Realtek Semiconductor)
HKLM\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1224704 2017-04-07] (Cisco Systems, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\Run: [HP PageWide 377dw MFP (NET)] => C:\Program Files\HP\HP PageWide 377dw MFP\Bin\ScanToPCActivationApp.exe [2628744 2017-11-10] (HP Inc.)
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a33e-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a3d4-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a538-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526aab7-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
GroupPolicy: Restriction ? <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\..\Interfaces\{4465909f-a697-47af-ae7c-0c88b9bb9d97}: [NameServer] 192.168.1.20,192.168.1.21
Tcpip\..\Interfaces\{5442b510-1f9a-4725-ba3c-a955ec37c91a}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{62e3092f-9ed7-4a1a-8ba1-34b6b36d4810}: [NameServer] 192.168.18.111,192.168.18.114
Tcpip\..\Interfaces\{6b1c4475-9d93-4c1a-a4b1-f5d297bbfd44}: [DhcpNameServer] 192.168.1.20
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00
SearchScopes: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
SearchScopes: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll [2018-07-18] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll [2018-07-18] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2018-05-28] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: eph9ww3h.default
FF ProfilePath: C:\Users\PC3-DM\AppData\Roaming\Mozilla\Firefox\Profiles\eph9ww3h.default [2018-07-30]
FF Extension: (uBlock Origin) - C:\Users\PC3-DM\AppData\Roaming\Mozilla\Firefox\Profiles\eph9ww3h.default\Extensions\uBlock0@raymondhill.net.xpi [2018-07-25]
FF Plugin: @FortinetCacheClean -> C:\Program Files\Fortinet\FortiClient\npccplugin.dll [2017-06-15] (Fortinet Inc.)
FF Plugin: @FortinetCacheCleanEx -> C:\Program Files\Fortinet\FortiClient\npccpluginex.dll [2017-06-15] (Fortinet Inc.)
FF Plugin: @FortinetTunnelControl -> C:\Program Files\Fortinet\FortiClient\nptcplugin.dll [2017-06-15] (Fortinet Inc.)
FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2018-07-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2018-07-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2018-05-28] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-17] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\PC3-DM\AppData\Roaming\mozilla\plugins\npatgpc.dll [2017-10-16] (Cisco WebEx LLC)
Chrome:
=======
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default [2018-08-09]
CHR Extension: (Prezentace) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-16]
CHR Extension: (HD for YouTube™) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\akjbfncbadcmnkopckegnmjgihagponf [2018-04-13]
CHR Extension: (Dokumenty) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Disk Google) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-31]
CHR Extension: (YouTube) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-31]
CHR Extension: (uBlock Origin) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2018-07-19]
CHR Extension: (Adobe Acrobat) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-18]
CHR Extension: (Tabulky) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-31]
CHR Extension: (AdBlock) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-07-30]
CHR Extension: (FormApps Extension) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilfoopambfaclfjmpiaijnccgcmbeigi [2017-08-22]
CHR Extension: (Cisco Webex Extension) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlhmfgmfgeifomenelglieieghnjghma [2018-07-09]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-10]
CHR Extension: (uBlock Origin Extra) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgdnlhfefecpicbbihgmbmffkjpaplco [2018-07-09]
CHR Extension: (Gmail) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-31]
CHR Extension: (Chrome Media Router) - C:\Users\PC3-DM\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-08-07]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [2054360 2017-12-12] (Microsoft Corporation)
R2 dsNcService; C:\Program Files\Juniper Networks\Common Files\dsNcService.exe [673744 2017-01-10] (Pulse Secure, LLC)
R2 epag; C:\Program Files\Bitdefender\Endpoint Security\epag.exe [2967256 2018-06-28] (Bitdefender)
R2 EPIntegrationService; C:\Program Files\Bitdefender\Endpoint Security\EPIntegrationService.exe [94952 2018-05-24] (Bitdefender)
R2 EPProtectedService; C:\Program Files\Bitdefender\Endpoint Security\EPProtectedService.exe [94952 2018-08-02] (Bitdefender)
R2 epredline; C:\Program Files\Bitdefender\Endpoint Security\bdredline.exe [1945904 2018-06-28] (Bitdefender)
R2 EPSecurityService; C:\Program Files\Bitdefender\Endpoint Security\EPSecurityService.exe [94952 2018-05-24] (Bitdefender)
R2 EPUpdateServer; C:\Program Files\Bitdefender\Endpoint Update Server\bin\EPUpdateServer.exe [628456 2018-08-02] (Bitdefender)
R2 EPUpdateService; C:\Program Files\Bitdefender\Endpoint Security\EPUpdateService.exe [94944 2018-05-24] (Bitdefender)
R2 FA_Scheduler; C:\Program Files\Fortinet\FortiClient\scheduler.exe [127296 2017-06-15] (Fortinet Inc.)
S4 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [239184 2014-02-15] ()
R2 SACSrv; C:\Program Files\SafeNet\Authentication\SAC\x32\SACSrv.exe [8392 2011-01-13] (SafeNet, Inc.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3151784 2018-04-12] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [353792 2018-03-19] ()
R2 vpnagent; C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [643584 2017-04-07] (Cisco Systems, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3650472 2018-04-11] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [85016 2018-06-08] (Microsoft Corporation)
S4 WSWNA3100M; C:\Program Files\NETGEAR\WNA3100M\WifiSvc.exe [316120 2014-08-18] ()
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 acsock; C:\WINDOWS\system32\DRIVERS\acsock.sys [201336 2017-04-07] (Cisco Systems, Inc.)
R3 AKSIFDH; C:\WINDOWS\System32\drivers\aksifdh.sys [48296 2008-07-29] (Aladdin Knowledge Systems, Ltd.)
R3 atc; C:\WINDOWS\System32\DRIVERS\atc.sys [1010256 2018-06-28] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1419144 2018-05-24] (BitDefender)
S3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [720368 2018-05-24] (BitDefender)
R3 bddevflt; C:\Program Files\Bitdefender\Endpoint Security\bddevflt.sys [88648 2018-05-24] (BitDefender LLC)
S0 BDElam; C:\WINDOWS\System32\drivers\bdelam.sys [19960 2018-05-24] (Bitdefender)
R1 Bdfwfpf; C:\Program Files\Bitdefender\Endpoint Security\bdfwfpf.sys [113584 2018-05-24] (BitDefender LLC)
R0 bdupflt; C:\WINDOWS\System32\drivers\bdupflt.sys [56936 2018-06-28] ()
R3 dsNcAdpt; C:\WINDOWS\System32\drivers\dsNcAdpt.sys [27648 2017-01-10] (Juniper Networks)
S3 fortiapd; C:\WINDOWS\System32\drivers\fortiapd.sys [15440 2017-06-15] (Fortinet Inc)
R1 FortiFilter; C:\WINDOWS\system32\DRIVERS\FortiFilter.sys [40176 2015-08-26] (Fortinet Inc)
S1 FortiFW; C:\WINDOWS\System32\drivers\FortiFW2.sys [32336 2017-06-15] (Fortinet Inc)
S3 Fortips; C:\WINDOWS\System32\drivers\fortips.sys [128592 2017-06-15] (Fortinet Inc)
R1 FortiShield; C:\WINDOWS\System32\drivers\FortiShield.sys [66128 2017-06-15] (Fortinet Inc)
S3 fortisniff; C:\WINDOWS\System32\drivers\fortisniff2.sys [78928 2017-06-15] (Fortinet Inc)
R3 ftsvnic; C:\WINDOWS\System32\drivers\ftsvnic.sys [59944 2017-04-24] (Fortinet Inc.)
R3 ft_vnic; C:\WINDOWS\System32\drivers\ftvnic.sys [58120 2015-08-26] (Fortinet Inc)
R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [157256 2018-06-28] (BitDefender LLC)
R0 Ignis; C:\WINDOWS\System32\drivers\ignis.sys [156168 2018-05-24] (Bitdefender)
R3 iKeyEnum; C:\WINDOWS\System32\drivers\ikeyenum.sys [11616 2010-04-29] (SafeNet, Inc.)
R3 iKeyIFD; C:\WINDOWS\System32\drivers\ikeyifd.sys [18080 2010-04-29] (SafeNet, Inc.)
R3 pppop; C:\WINDOWS\System32\drivers\pppop.sys [47696 2016-03-29] (Fortinet Inc.)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [504832 2018-04-11] (Realtek )
R2 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [374904 2018-05-24] (BitDefender S.R.L.)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva-6.sys [43888 2016-12-09] (Cisco Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37448 2018-04-11] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [271776 2018-04-11] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [30208 2018-04-11] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [189952 2018-04-11] (Microsoft Corporation)
U5 RnbToken; C:\Windows\System32\Drivers\RnbToken.sys [21472 2010-04-29] (SafeNet, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-08-09 12:14 - 2018-08-09 12:14 - 000010946 _____ C:\Users\PC3-DM\Desktop\Addition.zip
2018-08-09 12:09 - 2018-08-09 14:10 - 000018214 _____ C:\Users\PC3-DM\Desktop\FRST.txt
2018-08-09 12:05 - 2018-08-09 12:09 - 000000000 ____D C:\FRST
2018-08-09 12:05 - 2018-08-09 12:04 - 001773056 _____ (Farbar) C:\Users\PC3-DM\Desktop\FRST.exe
2018-08-09 12:05 - 2018-08-09 12:03 - 000112640 _____ (forum.viry.cz) C:\Users\PC3-DM\Desktop\FRSTLauncher.exe
2018-08-09 12:04 - 2018-08-09 12:04 - 001773056 _____ (Farbar) C:\Users\PC3-DM\Downloads\FRST.exe
2018-08-09 12:03 - 2018-08-09 12:03 - 000112640 _____ (forum.viry.cz) C:\Users\PC3-DM\Downloads\FRSTLauncher.exe
2018-08-09 11:50 - 2018-08-09 11:51 - 000000000 ____D C:\AdwCleaner
2018-08-09 11:49 - 2018-08-09 11:49 - 007417040 _____ (Malwarebytes) C:\Users\PC3-DM\Downloads\adwcleaner_7.2.2.exe
2018-08-08 14:19 - 2018-08-08 14:19 - 000000000 ___HD C:\ProgramData\{4A1C4BC0-62AD-43D6-9BC9-620EED62DE65}
2018-08-07 13:53 - 2018-08-07 13:53 - 000000000 ___HD C:\ProgramData\{E25F37A4-E513-4B61-A976-060DDD2FA040}
2018-08-06 12:52 - 2018-08-06 12:52 - 000000000 ___HD C:\WINDOWS\AxInstSV
2018-07-30 16:01 - 2018-07-31 13:11 - 000000000 ____D C:\WINDOWS\Minidump
2018-07-30 12:06 - 2018-07-30 12:06 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2018-07-30 12:06 - 2016-11-14 14:35 - 000067520 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 024208440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv32.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 015301056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 014497712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dum.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 011270656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 011208312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 003995192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 000913856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR.dll
2018-07-30 12:05 - 2016-11-14 14:35 - 000876480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC.dll
2018-07-30 12:01 - 2018-07-30 12:01 - 250574008 _____ (NVIDIA Corporation) C:\Users\PC3-DM\Downloads\342.01-desktop-win10-32bit-international.exe
2018-07-30 10:28 - 2018-07-30 11:17 - 000321496 _____ C:\WINDOWS\ntbtlog.txt
2018-07-30 10:28 - 2018-07-30 10:28 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2018-07-30 10:26 - 2018-07-30 10:26 - 034693240 ____N (SUPERAntiSpyware) C:\Users\PC3-DM\Downloads\SUPERAntiSpyware.exe
2018-07-25 13:19 - 2018-07-25 13:19 - 001204720 _____ (Adobe Systems Incorporated) C:\Users\PC3-DM\Downloads\flashplayer30pp_fa_install.exe
2018-07-23 11:12 - 2018-07-23 11:12 - 000000000 ____D C:\Users\PC3-DM\Documents\e2968b_p5n-e_sli
2018-07-18 08:45 - 2018-07-18 08:45 - 000000000 ____D C:\Program Files\Common Files\Oracle
2018-07-18 08:45 - 2018-07-18 08:45 - 000000000 ____D C:\Program Files\Common Files\Java
2018-07-17 14:09 - 2018-07-10 13:50 - 001368911 _____ C:\Users\PC3-DM\Desktop\2018-06-all-5_76687_10_00_100003-01-fsd-mob-xml.zip
2018-07-17 14:09 - 2018-07-10 13:47 - 000069199 _____ C:\Users\PC3-DM\Desktop\2018-06-all-5_76687_11_00_100000-01-fsd-mob-xml.zip
2018-07-13 13:58 - 2018-07-13 13:58 - 000000721 _____ C:\Users\PC3-DM\AppData\Local\recently-used.xbel
2018-07-13 13:47 - 2018-07-13 13:47 - 000000000 ____D C:\Users\PC3-DM\AppData\Local\fontconfig
2018-07-12 13:46 - 2018-07-12 13:46 - 000000000 ___HD C:\ProgramData\{D139E978-C59B-43D3-A923-98F59496275C}
2018-07-11 09:02 - 2018-07-06 14:28 - 002712480 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2018-07-11 09:02 - 2018-07-06 14:28 - 001367968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2018-07-11 09:02 - 2018-07-06 14:28 - 000628120 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2018-07-11 09:02 - 2018-07-06 14:28 - 000563104 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2018-07-11 09:02 - 2018-07-06 14:28 - 000520088 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2018-07-11 09:02 - 2018-07-06 14:28 - 000367512 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2018-07-11 09:02 - 2018-07-06 14:06 - 003611368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2018-07-11 09:02 - 2018-07-06 13:57 - 003254272 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2018-07-11 09:02 - 2018-07-06 13:52 - 002895360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-07-11 09:02 - 2018-07-06 09:24 - 000380824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2018-07-11 09:02 - 2018-07-06 09:14 - 006710176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-07-11 09:02 - 2018-07-06 09:14 - 002242208 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-07-11 09:02 - 2018-07-06 09:14 - 002139032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-07-11 09:02 - 2018-07-06 09:14 - 002031008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-07-11 09:02 - 2018-07-06 09:14 - 001990160 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-07-11 09:02 - 2018-07-06 09:14 - 001618280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-07-11 09:02 - 2018-07-06 09:14 - 001175568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2018-07-11 09:02 - 2018-07-06 09:07 - 022006272 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-07-11 09:02 - 2018-07-06 09:00 - 019403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-07-11 09:02 - 2018-07-06 08:57 - 005779456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-07-11 09:02 - 2018-07-06 08:57 - 003712512 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-07-11 09:02 - 2018-07-06 08:55 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-07-11 09:02 - 2018-07-06 08:54 - 003015680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-07-11 09:02 - 2018-07-06 08:54 - 001755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-07-11 09:02 - 2018-07-06 08:52 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-07-11 09:02 - 2018-06-15 17:25 - 020383720 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-07-11 09:02 - 2018-06-15 17:07 - 011901952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-07-11 09:02 - 2018-06-15 17:06 - 007987712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-07-11 09:02 - 2018-06-15 17:02 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2018-07-11 09:02 - 2018-06-15 17:02 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-07-11 09:02 - 2018-06-15 07:20 - 001020184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2018-07-11 09:02 - 2018-06-15 07:17 - 000994368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-07-11 09:02 - 2018-06-15 07:05 - 000550608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-07-11 09:02 - 2018-06-15 07:04 - 002331576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-07-11 09:02 - 2018-06-15 07:04 - 001462824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 006572000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 006528600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 006043600 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 004788504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 002535032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 002163184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001710240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001559368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001380192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001144120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2018-07-11 09:02 - 2018-06-15 07:03 - 001020160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-07-11 09:02 - 2018-06-15 06:50 - 003245568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-07-11 09:02 - 2018-06-15 06:49 - 002962944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-07-11 09:02 - 2018-06-15 06:48 - 002900992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-07-11 09:02 - 2018-06-15 06:48 - 002805760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-07-11 09:02 - 2018-06-15 06:46 - 004333568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-07-11 09:02 - 2018-06-15 06:45 - 002412032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-07-11 09:02 - 2018-06-15 06:45 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-07-11 09:02 - 2018-06-15 06:44 - 001657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-07-11 09:02 - 2018-06-15 06:43 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-07-11 09:01 - 2018-07-06 14:28 - 000254872 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-07-11 09:01 - 2018-07-06 14:28 - 000126360 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2018-07-11 09:01 - 2018-07-06 14:28 - 000062360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2018-07-11 09:01 - 2018-07-06 14:12 - 001539000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems32.dll
2018-07-11 09:01 - 2018-07-06 14:09 - 000456600 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-07-11 09:01 - 2018-07-06 13:54 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2018-07-11 09:01 - 2018-07-06 13:54 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-07-11 09:01 - 2018-07-06 13:53 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2018-07-11 09:01 - 2018-07-06 13:53 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-07-11 09:01 - 2018-07-06 13:53 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2018-07-11 09:01 - 2018-07-06 13:53 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2018-07-11 09:01 - 2018-07-06 13:52 - 001452544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2018-07-11 09:01 - 2018-07-06 13:52 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2018-07-11 09:01 - 2018-07-06 13:52 - 001082880 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-07-11 09:01 - 2018-07-06 13:51 - 002401280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-07-11 09:01 - 2018-07-06 13:51 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2018-07-11 09:01 - 2018-07-06 09:25 - 000030624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2018-07-11 09:01 - 2018-07-06 09:24 - 000364960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 001190600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-07-11 09:01 - 2018-07-06 09:14 - 001050584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-07-11 09:01 - 2018-07-06 09:14 - 000988640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 000831624 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-07-11 09:01 - 2018-07-06 09:14 - 000829856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2018-07-11 09:01 - 2018-07-06 09:14 - 000802208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-07-11 09:01 - 2018-07-06 09:14 - 000679728 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 000573904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 000539792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-07-11 09:01 - 2018-07-06 09:14 - 000220576 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-07-11 09:01 - 2018-07-06 09:14 - 000142240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-07-11 09:01 - 2018-07-06 09:14 - 000104888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2018-07-11 09:01 - 2018-07-06 08:58 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2018-07-11 09:01 - 2018-07-06 08:58 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2018-07-11 09:01 - 2018-07-06 08:58 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\tokenbinding.dll
2018-07-11 09:01 - 2018-07-06 08:57 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2018-07-11 09:01 - 2018-07-06 08:57 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-07-11 09:01 - 2018-07-06 08:57 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-07-11 09:01 - 2018-07-06 08:56 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProv2faHelper.dll
2018-07-11 09:01 - 2018-07-06 08:55 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-07-11 09:01 - 2018-07-06 08:55 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-07-11 09:01 - 2018-07-06 08:55 - 000415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-07-11 09:01 - 2018-07-06 08:55 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 001173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 001127424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 000999936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2018-07-11 09:01 - 2018-07-06 08:54 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2018-07-11 09:01 - 2018-07-06 08:53 - 002013184 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeangle.dll
2018-07-11 09:01 - 2018-07-06 08:53 - 000879104 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2018-07-11 09:01 - 2018-07-06 08:53 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2018-07-11 09:01 - 2018-07-06 08:53 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2018-07-11 09:01 - 2018-06-15 17:46 - 000148896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe
2018-07-11 09:01 - 2018-06-15 17:42 - 000439040 _____ C:\WINDOWS\system32\FaceProcessorCore.dll
2018-07-11 09:01 - 2018-06-15 17:25 - 000260896 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2018-07-11 09:01 - 2018-06-15 17:22 - 001026896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-07-11 09:01 - 2018-06-15 17:20 - 000316152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2018-07-11 09:01 - 2018-06-15 17:16 - 002206528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2018-07-11 09:01 - 2018-06-15 17:06 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2018-07-11 09:01 - 2018-06-15 17:05 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2018-07-11 09:01 - 2018-06-15 17:04 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2018-07-11 09:01 - 2018-06-15 17:04 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2018-07-11 09:01 - 2018-06-15 17:04 - 000832000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2018-07-11 09:01 - 2018-06-15 17:04 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2018-07-11 09:01 - 2018-06-15 17:04 - 000373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2018-07-11 09:01 - 2018-06-15 17:04 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2018-07-11 09:01 - 2018-06-15 17:04 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\DsmUserTask.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000958976 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000831488 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000789504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-07-11 09:01 - 2018-06-15 17:03 - 000517120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2018-07-11 09:01 - 2018-06-15 17:03 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-07-11 09:01 - 2018-06-15 17:03 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2018-07-11 09:01 - 2018-06-15 17:03 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2018-07-11 09:01 - 2018-06-15 17:02 - 001075712 _____ C:\WINDOWS\system32\FaceProcessor.dll
2018-07-11 09:01 - 2018-06-15 17:02 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2018-07-11 09:01 - 2018-06-15 17:02 - 000296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2018-07-11 09:01 - 2018-06-15 17:01 - 002015744 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-07-11 09:01 - 2018-06-15 17:01 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2018-07-11 09:01 - 2018-06-15 17:01 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll
2018-07-11 09:01 - 2018-06-15 17:01 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2018-07-11 09:01 - 2018-06-15 16:36 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe
2018-07-11 09:01 - 2018-06-15 16:32 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppCore.dll
2018-07-11 09:01 - 2018-06-15 09:01 - 000039840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2018-07-11 09:01 - 2018-06-15 08:54 - 000477592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2018-07-11 09:01 - 2018-06-15 08:54 - 000065440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2018-07-11 09:01 - 2018-06-15 07:19 - 000205208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2018-07-11 09:01 - 2018-06-15 07:18 - 000049568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2018-07-11 09:01 - 2018-06-15 07:15 - 000625520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2018-07-11 09:01 - 2018-06-15 07:15 - 000096672 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe
2018-07-11 09:01 - 2018-06-15 07:12 - 000661152 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2018-07-11 09:01 - 2018-06-15 07:05 - 001629616 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2018-07-11 09:01 - 2018-06-15 07:05 - 000444240 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 002359704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-07-11 09:01 - 2018-06-15 07:04 - 001397192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 001251736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 000719552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 000493984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2018-07-11 09:01 - 2018-06-15 07:04 - 000359832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-07-11 09:01 - 2018-06-15 07:04 - 000281080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExecModelClient.dll
2018-07-11 09:01 - 2018-06-15 07:04 - 000105376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 001924000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 001805752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 001011968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000770152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000542616 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000502704 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-07-11 09:01 - 2018-06-15 07:03 - 000472136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000356960 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000232488 _____ (Microsoft Corporation) C:\WINDOWS\system32\RESAMPLEDMO.DLL
2018-07-11 09:01 - 2018-06-15 07:03 - 000129192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-07-11 09:01 - 2018-06-15 07:03 - 000054312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2018-07-11 09:01 - 2018-06-15 06:48 - 000328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2018-07-11 09:01 - 2018-06-15 06:48 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2018-07-11 09:01 - 2018-06-15 06:48 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2018-07-11 09:01 - 2018-06-15 06:48 - 000193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\RdpRelayTransport.dll
2018-07-11 09:01 - 2018-06-15 06:48 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2018-07-11 09:01 - 2018-06-15 06:48 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2018-07-11 09:01 - 2018-06-15 06:48 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2018-07-11 09:01 - 2018-06-15 06:47 - 001867776 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2018-07-11 09:01 - 2018-06-15 06:47 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2018-07-11 09:01 - 2018-06-15 06:47 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2018-07-11 09:01 - 2018-06-15 06:47 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-07-11 09:01 - 2018-06-15 06:47 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll
2018-07-11 09:01 - 2018-06-15 06:47 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\VideoHandlers.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 001356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 001130496 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000683520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2018-07-11 09:01 - 2018-06-15 06:46 - 000269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2018-07-11 09:01 - 2018-06-15 06:46 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 002198016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000871424 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2018-07-11 09:01 - 2018-06-15 06:45 - 000740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2018-07-11 09:01 - 2018-06-15 06:45 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2018-07-11 09:01 - 2018-06-15 06:44 - 001342976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2018-07-11 09:01 - 2018-06-15 06:44 - 001272832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-07-11 09:01 - 2018-06-15 06:44 - 000728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2018-07-11 09:01 - 2018-06-15 06:44 - 000135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000700928 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2018-07-11 09:01 - 2018-06-15 06:43 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2018-07-11 09:01 - 2018-06-15 06:42 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdrom.sys
2018-07-11 09:01 - 2018-06-08 04:14 - 000058524 _____ C:\WINDOWS\system32\srms.dat
2018-07-11 09:01 - 2018-05-20 13:38 - 000949952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-07-11 09:01 - 2018-05-20 13:32 - 000633240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-07-11 09:01 - 2018-05-20 13:32 - 000342936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-08-09 14:01 - 2018-04-11 22:36 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-08-09 13:17 - 2017-07-31 13:26 - 000000000 ____D C:\Users\PC3-DM\Documents\Soubory aplikace Outlook
2018-08-09 12:18 - 2017-07-31 13:51 - 000000000 ___RD C:\Unreal Commander
2018-08-09 11:53 - 2018-05-17 14:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-08-09 11:51 - 2018-04-11 14:45 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2018-08-09 11:47 - 2018-05-17 14:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-08-09 09:10 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-08-09 09:08 - 2017-07-31 12:45 - 000002247 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-08-09 09:08 - 2017-07-31 12:45 - 000002206 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-08-08 14:40 - 2017-07-31 15:48 - 000002302 ____H C:\Users\PC3-DM\Documents\Default.rdp
2018-08-08 14:19 - 2017-08-07 11:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WIN-TEL
2018-08-07 16:38 - 2018-04-11 22:36 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2018-08-07 13:30 - 2018-04-11 22:36 - 000000000 ___HD C:\Program Files\WindowsApps
2018-08-07 13:14 - 2017-10-20 09:58 - 000000000 ____D C:\Program Files\Opera
2018-08-07 12:55 - 2018-01-03 10:50 - 000000000 ____D C:\Users\PC3-DM\AppData\Local\Packages
2018-08-06 10:37 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2018-08-02 12:36 - 2018-05-17 14:22 - 000000000 ____D C:\Users\PC3-DM
2018-08-02 10:29 - 2018-06-21 10:01 - 000000000 ____D C:\ProgramData\Packages
2018-07-31 13:14 - 2017-10-20 09:58 - 000001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Prohlížeč Opera.lnk
2018-07-30 12:07 - 2018-05-17 14:32 - 001601516 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-07-30 12:07 - 2018-04-19 13:13 - 000000000 ____D C:\Temp
2018-07-30 12:07 - 2018-04-12 06:53 - 000680616 _____ C:\WINDOWS\system32\perfh005.dat
2018-07-30 12:07 - 2018-04-12 06:53 - 000136548 _____ C:\WINDOWS\system32\perfc005.dat
2018-07-30 12:07 - 2018-04-11 22:31 - 000000000 ____D C:\WINDOWS\INF
2018-07-30 12:07 - 2017-07-31 12:48 - 000000000 ____D C:\ProgramData\NVIDIA
2018-07-25 13:21 - 2017-10-20 09:56 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-07-25 13:19 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-07-25 13:19 - 2017-09-18 09:32 - 000000000 ____D C:\Users\PC3-DM\AppData\Local\Adobe
2018-07-25 13:17 - 2017-10-20 09:56 - 000000000 ____D C:\Users\PC3-DM\AppData\LocalLow\Mozilla
2018-07-25 13:14 - 2017-10-20 09:56 - 000001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-07-25 13:14 - 2017-10-20 09:56 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-07-25 08:57 - 2017-08-07 10:03 - 000000000 ____D C:\Users\PC3-DM\AppData\Roaming\TeamViewer
2018-07-23 16:21 - 2018-07-02 10:07 - 000000000 ____D C:\Users\PC3-DM\Desktop\hry
2018-07-18 08:45 - 2017-07-31 12:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-07-18 08:45 - 2017-07-31 12:51 - 000000000 ____D C:\Program Files\Java
2018-07-18 08:44 - 2017-07-31 12:51 - 000096632 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2018-07-13 09:03 - 2017-09-18 09:33 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-07-11 10:28 - 2018-05-17 14:15 - 000339080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-07-11 10:26 - 2018-04-12 06:54 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-07-11 10:26 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-07-11 10:26 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-07-11 10:26 - 2018-04-11 22:36 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-07-11 09:13 - 2018-04-11 22:25 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-07-11 09:13 - 2017-07-31 14:12 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-07-11 09:09 - 2017-07-31 14:11 - 131626216 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Files in the root of some directories =======
2018-07-13 13:58 - 2018-07-13 13:58 - 000000721 _____ () C:\Users\PC3-DM\AppData\Local\recently-used.xbel
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\Users\PC3-DM\Documents\FortiClientOnlineInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\PC3-DM\Documents\TeamViewer_Setup.exe:BDU [0]
==================== Security Center ==================
AV: Bitdefender Endpoint Security Tools Antimalware (Enabled - Up to date) {92356E98-E159-03AA-2BF0-6FE55F131038}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Endpoint Security Tools Antimalware (Enabled - Up to date) {29548F7C-C763-0C24-1140-549724945A85}
FW: Bitdefender Endpoint Security Tools Firewall (Disabled) {AA0EEFBD-AB36-02F2-00AF-C6D0A1C05743}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\PC3-DM\Desktop" je 12 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
-
Rudy
- Site Admin
- Příspěvky: 118270
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a33e-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a3d4-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a538-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526aab7-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
GroupPolicy: Restriction ? <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
SearchScopes: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
C:\ProgramData\{4A1C4BC0-62AD-43D6-9BC9-620EED62DE65}
C:\ProgramData\{E25F37A4-E513-4B61-A976-060DDD2FA040}
C:\WINDOWS\LastGood.Tmp
C:\ProgramData\{D139E978-C59B-43D3-A923-98F59496275C}
AlternateDataStreams: C:\Users\PC3-DM\Documents\FortiClientOnlineInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\PC3-DM\Documents\TeamViewer_Setup.exe:BDU [0]
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{021E4F06-9DCC-49AD-88CF-ECC2DA314C8A}\InprocServer32 -> C:\Users\PC3-DM\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\PC3-DM\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{32E26FD9-F435-4A20-A561-35D4B987CFDC}\InprocServer32 -> C:\ProgramData\WebEx\WebEx\T31_UMC\atucfobj.dll (Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\PC3-DM\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\PC3-DM\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\FileSyncShell.dll => No File
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
Task: {1FAC31C9-9186-45B6-9B53-DBB5A8BAAC0E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-31] (Google Inc.)
Task: {78BF1CDA-9E2D-43E7-A1C5-5D89F3E8C80E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-31] (Google Inc.)
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu
Díky.
Zda to pomohlo zjistím za provozu.
Fix result of Farbar Recovery Scan Tool (x86) Version: 02.08.2018
Ran by PC3-DM (09-08-2018 15:31:36) Run:1
Running from C:\Users\PC3-DM\Desktop
Loaded Profiles: PC3-DM (Available Profiles: PC3-DM & PH)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a33e-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a3d4-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a538-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526aab7-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
GroupPolicy: Restriction ? <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
SearchScopes: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
C:\ProgramData\{4A1C4BC0-62AD-43D6-9BC9-620EED62DE65}
C:\ProgramData\{E25F37A4-E513-4B61-A976-060DDD2FA040}
C:\WINDOWS\LastGood.Tmp
C:\ProgramData\{D139E978-C59B-43D3-A923-98F59496275C}
AlternateDataStreams: C:\Users\PC3-DM\Documents\FortiClientOnlineInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\PC3-DM\Documents\TeamViewer_Setup.exe:BDU [0]
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{021E4F06-9DCC-49AD-88CF-ECC2DA314C8A}\InprocServer32 -> C:\Users\PC3-DM\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\PC3-DM\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{32E26FD9-F435-4A20-A561-35D4B987CFDC}\InprocServer32 -> C:\ProgramData\WebEx\WebEx\T31_UMC\atucfobj.dll (Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\PC3-DM\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\PC3-DM\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\FileSyncShell.dll => No File
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
Task: {1FAC31C9-9186-45B6-9B53-DBB5A8BAAC0E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-31] (Google Inc.)
Task: {78BF1CDA-9E2D-43E7-A1C5-5D89F3E8C80E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-31] (Google Inc.)
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b526a33e-7b83-11e8-acf3-97c69da9976e}" => removed successfully.
HKLM\Software\Classes\CLSID\{b526a33e-7b83-11e8-acf3-97c69da9976e} => not found
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b526a3d4-7b83-11e8-acf3-97c69da9976e}" => removed successfully.
HKLM\Software\Classes\CLSID\{b526a3d4-7b83-11e8-acf3-97c69da9976e} => not found
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b526a538-7b83-11e8-acf3-97c69da9976e}" => removed successfully.
HKLM\Software\Classes\CLSID\{b526a538-7b83-11e8-acf3-97c69da9976e} => not found
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b526aab7-7b83-11e8-acf3-97c69da9976e}" => removed successfully.
HKLM\Software\Classes\CLSID\{b526aab7-7b83-11e8-acf3-97c69da9976e} => not found
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => removed successfully.
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
C:\ProgramData\{4A1C4BC0-62AD-43D6-9BC9-620EED62DE65} => moved successfully
C:\ProgramData\{E25F37A4-E513-4B61-A976-060DDD2FA040} => moved successfully
C:\WINDOWS\LastGood.Tmp => moved successfully
C:\ProgramData\{D139E978-C59B-43D3-A923-98F59496275C} => moved successfully
C:\Users\PC3-DM\Documents\FortiClientOnlineInstaller.exe => ":BDU" ADS removed successfully.
C:\Users\PC3-DM\Documents\TeamViewer_Setup.exe => ":BDU" ADS removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{021E4F06-9DCC-49AD-88CF-ECC2DA314C8A}" => removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}" => removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{32E26FD9-F435-4A20-A561-35D4B987CFDC}" => removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}" => removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Pending)" => removed successfully.
"HKLM\Software\Classes\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C}" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced)" => removed successfully.
"HKLM\Software\Classes\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202}" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing)" => removed successfully.
"HKLM\Software\Classes\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637}" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6" => removed successfully.
HKLM\Software\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7" => removed successfully.
HKLM\Software\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\MEGA (Context menu)" => removed successfully.
"HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17}" => removed successfully.
"HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\MEGA (Context menu)" => removed successfully.
HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => not found
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\MEGA (Context menu)" => removed successfully.
HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => not found
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MEGA (Context menu)" => removed successfully.
HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1FAC31C9-9186-45B6-9B53-DBB5A8BAAC0E}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1FAC31C9-9186-45B6-9B53-DBB5A8BAAC0E}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{78BF1CDA-9E2D-43E7-A1C5-5D89F3E8C80E}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78BF1CDA-9E2D-43E7-A1C5-5D89F3E8C80E}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 7888896 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 44041363 B
Java, Flash, Steam htmlcache => 31254693 B
Windows/system/drivers => 3918023 B
Edge => 11459922 B
Chrome => 821398550 B
Firefox => 180119719 B
Opera => 430920113 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 27406 B
NetworkService => 10270 B
PC3-DM => 57061149 B
PH => 12518 B
RecycleBin => 0 B
EmptyTemp: => 1.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 15:41:31 ====
Zda to pomohlo zjistím za provozu.
Fix result of Farbar Recovery Scan Tool (x86) Version: 02.08.2018
Ran by PC3-DM (09-08-2018 15:31:36) Run:1
Running from C:\Users\PC3-DM\Desktop
Loaded Profiles: PC3-DM (Available Profiles: PC3-DM & PH)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle Corporation)
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a33e-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a3d4-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526a538-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\...\MountPoints2: {b526aab7-7b83-11e8-acf3-97c69da9976e} - "E:\Lenovo_Suite.exe"
GroupPolicy: Restriction ? <==== ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
SearchScopes: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
SearchScopes: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src ... 02&pc=UE00
C:\ProgramData\{4A1C4BC0-62AD-43D6-9BC9-620EED62DE65}
C:\ProgramData\{E25F37A4-E513-4B61-A976-060DDD2FA040}
C:\WINDOWS\LastGood.Tmp
C:\ProgramData\{D139E978-C59B-43D3-A923-98F59496275C}
AlternateDataStreams: C:\Users\PC3-DM\Documents\FortiClientOnlineInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\PC3-DM\Documents\TeamViewer_Setup.exe:BDU [0]
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{021E4F06-9DCC-49AD-88CF-ECC2DA314C8A}\InprocServer32 -> C:\Users\PC3-DM\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\PC3-DM\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{32E26FD9-F435-4A20-A561-35D4B987CFDC}\InprocServer32 -> C:\ProgramData\WebEx\WebEx\T31_UMC\atucfobj.dll (Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\PC3-DM\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\FileSyncShell.dll => No File
CustomCLSID: HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\PC3-DM\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\FileSyncShell.dll => No File
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PC3-DM\AppData\Local\MEGAsync\ShellExtX32.dll -> No File
Task: {1FAC31C9-9186-45B6-9B53-DBB5A8BAAC0E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-31] (Google Inc.)
Task: {78BF1CDA-9E2D-43E7-A1C5-5D89F3E8C80E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-07-31] (Google Inc.)
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b526a33e-7b83-11e8-acf3-97c69da9976e}" => removed successfully.
HKLM\Software\Classes\CLSID\{b526a33e-7b83-11e8-acf3-97c69da9976e} => not found
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b526a3d4-7b83-11e8-acf3-97c69da9976e}" => removed successfully.
HKLM\Software\Classes\CLSID\{b526a3d4-7b83-11e8-acf3-97c69da9976e} => not found
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b526a538-7b83-11e8-acf3-97c69da9976e}" => removed successfully.
HKLM\Software\Classes\CLSID\{b526a538-7b83-11e8-acf3-97c69da9976e} => not found
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b526aab7-7b83-11e8-acf3-97c69da9976e}" => removed successfully.
HKLM\Software\Classes\CLSID\{b526aab7-7b83-11e8-acf3-97c69da9976e} => not found
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => removed successfully.
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
C:\ProgramData\{4A1C4BC0-62AD-43D6-9BC9-620EED62DE65} => moved successfully
C:\ProgramData\{E25F37A4-E513-4B61-A976-060DDD2FA040} => moved successfully
C:\WINDOWS\LastGood.Tmp => moved successfully
C:\ProgramData\{D139E978-C59B-43D3-A923-98F59496275C} => moved successfully
C:\Users\PC3-DM\Documents\FortiClientOnlineInstaller.exe => ":BDU" ADS removed successfully.
C:\Users\PC3-DM\Documents\TeamViewer_Setup.exe => ":BDU" ADS removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{021E4F06-9DCC-49AD-88CF-ECC2DA314C8A}" => removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}" => removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{32E26FD9-F435-4A20-A561-35D4B987CFDC}" => removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}" => removed successfully.
"HKU\S-1-5-21-2574403283-2978835096-1499915098-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Pending)" => removed successfully.
"HKLM\Software\Classes\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C}" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Synced)" => removed successfully.
"HKLM\Software\Classes\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202}" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ MEGA (Syncing)" => removed successfully.
"HKLM\Software\Classes\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637}" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6" => removed successfully.
HKLM\Software\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7" => removed successfully.
HKLM\Software\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\MEGA (Context menu)" => removed successfully.
"HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17}" => removed successfully.
"HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers\MEGA (Context menu)" => removed successfully.
HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => not found
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\MEGA (Context menu)" => removed successfully.
HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => not found
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\MEGA (Context menu)" => removed successfully.
HKLM\Software\Classes\CLSID\{0229E5E7-09E9-45CF-9228-0228EC7D5F17} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1FAC31C9-9186-45B6-9B53-DBB5A8BAAC0E}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1FAC31C9-9186-45B6-9B53-DBB5A8BAAC0E}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{78BF1CDA-9E2D-43E7-A1C5-5D89F3E8C80E}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{78BF1CDA-9E2D-43E7-A1C5-5D89F3E8C80E}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 7888896 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 44041363 B
Java, Flash, Steam htmlcache => 31254693 B
Windows/system/drivers => 3918023 B
Edge => 11459922 B
Chrome => 821398550 B
Firefox => 180119719 B
Opera => 430920113 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 27406 B
NetworkService => 10270 B
PC3-DM => 57061149 B
PH => 12518 B
RecycleBin => 0 B
EmptyTemp: => 1.5 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 15:41:31 ====
-
Rudy
- Site Admin
- Příspěvky: 118270
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu
OK. Smazáno. Případně se ozvěte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Kontrola logu
Malý update stavu: zasekávání prohlížeče je vyřešené.
Myš se opět zasekávala a při mém štěstí i další dvě, co jsem testoval. Až čtvrtá myš v pořadí problém vyřešila.
Děkuji za výbornou spolupráci!
Myš se opět zasekávala a při mém štěstí i další dvě, co jsem testoval. Až čtvrtá myš v pořadí problém vyřešila.
Děkuji za výbornou spolupráci!
-
Rudy
- Site Admin
- Příspěvky: 118270
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Kontrola logu
Díky za info a vy nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?