Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu logu

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
M.Lukes
Návštěvník
Návštěvník
Příspěvky: 89
Registrován: 23 črc 2012 01:47

Prosím o kontrolu logu

#1 Příspěvek od M.Lukes »

Dobrý den, chtěl bych poprosit o kontrolu logu, zda je vše OK, a nemám v ntb něco co by tam být nemělo. Příjde mi nějáký zpomalený. Děkuji.

Kód: Vybrat vše

Logfile of random's system information tool 1.10 (written by random/random)
Run by LukesCZ at 2019-03-24 15:06:56
Microsoft Windows 10 Home 
System drive C: has 149 GB (39%) free of 381 GB
Total RAM: 3982 MB (41% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:07:03, on 24.03.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.16299.0371)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\LukesCZ.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [HP DeskJet 4530 series (NET)] "C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe" -deviceID "TH69J4D0CN0661:NW" -scfn "HP DeskJet 4530 series (NET)" -AutoStart 1
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [Application Restart #0] C:\Windows\System32\Narrator.exe  (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Application Restart #0] C:\Windows\System32\Narrator.exe  (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Adobe Genuine Monitor Service (AGMService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\Windows\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\Windows\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\Windows\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\Windows\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\Windows\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: @%systemroot%\system32\xbgmsvc.exe,-100 (xbgm) - Unknown owner - C:\Windows\system32\xbgmsvc.exe (file missing)

--
End of file - 11291 bytes

======Listing Processes======







C:\Windows\system32\lsass.exe
c:\windows\system32\svchost.exe -k dcomlaunch -p -s PlugPlay
"fontdrvhost.exe"
C:\Windows\system32\svchost.exe -k DcomLaunch -p
c:\windows\system32\svchost.exe -k rpcss -p
c:\windows\system32\svchost.exe -k dcomlaunch -p -s LSM
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s NcbService
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s TimeBrokerSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s Schedule
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s EventLog
c:\windows\system32\svchost.exe -k netsvcs -p -s ProfSvc
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
c:\windows\system32\svchost.exe -k localservice -p -s nsi
c:\windows\system32\svchost.exe -k netsvcs -p -s UserManager
c:\windows\system32\svchost.exe -k netsvcs -p -s Themes
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s SysMain
c:\windows\system32\svchost.exe -k localservice -p -s EventSystem

c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s Dhcp
c:\windows\system32\svchost.exe -k netsvcs -p -s SENS
C:\Windows\system32\igfxCUIService.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork -p
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s AudioEndpointBuilder
c:\windows\system32\svchost.exe -k localservice -p -s FontCache
c:\windows\system32\svchost.exe -k networkservice -p -s NlaSvc
c:\windows\system32\svchost.exe -k networkservice -p -s Dnscache
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k appmodel -p -s StateRepository
c:\windows\system32\svchost.exe -k localservice -p -s netprofm
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s NcdAutoSetup
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted -p
c:\windows\system32\svchost.exe -k netsvcs -p -s Winmgmt
c:\windows\system32\svchost.exe -k localservice -p -s fdPHost
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s FDResPub
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s HomeGroupProvider
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s WinHttpAutoProxySvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DeviceAssociationService
c:\windows\system32\svchost.exe -k netsvcs -p -s ShellHWDetection
dashost.exe {32dbebbb-8290-4738-aec3843a677fc74b}
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation -p -s SSDPSRV
C:\Windows\System32\spoolsv.exe
c:\windows\system32\svchost.exe -k networkservice -p -s LanmanWorkstation
c:\windows\system32\svchost.exe -k localservicenonetwork -p -s DPS
c:\windows\system32\svchost.exe -k netsvcs -p -s IKEEXT
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll"
"C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe"
C:\Windows\system32\svchost.exe -k imgsvc
c:\windows\system32\svchost.exe -k localservice -p -s SstpSvc
c:\windows\system32\svchost.exe -k netsvcs -p -s iphlpsvc
c:\windows\system32\svchost.exe -k netsvcs -p -s WpnService

c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TrkWks
c:\windows\system32\svchost.exe -k networkservice -p -s CryptSvc
"C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe"

"C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe"
C:\Windows\System32\svchost.exe -k utcsvc -p
c:\windows\system32\svchost.exe -k networkservice -p -s TapiSrv
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service

c:\windows\system32\svchost.exe -k netsvcs -p -s LanmanServer
c:\windows\system32\svchost.exe -k localservice -p -s WdiServiceHost
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted -p -s PolicyAgent
c:\windows\system32\svchost.exe -k localservice -p -s CDPSvc
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
c:\windows\system32\svchost.exe -k localservice -p -s LicenseManager
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s WdiSystemHost
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
c:\windows\system32\svchost.exe -k netsvcs -p -s TokenBroker
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s TabletInputService
c:\windows\system32\svchost.exe -k netsvcs -p -s Appinfo

c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s PcaSvc
c:\windows\system32\svchost.exe -k networkservice -p -s DoSvc
c:\windows\system32\svchost.exe -k localservicenetworkrestricted -p -s wscsvc
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s StorSvc
"C:\Program Files\rempl\sedsvc.exe"
c:\windows\system32\svchost.exe -k netsvcs -p -s lfsvc

C:\Windows\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
"C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -f "C:\ProgramData\NVIDIA\DisplaySessionContainer%d.log" -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\Session" -r -l 3 -p 30000  -c
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
sihost.exe
"C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -f "C:\ProgramData\NVIDIA\NvContainerUser%d.log" -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\User" -r -l 3 -p 30000 -st "C:\Program Files\NVIDIA Corporation\NvContainer\NvContainerTelemetryApi.dll" -c
c:\windows\system32\svchost.exe -k unistacksvcgroup -s CDPUserSvc
c:\windows\system32\svchost.exe -k unistacksvcgroup -s WpnUserService
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
igfxEM.exe 
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
igfxHK.exe 
igfxTray.exe 
C:\Windows\Explorer.EXE
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"ctfmon.exe"
C:\Windows\system32\SettingSyncHost.exe -Embedding
"C:\Program Files\Windows Defender\MSASCuiL.exe" 
"C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe" -deviceID "TH69J4D0CN0661:NW" -scfn "HP DeskJet 4530 series (NET)" -AutoStart 1
"C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe" index.js
\??\C:\Windows\system32\conhost.exe 0x4
c:\windows\system32\svchost.exe -k unistacksvcgroup
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" 
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="9188.0.1225997000\1121397215" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser"  9188 "\\.\pipe\gecko-crash-server-pipe.9188" gpu
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="9188.3.45089690\1349460593" -childID 1 -isForBrowser -intPrefs 5:50|6:-1|28:1000|33:20|34:10|43:128|44:10000|49:0|51:400|52:1|53:0|54:0|59:0|60:120|61:120|92:2|93:1|107:5000|118:0|120:0|131:10000|143:-1|148:128|149:10000|150:0|156:24|157:32768|159:0|160:0|168:5|172:1048576|173:100|174:5000|176:600|178:1|187:3|191:0|201:60000| -boolPrefs 1:0|2:0|4:0|26:1|27:1|30:0|35:1|36:0|37:0|38:0|41:1|42:1|45:0|46:0|47:0|48:0|50:0|55:1|56:1|57:0|58:1|62:1|63:1|64:0|65:1|66:1|67:0|68:1|71:0|72:0|75:1|76:1|80:1|81:1|82:1|83:0|84:0|86:0|87:0|88:1|89:0|94:1|95:0|101:0|106:0|109:1|110:1|113:1|115:1|119:0|122:1|125:1|126:1|132:0|133:0|134:1|136:0|142:0|144:1|145:0|146:1|147:0|154:0|155:0|158:1|161:1|163:1|165:1|166:0|171:0|175:1|180:0|181:0|182:0|183:1|184:0|185:0|186:1|189:0|193:0|194:0|195:1|196:1|197:0|198:1|199:1|200:1|202:0|203:0|205:0|213:1|214:1|215:0|216:0|217:0| -stringPrefs "3:7;release|135:3;1.0|152:332;  ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵           ​‎‏‐’․‧

‪‫‬‭‮ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|153:8;moderate|188:38;{f4d08a2c-0aa9-4620-9f31-4da29374ac51}|" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser"  9188 "\\.\pipe\gecko-crash-server-pipe.9188" tab
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="9188.13.1403027296\2103892542" -childID 2 -isForBrowser -intPrefs 5:50|6:-1|28:1000|33:20|34:10|43:128|44:10000|49:0|51:400|52:1|53:0|54:0|59:0|60:120|61:120|92:2|93:1|107:5000|118:0|120:0|131:10000|143:-1|148:128|149:10000|150:0|156:24|157:32768|159:0|160:0|168:5|172:1048576|173:100|174:5000|176:600|178:1|187:3|191:0|201:60000| -boolPrefs 1:0|2:0|4:0|26:1|27:1|30:0|35:1|36:0|37:0|38:0|41:1|42:1|45:0|46:0|47:0|48:0|50:0|55:1|56:1|57:0|58:1|62:1|63:1|64:0|65:1|66:1|67:0|68:1|71:0|72:0|75:1|76:1|80:1|81:1|82:1|83:0|84:0|86:0|87:0|88:1|89:0|94:1|95:0|101:0|106:0|109:1|110:1|113:1|115:1|119:0|122:1|125:1|126:1|132:0|133:0|134:1|136:0|142:0|144:1|145:0|146:1|147:0|154:0|155:0|158:1|161:1|163:1|165:1|166:0|171:0|175:1|180:0|181:0|182:0|183:1|184:0|185:0|186:1|189:0|193:0|194:0|195:1|196:1|197:0|198:1|199:1|200:1|202:0|203:0|205:0|213:1|214:1|215:0|216:0|217:0| -stringPrefs "3:7;release|135:3;1.0|152:332;  ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵           ​‎‏‐’․‧

‪‫‬‭‮ ‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|153:8;moderate|188:38;{f4d08a2c-0aa9-4620-9f31-4da29374ac51}|" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser"  9188 "\\.\pipe\gecko-crash-server-pipe.9188" tab
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted -p -s DsSvc
taskhostw.exe
C:\Windows\system32\ApplicationFrameHost.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\system32\AUDIODG.EXE 0x294
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\DllHost.exe /Processid:{973D20D7-562D-44B9-B70B-5A0F49CCDF3F}
"C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe" -ServerName:WindowsDefaultLockScreen.AppX7y4nbzq37zn4ks9k7amqjywdat7d3j2z.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" 
"C:\Windows\system32\SearchFilterHost.exe" 0 744 748 756 8192 752 

C:\Windows\System32\smartscreen.exe -Embedding
C:\Windows\system32\svchost.exe -k appmodel -p -s tiledatamodelsvc
"C:\Users\LukesCZ\Desktop\RSITx64.exe" 
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\CreateExplorerShellUnelevatedTask.job - C:\Windows\explorer.exe  /NOUACCHECK 

=========Mozilla firefox=========

ProfilePath - C:\Users\LukesCZ\AppData\Roaming\Mozilla\Firefox\Profiles\8nt41d5y.default

prefs.js - "browser.search.useDBForOrder" -  true
prefs.js - "browser.startup.homepage" -  "www.seznam.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.156 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_156.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.156 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_156.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll


C:\Users\LukesCZ\AppData\Roaming\Mozilla\Firefox\Profiles\8nt41d5y.default\extensions\
superstart@enjoyfreeware.org

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-03-09 158696]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-09-29 630168]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-11 509936]
"AdobeGCInvoker-1.0"=C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-12-13 2675176]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"AdobeBridge"= []
"HP DeskJet 4530 series (NET)"=C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe [2017-04-06 3770504]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=lvcod64.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"MSVideo"=vfwwdm32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2019-03-24 15:06:56 ----D---- C:\rsit
2019-03-13 08:02:20 ----A---- C:\Windows\SYSWOW64\mmgaclient.dll
2019-03-13 08:02:19 ----A---- C:\Windows\SYSWOW64\mmgaserver.exe
2019-03-13 08:02:19 ----A---- C:\Windows\system32\SettingsHandlers_User.dll
2019-03-13 08:02:19 ----A---- C:\Windows\system32\mmgaserver.exe
2019-03-13 08:02:19 ----A---- C:\Windows\system32\mmgaclient.dll
2019-03-13 08:02:19 ----A---- C:\Windows\system32\HolographicExtensions.dll
2019-03-13 08:02:19 ----A---- C:\Windows\system32\AppResolver.dll
2019-03-13 08:02:18 ----A---- C:\Windows\SYSWOW64\UIAutomationCore.dll
2019-03-13 08:02:18 ----A---- C:\Windows\system32\UiaManager.dll
2019-03-13 08:02:18 ----A---- C:\Windows\system32\ngccredprov.dll
2019-03-13 08:02:17 ----A---- C:\Windows\system32\wpnapps.dll
2019-03-13 08:02:17 ----A---- C:\Windows\system32\Windows.CloudStore.dll
2019-03-13 08:02:17 ----A---- C:\Windows\system32\twinapi.appcore.dll
2019-03-13 08:02:16 ----A---- C:\Windows\system32\wpncore.dll
2019-03-13 08:02:16 ----A---- C:\Windows\system32\wevtsvc.dll
2019-03-13 08:02:16 ----A---- C:\Windows\system32\twinui.pcshell.dll
2019-03-13 08:02:15 ----A---- C:\Windows\system32\ngcsvc.dll
2019-03-13 08:02:15 ----A---- C:\Windows\system32\diagtrack.dll
2019-03-13 08:02:14 ----A---- C:\Windows\system32\VSSVC.exe
2019-03-13 08:02:13 ----A---- C:\Windows\system32\gpsvc.dll
2019-03-13 08:02:11 ----A---- C:\Windows\system32\UIAutomationCore.dll
2019-03-13 08:02:10 ----A---- C:\Windows\system32\StartTileData.dll
2019-03-13 08:02:08 ----A---- C:\Windows\SYSWOW64\EdgeManager.dll
2019-03-13 08:02:07 ----A---- C:\Windows\system32\Windows.UI.Xaml.dll
2019-03-13 08:02:06 ----A---- C:\Windows\SYSWOW64\edgeIso.dll
2019-03-13 08:02:06 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2019-03-13 08:02:05 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.dll
2019-03-13 08:02:05 ----A---- C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-03-13 08:02:03 ----A---- C:\Windows\SYSWOW64\msIso.dll
2019-03-13 08:02:02 ----A---- C:\Windows\SYSWOW64\webplatstorageserver.dll
2019-03-13 08:02:02 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2019-03-13 08:02:02 ----A---- C:\Windows\SYSWOW64\AudioEng.dll
2019-03-13 08:02:01 ----A---- C:\Windows\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-03-13 08:02:01 ----A---- C:\Windows\SYSWOW64\fontdrvhost.exe
2019-03-13 08:02:00 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2019-03-13 08:01:59 ----A---- C:\Windows\SYSWOW64\edgehtml.dll
2019-03-13 08:01:57 ----A---- C:\Windows\SYSWOW64\jscript.dll
2019-03-13 08:01:57 ----A---- C:\Windows\SYSWOW64\Chakradiag.dll
2019-03-13 08:01:56 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.LockScreen.dll
2019-03-13 08:01:56 ----A---- C:\Windows\SYSWOW64\olepro32.dll
2019-03-13 08:01:56 ----A---- C:\Windows\system32\AudioEng.dll
2019-03-13 08:01:55 ----A---- C:\Windows\SYSWOW64\Windows.Globalization.dll
2019-03-13 08:01:55 ----A---- C:\Windows\SYSWOW64\OneCoreCommonProxyStub.dll
2019-03-13 08:01:55 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2019-03-13 08:01:55 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2019-03-13 08:01:55 ----A---- C:\Windows\system32\fontdrvhost.exe
2019-03-13 08:01:55 ----A---- C:\Windows\system32\drivers\refsv1.sys
2019-03-13 08:01:55 ----A---- C:\Windows\system32\drivers\msfs.sys
2019-03-13 08:01:54 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2019-03-13 08:01:54 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2019-03-13 08:01:54 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2019-03-13 08:01:53 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2019-03-13 08:01:52 ----A---- C:\Windows\SYSWOW64\ole32.dll
2019-03-13 08:01:52 ----A---- C:\Windows\SYSWOW64\offlinesam.dll
2019-03-13 08:01:52 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2019-03-13 08:01:51 ----A---- C:\Windows\SYSWOW64\Windows.UI.Search.dll
2019-03-13 08:01:51 ----A---- C:\Windows\SYSWOW64\Windows.UI.Cred.dll
2019-03-13 08:01:51 ----A---- C:\Windows\SYSWOW64\fontsub.dll
2019-03-13 08:01:51 ----A---- C:\Windows\system32\audiosrv.dll
2019-03-13 08:01:49 ----A---- C:\Windows\SYSWOW64\wups.dll
2019-03-13 08:01:49 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2019-03-13 08:01:49 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2019-03-13 08:01:49 ----A---- C:\Windows\SYSWOW64\CoreMessaging.dll
2019-03-13 08:01:49 ----A---- C:\Windows\system32\Windows.Globalization.dll
2019-03-13 08:01:49 ----A---- C:\Windows\system32\drivers\srvnet.sys
2019-03-13 08:01:49 ----A---- C:\Windows\system32\drivers\exfat.sys
2019-03-13 08:01:49 ----A---- C:\Windows\system32\drivers\cdfs.sys
2019-03-13 08:01:48 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2019-03-13 08:01:48 ----A---- C:\Windows\system32\Windows.UI.Search.dll
2019-03-13 08:01:48 ----A---- C:\Windows\system32\rdpudd.dll
2019-03-13 08:01:48 ----A---- C:\Windows\system32\OneCoreCommonProxyStub.dll
2019-03-13 08:01:47 ----A---- C:\Windows\system32\kernel32.dll
2019-03-13 08:01:47 ----A---- C:\Windows\system32\drivers\refs.sys
2019-03-13 08:01:47 ----A---- C:\Windows\system32\drivers\npfs.sys
2019-03-13 08:01:47 ----A---- C:\Windows\system32\drivers\hidparse.sys
2019-03-13 08:01:46 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2019-03-13 08:01:46 ----A---- C:\Windows\system32\atmfd.dll
2019-03-13 08:01:45 ----A---- C:\Windows\system32\urlmon.dll
2019-03-13 08:01:45 ----A---- C:\Windows\system32\ie4uinit.exe
2019-03-13 08:01:44 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2019-03-13 08:01:44 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2019-03-13 08:01:44 ----A---- C:\Windows\system32\Chakradiag.dll
2019-03-13 08:01:43 ----A---- C:\Windows\SYSWOW64\Chakra.dll
2019-03-13 08:01:43 ----A---- C:\Windows\system32\jscript9.dll
2019-03-13 08:01:42 ----A---- C:\Windows\system32\vbscript.dll
2019-03-13 08:01:41 ----A---- C:\Windows\SYSWOW64\oleaut32.dll
2019-03-13 08:01:41 ----A---- C:\Windows\SYSWOW64\dbgeng.dll
2019-03-13 08:01:41 ----A---- C:\Windows\SYSWOW64\combase.dll
2019-03-13 08:01:41 ----A---- C:\Windows\system32\rpcss.dll
2019-03-13 08:01:41 ----A---- C:\Windows\system32\ole32.dll
2019-03-13 08:01:41 ----A---- C:\Windows\system32\offlinesam.dll
2019-03-13 08:01:40 ----A---- C:\Windows\SYSWOW64\wer.dll
2019-03-13 08:01:40 ----A---- C:\Windows\SYSWOW64\AudioSes.dll
2019-03-13 08:01:40 ----A---- C:\Windows\system32\fontsub.dll
2019-03-13 08:01:40 ----A---- C:\Windows\system32\AudioEndpointBuilder.dll
2019-03-13 08:01:40 ----A---- C:\Windows\system32\audiodg.exe
2019-03-13 08:01:39 ----A---- C:\Windows\SYSWOW64\Windows.Data.Pdf.dll
2019-03-13 08:01:39 ----A---- C:\Windows\system32\wcmsvc.dll
2019-03-13 08:01:38 ----A---- C:\Windows\SYSWOW64\WWAHost.exe
2019-03-13 08:01:38 ----A---- C:\Windows\SYSWOW64\UIRibbon.dll
2019-03-13 08:01:38 ----A---- C:\Windows\SYSWOW64\CoreUIComponents.dll
2019-03-13 08:01:38 ----A---- C:\Windows\system32\msxml3.dll
2019-03-13 08:01:38 ----A---- C:\Windows\system32\CoreMessaging.dll
2019-03-13 08:01:37 ----A---- C:\Windows\SYSWOW64\WinSCard.dll
2019-03-13 08:01:37 ----A---- C:\Windows\SYSWOW64\comsvcs.dll
2019-03-13 08:01:37 ----A---- C:\Windows\system32\edgeIso.dll
2019-03-13 08:01:37 ----A---- C:\Windows\system32\drivers\udfs.sys
2019-03-13 08:01:37 ----A---- C:\Windows\system32\drivers\srv2.sys
2019-03-13 08:01:37 ----A---- C:\Windows\system32\drivers\hvservice.sys
2019-03-13 08:01:37 ----A---- C:\Windows\system32\drivers\fastfat.sys
2019-03-13 08:01:36 ----A---- C:\Windows\SYSWOW64\wininet.dll
2019-03-13 08:01:36 ----A---- C:\Windows\SYSWOW64\msi.dll
2019-03-13 08:01:36 ----A---- C:\Windows\system32\winhttp.dll
2019-03-13 08:01:36 ----A---- C:\Windows\system32\SettingsHandlers_nt.dll
2019-03-13 08:01:35 ----A---- C:\Windows\system32\iertutil.dll
2019-03-13 08:01:34 ----A---- C:\Windows\system32\win32kbase.sys
2019-03-13 08:01:33 ----A---- C:\Windows\system32\ntoskrnl.exe
2019-03-13 08:01:33 ----A---- C:\Windows\system32\KernelBase.dll
2019-03-13 08:01:32 ----A---- C:\Windows\system32\MshtmlDac.dll
2019-03-13 08:01:32 ----A---- C:\Windows\system32\ieframe.dll
2019-03-13 08:01:32 ----A---- C:\Windows\system32\dxtrans.dll
2019-03-13 08:01:31 ----A---- C:\Windows\system32\mshtmled.dll
2019-03-13 08:01:31 ----A---- C:\Windows\system32\jscript9diag.dll
2019-03-13 08:01:31 ----A---- C:\Windows\system32\Chakra.dll
2019-03-13 08:01:30 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2019-03-13 08:01:30 ----A---- C:\Windows\system32\jscript.dll
2019-03-13 08:01:30 ----A---- C:\Windows\system32\IndexedDbLegacy.dll
2019-03-13 08:01:28 ----A---- C:\Windows\SYSWOW64\MSVPXENC.dll
2019-03-13 08:01:28 ----A---- C:\Windows\SYSWOW64\msvproc.dll
2019-03-13 08:01:28 ----A---- C:\Windows\system32\WpAXHolder.dll
2019-03-13 08:01:28 ----A---- C:\Windows\system32\hvloader.dll
2019-03-13 08:01:28 ----A---- C:\Windows\system32\hvax64.exe
2019-03-13 08:01:28 ----A---- C:\Windows\system32\drivers\afd.sys
2019-03-13 08:01:27 ----A---- C:\Windows\system32\samsrv.dll
2019-03-13 08:01:27 ----A---- C:\Windows\system32\oleaut32.dll
2019-03-13 08:01:27 ----A---- C:\Windows\system32\combase.dll
2019-03-13 08:01:26 ----A---- C:\Windows\system32\wer.dll
2019-03-13 08:01:26 ----A---- C:\Windows\system32\dbgeng.dll
2019-03-13 08:01:26 ----A---- C:\Windows\system32\AudioSes.dll
2019-03-13 08:01:25 ----A---- C:\Windows\system32\Windows.Data.Pdf.dll
2019-03-13 08:01:24 ----A---- C:\Windows\system32\WWAHost.exe
2019-03-13 08:01:24 ----A---- C:\Windows\system32\msxml6.dll
2019-03-13 08:01:24 ----A---- C:\Windows\system32\IKEEXT.DLL
2019-03-13 08:01:24 ----A---- C:\Windows\system32\CoreUIComponents.dll
2019-03-13 08:01:23 ----A---- C:\Windows\system32\UIRibbon.dll
2019-03-13 08:01:22 ----A---- C:\Windows\system32\WinSCard.dll
2019-03-13 08:01:22 ----A---- C:\Windows\system32\drivers\ndis.sys
2019-03-13 08:01:22 ----A---- C:\Windows\system32\comsvcs.dll
2019-03-13 08:01:21 ----A---- C:\Windows\system32\msIso.dll
2019-03-13 08:01:21 ----A---- C:\Windows\system32\drivers\tcpip.sys
2019-03-13 08:01:21 ----A---- C:\Windows\system32\drivers\ntfs.sys
2019-03-13 08:01:20 ----A---- C:\Windows\system32\wininet.dll
2019-03-13 08:01:20 ----A---- C:\Windows\system32\msi.dll
2019-03-13 08:01:17 ----A---- C:\Windows\system32\mshtml.dll
2019-03-13 08:01:16 ----A---- C:\Windows\system32\webplatstorageserver.dll
2019-03-13 08:01:15 ----A---- C:\Windows\system32\ieapfltr.dll
2019-03-13 08:01:11 ----A---- C:\Windows\system32\hvix64.exe
2019-03-13 08:01:11 ----A---- C:\Windows\system32\drivers\vhdmp.sys
2019-03-13 08:01:10 ----A---- C:\Windows\system32\MSVPXENC.dll
2019-03-13 08:01:10 ----A---- C:\Windows\system32\msvproc.dll
2019-03-13 08:01:10 ----A---- C:\Windows\system32\MSVideoDSP.dll
2019-03-13 08:01:10 ----A---- C:\Windows\system32\drivers\http.sys
2019-03-13 08:01:09 ----A---- C:\Windows\system32\edgehtml.dll
2019-03-13 08:01:06 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2019-03-13 08:01:06 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2019-03-13 08:01:06 ----A---- C:\Windows\SYSWOW64\propsys.dll
2019-03-13 08:01:06 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2019-03-13 08:01:06 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2019-03-13 08:01:06 ----A---- C:\Windows\system32\drivers\msrpc.sys
2019-03-13 08:01:06 ----A---- C:\Windows\system32\browser_broker.exe
2019-03-13 08:01:06 ----A---- C:\Windows\system32\bcryptprimitives.dll
2019-03-13 08:01:05 ----A---- C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2019-03-13 08:01:05 ----A---- C:\Windows\system32\StructuredQuery.dll
2019-03-13 08:01:05 ----A---- C:\Windows\system32\ClipSVC.dll
2019-03-13 08:01:04 ----A---- C:\Windows\system32\wuapi.dll
2019-03-13 08:01:04 ----A---- C:\Windows\system32\winsrv.dll
2019-03-13 08:01:04 ----A---- C:\Windows\system32\propsys.dll
2019-03-13 08:01:04 ----A---- C:\Windows\system32\msv1_0.dll
2019-03-13 08:01:03 ----A---- C:\Windows\system32\SystemSettingsAdminFlows.exe
2019-03-13 08:01:03 ----A---- C:\Windows\system32\aitstatic.exe
2019-03-13 08:01:02 ----A---- C:\Windows\system32\rpcrt4.dll
2019-03-13 08:01:02 ----A---- C:\Windows\system32\LockController.dll
2019-03-13 08:01:02 ----A---- C:\Windows\system32\localspl.dll
2019-03-13 08:01:00 ----A---- C:\Windows\SYSWOW64\wpnapps.dll
2019-03-13 08:01:00 ----A---- C:\Windows\SYSWOW64\AppXDeploymentClient.dll
2019-03-13 08:01:00 ----A---- C:\Windows\system32\shell32.dll
2019-03-13 08:00:58 ----A---- C:\Windows\SYSWOW64\twinapi.appcore.dll
2019-03-13 08:00:58 ----A---- C:\Windows\SYSWOW64\shell32.dll
2019-03-13 08:00:56 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2019-03-13 08:00:56 ----A---- C:\Windows\SYSWOW64\smartscreenps.dll
2019-03-13 08:00:56 ----A---- C:\Windows\SYSWOW64\cldapi.dll
2019-03-13 08:00:56 ----A---- C:\Windows\system32\vac.exe
2019-03-13 08:00:56 ----A---- C:\Windows\system32\smartscreenps.dll
2019-03-13 08:00:56 ----A---- C:\Windows\system32\smartscreen.exe
2019-03-13 08:00:55 ----A---- C:\Windows\SYSWOW64\WpcWebFilter.dll
2019-03-13 08:00:55 ----A---- C:\Windows\SYSWOW64\MapRouter.dll
2019-03-13 08:00:55 ----A---- C:\Windows\SYSWOW64\MapControlCore.dll
2019-03-13 08:00:55 ----A---- C:\Windows\SYSWOW64\AppCapture.dll
2019-03-13 08:00:54 ----A---- C:\Windows\system32\wpnprv.dll
2019-03-13 08:00:54 ----A---- C:\Windows\system32\moshostcore.dll
2019-03-13 08:00:53 ----A---- C:\Windows\SYSWOW64\cdp.dll
2019-03-13 08:00:53 ----A---- C:\Windows\system32\cldapi.dll
2019-03-13 08:00:52 ----A---- C:\Windows\SYSWOW64\Windows.Mirage.Internal.dll
2019-03-13 08:00:52 ----A---- C:\Windows\SYSWOW64\MapGeocoder.dll
2019-03-13 08:00:52 ----A---- C:\Windows\SYSWOW64\JpMapControl.dll
2019-03-13 08:00:52 ----A---- C:\Windows\SYSWOW64\CloudExperienceHostCommon.dll
2019-03-13 08:00:52 ----A---- C:\Windows\system32\MapsStore.dll
2019-03-13 08:00:52 ----A---- C:\Windows\system32\MapRouter.dll
2019-03-13 08:00:52 ----A---- C:\Windows\system32\HolographicRuntimes.dll
2019-03-13 08:00:51 ----A---- C:\Windows\SYSWOW64\mos.dll
2019-03-13 08:00:51 ----A---- C:\Windows\SYSWOW64\GamePanel.exe
2019-03-13 08:00:51 ----A---- C:\Windows\SYSWOW64\bcastdvr.exe
2019-03-13 08:00:51 ----A---- C:\Windows\system32\NMAA.dll
2019-03-13 08:00:51 ----A---- C:\Windows\system32\MapControlCore.dll
2019-03-13 08:00:50 ----A---- C:\Windows\system32\MapGeocoder.dll
2019-03-13 08:00:50 ----A---- C:\Windows\system32\cdp.dll
2019-03-13 08:00:49 ----A---- C:\Windows\SYSWOW64\BingMaps.dll
2019-03-13 08:00:49 ----A---- C:\Windows\system32\JpMapControl.dll
2019-03-13 08:00:49 ----A---- C:\Windows\system32\FaceProcessorCore.dll
2019-03-13 08:00:49 ----A---- C:\Windows\system32\CloudExperienceHostCommon.dll
2019-03-13 08:00:48 ----A---- C:\Windows\SYSWOW64\Windows.Mirage.dll
2019-03-13 08:00:48 ----A---- C:\Windows\system32\Windows.Mirage.Internal.dll
2019-03-13 08:00:48 ----A---- C:\Windows\system32\ISM.dll
2019-03-13 08:00:48 ----A---- C:\Windows\system32\GamePanel.exe
2019-03-13 08:00:47 ----A---- C:\Windows\system32\d3d10warp.dll
2019-03-13 08:00:47 ----A---- C:\Windows\system32\bcastdvr.exe
2019-03-13 08:00:46 ----A---- C:\Windows\system32\mos.dll
2019-03-13 08:00:46 ----A---- C:\Windows\system32\BingMaps.dll
2019-03-13 08:00:45 ----A---- C:\Windows\system32\Wpc.dll
2019-03-13 08:00:45 ----A---- C:\Windows\system32\FaceProcessor.dll
2019-03-13 08:00:44 ----A---- C:\Windows\system32\Windows.Mirage.dll
2019-03-13 08:00:44 ----A---- C:\Windows\system32\NaturalAuth.dll
2019-03-13 08:00:44 ----A---- C:\Windows\system32\HologramCompositor.dll
2019-03-13 08:00:43 ----A---- C:\Windows\system32\Hydrogen.dll
2019-03-13 08:00:33 ----A---- C:\Windows\system32\Windows.UI.Logon.dll
2019-03-13 08:00:12 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2019-03-13 08:00:10 ----A---- C:\Windows\system32\NetworkDesktopSettings.dll
2019-03-13 08:00:10 ----A---- C:\Windows\system32\DafPrintProvider.dll
2019-03-13 08:00:09 ----A---- C:\Windows\system32\NetworkMobileSettings.dll
2019-03-13 08:00:09 ----A---- C:\Windows\system32\EdgeManager.dll
2019-03-13 08:00:07 ----A---- C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2019-03-13 08:00:04 ----A---- C:\Windows\system32\Windows.UI.Cred.dll
2019-03-13 08:00:01 ----A---- C:\Windows\system32\pcaevts.dll
2019-03-13 08:00:01 ----A---- C:\Windows\system32\AppXDeploymentServer.dll
2019-03-13 08:00:01 ----A---- C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-03-13 08:00:01 ----A---- C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-03-13 08:00:01 ----A---- C:\Windows\system32\AppXDeploymentClient.dll
2019-03-13 07:59:59 ----A---- C:\Windows\SYSWOW64\aadtb.dll
2019-03-13 07:59:58 ----A---- C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-03-13 07:59:58 ----A---- C:\Windows\system32\SystemSettings.Handlers.dll
2019-03-13 07:59:58 ----A---- C:\Windows\system32\aadtb.dll
2019-03-13 07:59:54 ----A---- C:\Windows\system32\wups.dll
2019-03-13 07:59:54 ----A---- C:\Windows\system32\wmpps.dll
2019-03-13 07:59:54 ----A---- C:\Windows\system32\mssprxy.dll
2019-03-13 07:59:54 ----A---- C:\Windows\system32\mfps.dll
2019-03-13 07:59:53 ----A---- C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2019-03-13 07:59:48 ----A---- C:\Windows\SYSWOW64\aepic.dll
2019-03-13 07:59:48 ----A---- C:\Windows\system32\win32appinventorycsp.dll
2019-03-13 07:59:48 ----A---- C:\Windows\system32\pcasvc.dll
2019-03-13 07:59:48 ----A---- C:\Windows\system32\pcalua.exe
2019-03-13 07:59:48 ----A---- C:\Windows\system32\pcadm.dll
2019-03-13 07:59:48 ----A---- C:\Windows\system32\invagent.dll
2019-03-13 07:59:48 ----A---- C:\Windows\system32\devinv.dll
2019-03-13 07:59:48 ----A---- C:\Windows\system32\DeviceCensus.exe
2019-03-13 07:59:48 ----A---- C:\Windows\system32\dcntel.dll
2019-03-13 07:59:48 ----A---- C:\Windows\system32\CompatTelRunner.exe
2019-03-13 07:59:48 ----A---- C:\Windows\system32\aepic.dll
2019-03-13 07:59:48 ----A---- C:\Windows\system32\aeinv.dll
2019-03-13 07:59:47 ----A---- C:\Windows\system32\generaltel.dll
2019-03-13 07:59:47 ----A---- C:\Windows\system32\AzureSettingSyncProvider.dll
2019-03-13 07:59:47 ----A---- C:\Windows\system32\appraiser.dll
2019-03-13 07:59:43 ----A---- C:\Windows\SYSWOW64\ucrtbase.dll
2019-03-13 07:59:43 ----A---- C:\Windows\SYSWOW64\AzureSettingSyncProvider.dll
2019-03-13 07:59:42 ----A---- C:\Windows\system32\browserexport.exe
2019-03-13 07:59:38 ----A---- C:\Windows\system32\WpcWebFilter.dll
2019-03-13 07:59:38 ----A---- C:\Windows\system32\WpcMon.exe
2019-03-13 07:59:37 ----A---- C:\Windows\SYSWOW64\WindowsCodecsRaw.dll
2019-03-13 07:59:34 ----A---- C:\Windows\SYSWOW64\UIRibbonRes.dll
2019-03-13 07:59:34 ----A---- C:\Windows\system32\UIRibbonRes.dll
2019-03-13 07:59:34 ----A---- C:\Windows\system32\ucrtbase.dll
2019-03-13 07:59:32 ----A---- C:\Windows\SYSWOW64\LicensingWinRT.dll
2019-03-13 07:59:32 ----A---- C:\Windows\system32\ucrtbase_enclave.dll
2019-03-13 07:59:32 ----A---- C:\Windows\system32\LicensingWinRT.dll
2019-03-13 07:59:32 ----A---- C:\Windows\system32\EditionUpgradeManagerObj.dll
2019-03-13 07:59:30 ----A---- C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2019-03-13 07:59:30 ----A---- C:\Windows\system32\remoteaudioendpoint.dll
2019-03-13 07:59:30 ----A---- C:\Windows\system32\AUDIOKSE.dll
2019-03-13 07:59:29 ----A---- C:\Windows\SYSWOW64\remoteaudioendpoint.dll
2019-03-13 07:59:29 ----A---- C:\Windows\SYSWOW64\AUDIOKSE.dll
2019-03-13 07:59:29 ----A---- C:\Windows\SYSWOW64\AppResolver.dll
2019-03-13 07:59:29 ----A---- C:\Windows\system32\WindowsCodecsRaw.dll
2019-03-13 07:59:29 ----A---- C:\Windows\system32\msvcp_win.dll
2019-03-13 07:59:29 ----A---- C:\Windows\system32\aadcloudap.dll
2019-03-13 07:59:26 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.Phone.dll
2019-03-13 07:59:26 ----A---- C:\Windows\SYSWOW64\msvcp_win.dll
2019-03-13 07:59:26 ----A---- C:\Windows\SYSWOW64\msrd2x40.dll
2019-03-13 07:59:26 ----A---- C:\Windows\system32\DataStoreCacheDumpTool.exe
2019-03-13 07:59:25 ----A---- C:\Windows\system32\cdpusersvc.dll
2019-03-13 07:59:25 ----A---- C:\Windows\system32\browserbroker.dll
2019-03-13 07:59:24 ----A---- C:\Windows\system32\LocationFramework.dll
2019-03-13 07:59:24 ----A---- C:\Windows\system32\D3DCompiler_47.dll
2019-03-13 07:59:23 ----A---- C:\Windows\system32\d2d1.dll
2019-03-13 07:59:22 ----A---- C:\Windows\system32\acmigration.dll
2019-03-13 07:59:21 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2019-03-13 07:59:21 ----A---- C:\Windows\system32\SettingsHandlers_Notifications.dll
2019-03-13 07:59:21 ----A---- C:\Windows\system32\ConstraintIndex.Search.dll
2019-03-13 07:59:21 ----A---- C:\Windows\system32\aadauthhelper.dll
2019-03-13 07:59:20 ----A---- C:\Windows\system32\wsp_fs.dll
2019-03-13 07:59:17 ----A---- C:\Windows\SYSWOW64\aadauthhelper.dll
2019-03-13 07:59:17 ----A---- C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2019-03-13 07:59:17 ----A---- C:\Windows\system32\BingOnlineServices.dll
2019-03-13 07:59:16 ----A---- C:\Windows\system32\wsp_health.dll
2019-03-13 07:59:16 ----A---- C:\Windows\system32\MSAJApi.dll
2019-03-13 07:59:15 ----RA---- C:\Windows\system32\icuin.dll
2019-03-13 07:59:15 ----A---- C:\Windows\SYSWOW64\DafPrintProvider.dll
2019-03-13 07:59:14 ----A---- C:\Windows\system32\SettingsHandlers_ContentDeliveryManager.dll
2019-03-13 07:59:14 ----A---- C:\Windows\system32\mf3216.dll
2019-03-13 07:59:14 ----A---- C:\Windows\system32\dxilconv.dll
2019-03-13 07:59:14 ----A---- C:\Windows\system32\DeviceFlows.DataModel.dll
2019-03-13 07:59:13 ----A---- C:\Windows\SYSWOW64\mf3216.dll
2019-03-13 07:59:13 ----A---- C:\Windows\SYSWOW64\GdiPlus.dll
2019-03-13 07:59:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_47.dll
2019-03-13 07:59:13 ----A---- C:\Windows\system32\GdiPlus.dll
2019-03-13 07:59:12 ----A---- C:\Windows\system32\Windows.Devices.Sensors.dll
2019-03-13 07:59:12 ----A---- C:\Windows\system32\CoreShell.dll
2019-03-13 07:59:11 ----RA---- C:\Windows\system32\icuuc.dll
2019-03-13 07:59:11 ----A---- C:\Windows\SYSWOW64\wsp_health.dll
2019-03-13 07:59:11 ----A---- C:\Windows\system32\WpcRefreshTask.dll
2019-03-13 07:59:11 ----A---- C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2019-03-13 07:59:10 ----A---- C:\Windows\SYSWOW64\wsp_fs.dll
2019-03-13 07:59:10 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.Maps.dll
2019-03-13 07:59:10 ----A---- C:\Windows\SYSWOW64\BingOnlineServices.dll
2019-03-13 07:59:10 ----A---- C:\Windows\system32\wlidcli.dll
2019-03-13 07:59:10 ----A---- C:\Windows\system32\clusapi.dll
2019-03-13 07:59:09 ----A---- C:\Windows\SYSWOW64\MSAJApi.dll
2019-03-13 07:59:08 ----RA---- C:\Windows\SYSWOW64\icuuc.dll
2019-03-13 07:59:08 ----RA---- C:\Windows\SYSWOW64\icuin.dll
2019-03-13 07:59:08 ----A---- C:\Windows\SYSWOW64\Windows.ApplicationModel.dll
2019-03-13 07:59:08 ----A---- C:\Windows\system32\Windows.UI.Xaml.InkControls.dll
2019-03-13 07:59:08 ----A---- C:\Windows\system32\SettingsHandlers_Devices.dll
2019-03-13 07:59:08 ----A---- C:\Windows\system32\resutils.dll
2019-03-13 07:59:07 ----A---- C:\Windows\SYSWOW64\mcbuilder.exe
2019-03-13 07:59:07 ----A---- C:\Windows\SYSWOW64\DeviceFlows.DataModel.dll
2019-03-13 07:59:07 ----A---- C:\Windows\system32\mprddm.dll
2019-03-13 07:59:07 ----A---- C:\Windows\system32\MapConfiguration.dll
2019-03-13 07:59:07 ----A---- C:\Windows\system32\lpasvc.dll
2019-03-13 07:59:06 ----A---- C:\Windows\SYSWOW64\NMAA.dll
2019-03-13 07:59:06 ----A---- C:\Windows\system32\Windows.ApplicationModel.dll
2019-03-13 07:59:05 ----A---- C:\Windows\system32\Windows.Internal.Signals.dll
2019-03-13 07:59:04 ----A---- C:\Windows\SYSWOW64\RTMediaFrame.dll
2019-03-13 07:59:04 ----A---- C:\Windows\SYSWOW64\resutils.dll
2019-03-13 07:59:04 ----A---- C:\Windows\system32\Windows.UI.BioFeedback.dll
2019-03-13 07:59:04 ----A---- C:\Windows\system32\NetSetupShim.dll
2019-03-13 07:59:04 ----A---- C:\Windows\system32\mcbuilder.exe
2019-03-13 07:59:04 ----A---- C:\Windows\system32\facecredentialprovider.dll
2019-03-13 07:59:04 ----A---- C:\Windows\system32\drivers\bridge.sys
2019-03-13 07:59:04 ----A---- C:\Windows\system32\cdpsvc.dll
2019-03-13 07:59:03 ----A---- C:\Windows\SYSWOW64\Windows.Devices.Sensors.dll
2019-03-13 07:59:03 ----A---- C:\Windows\SYSWOW64\es.dll
2019-03-13 07:59:03 ----A---- C:\Windows\SYSWOW64\ComposableShellProxyStub.dll
2019-03-13 07:59:03 ----A---- C:\Windows\system32\WpcTok.exe
2019-03-13 07:59:03 ----A---- C:\Windows\system32\WpcApi.dll
2019-03-13 07:59:03 ----A---- C:\Windows\system32\Windows.Shell.BlueLightReduction.dll
2019-03-13 07:59:03 ----A---- C:\Windows\system32\werui.dll
2019-03-13 07:59:03 ----A---- C:\Windows\system32\PersonaX.dll
2019-03-13 07:59:03 ----A---- C:\Windows\system32\InputHost.dll
2019-03-13 07:59:03 ----A---- C:\Windows\system32\es.dll
2019-03-13 07:59:02 ----A---- C:\Windows\SYSWOW64\InputHost.dll
2019-03-13 07:59:02 ----A---- C:\Windows\SYSWOW64\dxilconv.dll
2019-03-13 07:59:01 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.InkControls.dll
2019-03-13 07:59:01 ----A---- C:\Windows\SYSWOW64\mprddm.dll
2019-03-13 07:59:01 ----A---- C:\Windows\SYSWOW64\clusapi.dll
2019-03-13 07:59:00 ----A---- C:\Windows\SYSWOW64\LocationFrameworkPS.dll
2019-03-13 07:59:00 ----A---- C:\Windows\system32\Windows.UI.Xaml.Controls.dll
2019-03-13 07:59:00 ----A---- C:\Windows\system32\NetworkCollectionAgent.dll
2019-03-13 07:58:59 ----A---- C:\Windows\SYSWOW64\cdprt.dll
2019-03-13 07:58:59 ----A---- C:\Windows\system32\cdprt.dll
2019-03-13 07:58:58 ----A---- C:\Windows\SYSWOW64\NetSetupShim.dll
2019-03-13 07:58:58 ----A---- C:\Windows\SYSWOW64\MapConfiguration.dll
2019-03-13 07:58:58 ----A---- C:\Windows\system32\Windows.Internal.AdaptiveCards.XamlCardRenderer.dll
2019-03-13 07:58:58 ----A---- C:\Windows\system32\LocationFrameworkPS.dll
2019-03-13 07:58:57 ----A---- C:\Windows\system32\CoreShellAPI.dll
2019-03-13 07:58:57 ----A---- C:\Windows\system32\ComposableShellProxyStub.dll
2019-03-13 07:58:56 ----A---- C:\Windows\SYSWOW64\Windows.UI.Xaml.Controls.dll
2019-03-13 07:58:56 ----A---- C:\Windows\SYSWOW64\werui.dll
2019-03-13 07:58:56 ----A---- C:\Windows\SYSWOW64\UserDataTimeUtil.dll
2019-03-13 07:58:56 ----A---- C:\Windows\SYSWOW64\NetworkCollectionAgent.dll
2019-03-13 07:58:56 ----A---- C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2019-03-13 07:58:56 ----A---- C:\Windows\system32\windows.internal.shellcommon.shareexperience.dll
2019-03-13 07:58:56 ----A---- C:\Windows\system32\UserDataTimeUtil.dll
2019-03-13 07:58:56 ----A---- C:\Windows\system32\GameBarPresenceWriter.exe
2019-03-13 07:58:55 ----A---- C:\Windows\SYSWOW64\GameBarPresenceWriter.exe
2019-03-13 07:58:55 ----A---- C:\Windows\system32\msctfp.dll
2019-03-13 07:58:55 ----A---- C:\Windows\system32\LocationFrameworkInternalPS.dll
2019-03-13 07:58:55 ----A---- C:\Windows\system32\FXST30.dll
2019-03-13 07:58:54 ----A---- C:\Windows\SYSWOW64\CoreShellAPI.dll
2019-03-13 07:58:53 ----A---- C:\Windows\system32\SettingsHandlers_SignInOptions.dll
2019-03-13 07:58:52 ----A---- C:\Windows\SYSWOW64\wlidcli.dll
2019-03-13 07:58:52 ----A---- C:\Windows\SYSWOW64\LocationFrameworkInternalPS.dll
2019-03-13 07:58:52 ----A---- C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2019-03-13 07:58:52 ----A---- C:\Windows\system32\Windows.Media.Import.dll
2019-03-13 07:58:52 ----A---- C:\Windows\system32\tileobjserver.dll
2019-03-13 07:58:52 ----A---- C:\Windows\system32\SettingsHandlers_OneCore_BatterySaver.dll
2019-03-13 07:58:52 ----A---- C:\Windows\system32\NmaDirect.dll
2019-03-13 07:58:51 ----A---- C:\Windows\SYSWOW64\Windows.Media.Import.dll
2019-03-13 07:58:51 ----A---- C:\Windows\SYSWOW64\VEDataLayerHelpers.dll
2019-03-13 07:58:51 ----A---- C:\Windows\SYSWOW64\msctfp.dll
2019-03-13 07:58:51 ----A---- C:\Windows\SYSWOW64\fdProxy.dll
2019-03-13 07:58:51 ----A---- C:\Windows\SYSWOW64\Cortana.Persona.dll
2019-03-13 07:58:51 ----A---- C:\Windows\system32\wksprtPS.dll
2019-03-13 07:58:51 ----A---- C:\Windows\system32\Windows.Sets.dll
2019-03-13 07:58:51 ----A---- C:\Windows\system32\Windows.Internal.PredictionUnit.dll
2019-03-13 07:58:51 ----A---- C:\Windows\system32\w32time.dll
2019-03-13 07:58:51 ----A---- C:\Windows\system32\SEMgrPS.dll
2019-03-13 07:58:51 ----A---- C:\Windows\system32\RTMediaFrame.dll
2019-03-13 07:58:51 ----A---- C:\Windows\system32\MicrosoftAccountExtension.dll
2019-03-13 07:58:51 ----A---- C:\Windows\system32\FXSCOMEX.dll
2019-03-13 07:58:51 ----A---- C:\Windows\system32\fdProxy.dll
2019-03-13 07:58:51 ----A---- C:\Windows\system32\ExSMime.dll
2019-03-13 07:58:51 ----A---- C:\Windows\system32\ApproveChildRequest.exe
2019-03-13 07:58:50 ----A---- C:\Windows\SYSWOW64\tzres.dll
2019-03-13 07:58:50 ----A---- C:\Windows\SYSWOW64\odbcconf.dll
2019-03-13 07:58:50 ----A---- C:\Windows\SYSWOW64\NotificationObjFactory.dll
2019-03-13 07:58:50 ----A---- C:\Windows\SYSWOW64\NmaDirect.dll
2019-03-13 07:58:50 ----A---- C:\Windows\SYSWOW64\ngckeyenum.dll
2019-03-13 07:58:50 ----A---- C:\Windows\SYSWOW64\FXSCOMEX.dll
2019-03-13 07:58:50 ----A---- C:\Windows\SYSWOW64\ContactActivation.dll
2019-03-13 07:58:50 ----A---- C:\Windows\system32\tzres.dll
2019-03-13 07:58:50 ----A---- C:\Windows\system32\tdlrecover.exe
2019-03-13 07:58:50 ----A---- C:\Windows\system32\provpackageapidll.dll
2019-03-13 07:58:50 ----A---- C:\Windows\system32\POSyncServices.dll
2019-03-13 07:58:50 ----A---- C:\Windows\system32\odbcconf.dll
2019-03-13 07:58:50 ----A---- C:\Windows\system32\NotificationObjFactory.dll
2019-03-13 07:58:50 ----A---- C:\Windows\system32\Cortana.Persona.dll

======List of files/folders modified in the last 1 month======

2019-03-24 15:07:00 ----D---- C:\Windows\Prefetch
2019-03-24 15:07:00 ----D---- C:\Program Files\trend micro
2019-03-24 15:03:00 ----D---- C:\Windows\system32\sru
2019-03-24 15:01:10 ----D---- C:\Windows\Temp
2019-03-24 14:48:58 ----SHD---- C:\System Volume Information
2019-03-24 14:38:38 ----D---- C:\Windows\system32\SleepStudy
2019-03-24 14:11:49 ----D---- C:\Windows\system32\config
2019-03-24 14:08:35 ----RD---- C:\Windows\Microsoft.NET
2019-03-24 14:01:01 ----SHD---- C:\Windows\Installer
2019-03-24 14:01:00 ----SHD---- C:\Config.Msi
2019-03-24 14:00:59 ----D---- C:\Windows\system32\Tasks
2019-03-24 13:59:22 ----D---- C:\Windows\SysWOW64
2019-03-24 13:55:21 ----D---- C:\Users\LukesCZ\AppData\Roaming\Adobe
2019-03-24 13:53:19 ----D---- C:\Program Files (x86)\Adobe
2019-03-24 13:52:18 ----D---- C:\ProgramData\Adobe
2019-03-24 12:29:32 ----D---- C:\Windows\system32\DriverStore
2019-03-24 12:28:59 ----D---- C:\Windows\WinSxS
2019-03-24 12:26:18 ----D---- C:\Windows\system32\catroot2
2019-03-24 12:25:46 ----D---- C:\ProgramData\NVIDIA
2019-03-24 12:17:22 ----D---- C:\Windows\system32\LogFiles
2019-03-24 12:17:05 ----D---- C:\Windows\INF
2019-03-24 12:08:11 ----D---- C:\Users\LukesCZ\AppData\Roaming\FileZilla
2019-03-24 12:00:32 ----D---- C:\Program Files\FileZilla FTP Client
2019-03-24 11:45:59 ----D---- C:\Windows
2019-03-24 00:59:41 ----D---- C:\Windows\AppReadiness
2019-03-24 00:59:33 ----HD---- C:\Program Files\WindowsApps
2019-03-24 00:59:13 ----D---- C:\Windows\DeliveryOptimization
2019-03-24 00:56:18 ----D---- C:\Program Files\rempl
2019-03-24 00:55:07 ----D---- C:\Program Files (x86)\Steam
2019-03-24 00:53:03 ----D---- C:\Program Files (x86)\Google
2019-03-24 00:51:36 ----D---- C:\Windows\System32
2019-03-24 00:51:36 ----A---- C:\Windows\system32\PerfStringBackup.INI
2019-03-24 00:48:07 ----D---- C:\Windows\Logs
2019-03-24 00:45:24 ----D---- C:\Windows\SYSWOW64\migration
2019-03-24 00:45:24 ----D---- C:\Windows\system32\WinBioPlugIns
2019-03-24 00:45:23 ----D---- C:\Windows\system32\migration
2019-03-24 00:45:23 ----D---- C:\Windows\bcastdvr
2019-03-24 00:45:23 ----D---- C:\Program Files\Windows Media Player
2019-03-24 00:45:23 ----D---- C:\Program Files (x86)\Windows Media Player
2019-03-24 00:45:16 ----D---- C:\Windows\SYSWOW64\wbem
2019-03-24 00:45:15 ----SD---- C:\Windows\system32\UNP
2019-03-24 00:45:15 ----RD---- C:\Windows\ImmersiveControlPanel
2019-03-24 00:45:15 ----D---- C:\Windows\system32\wbem
2019-03-24 00:45:15 ----D---- C:\Windows\system32\setup
2019-03-24 00:45:15 ----D---- C:\Windows\system32\drivers\wd
2019-03-24 00:45:15 ----D---- C:\Windows\system32\drivers\UMDF
2019-03-24 00:45:15 ----D---- C:\Windows\system32\drivers
2019-03-24 00:45:15 ----D---- C:\Windows\PolicyDefinitions
2019-03-24 00:45:15 ----D---- C:\Windows\apppatch
2019-03-24 00:44:54 ----D---- C:\Windows\Tasks
2019-03-24 00:44:52 ----D---- C:\Windows\system32\CodeIntegrity
2019-03-24 00:41:19 ----RD---- C:\Program Files
2019-03-24 00:33:04 ----D---- C:\Windows\registration
2019-03-20 21:12:33 ----D---- C:\Windows\SoftwareDistribution
2019-03-19 23:51:02 ----D---- C:\Windows\debug
2019-03-15 16:49:33 ----D---- C:\Windows\rescache
2019-03-15 11:31:10 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-03-15 11:27:17 ----D---- C:\Program Files\Microsoft Office
2019-03-13 17:50:30 ----RSD---- C:\Windows\assembly
2019-03-13 17:36:59 ----SD---- C:\Windows\SYSWOW64\F12
2019-03-13 17:36:59 ----D---- C:\Windows\TextInput
2019-03-13 17:36:51 ----SD---- C:\Windows\system32\F12
2019-03-13 17:36:51 ----D---- C:\Windows\system32\appraiser
2019-03-13 17:36:50 ----RD---- C:\Windows\PrintDialog
2019-03-13 17:36:50 ----D---- C:\Windows\ShellExperiences
2019-03-13 17:36:50 ----D---- C:\Windows\Provisioning
2019-03-13 17:36:49 ----RSD---- C:\Windows\Fonts
2019-03-13 17:36:49 ----RD---- C:\Program Files\Windows Defender
2019-03-13 17:36:49 ----D---- C:\Program Files\Windows Photo Viewer
2019-03-13 17:36:49 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2019-03-13 17:36:49 ----D---- C:\Program Files (x86)\Windows Defender
2019-03-13 08:20:07 ----D---- C:\Windows\CbsTemp
2019-03-13 08:10:51 ----A---- C:\Windows\SYSWOW64\IndexedDbLegacy.dll
2019-03-13 07:57:26 ----D---- C:\Windows\system32\MRT
2019-03-13 07:45:48 ----AC---- C:\Windows\system32\MRT.exe
2019-03-13 07:34:35 ----D---- C:\Windows\system32\Macromed
2019-03-13 07:34:30 ----D---- C:\Windows\SYSWOW64\Macromed
2019-03-09 17:17:40 ----D---- C:\Users\LukesCZ\AppData\Roaming\Clip2Net
2019-03-09 16:24:44 ----D---- C:\Program Files\Common Files\microsoft shared
2019-03-03 17:57:42 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\Windows\system32\drivers\iorate.sys [2017-09-29 56728]
R0 MBI;@oem19.inf,%MBI.SVCDESC%;Intel(R) Sideband Fabric Device Service; C:\Windows\System32\drivers\MBI.sys [2015-11-19 41464]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\Windows\system32\drivers\bam.sys [2018-03-30 59808]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\Windows\system32\drivers\filecrypt.sys [2017-09-29 55808]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\Windows\System32\drivers\gpuenergydrv.sys [2018-03-30 8192]
R1 MpKsl7db9f47e;MpKsl7db9f47e; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1A8529A1-0FDD-45F4-8C39-A098A8FC361E}\MpKsl7db9f47e.sys [2019-03-24 58120]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\Windows\system32\drivers\cldflt.sys [2018-05-11 385536]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\Windows\system32\drivers\mmcss.sys [2017-09-29 43520]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\Windows\system32\drivers\storqosflt.sys [2018-03-30 79872]
R3 athr;@athw8x.inf,%ATHR.Service.DispName%;Qualcomm Atheros Extensible Wireless LAN device driver; C:\Windows\System32\drivers\athw8x.sys [2017-09-29 4233728]
R3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2015-08-12 601624]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\drivers\BTHUSB.sys [2017-09-29 85504]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\Windows\System32\drivers\CAD.sys [2017-09-29 60312]
R3 HIDSwitch;@oem2.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\Windows\System32\drivers\AsRadioControl.sys [2017-05-03 31112]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2016-05-03 3811288]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2017-06-29 5826560]
R3 IntcDAud;@oem18.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2015-08-21 463112]
R3 iwdbus;@oem16.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\Windows\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 nvlddmkm;nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_892f6532cdcad6cc\nvlddmkm.sys [2019-02-08 20707744]
R3 nvvad_WaveExtensible;@oem50.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad64v.sys [2018-11-29 70024]
R3 nvvhci;@oem36.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\Windows\System32\drivers\nvvhci.sys [2018-10-03 66792]
R3 RSBASTOR;@oem13.inf,%Rts5208%;Realtek PCIE CardReader Driver - BA; C:\Windows\system32\DRIVERS\RtsBaStor.sys [2015-11-08 321792]
R3 rt640x64;@rt640x64.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\Windows\System32\drivers\rt640x64.sys [2017-09-29 604160]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2017-09-29 13312]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\Windows\System32\drivers\bttflt.sys [2017-09-29 37784]
S0 cht4iscsi;cht4iscsi; C:\Windows\System32\drivers\cht4sx64.sys [2017-09-29 357272]
S0 LSI_SAS2i;LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [2017-09-29 123800]
S0 LSI_SAS3i;LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [2017-09-29 103320]
S0 megasas2i;megasas2i; C:\Windows\System32\drivers\MegaSas2i.sys [2017-09-29 63520]
S0 percsas2i;percsas2i; C:\Windows\System32\drivers\percsas2i.sys [2017-09-29 58776]
S0 percsas3i;percsas3i; C:\Windows\System32\drivers\percsas3i.sys [2017-09-29 61848]
S0 Ramdisk;Windows RAM Disk Driver; C:\Windows\system32\DRIVERS\ramdisk.sys [2017-09-29 39832]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\Windows\System32\drivers\scmbus.sys [2018-08-07 118688]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\Windows\System32\drivers\storufs.sys [2018-02-22 45472]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\Windows\System32\drivers\AcpiDev.sys [2017-09-29 20480]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\Windows\system32\drivers\applockerfltr.sys [2017-09-29 18432]
S3 ATP;@oem6.inf,%PS2.DeviceDesc%;ASUS Input Device; C:\Windows\System32\drivers\AsusTP.sys [2015-12-14 98296]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\Windows\System32\drivers\BthEnum.sys [2017-09-29 105472]
S3 bthl2cap;@bthl2cap.inf,%bthl2cap_desc%;Ovladač podpory protokolu Microsoft Bluetooth; C:\Windows\system32\DRIVERS\bthl2cap.sys [2017-09-29 83968]
S3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\Windows\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2017-09-29 78848]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\Windows\System32\drivers\bthpan.sys [2018-04-15 129536]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\Windows\System32\drivers\BTHport.sys [2018-06-13 1015296]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\Windows\System32\drivers\buttonconverter.sys [2017-09-29 39424]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\Windows\System32\drivers\capimg.sys [2017-09-29 122368]
S3 dg_ssudbus;@oem41.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2017-01-16 131712]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\Windows\System32\drivers\genericusbfn.sys [2017-09-29 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\Windows\System32\drivers\hidinterrupt.sys [2017-09-29 50584]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\Windows\system32\drivers\hvservice.sys [2019-03-06 75784]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\Windows\System32\Drivers\mshwnclx.sys [2017-09-29 27136]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\Windows\System32\drivers\cht4vx64.sys [2017-09-29 1723288]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\Windows\System32\drivers\iagpio.sys [2017-09-29 36864]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\Windows\System32\drivers\iai2c.sys [2017-09-29 91648]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys [2017-09-29 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\Windows\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2017-09-29 88576]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C.sys [2017-09-29 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\Windows\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2017-09-29 174592]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\Windows\System32\drivers\ibbus.sys [2017-09-29 526232]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\Windows\System32\drivers\IndirectKmd.sys [2017-09-29 39424]
S3 intaud_WaveExtensible;@oem15.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys []
S3 invdimm;@invdimm.inf,%invdimm.SvcDesc%;Microsoft iNVDIMM device driver; C:\Windows\System32\drivers\invdimm.sys [2017-09-29 38912]
S3 IPT;IPT; C:\Windows\System32\drivers\ipt.sys [2017-09-29 26112]
S3 irda;IrDA; C:\Windows\system32\drivers\irda.sys [2018-03-30 119808]
S3 LVRS64;@oem5.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\Windows\system32\DRIVERS\lvrs64.sys [2012-10-26 351520]
S3 LVUVC64;@oem34.inf,%PID_0825_DD%(UVC);Logitech HD Webcam C270(UVC); C:\Windows\system32\DRIVERS\lvuvc64.sys [2012-10-26 4758176]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\Windows\System32\drivers\mausbhost.sys [2017-09-29 505240]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\Windows\System32\drivers\mausbip.sys [2017-09-29 55840]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\Windows\System32\drivers\mlx4_bus.sys [2017-09-29 842648]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\Windows\System32\drivers\ndfltr.sys [2017-09-29 108952]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\Windows\system32\drivers\NetAdapterCx.sys [2017-09-29 132608]
S3 nvdimmn;@nvdimmn.inf,%nvdimmn.SvcDesc%;Microsoft NVDIMM-N device driver; C:\Windows\System32\drivers\nvdimmn.sys [2017-09-29 88576]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2019-01-16 30336]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\Windows\System32\drivers\pmem.sys [2017-09-29 100352]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\Windows\System32\drivers\pnpmem.sys [2017-09-29 16896]
S3 ReFSv1;ReFSv1; C:\Windows\system32\drivers\ReFSv1.sys [2019-03-06 937784]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\System32\drivers\rfcomm.sys [2017-09-29 189440]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\Windows\System32\drivers\rhproxy.sys [2017-09-29 103936]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\Windows\System32\drivers\SDFRd.sys [2017-09-29 33176]
S3 SpatialGraphFilter;Holographic Spatial Graph Filter; C:\Windows\System32\drivers\SpatialGraphFilter.sys [2017-09-30 56216]
S3 ssudmdm;@oem42.inf,%ssud.Service.Name%;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2017-01-16 165504]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-12-16 83984]
R2 AGMService;Adobe Genuine Monitor Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2018-12-13 2917864]
R2 AGSService;Adobe Genuine Software Integrity Service; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2018-12-13 2709480]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 48688]
R2 CDPUserSvc_5c567e;Uživatelská služba platformy připojených zařízení_5c567e; C:\Windows\system32\svchost.exe [2017-09-29 48688]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2019-03-06 11129928]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\Windows\system32\svchost.exe [2017-09-29 48688]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\Windows\System32\svchost.exe [2017-09-29 48688]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\Windows\System32\svchost.exe [2017-09-29 48688]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\Windows\System32\svchost.exe [2017-09-29 48688]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\Windows\system32\igfxCUIService.exe [2016-05-03 337888]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2019-01-30 790568]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2019-02-06 767368]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2019-02-08 799184]
R2 OneSyncSvc_5c567e;Hostitel synchronizace_5c567e; C:\Windows\system32\svchost.exe [2017-09-29 48688]
R2 osrss;@%systemroot%\system32\osrss.dll,-500; C:\Windows\system32\svchost.exe [2017-09-29 48688]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\Windows\system32\SecurityHealthService.exe [2018-03-01 519152]
R2 sedsvc;Windows Remediation Service; C:\Program Files\rempl\sedsvc.exe [2019-03-16 325432]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [2017-01-16 752224]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\Windows\System32\svchost.exe [2017-09-29 48688]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-09-28 43648]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\Windows\System32\svchost.exe [2017-09-29 48688]
R3 PimIndexMaintenanceSvc_5c567e;Data kontaktů_5c567e; C:\Windows\system32\svchost.exe [2017-09-29 48688]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-03 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\Windows\System32\svchost.exe [2017-09-29 48688]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-03-13 335872]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\Windows\System32\svchost.exe [2017-09-29 48688]
S3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\Windows\System32\svchost.exe [2017-09-29 48688]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2016-05-03 299488]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 DevicesFlowUserSvc_5c567e;Tok zařízení_5c567e; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2018-05-03 86016]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\Windows\System32\svchost.exe [2017-09-29 48688]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\Windows\System32\svchost.exe [2017-09-29 48688]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\Windows\System32\svchost.exe [2017-09-29 48688]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\elevation_service.exe [2019-03-20 1268720]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\Windows\System32\svchost.exe [2017-09-29 48688]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-03 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\Windows\System32\svchost.exe [2017-09-29 48688]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\Windows\System32\svchost.exe [2017-09-29 48688]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 MessagingService_5c567e;Služba zasílání zpráv_5c567e; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\Windows\System32\svchost.exe [2017-09-29 48688]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2019-01-30 790568]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2019-02-25 266736]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 PrintWorkflowUserSvc_5c567e;PrintWorkflow_5c567e; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\Windows\System32\svchost.exe [2017-09-29 48688]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\Windows\System32\svchost.exe [2017-09-29 48688]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\Windows\System32\svchost.exe [2017-09-29 48688]
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\Windows\System32\SensorDataService.exe [2017-09-29 1288704]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\Windows\system32\svchost.exe [2017-09-29 48688]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\Windows\system32\spectrum.exe [2018-10-30 956416]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2019-03-06 1693984]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\Windows\System32\svchost.exe [2017-09-29 48688]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118274
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu logu

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
M.Lukes
Návštěvník
Návštěvník
Příspěvky: 89
Registrován: 23 črc 2012 01:47

Re: Prosím o kontrolu logu

#3 Příspěvek od M.Lukes »

Kód: Vybrat vše

# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build:    01-30-2019
# Database: 2019-03-21.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    03-24-2019
# Duration: 00:00:40
# OS:       Windows 10 Home
# Scanned:  31923
# Detected: 0


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.



########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118274
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu logu

#4 Příspěvek od Rudy »

Toto je OK. Dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
M.Lukes
Návštěvník
Návštěvník
Příspěvky: 89
Registrován: 23 črc 2012 01:47

Re: Prosím o kontrolu logu

#5 Příspěvek od M.Lukes »

FRST:

Kód: Vybrat vše

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
Ran by LukesCZ (administrator) on DESKTOP-KABR0E0 (24-03-2019 20:19:02)
Running from C:\Users\LukesCZ\Desktop
Loaded Profiles: LukesCZ (Available Profiles: LukesCZ & Maminka)
Platform: Windows 10 Home Version 1709 16299.1029 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\MsMpEng.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\NisSrv.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(ASUS) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Hewlett Packard -> HP Inc.) C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKU\S-1-5-21-3117900324-340810039-3928290035-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3117900324-340810039-3928290035-1001\...\Run: [HP DeskJet 4530 series (NET)] => C:\Program Files\HP\HP DeskJet 4530 series\Bin\ScanToPCActivationApp.exe [3770504 2017-04-06] (Hewlett Packard -> HP Inc.)
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Windows\System32\Narrator.exe [360448 2017-09-29] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2017-12-22] (Beepa P/L) [File not signed]
HKLM\...\Drivers32: [MSVideo] => C:\Windows\system32\vfwwdm32.dll [67072 2017-09-29] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2017-12-22] (Beepa P/L) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\Installer\chrmstp.exe [2019-03-24] (Google LLC -> Google Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{3d766913-b362-4c32-9a26-0f51d380d880}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{f58622ab-e625-4b9f-a684-9f4870eab61f}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-3117900324-340810039-3928290035-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-03-09] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-15] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-15] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-15] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-03-09] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-03-15] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 8nt41d5y.default
FF ProfilePath: C:\Users\LukesCZ\AppData\Roaming\Mozilla\Firefox\Profiles\8nt41d5y.default [2019-03-24]
FF Homepage: Mozilla\Firefox\Profiles\8nt41d5y.default -> www.seznam.cz
FF Extension: (Super Start) - C:\Users\LukesCZ\AppData\Roaming\Mozilla\Firefox\Profiles\8nt41d5y.default\Extensions\superstart@enjoyfreeware.org [2018-11-05] [Legacy]
FF Extension: (uBlock Origin) - C:\Users\LukesCZ\AppData\Roaming\Mozilla\Firefox\Profiles\8nt41d5y.default\Extensions\uBlock0@raymondhill.net.xpi [2019-03-13]
FF Extension: (Unfriend Finder) - C:\Users\LukesCZ\AppData\Roaming\Mozilla\Firefox\Profiles\8nt41d5y.default\Extensions\{1A63D4C8-2449-461F-B4E5-E451E8B46D88}.xpi [2019-01-06]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_156.dll [2019-03-13] (Adobe Systems Incorporated -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-03-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_156.dll [2019-03-13] (Adobe Systems Incorporated -> )
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-03-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc -> Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems Incorporated -> Adobe Systems)

Chrome: 
=======
CHR Profile: C:\Users\LukesCZ\AppData\Local\Google\Chrome\User Data\Default [2019-03-24]
CHR Extension: (Prezentace) - C:\Users\LukesCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-06-19]
CHR Extension: (Dokumenty) - C:\Users\LukesCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-19]
CHR Extension: (Disk Google) - C:\Users\LukesCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-06-19]
CHR Extension: (YouTube) - C:\Users\LukesCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-06-19]
CHR Extension: (Tabulky) - C:\Users\LukesCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-06-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\LukesCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\LukesCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-19]
CHR Extension: (Gmail) - C:\Users\LukesCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-06-19]
CHR Extension: (Chrome Media Router) - C:\Users\LukesCZ\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-24]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11129928 2019-03-06] (Microsoft Corporation -> Microsoft Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790568 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-02-23] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-02-23] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\System32\drivers\athw8x.sys [4233728 2017-09-29] (Microsoft Windows -> Qualcomm Atheros Communications, Inc.)
S3 ATP; C:\Windows\System32\drivers\AsusTP.sys [98296 2015-12-14] (ASUSTeK Computer Inc. -> ASUS Corporation)
R3 BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [601624 2015-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Qualcomm Atheros)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 HIDSwitch; C:\Windows\System32\drivers\AsRadioControl.sys [31112 2017-05-03] (ASUSTeK Computer Inc. -> ASUS)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [41464 2015-11-19] (Intel(R) CherryTrail Windows -> Intel(R) Corporation)
R1 MpKsl7db9f47e; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{1A8529A1-0FDD-45F4-8C39-A098A8FC361E}\MpKsl7db9f47e.sys [58120 2019-03-24] (Microsoft Corporation -> Microsoft Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_892f6532cdcad6cc\nvlddmkm.sys [20707744 2019-02-08] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-01-16] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [70024 2018-11-29] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [604160 2017-09-29] (Microsoft Windows -> Realtek )
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [146232 2015-06-26] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [46472 2019-02-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [333792 2019-02-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [62432 2019-02-23] (Microsoft Windows -> Microsoft Corporation)
S3 intaud_WaveExtensible; \SystemRoot\system32\drivers\intelaud.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-24 20:19 - 2019-03-24 20:21 - 000018454 _____ C:\Users\LukesCZ\Desktop\FRST.txt
2019-03-24 20:18 - 2019-03-24 20:19 - 000000000 ____D C:\FRST
2019-03-24 20:16 - 2019-03-24 20:16 - 002434048 _____ (Farbar) C:\Users\LukesCZ\Desktop\FRST64.exe
2019-03-24 15:42 - 2019-03-24 15:43 - 000000000 ____D C:\AdwCleaner
2019-03-24 15:39 - 2019-03-24 15:39 - 007316688 _____ (Malwarebytes) C:\Users\LukesCZ\Desktop\adwcleaner_7.2.7.0.exe
2019-03-24 15:06 - 2019-03-24 15:07 - 000000000 ____D C:\rsit
2019-03-24 15:04 - 2019-03-24 15:04 - 001222144 _____ C:\Users\LukesCZ\Desktop\RSITx64.exe
2019-03-24 13:55 - 2019-03-24 14:00 - 000004562 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2019-03-24 13:54 - 2019-03-24 14:00 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-03-24 13:54 - 2019-03-24 13:54 - 000002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2019-03-24 12:00 - 2019-03-24 12:00 - 000001927 _____ C:\Users\LukesCZ\Desktop\FileZilla Client.lnk
2019-03-24 11:59 - 2019-03-24 11:59 - 007943328 _____ (Tim Kosse) C:\Users\LukesCZ\Downloads\FileZilla_3.41.2_win64-setup.exe
2019-03-24 00:53 - 2019-03-24 00:53 - 000002295 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2019-03-24 00:53 - 2019-03-24 00:53 - 000002283 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2019-03-23 20:26 - 2019-03-23 20:26 - 000000000 ____D C:\Users\LukesCZ\Desktop\PGSAMP_Theme
2019-03-23 16:09 - 2019-03-23 16:10 - 000000000 ____D C:\Users\LukesCZ\Desktop\fgfg
2019-03-23 14:35 - 2019-03-23 15:18 - 000000000 ____D C:\Users\LukesCZ\Desktop\Lukes_Themes
2019-03-22 22:50 - 2019-03-22 22:50 - 000000000 ____D C:\Users\LukesCZ\Desktop\ISPThema
2019-03-22 22:46 - 2019-03-22 22:46 - 000000781 _____ C:\Users\LukesCZ\Desktop\htaccess
2019-03-19 20:06 - 2019-03-19 20:06 - 000000241 _____ C:\Users\LukesCZ\Desktop\config.php
2019-03-19 18:03 - 2019-03-19 18:03 - 000240090 _____ C:\Users\LukesCZ\Downloads\faktura190284619(1).pdf
2019-03-19 17:59 - 2019-03-19 17:59 - 000240092 _____ C:\Users\LukesCZ\Downloads\faktura190284619.pdf
2019-03-19 17:36 - 2019-03-19 17:36 - 000401182 _____ C:\Users\LukesCZ\Desktop\d216853_mike.sql
2019-03-17 21:49 - 2019-03-23 15:58 - 000000000 ____D C:\Users\LukesCZ\Desktop\Plocha
2019-03-15 11:28 - 2019-03-15 11:28 - 000002517 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-03-15 11:28 - 2019-03-15 11:28 - 000002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
2019-03-15 11:28 - 2019-03-15 11:28 - 000002488 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
2019-03-15 11:28 - 2019-03-15 11:28 - 000002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
2019-03-15 11:28 - 2019-03-15 11:28 - 000002444 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
2019-03-15 11:28 - 2019-03-15 11:28 - 000002409 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
2019-03-15 11:28 - 2019-03-15 11:28 - 000002405 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
2019-03-15 11:28 - 2019-03-15 11:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2019-03-14 23:04 - 2019-03-24 00:44 - 000000000 ____D C:\Users\LukesCZ\Documents\pspad502b315
2019-03-14 21:37 - 2019-03-14 21:37 - 007939824 _____ (Tim Kosse) C:\Users\LukesCZ\Downloads\FileZilla_3.41.1_win64-setup.exe
2019-03-13 08:02 - 2019-03-06 07:29 - 000344576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2019-03-13 08:02 - 2019-03-06 07:26 - 000155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2019-03-13 08:02 - 2019-03-06 07:25 - 000078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2019-03-13 08:02 - 2019-03-06 07:24 - 000459776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webplatstorageserver.dll
2019-03-13 08:02 - 2019-03-06 07:24 - 000369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2019-03-13 08:02 - 2019-03-06 07:19 - 000464384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2019-03-13 08:02 - 2019-02-17 03:59 - 005890120 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2019-03-13 08:02 - 2019-02-17 03:51 - 001554120 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2019-03-13 08:02 - 2019-02-17 03:51 - 000563536 _____ (Microsoft Corporation) C:\Windows\system32\AppResolver.dll
2019-03-13 08:02 - 2019-02-17 03:48 - 007385208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2019-03-13 08:02 - 2019-02-17 02:30 - 017168896 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2019-03-13 08:02 - 2019-02-17 02:28 - 000704000 _____ (Microsoft Corporation) C:\Windows\system32\UiaManager.dll
2019-03-13 08:02 - 2019-02-17 02:26 - 002186240 _____ (Microsoft Corporation) C:\Windows\system32\mmgaclient.dll
2019-03-13 08:02 - 2019-02-17 02:26 - 001685504 _____ (Microsoft Corporation) C:\Windows\system32\mmgaserver.exe
2019-03-13 08:02 - 2019-02-17 02:24 - 000543232 _____ (Microsoft Corporation) C:\Windows\system32\HolographicExtensions.dll
2019-03-13 08:02 - 2019-02-17 02:23 - 000703488 _____ (Microsoft Corporation) C:\Windows\system32\ngccredprov.dll
2019-03-13 08:02 - 2019-02-17 02:23 - 000503296 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_User.dll
2019-03-13 08:02 - 2019-02-17 02:20 - 002976256 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2019-03-13 08:02 - 2019-02-17 02:20 - 002088448 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2019-03-13 08:02 - 2019-02-17 02:19 - 003187200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.CloudStore.dll
2019-03-13 08:02 - 2019-02-17 02:18 - 002637824 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2019-03-13 08:02 - 2019-02-17 02:18 - 001816576 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2019-03-13 08:02 - 2019-02-17 02:18 - 001081856 _____ (Microsoft Corporation) C:\Windows\system32\ngcsvc.dll
2019-03-13 08:02 - 2019-02-17 02:17 - 001760768 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2019-03-13 08:02 - 2019-02-17 02:16 - 001249792 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2019-03-13 08:02 - 2019-02-17 02:15 - 001280000 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2019-03-13 08:02 - 2019-02-17 02:14 - 001556992 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2019-03-13 08:02 - 2019-02-17 01:39 - 000649208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2019-03-13 08:02 - 2019-02-17 01:39 - 000311096 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2019-03-13 08:02 - 2019-02-17 01:19 - 006475880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-03-13 08:02 - 2019-02-17 01:18 - 001246336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2019-03-13 08:02 - 2019-02-17 00:54 - 013710848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2019-03-13 08:02 - 2019-02-17 00:54 - 001428480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmgaclient.dll
2019-03-13 08:02 - 2019-02-17 00:54 - 001060352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmgaserver.exe
2019-03-13 08:02 - 2019-02-17 00:45 - 001668096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2019-03-13 08:01 - 2019-03-06 11:49 - 002871096 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-03-13 08:01 - 2019-03-06 11:49 - 000075784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2019-03-13 08:01 - 2019-03-06 11:48 - 001252872 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2019-03-13 08:01 - 2019-03-06 11:48 - 001072952 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2019-03-13 08:01 - 2019-03-06 11:47 - 000702472 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-03-13 08:01 - 2019-03-06 11:46 - 000937784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refsv1.sys
2019-03-13 08:01 - 2019-03-06 11:45 - 008617000 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-03-13 08:01 - 2019-03-06 11:45 - 001849872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\refs.sys
2019-03-13 08:01 - 2019-03-06 11:45 - 000078648 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2019-03-13 08:01 - 2019-03-06 11:44 - 002394640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-03-13 08:01 - 2019-03-06 11:40 - 000027448 _____ (Microsoft Corporation) C:\Windows\system32\browser_broker.exe
2019-03-13 08:01 - 2019-03-06 11:39 - 001172976 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-03-13 08:01 - 2019-03-06 11:39 - 000377656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2019-03-13 08:01 - 2019-03-06 11:35 - 000893456 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2019-03-13 08:01 - 2019-03-06 11:34 - 002736152 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-03-13 08:01 - 2019-03-06 11:34 - 000371512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2019-03-13 08:01 - 2019-03-06 11:32 - 002415864 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-03-13 08:01 - 2019-03-06 11:32 - 000418832 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-03-13 08:01 - 2019-03-06 11:31 - 000757704 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2019-03-13 08:01 - 2019-03-06 11:25 - 002774840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2019-03-13 08:01 - 2019-03-06 11:25 - 000614200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2019-03-13 08:01 - 2019-03-06 10:28 - 025270272 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2019-03-13 08:01 - 2019-03-06 10:13 - 000536064 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2019-03-13 08:01 - 2019-03-06 10:13 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2019-03-13 08:01 - 2019-03-06 10:10 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2019-03-13 08:01 - 2019-03-06 10:10 - 000046080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2019-03-13 08:01 - 2019-03-06 10:09 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-03-13 08:01 - 2019-03-06 10:08 - 000675328 _____ (Microsoft Corporation) C:\Windows\system32\webplatstorageserver.dll
2019-03-13 08:01 - 2019-03-06 10:08 - 000093696 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-03-13 08:01 - 2019-03-06 10:07 - 000431616 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2019-03-13 08:01 - 2019-03-06 10:06 - 000276480 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-03-13 08:01 - 2019-03-06 10:05 - 023678976 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-03-13 08:01 - 2019-03-06 10:05 - 000672768 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-03-13 08:01 - 2019-03-06 10:05 - 000403968 _____ (Microsoft Corporation) C:\Windows\system32\WpAXHolder.dll
2019-03-13 08:01 - 2019-03-06 10:04 - 012833792 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-03-13 08:01 - 2019-03-06 10:04 - 000591360 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-03-13 08:01 - 2019-03-06 10:03 - 000532480 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2019-03-13 08:01 - 2019-03-06 10:02 - 008108032 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2019-03-13 08:01 - 2019-03-06 10:01 - 002085376 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2019-03-13 08:01 - 2019-03-06 10:00 - 004831744 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-03-13 08:01 - 2019-03-06 10:00 - 004724224 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-03-13 08:01 - 2019-03-06 10:00 - 001856512 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2019-03-13 08:01 - 2019-03-06 10:00 - 001597952 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-03-13 08:01 - 2019-03-06 10:00 - 001156608 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2019-03-13 08:01 - 2019-03-06 10:00 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-03-13 08:01 - 2019-03-06 09:59 - 001808384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-03-13 08:01 - 2019-03-06 09:57 - 000725504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-03-13 08:01 - 2019-03-06 09:56 - 000354304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2019-03-13 08:01 - 2019-03-06 09:56 - 000323072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2019-03-13 08:01 - 2019-03-06 09:56 - 000259072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-03-13 08:01 - 2019-03-06 09:55 - 004056576 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2019-03-13 08:01 - 2019-03-06 09:53 - 000093184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdfs.sys
2019-03-13 08:01 - 2019-03-06 09:53 - 000073728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-03-13 08:01 - 2019-03-06 09:53 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msfs.sys
2019-03-13 08:01 - 2019-03-06 08:01 - 000777536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2019-03-13 08:01 - 2019-03-06 08:01 - 000595560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2019-03-13 08:01 - 2019-03-06 07:51 - 002217016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2019-03-13 08:01 - 2019-03-06 07:50 - 000793400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2019-03-13 08:01 - 2019-03-06 07:49 - 001991600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-03-13 08:01 - 2019-03-06 07:49 - 000639408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2019-03-13 08:01 - 2019-03-06 07:49 - 000544336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2019-03-13 08:01 - 2019-03-06 07:49 - 000353080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2019-03-13 08:01 - 2019-03-06 07:26 - 000079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2019-03-13 08:01 - 2019-03-06 07:25 - 000268288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2019-03-13 08:01 - 2019-03-06 07:22 - 018948096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2019-03-13 08:01 - 2019-03-06 07:21 - 000539136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2019-03-13 08:01 - 2019-03-06 07:21 - 000420352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2019-03-13 08:01 - 2019-03-06 07:20 - 019360256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2019-03-13 08:01 - 2019-03-06 07:20 - 000664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2019-03-13 08:01 - 2019-03-06 07:19 - 003662336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2019-03-13 08:01 - 2019-03-06 07:18 - 011924992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-03-13 08:01 - 2019-03-06 07:17 - 006039040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2019-03-13 08:01 - 2019-03-06 07:15 - 004369408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-03-13 08:01 - 2019-03-06 07:15 - 001588224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2019-03-13 08:01 - 2019-03-06 07:15 - 001566720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-03-13 08:01 - 2019-03-06 07:15 - 001474560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2019-03-13 08:01 - 2019-03-06 07:12 - 004057600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2019-03-13 08:01 - 2019-02-17 03:59 - 000779856 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2019-03-13 08:01 - 2019-02-17 03:59 - 000382264 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2019-03-13 08:01 - 2019-02-17 03:55 - 002515360 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-03-13 08:01 - 2019-02-17 03:54 - 000795400 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2019-03-13 08:01 - 2019-02-17 03:53 - 003075240 _____ (Microsoft Corporation) C:\Windows\system32\CoreUIComponents.dll
2019-03-13 08:01 - 2019-02-17 03:53 - 001277968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2019-03-13 08:01 - 2019-02-17 03:53 - 000898328 _____ (Microsoft Corporation) C:\Windows\system32\CoreMessaging.dll
2019-03-13 08:01 - 2019-02-17 03:51 - 001778272 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2019-03-13 08:01 - 2019-02-17 03:51 - 000687456 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2019-03-13 08:01 - 2019-02-17 03:51 - 000398728 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2019-03-13 08:01 - 2019-02-17 03:50 - 021357232 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-03-13 08:01 - 2019-02-17 03:50 - 000824800 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2019-03-13 08:01 - 2019-02-17 03:50 - 000712504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2019-03-13 08:01 - 2019-02-17 03:50 - 000465336 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2019-03-13 08:01 - 2019-02-17 03:50 - 000250168 _____ (Microsoft Corporation) C:\Windows\system32\offlinesam.dll
2019-03-13 08:01 - 2019-02-17 03:49 - 003174624 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2019-03-13 08:01 - 2019-02-17 03:49 - 001170120 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-03-13 08:01 - 2019-02-17 03:49 - 001054392 _____ (Microsoft Corporation) C:\Windows\system32\msvproc.dll
2019-03-13 08:01 - 2019-02-17 03:49 - 000903856 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2019-03-13 08:01 - 2019-02-17 03:49 - 000710888 _____ (Microsoft Corporation) C:\Windows\system32\MSVideoDSP.dll
2019-03-13 08:01 - 2019-02-17 03:49 - 000603824 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-03-13 08:01 - 2019-02-17 03:49 - 000093712 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2019-03-13 08:01 - 2019-02-17 03:48 - 001426064 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-03-13 08:01 - 2019-02-17 03:48 - 001337280 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-03-13 08:01 - 2019-02-17 03:47 - 001101624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2019-03-13 08:01 - 2019-02-17 02:30 - 003994624 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2019-03-13 08:01 - 2019-02-17 02:28 - 000674304 _____ (Microsoft Corporation) C:\Windows\system32\LockController.dll
2019-03-13 08:01 - 2019-02-17 02:28 - 000121856 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2019-03-13 08:01 - 2019-02-17 02:27 - 002890240 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2019-03-13 08:01 - 2019-02-17 02:24 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-03-13 08:01 - 2019-02-17 02:23 - 001282048 _____ (Microsoft Corporation) C:\Windows\system32\MSVPXENC.dll
2019-03-13 08:01 - 2019-02-17 02:23 - 000428544 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreCommonProxyStub.dll
2019-03-13 08:01 - 2019-02-17 02:22 - 000984064 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2019-03-13 08:01 - 2019-02-17 02:22 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2019-03-13 08:01 - 2019-02-17 02:22 - 000229888 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-03-13 08:01 - 2019-02-17 02:21 - 008040448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2019-03-13 08:01 - 2019-02-17 02:20 - 001577984 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2019-03-13 08:01 - 2019-02-17 02:20 - 001117184 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-03-13 08:01 - 2019-02-17 02:20 - 000891392 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2019-03-13 08:01 - 2019-02-17 02:19 - 004113408 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2019-03-13 08:01 - 2019-02-17 02:18 - 005833216 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2019-03-13 08:01 - 2019-02-17 02:18 - 001488384 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-03-13 08:01 - 2019-02-17 02:18 - 001055744 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2019-03-13 08:01 - 2019-02-17 02:18 - 000885248 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2019-03-13 08:01 - 2019-02-17 02:16 - 000688128 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2019-03-13 08:01 - 2019-02-17 02:15 - 001717248 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2019-03-13 08:01 - 2019-02-17 01:40 - 001932216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2019-03-13 08:01 - 2019-02-17 01:39 - 000566568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreMessaging.dll
2019-03-13 08:01 - 2019-02-17 01:25 - 000595528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2019-03-13 08:01 - 2019-02-17 01:24 - 002314920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreUIComponents.dll
2019-03-13 08:01 - 2019-02-17 01:22 - 001555904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2019-03-13 08:01 - 2019-02-17 01:20 - 002381280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2019-03-13 08:01 - 2019-02-17 01:20 - 000704496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2019-03-13 08:01 - 2019-02-17 01:20 - 000353752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2019-03-13 08:01 - 2019-02-17 01:20 - 000221496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinesam.dll
2019-03-13 08:01 - 2019-02-17 01:19 - 001057728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvproc.dll
2019-03-13 08:01 - 2019-02-17 01:19 - 000982952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2019-03-13 08:01 - 2019-02-17 01:18 - 001002552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2019-03-13 08:01 - 2019-02-17 00:58 - 003490816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll
2019-03-13 08:01 - 2019-02-17 00:57 - 000089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2019-03-13 08:01 - 2019-02-17 00:56 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2019-03-13 08:01 - 2019-02-17 00:55 - 000030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2019-03-13 08:01 - 2019-02-17 00:53 - 000181760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2019-03-13 08:01 - 2019-02-17 00:52 - 001286656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVPXENC.dll
2019-03-13 08:01 - 2019-02-17 00:51 - 000315392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2019-03-13 08:01 - 2019-02-17 00:50 - 006587392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2019-03-13 08:01 - 2019-02-17 00:50 - 000981504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Cred.dll
2019-03-13 08:01 - 2019-02-17 00:50 - 000344064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2019-03-13 08:01 - 2019-02-17 00:50 - 000196096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreCommonProxyStub.dll
2019-03-13 08:01 - 2019-02-17 00:47 - 001236480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2019-03-13 08:01 - 2019-02-17 00:45 - 004839424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2019-03-13 08:01 - 2019-02-17 00:45 - 000825856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2019-03-13 08:01 - 2019-02-17 00:44 - 000695296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2019-03-13 08:01 - 2019-02-17 00:43 - 000975360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2019-03-13 08:01 - 2019-02-17 00:42 - 001353216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2019-03-13 08:01 - 2017-11-26 13:00 - 000899584 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2019-03-13 08:00 - 2019-03-06 11:30 - 000688688 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2019-03-13 08:00 - 2019-03-06 10:10 - 000200704 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2019-03-13 08:00 - 2019-03-06 10:04 - 001496064 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2019-03-13 08:00 - 2019-03-06 10:00 - 003183104 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2019-03-13 08:00 - 2019-03-06 10:00 - 002213376 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2019-03-13 08:00 - 2019-03-06 09:53 - 000012800 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2019-03-13 08:00 - 2019-02-17 06:54 - 017085952 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2019-03-13 08:00 - 2019-02-17 06:52 - 021754368 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2019-03-13 08:00 - 2019-02-17 06:24 - 003331120 _____ C:\Windows\system32\Windows.Mirage.dll
2019-03-13 08:00 - 2019-02-17 06:24 - 000336896 _____ (Microsoft Corporation) C:\Windows\system32\HolographicRuntimes.dll
2019-03-13 08:00 - 2019-02-17 06:20 - 000882688 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.Internal.dll
2019-03-13 08:00 - 2019-02-17 04:33 - 002491232 _____ C:\Windows\SysWOW64\Windows.Mirage.dll
2019-03-13 08:00 - 2019-02-17 04:23 - 000618496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2019-03-13 08:00 - 2019-02-17 03:59 - 007831664 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2019-03-13 08:00 - 2019-02-17 03:59 - 000269600 _____ C:\Windows\system32\FaceProcessorCore.dll
2019-03-13 08:00 - 2019-02-17 03:51 - 000436536 _____ (Microsoft Corporation) C:\Windows\system32\CloudExperienceHostCommon.dll
2019-03-13 08:00 - 2019-02-17 03:51 - 000334136 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll
2019-03-13 08:00 - 2019-02-17 03:49 - 000374152 _____ (Microsoft Corporation) C:\Windows\system32\vac.exe
2019-03-13 08:00 - 2019-02-17 02:29 - 008728064 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2019-03-13 08:00 - 2019-02-17 02:28 - 000975360 _____ C:\Windows\system32\FaceProcessor.dll
2019-03-13 08:00 - 2019-02-17 02:27 - 000239104 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
2019-03-13 08:00 - 2019-02-17 02:23 - 007145472 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2019-03-13 08:00 - 2019-02-17 02:23 - 000795136 _____ (Microsoft Corporation) C:\Windows\system32\NaturalAuth.dll
2019-03-13 08:00 - 2019-02-17 02:23 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2019-03-13 08:00 - 2019-02-17 02:22 - 005195776 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2019-03-13 08:00 - 2019-02-17 02:22 - 003400192 _____ (Microsoft Corporation) C:\Windows\system32\MapRouter.dll
2019-03-13 08:00 - 2019-02-17 02:22 - 001574912 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Cred.dll
2019-03-13 08:00 - 2019-02-17 02:22 - 001262592 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2019-03-13 08:00 - 2019-02-17 02:22 - 001113600 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe
2019-03-13 08:00 - 2019-02-17 02:22 - 000432640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.LockScreen.dll
2019-03-13 08:00 - 2019-02-17 02:22 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\cldapi.dll
2019-03-13 08:00 - 2019-02-17 02:21 - 001297920 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe
2019-03-13 08:00 - 2019-02-17 02:21 - 001173504 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2019-03-13 08:00 - 2019-02-17 02:21 - 000234496 _____ (Microsoft Corporation) C:\Windows\system32\NetworkDesktopSettings.dll
2019-03-13 08:00 - 2019-02-17 02:20 - 002849792 _____ (Microsoft Corporation) C:\Windows\system32\MapGeocoder.dll
2019-03-13 08:00 - 2019-02-17 02:20 - 002596352 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2019-03-13 08:00 - 2019-02-17 02:20 - 000893440 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll
2019-03-13 08:00 - 2019-02-17 02:19 - 003211776 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2019-03-13 08:00 - 2019-02-17 02:19 - 002837504 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2019-03-13 08:00 - 2019-02-17 02:19 - 001167360 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2019-03-13 08:00 - 2019-02-17 02:18 - 001669120 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2019-03-13 08:00 - 2019-02-17 02:18 - 000885760 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2019-03-13 08:00 - 2019-02-17 02:16 - 000565248 _____ (Microsoft Corporation) C:\Windows\system32\wpnprv.dll
2019-03-13 08:00 - 2019-02-17 01:22 - 005616088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2019-03-13 08:00 - 2019-02-17 01:21 - 001261768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2019-03-13 08:00 - 2019-02-17 01:21 - 000354104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CloudExperienceHostCommon.dll
2019-03-13 08:00 - 2019-02-17 01:18 - 020290152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-03-13 08:00 - 2019-02-17 00:55 - 000160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll
2019-03-13 08:00 - 2019-02-17 00:54 - 000084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppCapture.dll
2019-03-13 08:00 - 2019-02-17 00:49 - 006204416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2019-03-13 08:00 - 2019-02-17 00:49 - 003181568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2019-03-13 08:00 - 2019-02-17 00:49 - 000963584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe
2019-03-13 08:00 - 2019-02-17 00:49 - 000886784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2019-03-13 08:00 - 2019-02-17 00:49 - 000636416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2019-03-13 08:00 - 2019-02-17 00:48 - 000706048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2019-03-13 08:00 - 2019-02-17 00:47 - 001948672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapGeocoder.dll
2019-03-13 08:00 - 2019-02-17 00:47 - 000981504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2019-03-13 08:00 - 2019-02-17 00:47 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cldapi.dll
2019-03-13 08:00 - 2019-02-17 00:46 - 006118912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2019-03-13 08:00 - 2019-02-17 00:46 - 002409984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapRouter.dll
2019-03-13 08:00 - 2019-02-17 00:46 - 001342464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2019-03-13 07:59 - 2019-03-06 11:50 - 000322360 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-03-13 07:59 - 2019-03-06 11:49 - 000512016 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-03-13 07:59 - 2019-03-06 11:49 - 000460088 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-03-13 07:59 - 2019-03-06 11:48 - 000735760 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-03-13 07:59 - 2019-03-06 11:48 - 000147256 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-03-13 07:59 - 2019-03-06 11:48 - 000035640 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2019-03-13 07:59 - 2019-03-06 11:47 - 000808248 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-03-13 07:59 - 2019-03-06 11:47 - 000505656 _____ (Microsoft Corporation) C:\Windows\system32\dcntel.dll
2019-03-13 07:59 - 2019-03-06 11:46 - 001643832 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-03-13 07:59 - 2019-03-06 11:46 - 000619832 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-03-13 07:59 - 2019-03-06 11:46 - 000070968 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2019-03-13 07:59 - 2019-03-06 11:40 - 000542520 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-03-13 07:59 - 2019-03-06 11:36 - 000248840 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2019-03-13 07:59 - 2019-03-06 10:13 - 001666048 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2019-03-13 07:59 - 2019-03-06 10:13 - 000472576 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2019-03-13 07:59 - 2019-03-06 10:13 - 000058368 _____ (Microsoft Corporation) C:\Windows\system32\mf3216.dll
2019-03-13 07:59 - 2019-03-06 10:10 - 000331264 _____ (Microsoft Corporation) C:\Windows\system32\browserexport.exe
2019-03-13 07:59 - 2019-03-06 10:10 - 000116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2019-03-13 07:59 - 2019-03-06 09:54 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2019-03-13 07:59 - 2019-03-06 09:53 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2019-03-13 07:59 - 2019-03-06 08:01 - 000383288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aepic.dll
2019-03-13 07:59 - 2019-03-06 07:29 - 001473024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2019-03-13 07:59 - 2019-03-06 07:29 - 000044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf3216.dll
2019-03-13 07:59 - 2019-02-21 04:13 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd2x40.dll
2019-03-13 07:59 - 2019-02-17 03:59 - 000478792 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase_enclave.dll
2019-03-13 07:59 - 2019-02-17 03:54 - 000997312 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2019-03-13 07:59 - 2019-02-17 03:53 - 032544344 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsRaw.dll
2019-03-13 07:59 - 2019-02-17 03:51 - 006282184 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2019-03-13 07:59 - 2019-02-17 03:51 - 001114040 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll
2019-03-13 07:59 - 2019-02-17 03:51 - 000184336 _____ C:\Windows\system32\InputHost.dll
2019-03-13 07:59 - 2019-02-17 03:50 - 000668848 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2019-03-13 07:59 - 2019-02-17 03:48 - 001430672 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2019-03-13 07:59 - 2019-02-17 03:48 - 000857616 _____ (Microsoft Corporation) C:\Windows\system32\LicensingWinRT.dll
2019-03-13 07:59 - 2019-02-17 03:48 - 000714768 _____ (Microsoft Corporation) C:\Windows\system32\EditionUpgradeManagerObj.dll
2019-03-13 07:59 - 2019-02-17 03:48 - 000413792 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2019-03-13 07:59 - 2019-02-17 03:48 - 000261008 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-03-13 07:59 - 2019-02-17 03:48 - 000087296 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2019-03-13 07:59 - 2019-02-17 03:47 - 000387536 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2019-03-13 07:59 - 2019-02-17 03:46 - 000628752 _____ (Microsoft Corporation) C:\Windows\system32\msvcp_win.dll
2019-03-13 07:59 - 2019-02-17 02:31 - 002362368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Controls.dll
2019-03-13 07:59 - 2019-02-17 02:30 - 001785856 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2019-03-13 07:59 - 2019-02-17 02:29 - 002053120 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2019-03-13 07:59 - 2019-02-17 02:29 - 000997376 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2019-03-13 07:59 - 2019-02-17 02:29 - 000730112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Signals.dll
2019-03-13 07:59 - 2019-02-17 02:29 - 000602624 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2019-03-13 07:59 - 2019-02-17 02:28 - 000584192 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2019-03-13 07:59 - 2019-02-17 02:28 - 000235008 _____ (Microsoft Corporation) C:\Windows\system32\WpcTok.exe
2019-03-13 07:59 - 2019-02-17 02:28 - 000190976 _____ (Microsoft Corporation) C:\Windows\system32\WpcApi.dll
2019-03-13 07:59 - 2019-02-17 02:27 - 000084992 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe
2019-03-13 07:59 - 2019-02-17 02:26 - 000231936 _____ (Microsoft Corporation) C:\Windows\system32\aadauthhelper.dll
2019-03-13 07:59 - 2019-02-17 02:26 - 000143872 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2019-03-13 07:59 - 2019-02-17 02:26 - 000065024 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2019-03-13 07:59 - 2019-02-17 02:25 - 001327104 _____ (Microsoft Corporation) C:\Windows\system32\dxilconv.dll
2019-03-13 07:59 - 2019-02-17 02:25 - 000203776 _____ (Microsoft Corporation) C:\Windows\system32\PersonaX.dll
2019-03-13 07:59 - 2019-02-17 02:25 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_ContentDeliveryManager.dll
2019-03-13 07:59 - 2019-02-17 02:24 - 000406528 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BioFeedback.dll
2019-03-13 07:59 - 2019-02-17 02:24 - 000340480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.BlueLightReduction.dll
2019-03-13 07:59 - 2019-02-17 02:23 - 001925120 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll
2019-03-13 07:59 - 2019-02-17 02:23 - 001341440 ____R (The ICU Project) C:\Windows\system32\icuuc.dll
2019-03-13 07:59 - 2019-02-17 02:23 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\NetworkCollectionAgent.dll
2019-03-13 07:59 - 2019-02-17 02:23 - 000623616 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2019-03-13 07:59 - 2019-02-17 02:23 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Devices.dll
2019-03-13 07:59 - 2019-02-17 02:23 - 000484352 _____ (Microsoft Corporation) C:\Windows\system32\cdpusersvc.dll
2019-03-13 07:59 - 2019-02-17 02:23 - 000332800 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2019-03-13 07:59 - 2019-02-17 02:22 - 002404864 _____ (Microsoft Corporation) C:\Windows\system32\DeviceFlows.DataModel.dll
2019-03-13 07:59 - 2019-02-17 02:22 - 001900544 ____R (The ICU Project) C:\Windows\system32\icuin.dll
2019-03-13 07:59 - 2019-02-17 02:22 - 001856512 _____ (Microsoft Corporation) C:\Windows\system32\ConstraintIndex.Search.dll
2019-03-13 07:59 - 2019-02-17 02:22 - 001471488 _____ (Microsoft Corporation) C:\Windows\system32\CoreShell.dll
2019-03-13 07:59 - 2019-02-17 02:22 - 001425408 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2019-03-13 07:59 - 2019-02-17 02:22 - 001346048 _____ (Microsoft Corporation) C:\Windows\system32\lpasvc.dll
2019-03-13 07:59 - 2019-02-17 02:22 - 000479744 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2019-03-13 07:59 - 2019-02-17 02:21 - 004592640 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-03-13 07:59 - 2019-02-17 02:21 - 000987136 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.InkControls.dll
2019-03-13 07:59 - 2019-02-17 02:21 - 000962560 _____ (Microsoft Corporation) C:\Windows\system32\BingOnlineServices.dll
2019-03-13 07:59 - 2019-02-17 02:21 - 000911360 _____ (Microsoft Corporation) C:\Windows\system32\WpcRefreshTask.dll
2019-03-13 07:59 - 2019-02-17 02:21 - 000908800 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2019-03-13 07:59 - 2019-02-17 02:21 - 000697344 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll
2019-03-13 07:59 - 2019-02-17 02:21 - 000492032 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupShim.dll
2019-03-13 07:59 - 2019-02-17 02:20 - 000933376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Sensors.dll
2019-03-13 07:59 - 2019-02-17 02:20 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\facecredentialprovider.dll
2019-03-13 07:59 - 2019-02-17 02:19 - 005972480 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2019-03-13 07:59 - 2019-02-17 02:19 - 003329536 _____ (Microsoft Corporation) C:\Windows\system32\MSAJApi.dll
2019-03-13 07:59 - 2019-02-17 02:19 - 001543680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Maps.dll
2019-03-13 07:59 - 2019-02-17 02:18 - 004297728 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2019-03-13 07:59 - 2019-02-17 02:18 - 001238016 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll
2019-03-13 07:59 - 2019-02-17 02:18 - 000856064 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll
2019-03-13 07:59 - 2019-02-17 02:17 - 002296320 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll
2019-03-13 07:59 - 2019-02-17 02:17 - 001341440 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2019-03-13 07:59 - 2019-02-17 02:14 - 000715776 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2019-03-13 07:59 - 2019-02-17 02:14 - 000450560 _____ (Microsoft Corporation) C:\Windows\system32\es.dll
2019-03-13 07:59 - 2019-02-17 02:13 - 000344064 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2019-03-13 07:59 - 2019-02-17 01:25 - 001141392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2019-03-13 07:59 - 2019-02-17 01:24 - 031619072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsRaw.dll
2019-03-13 07:59 - 2019-02-17 01:22 - 000444416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppResolver.dll
2019-03-13 07:59 - 2019-02-17 01:22 - 000149960 _____ C:\Windows\SysWOW64\InputHost.dll
2019-03-13 07:59 - 2019-02-17 01:22 - 000027664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationFrameworkPS.dll
2019-03-13 07:59 - 2019-02-17 01:20 - 000522176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2019-03-13 07:59 - 2019-02-17 01:18 - 000726544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicensingWinRT.dll
2019-03-13 07:59 - 2019-02-17 01:18 - 000386336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2019-03-13 07:59 - 2019-02-17 01:18 - 000074896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2019-03-13 07:59 - 2019-02-17 01:16 - 000505064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp_win.dll
2019-03-13 07:59 - 2019-02-17 00:58 - 001453056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2019-03-13 07:59 - 2019-02-17 00:58 - 001309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2019-03-13 07:59 - 2019-02-17 00:57 - 000763904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2019-03-13 07:59 - 2019-02-17 00:57 - 000584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll
2019-03-13 07:59 - 2019-02-17 00:57 - 000472576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2019-03-13 07:59 - 2019-02-17 00:54 - 000155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadauthhelper.dll
2019-03-13 07:59 - 2019-02-17 00:54 - 000116224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ComposableShellProxyStub.dll
2019-03-13 07:59 - 2019-02-17 00:51 - 001996800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceFlows.DataModel.dll
2019-03-13 07:59 - 2019-02-17 00:51 - 001640960 ____R (The ICU Project) C:\Windows\SysWOW64\icuin.dll
2019-03-13 07:59 - 2019-02-17 00:51 - 001158656 ____R (The ICU Project) C:\Windows\SysWOW64\icuuc.dll
2019-03-13 07:59 - 2019-02-17 00:50 - 000910336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxilconv.dll
2019-03-13 07:59 - 2019-02-17 00:50 - 000091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2019-03-13 07:59 - 2019-02-17 00:48 - 001277440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll
2019-03-13 07:59 - 2019-02-17 00:48 - 000720896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.InkControls.dll
2019-03-13 07:59 - 2019-02-17 00:47 - 000756736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingOnlineServices.dll
2019-03-13 07:59 - 2019-02-17 00:46 - 002680832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAJApi.dll
2019-03-13 07:59 - 2019-02-17 00:46 - 001312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Maps.dll
2019-03-13 07:59 - 2019-02-17 00:45 - 005279744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2019-03-13 07:59 - 2019-02-17 00:45 - 003648000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2019-03-13 07:59 - 2019-02-17 00:45 - 001259520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Phone.dll
2019-03-13 07:59 - 2019-02-17 00:45 - 000696832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Sensors.dll
2019-03-13 07:59 - 2019-02-17 00:44 - 000955392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aadtb.dll
2019-03-13 07:59 - 2019-02-17 00:44 - 000761856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll
2019-03-13 07:59 - 2019-02-17 00:44 - 000743424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NMAA.dll
2019-03-13 07:59 - 2019-02-17 00:42 - 000340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll
2019-03-13 07:59 - 2019-02-17 00:41 - 000332288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\es.dll
2019-03-13 07:59 - 2019-02-17 00:40 - 000299008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2019-03-13 07:58 - 2019-03-06 07:29 - 000414720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2019-03-13 07:58 - 2019-02-17 03:51 - 000039736 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkPS.dll
2019-03-13 07:58 - 2019-02-17 02:30 - 001357312 _____ (Microsoft Corporation) C:\Windows\system32\cdprt.dll
2019-03-13 07:58 - 2019-02-17 02:29 - 000674816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.AdaptiveCards.XamlCardRenderer.dll
2019-03-13 07:58 - 2019-02-17 02:28 - 000385024 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.PredictionUnit.dll
2019-03-13 07:58 - 2019-02-17 02:28 - 000300032 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Sets.dll
2019-03-13 07:58 - 2019-02-17 02:28 - 000250368 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SignInOptions.dll
2019-03-13 07:58 - 2019-02-17 02:28 - 000217600 _____ (Microsoft Corporation) C:\Windows\system32\msctfp.dll
2019-03-13 07:58 - 2019-02-17 02:27 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll
2019-03-13 07:58 - 2019-02-17 02:27 - 000037376 _____ (Microsoft Corporation) C:\Windows\system32\SEMgrPS.dll
2019-03-13 07:58 - 2019-02-17 02:26 - 000299008 _____ (Microsoft Corporation) C:\Windows\system32\GameBarPresenceWriter.exe
2019-03-13 07:58 - 2019-02-17 02:26 - 000173056 _____ (Microsoft Corporation) C:\Windows\system32\tdlrecover.exe
2019-03-13 07:58 - 2019-02-17 02:26 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\provpackageapidll.dll
2019-03-13 07:58 - 2019-02-17 02:26 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\POSyncServices.dll
2019-03-13 07:58 - 2019-02-17 02:26 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2019-03-13 07:58 - 2019-02-17 02:26 - 000002560 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2019-03-13 07:58 - 2019-02-17 02:25 - 000407552 _____ (Microsoft Corporation) C:\Windows\system32\CoreShellAPI.dll
2019-03-13 07:58 - 2019-02-17 02:25 - 000257536 _____ (Microsoft Corporation) C:\Windows\system32\ExSMime.dll
2019-03-13 07:58 - 2019-02-17 02:25 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\windows.internal.shellcommon.shareexperience.dll
2019-03-13 07:58 - 2019-02-17 02:25 - 000253952 _____ (Microsoft Corporation) C:\Windows\system32\FXST30.dll
2019-03-13 07:58 - 2019-02-17 02:24 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll
2019-03-13 07:58 - 2019-02-17 02:24 - 000330752 _____ (Microsoft Corporation) C:\Windows\system32\NmaDirect.dll
2019-03-13 07:58 - 2019-02-17 02:24 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\Cortana.Persona.dll
2019-03-13 07:58 - 2019-02-17 02:24 - 000237568 _____ (Microsoft Corporation) C:\Windows\system32\ComposableShellProxyStub.dll
2019-03-13 07:58 - 2019-02-17 02:24 - 000188928 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_OneCore_BatterySaver.dll
2019-03-13 07:58 - 2019-02-17 02:23 - 000647168 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2019-03-13 07:58 - 2019-02-17 02:23 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2019-03-13 07:58 - 2019-02-17 02:23 - 000321024 _____ (Microsoft Corporation) C:\Windows\system32\NotificationObjFactory.dll
2019-03-13 07:58 - 2019-02-17 02:23 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\ApproveChildRequest.exe
2019-03-13 07:58 - 2019-02-17 02:22 - 000820736 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Import.dll
2019-03-13 07:58 - 2019-02-17 02:22 - 000561152 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2019-03-13 07:58 - 2019-02-17 02:21 - 000841216 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2019-03-13 07:58 - 2019-02-17 02:19 - 000563712 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2019-03-13 07:58 - 2019-02-17 02:15 - 000438784 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll
2019-03-13 07:58 - 2019-02-17 02:15 - 000307200 _____ (Microsoft Corporation) C:\Windows\system32\MicrosoftAccountExtension.dll
2019-03-13 07:58 - 2019-02-17 02:15 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\LocationFrameworkInternalPS.dll
2019-03-13 07:58 - 2019-02-17 02:15 - 000031232 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2019-03-13 07:58 - 2019-02-17 02:13 - 000068096 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2019-03-13 07:58 - 2019-02-17 00:58 - 001892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Controls.dll
2019-03-13 07:58 - 2019-02-17 00:58 - 000938496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdprt.dll
2019-03-13 07:58 - 2019-02-17 00:56 - 000091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctfp.dll
2019-03-13 07:58 - 2019-02-17 00:55 - 000095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll
2019-03-13 07:58 - 2019-02-17 00:55 - 000024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll
2019-03-13 07:58 - 2019-02-17 00:55 - 000002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2019-03-13 07:58 - 2019-02-17 00:54 - 000212992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GameBarPresenceWriter.exe
2019-03-13 07:58 - 2019-02-17 00:54 - 000110080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEDataLayerHelpers.dll
2019-03-13 07:58 - 2019-02-17 00:54 - 000051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ContactActivation.dll
2019-03-13 07:58 - 2019-02-17 00:53 - 000319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreShellAPI.dll
2019-03-13 07:58 - 2019-02-17 00:53 - 000243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Cortana.Persona.dll
2019-03-13 07:58 - 2019-02-17 00:53 - 000124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ngckeyenum.dll
2019-03-13 07:58 - 2019-02-17 00:52 - 000517632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll
2019-03-13 07:58 - 2019-02-17 00:52 - 000256512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NmaDirect.dll
2019-03-13 07:58 - 2019-02-17 00:51 - 000480768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetworkCollectionAgent.dll
2019-03-13 07:58 - 2019-02-17 00:50 - 000583680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Import.dll
2019-03-13 07:58 - 2019-02-17 00:50 - 000356864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2019-03-13 07:58 - 2019-02-17 00:49 - 000769536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl
2019-03-13 07:58 - 2019-02-17 00:49 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupShim.dll
2019-03-13 07:58 - 2019-02-17 00:49 - 000282624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NotificationObjFactory.dll
2019-03-13 07:58 - 2019-02-17 00:43 - 000044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationFrameworkInternalPS.dll
2019-03-13 07:58 - 2019-02-17 00:41 - 000507904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll
2019-03-13 07:58 - 2019-02-17 00:40 - 000028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdProxy.dll

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-03-24 20:13 - 2018-11-05 14:30 - 000000000 ____D C:\Users\LukesCZ\AppData\LocalLow\Mozilla
2019-03-24 18:44 - 2017-12-03 00:07 - 000000000 ____D C:\Windows\system32\SleepStudy
2019-03-24 17:38 - 2018-11-05 14:23 - 000004214 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{52EFA077-B8FC-42FE-A233-A7598EA44E78}
2019-03-24 15:07 - 2018-02-16 13:32 - 000000000 ____D C:\Program Files\trend micro
2019-03-24 13:55 - 2017-12-03 13:33 - 000000000 ____D C:\Users\LukesCZ\AppData\LocalLow\Adobe
2019-03-24 13:55 - 2017-12-03 13:28 - 000000000 ____D C:\Users\LukesCZ\AppData\Local\Adobe
2019-03-24 13:55 - 2017-12-03 00:20 - 000000000 ____D C:\Users\LukesCZ\AppData\Roaming\Adobe
2019-03-24 13:53 - 2017-12-03 13:25 - 000000000 ____D C:\Program Files (x86)\Adobe
2019-03-24 13:52 - 2017-12-03 13:25 - 000000000 ____D C:\ProgramData\Adobe
2019-03-24 12:25 - 2017-12-03 00:41 - 000000000 ____D C:\ProgramData\NVIDIA
2019-03-24 12:17 - 2017-09-29 14:44 - 000000000 ____D C:\Windows\INF
2019-03-24 12:08 - 2018-07-04 11:14 - 000000000 ____D C:\Users\LukesCZ\AppData\Roaming\FileZilla
2019-03-24 12:00 - 2018-07-04 11:14 - 000000000 ____D C:\Users\LukesCZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2019-03-24 12:00 - 2018-07-04 11:14 - 000000000 ____D C:\Program Files\FileZilla FTP Client
2019-03-24 11:13 - 2018-06-19 18:53 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-24 11:01 - 2017-12-03 01:48 - 000000165 _____ C:\Users\LukesCZ\AppData\Roaming\sp_data.sys
2019-03-24 11:00 - 2017-12-03 00:38 - 000000000 __SHD C:\Users\LukesCZ\IntelGraphicsProfiles
2019-03-24 00:59 - 2017-09-29 14:46 - 000000000 ___HD C:\Program Files\WindowsApps
2019-03-24 00:59 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\DeliveryOptimization
2019-03-24 00:59 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\AppReadiness
2019-03-24 00:56 - 2018-07-13 06:56 - 000000000 ____D C:\Program Files\rempl
2019-03-24 00:55 - 2017-12-03 17:18 - 000000000 ____D C:\Program Files (x86)\Steam
2019-03-24 00:53 - 2017-12-03 02:27 - 000000000 ____D C:\Program Files (x86)\Google
2019-03-24 00:51 - 2017-12-03 00:21 - 000005686 _____ C:\Windows\system32\PerfStringBackup.INI
2019-03-24 00:51 - 2017-09-30 15:31 - 002010176 _____ C:\Windows\system32\perfh005.dat
2019-03-24 00:51 - 2017-09-30 15:31 - 000524658 _____ C:\Windows\system32\perfc005.dat
2019-03-24 00:47 - 2017-12-03 00:18 - 000000000 ____D C:\Users\LukesCZ
2019-03-24 00:47 - 2017-12-03 00:07 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-03-24 00:45 - 2018-10-24 19:11 - 000000000 ____D C:\Users\Maminka
2019-03-24 00:45 - 2018-02-17 20:30 - 000000000 ____D C:\Windows\system32\Drivers\wd
2019-03-24 00:45 - 2017-09-29 14:46 - 000000000 ___SD C:\Windows\system32\UNP
2019-03-24 00:45 - 2017-09-29 14:46 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2019-03-24 00:45 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2019-03-24 00:45 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\system32\setup
2019-03-24 00:45 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\PolicyDefinitions
2019-03-24 00:45 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\bcastdvr
2019-03-24 00:33 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\registration
2019-03-19 23:51 - 2017-12-03 03:11 - 000000000 ____D C:\Users\LukesCZ\AppData\Local\CrashDumps
2019-03-19 21:44 - 2018-07-04 11:14 - 000000000 ____D C:\Users\LukesCZ\AppData\Local\FileZilla
2019-03-15 16:49 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\rescache
2019-03-15 11:31 - 2017-09-29 14:46 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-03-15 11:27 - 2018-10-31 21:39 - 000000000 ____D C:\Program Files\Microsoft Office
2019-03-14 20:24 - 2018-09-16 09:52 - 000000000 ____D C:\Users\LukesCZ\Desktop\Manželka
2019-03-13 17:45 - 2017-12-03 00:20 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-03-13 17:45 - 2017-12-03 00:20 - 000000000 ___RD C:\Users\LukesCZ\3D Objects
2019-03-13 17:41 - 2017-12-03 00:06 - 005019728 _____ C:\Windows\system32\FNTCACHE.DAT
2019-03-13 17:38 - 2017-09-29 09:45 - 000786432 _____ C:\Windows\system32\config\BBI
2019-03-13 17:36 - 2017-09-29 14:46 - 000000000 ___SD C:\Windows\SysWOW64\F12
2019-03-13 17:36 - 2017-09-29 14:46 - 000000000 ___SD C:\Windows\system32\F12
2019-03-13 17:36 - 2017-09-29 14:46 - 000000000 ___RD C:\Windows\PrintDialog
2019-03-13 17:36 - 2017-09-29 14:46 - 000000000 ___RD C:\Program Files\Windows Defender
2019-03-13 17:36 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\TextInput
2019-03-13 17:36 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\system32\appraiser
2019-03-13 17:36 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\ShellExperiences
2019-03-13 17:36 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\Provisioning
2019-03-13 17:36 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-03-13 17:36 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-03-13 17:36 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-03-13 08:20 - 2017-09-29 14:37 - 000000000 ____D C:\Windows\CbsTemp
2019-03-13 08:11 - 2018-12-12 09:43 - 000804120 _____ C:\Windows\SysWOW64\locale.nls
2019-03-13 08:10 - 2018-12-12 09:43 - 000804120 _____ C:\Windows\system32\locale.nls
2019-03-13 08:10 - 2017-09-29 14:41 - 000162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2019-03-13 07:57 - 2017-12-03 13:49 - 000000000 ____D C:\Windows\system32\MRT
2019-03-13 07:45 - 2017-12-03 13:48 - 127411920 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-03-13 07:34 - 2018-07-23 22:08 - 000004658 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-03-13 07:34 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-03-13 07:34 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\system32\Macromed
2019-03-09 17:17 - 2017-12-15 16:14 - 000000000 ____D C:\Users\LukesCZ\AppData\Roaming\Clip2Net
2019-03-09 16:24 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-03-03 17:57 - 2018-11-14 07:53 - 000835480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-03-03 17:57 - 2018-11-14 07:53 - 000179608 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-03-01 22:02 - 2017-12-03 00:20 - 000000000 ____D C:\Users\LukesCZ\AppData\Local\Packages
2019-02-25 14:57 - 2018-02-16 01:19 - 000000132 _____ C:\Users\LukesCZ\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2019-02-25 14:50 - 2017-12-03 00:22 - 000000000 ____D C:\Users\LukesCZ\AppData\Local\NVIDIA

==================== Files in the root of some directories =======

2018-02-16 01:19 - 2019-02-25 14:57 - 000000132 _____ () C:\Users\LukesCZ\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2017-12-03 01:48 - 2019-03-24 11:01 - 000000165 _____ () C:\Users\LukesCZ\AppData\Roaming\sp_data.sys
2018-07-17 07:37 - 2018-08-16 07:11 - 000005632 _____ () C:\Users\LukesCZ\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-10-01 06:01 - 2018-10-01 06:01 - 000000000 _____ () C:\Users\LukesCZ\AppData\Local\oobelibMkey.log
2018-01-19 17:21 - 2018-01-19 17:21 - 000000017 _____ () C:\Users\LukesCZ\AppData\Local\resmon.resmoncfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\SysWOW64\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2019-03-24 11:46

==================== End of FRST.txt ============================
Additional:

Kód: Vybrat vše

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by LukesCZ (24-03-2019 20:23:04)
Running from C:\Users\LukesCZ\Desktop
Windows 10 Home Version 1709 16299.1029 (X64) (2017-12-02 23:14:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3117900324-340810039-3928290035-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3117900324-340810039-3928290035-503 - Limited - Disabled)
Guest (S-1-5-21-3117900324-340810039-3928290035-501 - Limited - Disabled)
LukesCZ (S-1-5-21-3117900324-340810039-3928290035-1001 - Administrator - Enabled) => C:\Users\LukesCZ
Maminka (S-1-5-21-3117900324-340810039-3928290035-1002 - Limited - Enabled) => C:\Users\Maminka
WDAGUtilityAccount (S-1-5-21-3117900324-340810039-3928290035-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.156 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Aktualizace NVIDIA 35.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 35.0.0.0 - NVIDIA Corporation) Hidden
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS)
AVS Video Editor 7.4.1 (HKLM-x32\...\AVS Video Editor_is1) (Version: 7.4.1.281 - Online Media Technologies Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform)
Clip2net version 2.3.3.316 (HKLM-x32\...\Clip2Net_is1) (Version: 2.3.3.316 - Clip2net)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 418.91 - NVIDIA Corporation) Hidden
FileZilla Client 3.41.2 (HKU\S-1-5-21-3117900324-340810039-3928290035-1001\...\FileZilla Client) (Version: 3.41.2 - Tim Kosse)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Earth Pro (HKLM-x32\...\{9D524A1E-F2FC-444D-B12A-7592CEB56EB5}) (Version: 7.3.2.5776 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.86 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.0.0.11" - Rockstar Games)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Microsoft .NET Compact Framework 3.5 (HKLM-x32\...\{291B3A3B-F808-45B8-8113-DF232FCB6C82}) (Version: 3.5.7283 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.11328.20158 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 18.151.0729.0013 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{4ffaf7b8-a84a-4813-840c-8b1f1343ae54}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{dd1e9bde-2ad6-4e92-8c07-7d4723eab8b8}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25711 (HKLM-x32\...\{1bffbfc8-3cfb-4b1d-aca9-64f1c7c9f811}) (Version: 14.12.25711.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25711 (HKLM-x32\...\{f381fb0a-b38e-44ab-bca5-7f651c8c6b93}) (Version: 14.12.25711.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 56.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 56.0.2 (x86 cs)) (Version: 56.0.2 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.13 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.17.0.126 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.17.0.126 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 418.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 418.91 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20158 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20158 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.11328.20158 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 418.91 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 418.91 - NVIDIA Corporation) Hidden
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.17508 - Kakao Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18052.28 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18052.28 - Samsung Electronics Co., Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Subway Simulator Prague Metro (HKLM-x32\...\Subway Simulator Prague Metro) (Version: 2.0.2 - Wapp)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{FBA3961B-D1DF-493C-BC1F-E67D3B832895}) (Version: 2.56.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 45.1 - Ubisoft)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Základní software zařízení HP DeskJet 4530 series (HKLM\...\{BC36C273-E8B5-4673-826C-13D8CA9458F6}) (Version: 40.11.1122.1796 - HP Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3117900324-340810039-3928290035-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-3117900324-340810039-3928290035-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-02-06] (NVIDIA Corporation -> NVIDIA Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0162CE10-275C-4E8D-BF8C-012F6739FC9D} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0569D14F-B3D4-4CA5-BED5-2CAD7F2082F8} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3117900324-340810039-3928290035-1002 => C:\Users\LukesCZ\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {05D72C04-AA6B-4EF3-AF8B-D25343D2336C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {09B52EC6-4FA7-437E-A94A-62CEBBB0BDB3} - System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-KABR0E0-Maminka => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {0A58F23C-2422-48D7-BBFB-AAAA1C29B5B4} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0BCE4449-C252-4F42-AD23-D988C74217A7} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {0DFFB593-53CC-4875-9E61-9626E7B61FBC} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {13630CDE-AEF4-47EC-BCA9-5A8CE3187CC8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {158C7908-E5C1-41D1-BC22-14F9CD47277C} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1802B1C3-46A2-4523-AE8A-A94F1EF6D59E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {1DA478B6-3B9C-42EF-8734-FC887F5C32A4} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {23D36AB6-59B7-4BCE-A862-020B640D5150} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {24DBC234-84BA-4C96-8AED-097DBEB8BC07} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {24DDE5D3-8222-42EE-AF5E-85CDE05FCA59} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2AA7897C-4D48-4F2A-AE18-0CAB372E0210} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2BCB4E0B-30DC-487B-B35A-9DCB11E0CA35} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {35847E64-6F27-4502-9728-AC6FDA5AE7AF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {3A414D04-FF62-4E73-9111-42326D6B5B62} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {3D870F54-F11D-464B-A694-6E0B66A44390} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {4841DD14-5BAE-4F6D-AD6C-14E5B2D666D2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {5CE74652-45A0-4E77-8B91-7799B882F095} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ASUS) [File not signed]
Task: {6476DD96-F4C9-42C2-B328-A4148A31488F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {6A8456F4-13CA-4115-A4E7-AAF1E32F4B63} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_156_Plugin.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {7DA80204-E235-41C7-BCA9-6DD1BAE95955} - System32\Tasks\S-1-5-21-3117900324-340810039-3928290035-1001\DataSenseLiveTileTask => C:\Windows\System32\DataUsageLiveTileTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {8611A604-DEED-4FD9-BD5F-925907F52660} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {874D5255-C94E-4694-B067-4A991E8F70BF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {981B07E0-4C26-4A42-B4DB-9C84895383AD} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {A70F68DA-C940-4F66-8E6B-F244FC688044} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {ACD014C1-D3B2-47FD-B0BB-BFE244FF7A36} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {B1A1F0B2-31B6-4C3E-B393-8A1869A11523} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B5921319-D37B-4B5A-9E86-93D24372DF12} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BFC4EDB1-697B-4B6D-B1DF-8C1A57E8A783} - System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-KABR0E0-LukesCZ => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {CDABAEF3-8DA2-4C75-99BC-A75FF60A9902} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {F048A25A-6A82-411A-BE90-DD675DCC128E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {F13D4715-57BB-4E2E-A398-5BEE04905B87} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FDAEE764-EEDE-4320-AF3A-9ED8EC62D266} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FF9730C8-5AE0-4FBF-9E51-1875CBBC058E} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2017-09-29 14:40 - 2018-04-12 00:33 - 001164288 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\UniDrvUI.dll
2015-08-25 09:40 - 2015-08-25 09:40 - 000055296 _____ (ASUS) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
2015-08-25 09:40 - 2015-08-25 09:40 - 000027648 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-08-25 09:40 - 2015-08-25 09:40 - 000164864 _____ (ASUSTeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ColorU.dll
2015-08-25 09:40 - 2015-08-25 09:40 - 001680384 _____ (ASUS TeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\ApplyLUT.dll
2015-08-25 09:40 - 2015-08-25 09:40 - 000124928 _____ () [File not signed] C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-08-25 09:40 - 2015-08-25 09:40 - 000178688 _____ (ASUS TeK Computer Inc.) [File not signed] C:\Program Files (x86)\ASUS\Splendid\GenLUT.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\LukesCZ\Desktop\gaba.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\LukesCZ\Desktop\gaba.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-12-03 13:36 - 2018-02-16 19:02 - 000000753 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1       localhost 

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3117900324-340810039-3928290035-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\LukesCZ\Pictures\201001A0\16039392376_9425cf9528_o.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKU\S-1-5-21-3117900324-340810039-3928290035-1001\...\StartupApproved\Run: => "OneDrive"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{279F360C-2539-4786-B754-261D51B921E4}C:\users\lukescz\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lukescz\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{A06DBFFD-1122-4B4D-A100-BB9B909678F2}C:\users\lukescz\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lukescz\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{57D695C8-E64A-426A-9A86-F52460D926AF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{6D37716B-6F99-4300-A945-15482A80C511}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{1E52DCAD-AD25-4F5B-BE1F-3A27AC4AD830}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CA0E0D11-878B-4335-8985-0DD547DDDC7A}] => (Allow) LPort=2869
FirewallRules: [{B8953B76-0C29-4F26-A6F5-514FE5EB1DA9}] => (Allow) LPort=1900
FirewallRules: [{ED1291E0-1277-4C6D-8DBF-03FE28BCA329}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{EF29DEFB-B01C-48D2-8B9C-76F76F8F2E4C}] => (Allow) LPort=5357
FirewallRules: [{FE39AC65-A3E6-4E3F-A8C1-CEA039AACE56}] => (Allow) C:\Program Files\HP\HP DeskJet 4530 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{15BDDC09-5860-4BA2-A097-DC11BC3E1492}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{375A82DB-8FCC-4FDC-B6D3-7DF8FBEED506}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F18453A7-168B-4C6D-9AD1-ED46BEA0ECB7}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{F4032D36-AF6A-4E62-AFEC-599F7E422A4A}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{20D12FDC-ABFD-4E14-91E5-33BDA47766DD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{CF0425C0-46B7-4008-8D1A-CF6890F7073A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{1748F557-4EC1-48DD-84A1-7BE02FE27C27}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stalker Call of Pripyat\bin\xrEngine.exe (GSC Game World -> GSC Game World)
FirewallRules: [{D74C85AA-2189-43FB-B2CF-3B7087B19B87}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stalker Call of Pripyat\bin\xrEngine.exe (GSC Game World -> GSC Game World)
FirewallRules: [{02E57A87-CD40-4D1B-A4EB-5DBE52B87EB6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BE21DF8C-2C3C-4673-A158-68FE17654267}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{865B1196-12FF-4A51-A63A-12B2BC34D237}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6F095C3D-4F24-4E45-B2D8-B8DF82A9E3A9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SleepingDogsDefinitiveEdition\sdhdship.exe (SQUARE ENIX LIMITED) [File not signed]
FirewallRules: [{909B030D-84E9-4BD1-9EAC-A3DADF857DFE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SleepingDogsDefinitiveEdition\sdhdship.exe (SQUARE ENIX LIMITED) [File not signed]
FirewallRules: [{4F1BEB68-CBB3-4DFD-AAC3-DA7BA374EC6D}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{BCC2350A-91DD-4EDF-874B-0875C5417DA8}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{C42BD2B8-8228-4297-B0D7-59C3372B0B53}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metro 2033\metro2033.exe (THQ, Inc. -> 4A Games)
FirewallRules: [{76CD1B7C-7B73-4038-9D10-030218B0F0F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metro 2033\metro2033.exe (THQ, Inc. -> 4A Games)
FirewallRules: [{ECCDDA04-DB1D-49FE-9899-A313AB3EB73D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duke Nukem Forever\System\DukeForever.exe () [File not signed]
FirewallRules: [{0EF9580A-24E9-46DD-B7D8-2157C42FDB9B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Duke Nukem Forever\System\DukeForever.exe () [File not signed]
FirewallRules: [{790E61F8-C825-428B-9F67-200EB55611D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kona\Kona.exe () [File not signed]
FirewallRules: [{F499F952-786E-485A-9A5B-6D623E7E19C2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Kona\Kona.exe () [File not signed]
FirewallRules: [{46C46605-1A26-4672-B991-E6F3B173F177}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metro Last Light\MetroLL.exe (Koch Media GmbH -> 4A Games)
FirewallRules: [{6B095600-9772-47C2-B7EB-8BCE465AE8BC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Metro Last Light\MetroLL.exe (Koch Media GmbH -> 4A Games)
FirewallRules: [{6FDA4959-3A7E-4239-8894-6F6C9046BE9B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\KHOLAT\Kholat.exe () [File not signed]
FirewallRules: [{F2CCB1C6-9893-4A75-96B3-B6AB6E57CAB7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\KHOLAT\Kholat.exe () [File not signed]
FirewallRules: [TCP Query User{7BF355C5-7A46-475D-B984-613C1538809D}C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe (IMGN.PRO) [File not signed]
FirewallRules: [UDP Query User{2FB6ACCA-9970-47C8-8173-3C7A2E366CE7}C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\kholat\kholat\binaries\win64\kholat-win64-shipping.exe (IMGN.PRO) [File not signed]
FirewallRules: [{9DD0AA89-44E5-4F25-BDE7-710CFB3E5D8E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{44FF3056-6274-47A7-8E7D-92529310C374}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B444521C-4781-4F8B-AD21-B2530BE4C043}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{13A0F644-5475-4A08-8E35-067A96E954A6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0CD872CC-F05F-48EA-AA4A-7AE0041C5B23}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{037A32DF-6041-409B-8A6D-8DB92AE207EF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{B339CAE5-459A-4E76-A7E4-385D439A97E0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{EEA7A560-C89E-4948-9185-DBCDCD9F2E28}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{9E9FE391-6898-40E7-8DA3-39557E105ADB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)

==================== Restore Points =========================

24-03-2019 18:35:08 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/24/2019 12:47:16 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3568,R,0) SRUJet: Při otevírání souboru protokolu C:\Windows\system32\SRU\SRU08671.log došlo k chybě -1811 (0xfffff8ed).

Error: (03/20/2019 09:09:42 PM) (Source: COM) (EventID: 10031) (User: )
Description: Při zrušení zařazení vlastního zařazeného objektu byla provedena kontrola zásad zrušení zařazení a třída {41FD88F7-F295-4D39-91AC-A85F3149A05B} byla odmítnuta.

Error: (03/20/2019 09:09:42 PM) (Source: COM) (EventID: 10031) (User: )
Description: Při zrušení zařazení vlastního zařazeného objektu byla provedena kontrola zásad zrušení zařazení a třída {95CABCC9-BC57-4C12-B8DF-BA193232AA01} byla odmítnuta.

Error: (03/20/2019 09:09:42 PM) (Source: COM) (EventID: 10031) (User: )
Description: Při zrušení zařazení vlastního zařazeného objektu byla provedena kontrola zásad zrušení zařazení a třída {95CABCC9-BC57-4C12-B8DF-BA193232AA01} byla odmítnuta.

Error: (03/19/2019 06:01:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: PDFREFLOW.EXE, verze: 16.0.11328.20158, časové razítko: 0x5c7f99af
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.16299.1004, časové razítko: 0x95ebc63a
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000006b07e
ID chybujícího procesu: 0xb50
Čas spuštění chybující aplikace: 0x01d4de755b383ad9
Cesta k chybující aplikaci: C:\Program Files\Microsoft Office\Root\Office16\PDFREFLOW.EXE
Cesta k chybujícímu modulu: C:\Windows\System32\ucrtbase.dll
ID zprávy: 2d883f83-0ffd-4d85-a6d7-cff2cf7a1697
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (03/19/2019 06:01:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: PDFREFLOW.EXE, verze: 16.0.11328.20158, časové razítko: 0x5c7f99af
Název chybujícího modulu: ucrtbase.dll, verze: 10.0.16299.1004, časové razítko: 0x95ebc63a
Kód výjimky: 0xc0000409
Posun chyby: 0x000000000006b07e
ID chybujícího procesu: 0x1ea4
Čas spuštění chybující aplikace: 0x01d4de755227e814
Cesta k chybující aplikaci: C:\Program Files\Microsoft Office\Root\Office16\PDFREFLOW.EXE
Cesta k chybujícímu modulu: C:\Windows\System32\ucrtbase.dll
ID zprávy: ab9d6a58-859d-4736-a018-a110c56dc332
Úplný název chybujícího balíčku: 
ID aplikace související s chybujícím balíčkem:

Error: (03/18/2019 08:26:49 PM) (Source: COM) (EventID: 10031) (User: )
Description: Při zrušení zařazení vlastního zařazeného objektu byla provedena kontrola zásad zrušení zařazení a třída {95CABCC9-BC57-4C12-B8DF-BA193232AA01} byla odmítnuta.

Error: (03/18/2019 08:26:48 PM) (Source: COM) (EventID: 10031) (User: )
Description: Při zrušení zařazení vlastního zařazeného objektu byla provedena kontrola zásad zrušení zařazení a třída {95CABCC9-BC57-4C12-B8DF-BA193232AA01} byla odmítnuta.


System errors:
=============
Error: (03/24/2019 07:00:08 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KABR0E0)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 a APPID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 uživateli DESKTOP-KABR0E0\LukesCZ (SID: S-1-5-21-3117900324-340810039-3928290035-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.Windows.ContentDeliveryManager_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy – SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/24/2019 03:01:05 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-KABR0E0)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 a APPID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 uživateli DESKTOP-KABR0E0\LukesCZ (SID: S-1-5-21-3117900324-340810039-3928290035-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Microsoft.Windows.ContentDeliveryManager_10.0.16299.1004_neutral_neutral_cw5n1h2txyewy – SID (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (03/24/2019 02:29:56 PM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (03/24/2019 02:28:07 PM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (03/24/2019 02:26:04 PM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (03/24/2019 02:24:03 PM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (03/24/2019 02:22:17 PM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (03/24/2019 02:19:21 PM) (Source: Disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.


Windows Defender:
===================================
Date: 2019-03-24 18:13:25.995
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {24BA0ADC-FB98-4DBD-97A0-36443518353C}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-03-24 18:07:33.892
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {DB5D6C5F-15C8-4967-B6CB-B45B81C2E3F0}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-03-24 17:58:24.655
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {84C83119-2E72-455E-958A-9F26B2767340}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-03-24 15:01:10.129
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {CF0FAB73-3D69-480F-B502-FCA36CAF8692}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-03-24 14:38:40.993
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {163EC194-0FFB-493D-918C-FBD8949C5D99}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-03-24 11:03:38.240
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.291.164.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.15800.1
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře. 

Date: 2019-03-24 00:47:17.973
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst: Aktuální
Kód chyby: 0x80070002
Popis chyby: Systém nemůže nalézt uvedený soubor. 
Verze podpisu: 0.0.0.0;0.0.0.0
Verze modulu: 0.0.0.0

Date: 2019-03-09 16:12:54.038
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.289.778.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.15700.9
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře. 

Date: 2019-01-13 07:56:23.882
Description: 
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu: 
Předchozí verze podpisu: 1.283.2852.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu: 
Předchozí verze modulu: 1.1.15500.2
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře. 

Date: 2018-12-21 17:03:05.229
Description: 
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Windows Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Při přístupu
Kód chyby: 0x80004005
Popis chyby: Nespecifikovaná chyba 
Důvod: Ovladač filtru přeskočil prohledávání položek a je v režimu průchodu. Příčinou může být nízký stav prostředků.

==================== Memory info =========================== 

Processor: Intel(R) Celeron(R) CPU N2940 @ 1.83GHz
Percentage of memory in use: 61%
Total physical RAM: 3982.3 MB
Available physical RAM: 1526.68 MB
Total Virtual: 6798.3 MB
Available Virtual: 2880.86 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:371.8 GB) (Free:145.04 GB) NTFS
Drive d: (Data) (Fixed) (Total:542.8 GB) (Free:445.42 GB) NTFS

\\?\Volume{3e2c8605-0937-412e-b6fa-85c14975b309}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
\\?\Volume{76ed52a3-4a48-4c34-84cc-b79bae23a568}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.59 GB) NTFS
\\?\Volume{1c64f485-a19c-4c55-bf14-da6bc0a4a2d1}\ () (Fixed) (Total:0.8 GB) (Free:0.45 GB) NTFS
\\?\Volume{c78a1868-d114-4c1e-a563-c648689bc4b5}\ (Restore) (Fixed) (Total:15.01 GB) (Free:4.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 0D9B35B3)

Partition: GPT.

==================== End of Addition.txt ============================
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118274
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu logu

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
HKU\S-1-5-21-3117900324-340810039-3928290035-1001\...\Run: [AdobeBridge] => [X]
SearchScopes: HKU\S-1-5-21-3117900324-340810039-3928290035-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\Users\LukesCZ\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {13630CDE-AEF4-47EC-BCA9-5A8CE3187CC8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {874D5255-C94E-4694-B067-4A991E8F70BF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
AlternateDataStreams: C:\Users\LukesCZ\Desktop\gaba.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\LukesCZ\Desktop\gaba.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
M.Lukes
Návštěvník
Návštěvník
Příspěvky: 89
Registrován: 23 črc 2012 01:47

Re: Prosím o kontrolu logu

#7 Příspěvek od M.Lukes »

Kód: Vybrat vše

Fix result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by LukesCZ (24-03-2019 21:47:09) Run:1
Running from C:\Users\LukesCZ\Desktop
Loaded Profiles: LukesCZ (Available Profiles: LukesCZ & Maminka)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-3117900324-340810039-3928290035-1001\...\Run: [AdobeBridge] => [X]
SearchScopes: HKU\S-1-5-21-3117900324-340810039-3928290035-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
C:\Users\LukesCZ\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {13630CDE-AEF4-47EC-BCA9-5A8CE3187CC8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {874D5255-C94E-4694-B067-4A991E8F70BF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
AlternateDataStreams: C:\Users\LukesCZ\Desktop\gaba.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\LukesCZ\Desktop\gaba.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-3117900324-340810039-3928290035-1001\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge" => removed successfully
"HKU\S-1-5-21-3117900324-340810039-3928290035-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
C:\Users\LukesCZ\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{13630CDE-AEF4-47EC-BCA9-5A8CE3187CC8}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{13630CDE-AEF4-47EC-BCA9-5A8CE3187CC8}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{874D5255-C94E-4694-B067-4A991E8F70BF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{874D5255-C94E-4694-B067-4A991E8F70BF}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
C:\Users\LukesCZ\Desktop\gaba.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS removed successfully
C:\Users\LukesCZ\Desktop\gaba.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 11821056 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 43299039 B
Java, Flash, Steam htmlcache => 369152620 B
Windows/system/drivers => 4528631 B
Edge => 9728 B
Chrome => 177674 B
Firefox => 381420297 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 3712 B
LukesCZ => 54323520 B
Maminka => 61430836 B

RecycleBin => 1280 B
EmptyTemp: => 883.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:48:32 ====
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118274
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu logu

#8 Příspěvek od Rudy »

Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
M.Lukes
Návštěvník
Návštěvník
Příspěvky: 89
Registrován: 23 črc 2012 01:47

Re: Prosím o kontrolu logu

#9 Příspěvek od M.Lukes »

Mám znovu poslat log z rsit?
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118274
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu logu

#10 Příspěvek od Rudy »

Není třeba, fixlog mi řekne, co bylo smazáno. Spíš bych chtěl vědět, zda se stav zlepšïl.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
M.Lukes
Návštěvník
Návštěvník
Příspěvky: 89
Registrován: 23 črc 2012 01:47

Re: Prosím o kontrolu logu

#11 Příspěvek od M.Lukes »

Aha, dobře :) Zlepšil se, je o něco rychlejší a vypadá vše OK. Mockrát děkuji :)
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118274
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Prosím o kontrolu logu

#12 Příspěvek od Rudy »

To jsem rád. Nemáte zač! :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Zamčeno

Zpět na „Řešení problémů, logy“