poprosím o kontrolu logu

[Tony182]

Dobrý den,
poprosil bych o kontrolu logu, počítač je zasekaný, někdy bývá zbytečně vytížený disk, pomalá odezva.

Před vytvořením logu byl počítač prohlednut a vyčištěn programy MBAM (1 nález), ADWcleaner (i v nouzovém režimu) (40 nálezů), Eset security online scaner (4 nálezy), Defender...



Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
Ran by 1 (administrator) on LAPTOP-17EN536M (03-04-2019 10:30:47)
Running from C:\Users\1\Desktop
Loaded Profiles: 1 (Available Profiles: defaultuser0 & 1)
Platform: Windows 10 Home Version 1809 17763.404 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\igfxCUIService.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\IntelCpHeciSvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1902.2-0\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\igfxEM.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAgent.exe
(Acer Incorporated -> ) C:\OEM\Preload\FubTool\FubTool.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QALockHandler.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\QAAdminAgent.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\igfxext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(TomTom International BV -> TomTom) C:\Users\1\Desktop\MyDrive Connect\TomTom MyDrive Connect.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.150\Nss.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Google LLC -> Google) C:\Users\1\AppData\Local\Google\Chrome\User Data\SwReporter\39.195.200.3\software_reporter_tool.exe
(Google LLC -> Google) C:\Users\1\AppData\Local\Google\Chrome\User Data\SwReporter\39.195.200.3\software_reporter_tool.exe
(Google LLC -> Google) C:\Users\1\AppData\Local\Google\Chrome\User Data\SwReporter\39.195.200.3\software_reporter_tool.exe
(Google LLC -> Google) C:\Users\1\AppData\Local\Google\Chrome\User Data\SwReporter\39.195.200.3\software_reporter_tool.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKU\S-1-5-21-2656566681-3611854416-2476034222-1001\...\Run: [MyDriveConnect.exe] => C:\Users\1\Desktop\MyDrive Connect\TomTom MyDrive Connect.exe [2145000 2019-01-15] (TomTom International BV -> TomTom)
HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\Installer\chrmstp.exe [2019-04-02] (Google LLC -> Google Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{95add87d-6c51-4ffe-8231-e2468e1e86e8}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{b8ffa6df-27d1-458d-b6a4-2992e51076dd}: [DhcpNameServer] 192.168.8.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.gmx.com/start?src=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=cz&p_tsrc=301ssg01&p_w=y1w34
HKU\S-1-5-21-2656566681-3611854416-2476034222-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
SearchScopes: HKLM -> DefaultScope {4845E05A-0E5E-4236-968C-5C1C3853638F} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=cz&p_tsrc=301ssg01&p_w=y1w33&q={searchTerms}
SearchScopes: HKLM -> {4845E05A-0E5E-4236-968C-5C1C3853638F} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=cz&p_tsrc=301ssg01&p_w=y1w33&q={searchTerms}
SearchScopes: HKLM -> {c2b8e594-d284-ef0b-2c66-48a9c98914bc} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=cz&p_tsrc=301ssg01&p_w=y1w34&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {4845E05A-0E5E-4236-968C-5C1C3853638F} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=cz&p_tsrc=301ssg01&p_w=y1w33&q={searchTerms}
SearchScopes: HKLM-x32 -> {4845E05A-0E5E-4236-968C-5C1C3853638F} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=cz&p_tsrc=301ssg01&p_w=y1w33&q={searchTerms}
SearchScopes: HKLM-x32 -> {c2b8e594-d284-ef0b-2c66-48a9c98914bc} URL = hxxps://search.gmx.com/web/result?origin=p_jkld_pl&p=jkld&p_brw=ie&p_mkt=cz&p_tsrc=301ssg01&p_w=y1w34&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2656566681-3611854416-2476034222-1001 -> {B590CCB1-9E04-478B-8824-35CB521ABEB5} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_37180

FireFox:
========
FF DefaultProfile: n11zh5xj.default
FF ProfilePath: C:\Users\1\AppData\Roaming\Mozilla\Firefox\Profiles\n11zh5xj.default [2019-04-02]
FF Homepage: Mozilla\Firefox\Profiles\n11zh5xj.default -> hxxps://www.google.com/
FF NewTab: Mozilla\Firefox\Profiles\n11zh5xj.default -> hxxp://securedsearch.lavasoft.com/?pr=vmn&id=webcompa&ent=hp_WCYID10419__181220
FF Extension: (Czech (CZ) Language Pack) - C:\Users\1\AppData\Roaming\Mozilla\Firefox\Profiles\n11zh5xj.default\Extensions\langpack-cs@firefox.mozilla.org [2018-06-19] [Legacy]
FF Extension: (Mozilla Partner Defaults) - C:\Users\1\AppData\Roaming\Mozilla\Firefox\Profiles\n11zh5xj.default\Extensions\partnerdefaults@mozilla.com [2018-06-19] [Legacy]
FF Extension: (Avast SafePrice) - C:\Users\1\AppData\Roaming\Mozilla\Firefox\Profiles\n11zh5xj.default\Extensions\sp@avast.com.xpi [2018-07-29] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/sp/update.json]
FF Extension: (Avast Online Security) - C:\Users\1\AppData\Roaming\Mozilla\Firefox\Profiles\n11zh5xj.default\Extensions\wrc@avast.com.xpi [2018-07-29]
FF Extension: (Czech (CZ) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-cs@firefox.mozilla.org [2017-05-17] [Legacy]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2017-05-17] [Legacy]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-04-02] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-04-02] (Google Inc -> Google LLC)
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR Profile: C:\Users\1\AppData\Local\Google\Chrome\User Data\Default [2019-04-03]
CHR Extension: (Prezentace) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-07-29]
CHR Extension: (Dokumenty) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-07-29]
CHR Extension: (Disk Google) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-07-29]
CHR Extension: (YouTube) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-07-29]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2019-02-05]
CHR Extension: (Tabulky) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-07-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-18]
CHR Extension: (Tlačítko Google +1) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgoepmocgafhnchmokaimcmlojpnlkhp [2019-03-06]
CHR Extension: (Google Maps Platform API Checker) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlikepnkghhlnkgeejmlkfeheihlehne [2019-03-06]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-07-29]
CHR Extension: (Amazon Assistant for Chrome) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbjikboenpfhbbejgkoklgkhjpfogcam [2019-04-03]
CHR Extension: (Gmail) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-07-29]
CHR Extension: (Chrome Media Router) - C:\Users\1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-26]
CHR Profile: C:\Users\1\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-01-26]
CHR Profile: C:\Users\1\AppData\Local\Google\Chrome\User Data\System Profile [2019-01-26]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pbjikboenpfhbbejgkoklgkhjpfogcam] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [181512 2016-09-09] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [799928 2018-10-18] (ICEpower a/s -> ICEpower)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\iCLS\SocketHeciServer.exe [974632 2016-05-24] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe [176416 2016-08-26] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [265864 2018-03-19] (Intel Corporation -> )
R3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [441136 2016-09-13] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [482608 2016-09-13] (Acer Incorporated -> Acer Incorporated)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [295840 2016-05-28] (Acer Incorporated -> acer)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\NisSrv.exe [4098064 2019-04-02] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MsMpEng.exe [113992 2019-04-02] (Microsoft Corporation -> Microsoft Corporation)
S2 wust; C:\OSRSS\wust.exe [0 ]<==== ATTENTION (zero byte File/Folder)
S2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3848328 2018-03-19] (Intel Corporation -> Intel® Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ETDI2C; C:\WINDOWS\system32\DRIVERS\ETDI2C.sys [217688 2016-08-17] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [172304 2016-09-09] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [8623128 2018-04-04] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [943112 2016-09-19] (Realtek Semiconductor Corp. -> Realtek )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-04-02] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [333792 2019-04-02] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62432 2019-04-02] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-03 10:30 - 2019-04-03 10:32 - 000016769 _____ C:\Users\1\Desktop\FRST.txt
2019-04-03 10:27 - 2019-04-03 10:30 - 000000000 ____D C:\FRST
2019-04-03 10:27 - 2019-04-03 10:27 - 002434048 _____ (Farbar) C:\Users\1\Desktop\FRST64.exe
2019-04-03 10:27 - 2019-04-03 10:00 - 000000000 ____D C:\Windows.old
2019-04-03 10:07 - 2019-04-03 10:07 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-04-03 10:01 - 2019-04-03 10:01 - 000000020 ___SH C:\Users\1\ntuser.ini
2019-04-03 09:58 - 2019-04-03 10:04 - 000004204 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{CBFCDB17-8AB9-44E5-9C1F-12750DB05F78}
2019-04-03 09:58 - 2019-04-03 10:02 - 000003506 _____ C:\WINDOWS\System32\Tasks\DashlaneUpgradeCheck
2019-04-03 09:58 - 2019-04-03 09:59 - 000003852 _____ C:\WINDOWS\System32\Tasks\ACCAgent
2019-04-03 09:58 - 2019-04-03 09:59 - 000003822 _____ C:\WINDOWS\System32\Tasks\Norton Security Scan for 1
2019-04-03 09:58 - 2019-04-03 09:59 - 000003134 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2019-04-03 09:58 - 2019-04-03 09:58 - 000004302 _____ C:\WINDOWS\System32\Tasks\Software Update Application
2019-04-03 09:58 - 2019-04-03 09:58 - 000003692 _____ C:\WINDOWS\System32\Tasks\AcerCMUpdateTask2.1.16258
2019-04-03 09:58 - 2019-04-03 09:58 - 000003398 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-04-03 09:58 - 2019-04-03 09:58 - 000003248 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-04-03 09:58 - 2019-04-03 09:58 - 000003174 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-04-03 09:58 - 2019-04-03 09:58 - 000002862 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2656566681-3611854416-2476034222-1001
2019-04-03 09:58 - 2019-04-03 09:58 - 000002820 _____ C:\WINDOWS\System32\Tasks\ACC
2019-04-03 09:58 - 2019-04-03 09:58 - 000002766 _____ C:\WINDOWS\System32\Tasks\UbtFrameworkService
2019-04-03 09:58 - 2019-04-03 09:58 - 000002760 _____ C:\WINDOWS\System32\Tasks\BacKGroundAgent
2019-04-03 09:58 - 2019-04-03 09:58 - 000002630 _____ C:\WINDOWS\System32\Tasks\Acer Collection Monitor Application
2019-04-03 09:58 - 2019-04-03 09:58 - 000002596 _____ C:\WINDOWS\System32\Tasks\Acer Collection Application
2019-04-03 09:58 - 2019-04-03 09:58 - 000002328 _____ C:\WINDOWS\System32\Tasks\ACCBackgroundApplication
2019-04-03 09:58 - 2019-04-03 09:58 - 000002256 _____ C:\WINDOWS\System32\Tasks\Power Button
2019-04-03 09:58 - 2019-04-03 09:58 - 000002180 _____ C:\WINDOWS\System32\Tasks\Quick Access
2019-04-03 09:58 - 2019-04-03 09:58 - 000002042 _____ C:\WINDOWS\System32\Tasks\FubToolByPLD
2019-04-03 09:58 - 2019-04-03 09:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-04-03 09:58 - 2019-04-03 09:58 - 000000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2019-04-03 09:58 - 2019-04-03 09:58 - 000000000 ____D C:\WINDOWS\System32\Tasks\Oem
2019-04-03 09:58 - 2019-04-03 09:58 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-04-03 09:56 - 2019-04-03 09:58 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2019-04-03 09:56 - 2019-04-03 09:58 - 000011433 _____ C:\WINDOWS\diagerr.xml
2019-04-03 09:48 - 2019-04-03 09:48 - 001693636 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-04-03 09:39 - 2019-04-03 09:39 - 000001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2019-04-03 09:36 - 2019-04-03 10:01 - 000000000 ____D C:\Users\1
2019-04-03 09:36 - 2019-04-03 09:47 - 000000000 ____D C:\Users\defaultuser0
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\defaultuser0\Šablony
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\defaultuser0\Soubory cookie
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\defaultuser0\Poslední
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\defaultuser0\Okolní tiskárny
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\defaultuser0\Okolní síť
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\defaultuser0\Nabídka Start
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\defaultuser0\Dokumenty
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\defaultuser0\Documents\Obrázky
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\defaultuser0\Documents\Hudba
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\defaultuser0\Documents\Filmy
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\defaultuser0\Data aplikací
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\defaultuser0\AppData\Local\Data aplikací
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\1\Šablony
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\1\Soubory cookie
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\1\Poslední
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\1\Okolní tiskárny
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\1\Okolní síť
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\1\Nabídka Start
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\1\Dokumenty
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\1\Documents\Obrázky
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\1\Documents\Hudba
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\1\Documents\Filmy
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\1\Data aplikací
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-04-03 09:36 - 2019-04-03 09:36 - 000000000 _SHDL C:\Users\1\AppData\Local\Data aplikací
2019-04-03 09:36 - 2018-09-15 09:29 - 000001105 _____ C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-03 09:36 - 2018-09-15 09:29 - 000001105 _____ C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-03 09:33 - 2017-08-01 03:26 - 000140304 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2019-04-03 09:33 - 2017-08-01 03:25 - 000116760 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2019-04-03 09:32 - 2019-04-03 09:32 - 000000000 ____D C:\ProgramData\USOShared
2019-04-03 09:32 - 2019-04-03 05:22 - 002865152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-04-03 09:28 - 2019-04-03 10:22 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-04-03 09:28 - 2019-04-03 09:42 - 000460928 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-04-03 06:03 - 2019-04-03 10:27 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2019-04-03 05:58 - 2019-04-03 06:02 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2019-04-03 05:33 - 2019-04-03 05:33 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-04-03 05:33 - 2019-04-03 05:33 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-04-03 05:33 - 2019-04-03 05:33 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-04-03 05:33 - 2019-04-03 05:33 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-04-03 05:33 - 2019-04-03 05:33 - 000301096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2019-04-03 05:33 - 2019-04-03 05:33 - 000241680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2019-04-03 05:33 - 2019-04-03 05:33 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2019-04-03 05:33 - 2019-04-03 05:33 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2019-04-03 05:33 - 2019-04-03 05:33 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2019-04-03 05:33 - 2019-04-03 05:33 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 024616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 007724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 005112792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 004920832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 003566080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 003551104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 002752360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 002429752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-04-03 05:32 - 2019-04-03 05:32 - 002323688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-04-03 05:32 - 2019-04-03 05:32 - 001706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 001459080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 001297120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 001294520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 001289192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 001282640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-04-03 05:32 - 2019-04-03 05:32 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 001077912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 001072424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 001057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 001024920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000897536 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000866152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000854784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000762272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000662528 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Pipeline.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2019-04-03 05:32 - 2019-04-03 05:32 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000421688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2019-04-03 05:32 - 2019-04-03 05:32 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-04-03 05:32 - 2019-04-03 05:32 - 000098816 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Broker.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 020815360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 019284480 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 019025408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 012138496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 007919104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 006069760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 003904512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 003744256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 003421696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2019-04-03 05:31 - 2019-04-03 05:31 - 002986352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 002392576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 001749504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 001332224 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2019-04-03 05:31 - 2019-04-03 05:31 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2019-04-03 05:31 - 2019-04-03 05:31 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-04-03 05:31 - 2019-04-03 05:31 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2019-04-03 05:31 - 2019-04-03 05:31 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CastingShellExt.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2019-04-03 05:31 - 2019-04-03 05:31 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshhttp.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-04-03 05:31 - 2019-04-03 05:31 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 026810368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 023440896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 012843520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 008898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 007882240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 005588184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 004883968 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 004659712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 003952952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 003690496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2019-04-03 05:30 - 2019-04-03 05:30 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 001782272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 001370624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-04-03 05:30 - 2019-04-03 05:30 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2019-04-03 05:30 - 2019-04-03 05:30 - 001131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 001018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000964096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000828728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-04-03 05:30 - 2019-04-03 05:30 - 000772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-04-03 05:30 - 2019-04-03 05:30 - 000522312 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-04-03 05:30 - 2019-04-03 05:30 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2019-04-03 05:30 - 2019-04-03 05:30 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-04-03 05:30 - 2019-04-03 05:30 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2019-04-03 05:30 - 2019-04-03 05:30 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastingShellExt.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2019-04-03 05:30 - 2019-04-03 05:30 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2019-04-03 05:30 - 2019-04-03 05:30 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-04-03 05:30 - 2019-04-03 05:30 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\EduPrintProv.exe
2019-04-03 05:30 - 2019-04-03 05:30 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlahc.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\PktMon.exe
2019-04-03 05:30 - 2019-04-03 05:30 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2019-04-03 05:30 - 2019-04-03 05:30 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe
2019-04-03 05:30 - 2019-04-03 05:30 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshhttp.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscapi.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureBioSysprep.dll
2019-04-03 05:30 - 2019-04-03 05:30 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 007251456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 006547360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 006440960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 005915936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 005205448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 004627456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 004527624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 003652656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 003427840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 003108864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 002447360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 002275896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 002001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001675712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001615872 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuin.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001590072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001572176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001476096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001467344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001458056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001279024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-04-03 05:29 - 2019-04-03 05:29 - 001272552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdrecordcpu.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001221944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001168384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001155072 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuuc.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001072640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000982528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2019-04-03 05:29 - 2019-04-03 05:29 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-04-03 05:29 - 2019-04-03 05:29 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000772408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000731648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000711168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000652824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000604248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000591832 _____ C:\WINDOWS\SysWOW64\InputHost.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000540448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000408528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000373768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-04-03 05:29 - 2019-04-03 05:29 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000312632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000279376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000272648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdwriter.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000114344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-04-03 05:29 - 2019-04-03 05:29 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nslookup.exe
2019-04-03 05:29 - 2019-04-03 05:29 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2019-04-03 05:29 - 2019-04-03 05:29 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe
2019-04-03 05:29 - 2019-04-03 05:29 - 000022016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscdll.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 015223296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 005765120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 003729808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-04-03 05:28 - 2019-04-03 05:28 - 002925880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-04-03 05:28 - 2019-04-03 05:28 - 002832896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 002777224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 002627384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-04-03 05:28 - 2019-04-03 05:28 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 001860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 001701376 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 001672072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 001360184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-04-03 05:28 - 2019-04-03 05:28 - 001271608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 001162280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 001098128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000976896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000964976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000918032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000909840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-04-03 05:28 - 2019-04-03 05:28 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-04-03 05:28 - 2019-04-03 05:28 - 000672256 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000655160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2019-04-03 05:28 - 2019-04-03 05:28 - 000649064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000598544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000588304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-04-03 05:28 - 2019-04-03 05:28 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-04-03 05:28 - 2019-04-03 05:28 - 000514112 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsound.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000474936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-04-03 05:28 - 2019-04-03 05:28 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-04-03 05:28 - 2019-04-03 05:28 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-04-03 05:28 - 2019-04-03 05:28 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-04-03 05:28 - 2019-04-03 05:28 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-04-03 05:28 - 2019-04-03 05:28 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-04-03 05:28 - 2019-04-03 05:28 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RADCUI.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-04-03 05:28 - 2019-04-03 05:28 - 000262456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-04-03 05:28 - 2019-04-03 05:28 - 000252536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2019-04-03 05:28 - 2019-04-03 05:28 - 000146888 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2019-04-03 05:28 - 2019-04-03 05:28 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2019-04-03 05:28 - 2019-04-03 05:28 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000121872 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000091424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\nslookup.exe
2019-04-03 05:28 - 2019-04-03 05:28 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2019-04-03 05:28 - 2019-04-03 05:28 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2019-04-03 05:27 - 2019-04-03 05:28 - 002701304 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 022114960 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 005566464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 004588744 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-04-03 05:27 - 2019-04-03 05:27 - 004019200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 003761664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 003504128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-04-03 05:27 - 2019-04-03 05:27 - 002073960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-04-03 05:27 - 2019-04-03 05:27 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 001697752 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-04-03 05:27 - 2019-04-03 05:27 - 001647632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 001481488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 001468952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-04-03 05:27 - 2019-04-03 05:27 - 001446400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 001415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 001395056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-04-03 05:27 - 2019-04-03 05:27 - 001342400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-04-03 05:27 - 2019-04-03 05:27 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 001217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 001179680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-04-03 05:27 - 2019-04-03 05:27 - 001145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 001010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-04-03 05:27 - 2019-04-03 05:27 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2019-04-03 05:27 - 2019-04-03 05:27 - 000998712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-04-03 05:27 - 2019-04-03 05:27 - 000981816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-04-03 05:27 - 2019-04-03 05:27 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000860160 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-04-03 05:27 - 2019-04-03 05:27 - 000823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000821048 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000809784 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000800256 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000764216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000730936 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000726416 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000699392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000620560 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-04-03 05:27 - 2019-04-03 05:27 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000496872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-04-03 05:27 - 2019-04-03 05:27 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2019-04-03 05:27 - 2019-04-03 05:27 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-04-03 05:27 - 2019-04-03 05:27 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedPCCSP.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngctasks.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000147496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-04-03 05:27 - 2019-04-03 05:27 - 000143880 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000115360 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2019-04-03 05:27 - 2019-04-03 05:27 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000094224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2019-04-03 05:27 - 2019-04-03 05:27 - 000071208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2019-04-03 05:27 - 2019-04-03 05:27 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe
2019-04-03 05:26 - 2019-04-03 05:27 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-04-03 05:26 - 2019-04-03 05:26 - 009682232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-04-03 05:26 - 2019-04-03 05:26 - 009670656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 004704272 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 004304896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 003661312 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-04-03 05:26 - 2019-04-03 05:26 - 003399168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 002842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001563336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001479480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001311232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001249792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001176064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 001056272 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000902144 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000888120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000836096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000833064 _____ C:\WINDOWS\system32\InputHost.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-04-03 05:26 - 2019-04-03 05:26 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000330464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000257696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000246584 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-04-03 05:26 - 2019-04-03 05:26 - 000159272 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2019-04-03 05:26 - 2019-04-03 05:26 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000151872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000134456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-04-03 05:26 - 2019-04-03 05:26 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-04-03 05:26 - 2019-04-03 05:26 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-04-03 05:26 - 2019-04-03 05:26 - 000074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2019-04-03 05:26 - 2019-04-03 05:26 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscapi.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2019-04-03 05:26 - 2019-04-03 05:26 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2019-04-03 05:26 - 2019-04-03 05:26 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WppRecorder.sys
2019-04-03 05:26 - 2019-04-03 05:26 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-04-03 05:26 - 2019-04-03 05:26 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscdll.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 017513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 007647256 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 007645600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 007556392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 005561856 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 005527552 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 005296640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-04-03 05:25 - 2019-04-03 05:25 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 003377976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-04-03 05:25 - 2019-04-03 05:25 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 003092480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 002842624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 002637312 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2019-04-03 05:25 - 2019-04-03 05:25 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 002485248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-04-03 05:25 - 2019-04-03 05:25 - 002437344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 002188288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 002185728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 002042368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001824768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001797128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001533440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001287776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001133568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001078072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2019-04-03 05:25 - 2019-04-03 05:25 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-04-03 05:25 - 2019-04-03 05:25 - 001054200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-04-03 05:25 - 2019-04-03 05:25 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000984888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-04-03 05:25 - 2019-04-03 05:25 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-04-03 05:25 - 2019-04-03 05:25 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000864056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-04-03 05:25 - 2019-04-03 05:25 - 000863752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-04-03 05:25 - 2019-04-03 05:25 - 000855040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000818832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000745984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000552448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-04-03 05:25 - 2019-04-03 05:25 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000508208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-04-03 05:25 - 2019-04-03 05:25 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-04-03 05:25 - 2019-04-03 05:25 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000386360 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-04-03 05:25 - 2019-04-03 05:25 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000175096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2019-04-03 05:25 - 2019-04-03 05:25 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000148480 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-04-03 05:25 - 2019-04-03 05:25 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000097808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2019-04-03 05:25 - 2019-04-03 05:25 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2019-04-03 05:25 - 2019-04-03 05:25 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2019-04-03 05:25 - 2019-04-03 05:25 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 006132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 005130752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 003270144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 002995712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 002766648 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 002630656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 002085376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 001931264 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 001892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 001700880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 001315840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-04-03 05:24 - 2019-04-03 05:24 - 001213752 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 001199104 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000974352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000895048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-04-03 05:24 - 2019-04-03 05:24 - 000790328 _____ (Microsoft Corporation) C:\WINDOWS\system32\upshared.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000757664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000741888 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000651064 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000604336 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-04-03 05:24 - 2019-04-03 05:24 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000508216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000485192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000449368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000444728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000407504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000404792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-04-03 05:24 - 2019-04-03 05:24 - 000402576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000375544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000343984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000294072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000283032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000276488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTF.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000255128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmBroker.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ptpprov.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MTF.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000178696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-04-03 05:24 - 2019-04-03 05:24 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbio.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000157496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-04-03 05:24 - 2019-04-03 05:24 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000140808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-04-03 05:24 - 2019-04-03 05:24 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000114856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000089336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo-overrides.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000047136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-04-03 05:24 - 2019-04-03 05:24 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-04-03 05:24 - 2019-04-03 05:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-04-03 05:24 - 2019-04-03 05:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-04-03 05:24 - 2019-04-03 05:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-04-03 05:24 - 2019-04-03 05:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-04-03 05:24 - 2019-04-03 05:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-04-03 05:24 - 2019-04-03 05:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-04-03 05:24 - 2019-04-03 05:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-04-03 05:24 - 2019-04-03 05:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-04-03 05:23 - 2019-04-03 05:23 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 004991112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 003334496 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 002722304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-04-03 05:23 - 2019-04-03 05:23 - 002654208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 002592816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 002149368 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 002021584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 001856000 ____R (The ICU Project) C:\WINDOWS\system32\icuin.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 001742104 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 001567232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 001520208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 001387496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 001296576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-04-03 05:23 - 2019-04-03 05:23 - 001208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 001191728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 001053192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-04-03 05:23 - 2019-04-03 05:23 - 001044280 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-04-03 05:23 - 2019-04-03 05:23 - 001022616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000982880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000871792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000865568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2019-04-03 05:23 - 2019-04-03 05:23 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000796088 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000766480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000761280 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000675096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000646632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000612368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-04-03 05:23 - 2019-04-03 05:23 - 000606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000605496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000513040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000506168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-04-03 05:23 - 2019-04-03 05:23 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000419128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-04-03 05:23 - 2019-04-03 05:23 - 000408800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-04-03 05:23 - 2019-04-03 05:23 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000386872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000385024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000384312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000355360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000306488 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000300024 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe
2019-04-03 05:23 - 2019-04-03 05:23 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000169784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-04-03 05:23 - 2019-04-03 05:23 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000159112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winquic.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winquic.sys
2019-04-03 05:23 - 2019-04-03 05:23 - 000138960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbio.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000115152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-04-03 05:23 - 2019-04-03 05:23 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000098664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-04-03 05:23 - 2019-04-03 05:23 - 000090424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2019-04-03 05:23 - 2019-04-03 05:23 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\KdsCli.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000083472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2019-04-03 05:23 - 2019-04-03 05:23 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-04-03 05:23 - 2019-04-03 05:23 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2019-04-03 05:23 - 2019-04-03 05:23 - 000033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-04-03 05:23 - 2019-04-03 05:23 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-04-03 05:22 - 2019-04-03 05:22 - 002017792 _____ C:\WINDOWS\system32\rdpnano.dll
2019-04-03 05:22 - 2019-04-03 05:22 - 001672704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-04-03 05:22 - 2019-04-03 05:22 - 001221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2019-04-03 05:22 - 2019-04-03 05:22 - 000752136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-04-03 05:22 - 2019-04-03 05:22 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-04-03 05:22 - 2019-04-03 05:22 - 000582240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2019-04-03 05:22 - 2019-04-03 05:22 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2019-04-03 05:22 - 2019-04-03 05:22 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2019-04-03 05:22 - 2019-04-03 05:22 - 000421392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000300344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000298296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000234808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000164344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2019-04-03 05:22 - 2019-04-03 05:22 - 000131384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-04-03 05:22 - 2019-04-03 05:22 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2019-04-03 05:22 - 2019-04-03 05:22 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2019-04-03 05:22 - 2019-04-03 05:22 - 000000072 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2019-04-03 04:26 - 2019-04-03 04:26 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2019-04-03 04:26 - 2019-04-03 04:26 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2019-04-03 04:26 - 2019-04-03 04:26 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2019-04-03 04:26 - 2019-04-03 04:26 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2019-04-03 04:26 - 2019-04-03 04:26 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2019-04-03 04:26 - 2019-04-03 04:26 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2019-04-03 04:25 - 2019-04-03 04:25 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-04-03 04:25 - 2019-04-03 04:25 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-04-03 04:25 - 2019-04-03 04:25 - 000000000 ____D C:\Program Files\MSBuild
2019-04-03 04:25 - 2019-04-03 04:25 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-04-03 04:25 - 2019-04-03 04:25 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-04-03 04:23 - 2019-04-03 04:23 - 001167960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-04-03 04:23 - 2019-04-03 04:23 - 000780376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2019-04-03 04:23 - 2019-04-03 04:23 - 000126064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-04-03 04:23 - 2019-04-03 04:23 - 000104560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-04-03 04:23 - 2019-04-03 04:23 - 000036896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2019-04-03 04:23 - 2019-04-03 04:23 - 000035440 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2019-04-03 04:03 - 2019-04-03 04:03 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2019-04-03 02:09 - 2019-04-03 10:01 - 000000000 ___DC C:\WINDOWS\Panther
2019-04-02 23:04 - 2019-04-02 23:12 - 000000000 ____D C:\AdwCleaner
2019-04-02 23:04 - 2019-04-02 23:04 - 007316688 _____ (Malwarebytes) C:\Users\1\Desktop\adwcleaner_7.2.7.0.exe
2019-04-02 23:03 - 2018-10-30 17:25 - 007592144 _____ (Malwarebytes) C:\Users\1\Desktop\adwcleaner_7.2.4.0.exe
2019-04-02 18:57 - 2019-04-02 18:57 - 000000000 ____D C:\Users\1\AppData\Local\ESET
2019-04-02 18:57 - 2019-01-02 10:43 - 007659128 _____ (ESET spol. s r.o.) C:\Users\1\Desktop\esetonlinescanner_csy (1).exe
2019-04-02 10:51 - 2019-04-02 10:48 - 012755984 _____ (Symantec Corporation) C:\Users\1\Desktop\NRnR.exe
2019-04-02 10:42 - 2018-11-16 07:50 - 007986864 _____ ( ) C:\Users\1\Desktop\AVG_Remover.exe
2019-04-02 10:42 - 2018-11-16 07:15 - 010105016 _____ (AVAST Software) C:\Users\1\Desktop\avastclear (1).exe
2019-04-02 10:42 - 2018-11-13 18:15 - 010597096 _____ (McAfee, Inc.) C:\Users\1\Desktop\MCPR (1).exe
2019-04-02 10:42 - 2018-11-07 21:47 - 003480040 _____ (McAfee, Inc.) C:\Users\1\Desktop\MCPR.exe
2019-04-02 10:40 - 2019-04-02 10:40 - 000000000 ____D C:\Users\1\AppData\Local\mbamtray
2019-04-02 10:40 - 2019-04-02 10:40 - 000000000 ____D C:\Users\1\AppData\Local\mbam
2019-04-02 10:39 - 2019-04-03 10:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-04-02 10:39 - 2019-04-02 10:39 - 000001916 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-04-02 10:39 - 2018-12-04 08:09 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-04-02 10:38 - 2019-04-02 10:38 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-04-02 10:38 - 2019-04-02 10:38 - 000000000 ____D C:\Program Files\Malwarebytes
2019-03-30 11:27 - 2019-04-03 01:20 - 000000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2019-03-30 11:26 - 2019-04-03 01:22 - 000381192 _____ C:\WINDOWS\ntbtlog.txt
2019-03-22 13:49 - 2019-03-22 13:49 - 000000615 _____ C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Recepty.lnk
2019-03-09 16:31 - 2019-03-09 16:38 - 126599341 _____ C:\Users\1\Desktop\M. Gombitova - Vianočny popěvok.rar
2019-03-09 15:53 - 2019-03-10 11:50 - 000000000 ____D C:\Users\1\Desktop\M. Gombitová
2019-03-07 20:03 - 2019-04-02 10:37 - 000000000 ____D C:\Users\1\AppData\Local\ElevatedDiagnostics
2019-03-07 19:52 - 2019-03-09 16:37 - 000000000 ____D C:\Users\1\Desktop\Hračky
2019-03-06 14:59 - 2019-03-06 14:59 - 000000000 ____D C:\Users\1\AppData\Roaming\Google

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-03 10:29 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-04-03 10:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-04-03 10:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\spool
2019-04-03 10:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-04-03 10:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-04-03 10:27 - 2018-09-15 09:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-04-03 10:27 - 2018-09-15 09:31 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2019-04-03 10:27 - 2018-08-26 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kantaris
2019-04-03 10:27 - 2018-07-29 13:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security Scan
2019-04-03 10:27 - 2018-07-28 17:37 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.4
2019-04-03 10:27 - 2018-07-02 19:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2019-04-03 10:27 - 2018-06-19 18:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Acer
2019-04-03 10:27 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2019-04-03 10:27 - 2017-10-28 01:19 - 000000000 ____D C:\WINDOWS\oem
2019-04-03 10:27 - 2017-05-17 19:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2019-04-03 10:27 - 2017-05-17 19:13 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2019-04-03 10:27 - 2017-05-17 19:10 - 000000000 ____D C:\Program Files\Intel
2019-04-03 10:24 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-03 10:24 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ServiceState
2019-04-03 10:24 - 2018-07-22 18:05 - 000000000 ____D C:\ProgramData\Packages
2019-04-03 10:24 - 2018-07-22 16:15 - 000000000 ____D C:\Users\1\AppData\Local\Packages
2019-04-03 10:20 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-03 10:14 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-04-03 10:04 - 2017-10-28 01:24 - 000000000 ____D C:\Users\1\AppData\Local\ConnectedDevicesPlatform
2019-04-03 10:02 - 2019-01-31 12:12 - 000002340 _____ C:\Users\1\Desktop\Google Chrome.lnk
2019-04-03 10:02 - 2018-07-22 16:45 - 000000000 ___RD C:\Users\1\3D Objects
2019-04-03 10:02 - 2017-10-28 01:24 - 000000000 __SHD C:\Users\1\IntelGraphicsProfiles
2019-04-03 10:02 - 2017-05-17 18:43 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-04-03 09:59 - 2018-09-15 09:33 - 000000000 ____D C:\Program Files\windows nt
2019-04-03 09:59 - 2018-09-15 08:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-04-03 09:58 - 2018-09-15 09:33 - 000000000 ___RD C:\Program Files\Windows Defender
2019-04-03 09:56 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Registration
2019-04-03 09:49 - 2018-09-15 09:33 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-04-03 09:48 - 2018-09-15 19:32 - 000718018 _____ C:\WINDOWS\system32\perfh005.dat
2019-04-03 09:48 - 2018-09-15 19:32 - 000145062 _____ C:\WINDOWS\system32\perfc005.dat
2019-04-03 09:48 - 2018-07-22 16:37 - 000023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2019-04-03 09:45 - 2018-07-29 14:37 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-04-03 09:41 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-04-03 09:40 - 2018-11-20 18:13 - 000000000 ____D C:\Users\1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2019-04-03 09:38 - 2018-07-22 16:17 - 000000000 ____D C:\Users\defaultuser0\AppData\Local\Packages
2019-04-03 09:34 - 2019-01-03 21:39 - 000000000 ____D C:\WINDOWS\system32\DAX3
2019-04-03 09:34 - 2017-05-17 19:34 - 000000000 ____D C:\Program Files\Elantech
2019-04-03 09:34 - 2017-05-17 19:31 - 002033568 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2019-04-03 09:34 - 2017-05-17 19:30 - 000000000 ____D C:\WINDOWS\system32\DAX2
2019-04-03 09:33 - 2017-05-17 19:30 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2019-04-03 09:32 - 2017-05-17 19:21 - 000000000 ___HD C:\Intel
2019-04-03 06:29 - 2018-09-15 09:36 - 000000000 ____D C:\WINDOWS\Setup
2019-04-03 06:08 - 2018-09-15 09:33 - 000000000 __RHD C:\Users\Public\Libraries
2019-04-03 06:08 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-04-03 06:04 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-04-03 06:03 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Resources
2019-04-03 06:03 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Help
2019-04-03 06:03 - 2017-05-17 19:30 - 000000000 ____D C:\Program Files\Realtek
2019-04-03 05:45 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-04-03 05:43 - 2018-09-15 19:34 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-04-03 05:43 - 2018-09-15 19:34 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-04-03 05:43 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-04-03 05:43 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-04-03 05:43 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-04-03 05:43 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-04-03 05:43 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-04-03 05:43 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-04-03 05:43 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-04-03 05:43 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-04-03 05:43 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-04-03 05:43 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-04-03 04:52 - 2018-09-15 19:32 - 000000000 ____D C:\WINDOWS\SysWOW64\winrm
2019-04-03 04:52 - 2018-09-15 19:32 - 000000000 ____D C:\WINDOWS\SysWOW64\WCN
2019-04-03 04:52 - 2018-09-15 19:32 - 000000000 ____D C:\WINDOWS\SysWOW64\slmgr
2019-04-03 04:52 - 2018-09-15 19:32 - 000000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2019-04-03 04:52 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2019-04-03 04:51 - 2018-09-15 19:32 - 000000000 ____D C:\WINDOWS\system32\winrm
2019-04-03 04:51 - 2018-09-15 19:32 - 000000000 ____D C:\WINDOWS\system32\WCN
2019-04-03 04:51 - 2018-09-15 19:32 - 000000000 ____D C:\WINDOWS\system32\slmgr
2019-04-03 04:51 - 2018-09-15 19:32 - 000000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2019-04-03 04:51 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2019-04-03 04:51 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\F12
2019-04-03 04:51 - 2018-09-15 09:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-04-03 04:51 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-04-03 04:51 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2019-04-03 04:51 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2019-04-03 04:51 - 2018-09-15 09:33 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-04-03 04:51 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\servicing
2019-04-03 04:26 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2019-04-03 04:26 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2019-04-03 04:26 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2019-04-03 04:26 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-04-03 04:26 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2019-04-03 04:26 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2019-04-03 04:26 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\et-EE
2019-04-03 04:26 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-04-03 04:25 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-04-03 04:25 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-04-03 00:55 - 2018-12-22 15:04 - 000000000 ____D C:\Users\1\AppData\Local\D3DSCache
2019-04-02 22:05 - 2018-07-29 13:32 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-04-02 19:44 - 2018-08-17 08:07 - 000000000 ____D C:\Users\1\AppData\Local\{2EEA18B6-0A42-740E-67DA-51E643B2AD7E}
2019-04-02 19:32 - 2018-07-09 20:13 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-04-02 19:02 - 2018-07-09 20:11 - 127411920 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-04-02 18:58 - 2018-06-22 08:43 - 000000000 ____D C:\Program Files\rempl
2019-04-02 18:58 - 2017-10-28 01:32 - 000000000 ___RD C:\Users\1\OneDrive
2019-04-02 18:54 - 2018-11-20 18:13 - 000000000 ____D C:\Users\1\AppData\Roaming\uTorrent
2019-04-02 18:52 - 2018-07-28 18:05 - 000592616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-04-02 18:46 - 2018-07-29 14:33 - 000000000 ____D C:\Users\1\AppData\Local\AVAST Software
2019-04-02 18:46 - 2018-07-29 14:26 - 000000000 ____D C:\ProgramData\AVAST Software
2019-04-02 10:54 - 2017-05-17 19:47 - 000000000 ____D C:\ProgramData\Norton
2019-03-18 18:41 - 2018-08-19 15:23 - 000000000 ____D C:\Users\1\Desktop\Recepty
2019-03-13 17:43 - 2017-11-30 06:56 - 000000000 ____D C:\Users\1\AppData\Local\CrashDumps
2019-03-13 17:29 - 2018-12-26 12:24 - 000000000 ____D C:\Users\1\Desktop\Vánoce
2019-03-09 16:36 - 2019-02-09 17:04 - 000000000 ____D C:\Users\1\Desktop\Hudba
2019-03-06 18:18 - 2018-06-30 13:15 - 000000768 _____ C:\Users\1\Desktop\Facebook.website

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

[Tony182]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by 1 (03-04-2019 10:34:32)
Running from C:\Users\1\Desktop
Windows 10 Home Version 1809 17763.404 (X64) (2019-04-03 08:00:48)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

1 (S-1-5-21-2656566681-3611854416-2476034222-1001 - Administrator - Enabled) => C:\Users\1
Administrator (S-1-5-21-2656566681-3611854416-2476034222-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2656566681-3611854416-2476034222-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2656566681-3611854416-2476034222-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-2656566681-3611854416-2476034222-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2656566681-3611854416-2476034222-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2656566681-3611854416-2476034222-1001\...\uTorrent) (Version: 3.5.4.44846 - BitTorrent Inc.)
abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.07.2004 - Acer Incorporated)
abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 4.00.2001.1 - Acer Incorporated)
Acer Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3038 - Acer Incorporated)
Acer Collection (HKLM-x32\...\{8CD449EA-BBA0-477F-AFF9-9AF6E8C50EF2}) (Version: 1.01.3011 - Acer Incorporated)
Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer)
Acer Jumpstart (HKLM-x32\...\{4B92BFBE-917D-4FA1-97E9-DB9D91286E90}) (Version: 3.0.18135.100 - Acer)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.12.2006 - Acer Incorporated)
Acer Quick Access (HKLM\...\{8BBF04F1-C68A-441C-B5EF-446EE9960EAF}) (Version: 2.01.3008 - Acer Incorporated)
Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 3.02.3001 - Acer Incorporated)
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.25.2001.0 - Acer Incorporated)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{8c595286-0f9e-42de-a0d4-969aba282637}) (Version: 20.50.0 - Intel Corporation)
Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.)
Dashlane Upgrade Service (HKLM-x32\...\Dashlane Upgrade Service) (Version: 2.1.17.0 - Dashlane, Inc.)
ELAN HIDI2C Filter Driver X64 13.6.7.2_WHQL (HKLM\...\Elantech) (Version: 13.6.7.2 - ELAN Microelectronic Corp.)
Facebook (HKLM-x32\...\{d85544fc-e402-c7a2-a96a-48078edaf203}_is1) (Version: 2.0.701 - Facebook_Webapp)
GMX - Enhanced by Google (HKLM-x32\...\{5FE2B722-0F62-66A2-BEE2-16226E62C5A2}) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.86 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{d9719db8-d532-496c-9f2b-eeb1f69f7d89}) (Version: 10.1.1.34 - Intel(R) Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4526 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1631.3 - Intel Corporation)
Intel(R) Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 3.0.10.1129 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{3A55D9C8-17B6-41F9-B9C2-4B1532DCD016}) (Version: 19.10.1635.0483 - Intel Corporation)
Kantaris Media Player 0.7.7 (HKLM-x32\...\Kantaris_is1) (Version: - Christofer Persson)
Malwarebytes verze 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-2656566681-3611854416-2476034222-1001\...\OneDriveSetup.exe) (Version: 19.033.0218.0011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 50.1.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 en-US)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0 - Mozilla)
Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.6.1.150 - Symantec Corporation)
OpenOffice 4.1.4 (HKLM-x32\...\{6CA4F7F3-B909-4292-B791-AAA959155DE0}) (Version: 4.14.9788 - Apache Software Foundation)
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8555 - Realtek Semiconductor Corp.)
TomTom MyDrive Connect 4.2.4.3691 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.4.3691 - TomTom)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{FBA3961B-D1DF-493C-BC1F-E67D3B832895}) (Version: 2.56.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-2) (Version: 1.0.42.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-3) (Version: 1.0.42.0 - LunarG, Inc.)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2656566681-3611854416-2476034222-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\igfxDTCM.dll [2017-08-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {078B068C-383C-450A-B282-97EFB902519A} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {126584D7-E03F-4DDF-9B40-86ACCA09FF0B} - System32\Tasks\Acer Collection Application => C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe (Acer Incorporated -> )
Task: {245791CB-3F69-4046-B14D-FBB15AB8EE9C} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {28EADA91-CAB7-4659-89B9-DE2AD627461A} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe (Acer Incorporated -> Acer)
Task: {37678942-4D66-4593-A954-81638145AB2D} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe (Acer Incorporated -> Acer Incorporated)
Task: {44360B27-A8AC-4746-B3A5-F4C2EC18D493} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe (Acer Incorporated -> TODO: <Company name>)
Task: {461C9B4F-F5CB-42B9-8CDB-34F8E9284992} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe (Acer Incorporated -> Acer Incorporated)
Task: {486C6142-2FE7-4BCA-9D40-F242FDDA33E4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {58C2E5FD-5A98-4864-AEB7-112B417E6E82} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe (Acer Incorporated -> )
Task: {5B07D36F-C4FC-47BF-A44B-0627B471703D} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {6ADE5872-345F-4FE9-9B9A-CF3F5848BC9E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {6CBB2296-C9E2-417B-A1FA-56EDE4223D6E} - System32\Tasks\FubToolByPLD => C:\OEM\Preload\FubTool\FubTool.exe (Acer Incorporated -> )
Task: {6D042983-5D0B-4258-AB33-2BB197D55F42} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {7347FC24-5B62-4893-BBE3-589B1ACA24FD} - System32\Tasks\Norton Security Scan for 1 => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.150\Nss.exe (Symantec Corporation -> Symantec Corporation)
Task: {7E3B1549-52DB-4D4F-9FA0-7083D8D78B42} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {9BA25159-2FAC-4955-AA25-54805880FC8D} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\TXE Components\iCLS\IntelPTTEKRecertification.exe (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
Task: {A385E743-122F-482E-9932-8D503F317CD5} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe (Acer Incorporated -> Acer Incorporated)
Task: {A8A59BD6-30CE-4F4F-8049-830F32DA3966} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe (Acer Incorporated -> Acer Incorporated)
Task: {AD7FD661-F8F0-4345-A0D6-B5CA36CE4946} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {B24FEA4A-83C0-45AB-B90F-690D23DC91C1} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {BBB5F50D-F748-482E-B706-E708B970FA86} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe (Acer Incorporated -> )
Task: {C9DFF5EF-559F-4DE2-80A2-A163B8F1AE88} - System32\Tasks\Acer Collection Monitor Application => C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe (Acer Incorporated -> Acer Incorporated)
Task: {DE0CC6BD-C3D1-4A8F-B594-8B7E7C468AB3} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe (Acer Incorporated -> )
Task: {DEE9F69C-2754-4AAA-97D0-8EA353B54D66} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1902.2-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {DF7D932D-0296-463A-BFC1-017EE4EA2F42} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe (Acer Incorporated -> )
Task: {EE67BECE-C972-4688-BB2F-C237683E48EB} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"]

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2019-01-15 15:47 - 2019-01-15 15:47 - 004785152 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Qt5Core.dll
2018-10-15 12:05 - 2018-10-15 12:05 - 004970496 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Qt5Gui.dll
2018-10-15 12:09 - 2018-10-15 12:09 - 004468224 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Qt5Widgets.dll
2018-10-15 12:05 - 2018-10-15 12:05 - 000961024 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Qt5Network.dll
2018-10-15 12:12 - 2018-10-15 12:12 - 001096704 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Plugins\platforms\qwindows.dll
2018-10-15 12:01 - 2018-10-15 12:01 - 000013312 _____ () [File not signed] C:\Users\1\Desktop\MyDrive Connect\libEGL.DLL
2018-10-15 12:01 - 2018-10-15 12:01 - 001950720 _____ () [File not signed] C:\Users\1\Desktop\MyDrive Connect\libGLESv2.dll
2018-03-27 22:33 - 2018-03-27 22:33 - 000337920 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\1\Desktop\MyDrive Connect\ssleay32.dll
2018-03-27 22:33 - 2018-03-27 22:33 - 001370624 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Users\1\Desktop\MyDrive Connect\LIBEAY32.dll
2018-10-15 12:10 - 2018-10-15 12:10 - 000027648 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Plugins\imageformats\qico.dll
2018-10-15 12:11 - 2018-10-15 12:11 - 000038912 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Plugins\bearer\qgenericbearer.dll
2018-10-15 12:10 - 2018-10-15 12:10 - 000026112 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Plugins\imageformats\qgif.dll
2018-10-16 12:39 - 2018-10-16 12:39 - 000033280 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Plugins\imageformats\qicns.dll
2018-10-15 12:12 - 2018-10-15 12:12 - 000243712 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Plugins\imageformats\qjpeg.dll
2014-09-11 17:14 - 2014-09-11 17:14 - 000218112 _____ () [File not signed] C:\Users\1\Desktop\MyDrive Connect\Plugins\imageformats\qmng.dll
2018-10-16 12:31 - 2018-10-16 12:31 - 000021504 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Plugins\imageformats\qsvg.dll
2018-10-16 12:31 - 2018-10-16 12:31 - 000264704 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Qt5Svg.dll
2018-10-16 12:38 - 2018-10-16 12:38 - 000020992 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Plugins\imageformats\qtga.dll
2018-10-16 12:39 - 2018-10-16 12:39 - 000327680 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Plugins\imageformats\qtiff.dll
2018-10-16 12:38 - 2018-10-16 12:38 - 000019968 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Plugins\imageformats\qwbmp.dll
2018-10-16 12:39 - 2018-10-16 12:39 - 000400896 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Plugins\imageformats\qwebp.dll
2019-01-15 15:45 - 2019-01-15 15:45 - 000135680 _____ (TomTom) [File not signed] C:\Users\1\Desktop\MyDrive Connect\DeviceNavEthernetCore.dll
2018-10-15 12:02 - 2018-10-15 12:02 - 000150016 _____ (The Qt Company Ltd.) [File not signed] C:\Users\1\Desktop\MyDrive Connect\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\1\Desktop\Facebook.website:TASKICON_0news-1751121550 [2302]
AlternateDataStreams: C:\Users\1\Desktop\Facebook.website:TASKICON_1messages-431041656 [2302]
AlternateDataStreams: C:\Users\1\Desktop\Facebook.website:TASKICON_2events-250898981 [2302]
AlternateDataStreams: C:\Users\1\Desktop\Facebook.website:TASKICON_3friends-215113587 [2302]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2656566681-3611854416-2476034222-1001\...\localhost -> localhost

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-07-16 13:47 - 2019-01-04 14:58 - 000000831 _____ C:\WINDOWS\system32\drivers\etc\hosts


2018-12-20 13:31 - 2018-12-20 13:31 - 000000446 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Intel\TXE Components\iCLS\;C:\Program Files\Intel\TXE Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\TXE Components\DAL\;C:\Program Files (x86)\Intel\TXE Components\DAL\;C:\Program Files\Intel\TXE Components\IPT\;C:\Program Files (x86)\Intel\TXE Components\IPT\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2656566681-3611854416-2476034222-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\1\Desktop\Vánoce\DSCN0610.JPG
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{1E3778C4-6634-4F22-B9AB-6B7D857C52A1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{906368C4-517E-4E74-B37D-5E77510BE381}] => (Allow) C:\Users\1\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{C78D0429-8292-4224-A0E0-BE7F1A41381E}] => (Allow) C:\Users\1\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{4A127945-B327-4E14-9C41-530B1C586806}C:\users\1\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\1\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{3BF27E5E-24B8-4323-91FF-BB7FD20A6AA9}C:\users\1\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\1\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{0095E2C9-22D5-48DC-8758-7196E4AC2460}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{11B609B1-2FBA-4395-82C8-74A2D08FACA0}] => (Allow) C:\Users\1\Desktop\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International BV -> TomTom)
FirewallRules: [{AA2FA00E-C05D-48EF-9129-103E200355E3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B0F45F73-9785-44EF-B404-14D8F685FB28}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8BDA7C10-CA9D-43A0-A4B4-33D31A02CD88}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{1B31557F-EC30-4E57-849F-EDA3256450C2}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{582A5992-41AC-4553-BDD7-87B74780C59C}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{EDD85692-02BB-4CF7-8820-7F05AA343C4C}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{9BDF8F96-E2B6-41C5-A5B1-4ABF7AF2AB86}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{092ED512-1131-47F6-A4C1-9C518BE274AE}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{A5DC85A9-0FEE-4B97-9D58-DF5FB7569FEC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{35BEC28B-FC60-4129-9603-2D3D30B17739}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{34793070-76B6-4C25-854D-8AEE4B73FF4F}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/03/2019 09:48:20 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Zprostředkovatel událostí IntelWLANEventProvider se pokusil zaregistrovat dotaz select * from CIntelQosEvent, jehož cílová třída CIntelQosEvent v oboru názvů //./root/DEFAULT neexistuje. Dotaz bude ignorován.

Error: (04/03/2019 09:48:20 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Zprostředkovatel událostí IntelWLANEventProvider se pokusil zaregistrovat dotaz select * from CIntelDot1xEvent, jehož cílová třída CIntelDot1xEvent v oboru názvů //./root/DEFAULT neexistuje. Dotaz bude ignorován.

Error: (04/03/2019 09:48:20 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Zprostředkovatel událostí IntelWLANEventProvider se pokusil zaregistrovat dotaz select * from CIntelWLANEvent, jehož cílová třída CIntelWLANEvent v oboru názvů //./root/DEFAULT neexistuje. Dotaz bude ignorován.

Error: (04/03/2019 09:48:20 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Zprostředkovatel událostí se pokusil zaregistrovat dotaz select * from CIntelQosEvent, jehož cílová třída CIntelQosEvent v oboru názvů //./root/DEFAULT neexistuje. Dotaz bude ignorován.

Error: (04/03/2019 09:48:20 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Zprostředkovatel událostí se pokusil zaregistrovat dotaz select * from CIntelDot1xEvent, jehož cílová třída CIntelDot1xEvent v oboru názvů //./root/DEFAULT neexistuje. Dotaz bude ignorován.

Error: (04/03/2019 09:48:20 AM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: NT AUTHORITY)
Description: Zprostředkovatel událostí se pokusil zaregistrovat dotaz select * from CIntelWLANEvent, jehož cílová třída CIntelWLANEvent v oboru názvů //./root/DEFAULT neexistuje. Dotaz bude ignorován.

Error: (04/03/2019 09:48:11 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Pokus získat stav uzlu clusteru se nezdařil. Vrácený kód chyby: 0x8007085A

Error: (04/03/2019 09:47:54 AM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Pokus získat stav uzlu clusteru se nezdařil. Vrácený kód chyby: 0x8007085A


System errors:
=============
Error: (04/03/2019 10:25:10 AM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-17EN536M)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-17EN536M\1 (SID: S-1-5-21-2656566681-3611854416-2476034222-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (04/03/2019 09:43:26 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Intel(R) PROSet/Wireless Zero Configuration Service byla ukončena s následující chybou:
%%2147770990

Error: (04/03/2019 09:39:24 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {A47979D2-C419-11D9-A5B4-001185AD2B89} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/03/2019 09:37:24 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {A47979D2-C419-11D9-A5B4-001185AD2B89} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/03/2019 09:35:24 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {A47979D2-C419-11D9-A5B4-001185AD2B89} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/03/2019 09:32:53 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {A47979D2-C419-11D9-A5B4-001185AD2B89} se v daném časovém limitu neregistroval u služby DCOM.

Error: (04/03/2019 09:32:37 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba Rozšíření a oznámení tiskárny je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (04/03/2019 09:30:32 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba iphlpsvc byla ukončena s následující chybou:
Zařízení není připraveno.


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU N4200 @ 1.10GHz
Percentage of memory in use: 57%
Total physical RAM: 3920.22 MB
Available physical RAM: 1668.76 MB
Total Virtual: 5328.22 MB
Available Virtual: 2907.64 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:1861.9 GB) (Free:1791.01 GB) NTFS

\\?\Volume{256aaf8b-61fb-43ae-b0b4-bddb7907e828}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.6 GB) NTFS
\\?\Volume{a30402e2-606b-4f48-95e6-c575ca339ff5}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: 6C27AAE9)

Partition: GPT.

==================== End of Addition.txt ============================

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[Tony182]

# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-04-01.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 04-03-2019
# Duration: 00:00:05
# OS: Windows 10 Home
# Cleaned: 1
# Failed: 3


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

Deleted Amazon Assistant for Chrome

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

Not Deleted api.bing.com
Not Deleted api.bing.com
Not Deleted api.bing.com


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [4825 octets] - [02/04/2019 23:06:28]
AdwCleaner[C00].txt - [4277 octets] - [02/04/2019 23:13:19]
AdwCleaner[S01].txt - [1691 octets] - [03/04/2019 01:22:21]
AdwCleaner[C01].txt - [1763 octets] - [03/04/2019 01:22:32]
AdwCleaner[S02].txt - [1621 octets] - [03/04/2019 13:54:25]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ##########

[Rudy]

Něco málo to smazalo. Budeme pokračovat ručně. Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Task: {486C6142-2FE7-4BCA-9D40-F242FDDA33E4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {7E3B1549-52DB-4D4F-9FA0-7083D8D78B42} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
AlternateDataStreams: C:\Users\1\Desktop\Facebook.website:TASKICON_0news-1751121550 [2302]
AlternateDataStreams: C:\Users\1\Desktop\Facebook.website:TASKICON_1messages-431041656 [2302]
AlternateDataStreams: C:\Users\1\Desktop\Facebook.website:TASKICON_2events-250898981 [2302]
AlternateDataStreams: C:\Users\1\Desktop\Facebook.website:TASKICON_3friends-215113587 [2302]
FF NewTab: Mozilla\Firefox\Profiles\n11zh5xj.default -> hxxp://securedsearch.lavasoft.com/?pr=v ... 19__181220
S2 wust; C:\OSRSS\wust.exe [0 ]<==== ATTENTION (zero byte File/Folder)
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[Tony182]

Fix result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by 1 (03-04-2019 15:27:54) Run:1
Running from C:\Users\1\Desktop
Loaded Profiles: 1 (Available Profiles: defaultuser0 & 1)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Task: {486C6142-2FE7-4BCA-9D40-F242FDDA33E4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {7E3B1549-52DB-4D4F-9FA0-7083D8D78B42} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
AlternateDataStreams: C:\Users\1\Desktop\Facebook.website:TASKICON_0news-1751121550 [2302]
AlternateDataStreams: C:\Users\1\Desktop\Facebook.website:TASKICON_1messages-431041656 [2302]
AlternateDataStreams: C:\Users\1\Desktop\Facebook.website:TASKICON_2events-250898981 [2302]
AlternateDataStreams: C:\Users\1\Desktop\Facebook.website:TASKICON_3friends-215113587 [2302]
FF NewTab: Mozilla\Firefox\Profiles\n11zh5xj.default -> hxxp://securedsearch.lavasoft.com/?pr=v ... 19__181220
S2 wust; C:\OSRSS\wust.exe [0 ]<==== ATTENTION (zero byte File/Folder)
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\ANotepad++64 => removed successfully
HKLM\Software\Classes\CLSID\{B298D29A-A6ED-11DE-BA8C-A68E55D89593} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
"HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D}" => removed successfully
HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => removed successfully
HKLM\Software\Classes\CLSID\{4A7C4306-57E0-4C0C-83A9-78C1528F618C} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\7-Zip => removed successfully
HKLM\Software\Classes\CLSID\{23170F69-40C1-278A-1000-000100020000} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\BriefcaseMenu => removed successfully
HKLM\Software\Classes\CLSID\{85BBD920-42A0-1069-A2E4-08002B30309D} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{486C6142-2FE7-4BCA-9D40-F242FDDA33E4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{486C6142-2FE7-4BCA-9D40-F242FDDA33E4}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7E3B1549-52DB-4D4F-9FA0-7083D8D78B42}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7E3B1549-52DB-4D4F-9FA0-7083D8D78B42}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
C:\Users\1\Desktop\Facebook.website => ":TASKICON_0news-1751121550" ADS removed successfully
C:\Users\1\Desktop\Facebook.website => ":TASKICON_1messages-431041656" ADS removed successfully
C:\Users\1\Desktop\Facebook.website => ":TASKICON_2events-250898981" ADS removed successfully
C:\Users\1\Desktop\Facebook.website => ":TASKICON_3friends-215113587" ADS removed successfully
"Firefox newtab" => removed successfully
HKLM\System\CurrentControlSet\Services\wust => removed successfully
wust => service removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 27901677 B
Java, Flash, Steam htmlcache => 2855 B
Windows/system/drivers => 91769 B
Edge => 4428537 B
Chrome => 542618013 B
Firefox => 3345424 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 954 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
defaultuser0 => 6786 B
1 => 1781625 B

RecycleBin => 11283209254 B
EmptyTemp: => 11.1 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:30:49 ====

[Rudy]

Smazáno. Nastala nějaká změna?

[Tony182]

je to lepší

... ale klidně můžem zkontrolovat ještě něco, pokud máte další postupy v rukávu

Hlavně jsem rád že vytížení disku není tak velké, děkuji (y)

[Rudy]

Zkuste defragmentovat disk.