zasekané PC

[vineran]

hlavně si to bere Microsoft Office Click to run

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-07-2019 01
Ran by Uzivatel (administrator) on UZIVATEL-PC (MSI MS-7636) (19-07-2019 17:57:53)
Running from C:\Users\Uzivatel\Desktop
Loaded Profiles: Uzivatel (Available Profiles: Uzivatel & UpdatusUser)
Platform: Windows 10 Home Version 1803 17134.885 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.48.51.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19051.16210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() [File not signed] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogRx.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\Install\{682C13F9-EAE3-4C97-B7E9-50838B9A3157}\75.0.3770.142_75.0.3770.100_chrome_updater.exe
(Google LLC -> Google LLC) C:\Windows\Temp\CR_2269E.tmp\setup.exe
(Google LLC -> Google LLC) C:\Windows\Temp\CR_2269E.tmp\setup.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe.bak
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\Updates\16.0.11328.20368\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Uzivatel\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation) [File not signed] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.48.51.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1906.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1906.3-0\NisSrv.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Professional 7\PdfPro7Hook.exe
(Nullsoft Inc. -> Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Spotify AB -> Spotify Ltd) C:\Users\Uzivatel\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Uzivatel\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Uzivatel\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\Uzivatel\AppData\Roaming\Spotify\Spotify.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Wondershare) [File not signed] C:\Program Files (x86)\Wondershare\WAF\2.1.6.0\WsAppService.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11101800 2010-07-28] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [415680 2012-02-05] (Autodesk, Inc -> Autodesk, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-07-26] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [112152 2010-07-01] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
HKLM-x32\...\Run: [WinampAgent] => C:\Program Files (x86)\Winamp\winampa.exe [85600 2013-12-13] (Nullsoft Inc. -> Nullsoft, Inc.)
HKLM-x32\...\Run: [M17A] => C:\WINDOWS\twain_32\Brimm17a\Common\TwDsUiLaunch.exe [77312 2017-05-10] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-01-19] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrotherSoftwareUpdateNotification] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3581952 2017-04-05] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [35648 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [17600 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDF Professional 7\pdfpro7hook.exe [641864 2013-03-20] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1332348435-3952591356-909228679-1000\...\Run: [Google Update] => C:\Users\Uzivatel\AppData\Local\Google\Update\1.3.34.11\GoogleUpdateCore.exe [410920 2019-07-15] (Google Inc -> Google LLC)
HKU\S-1-5-21-1332348435-3952591356-909228679-1000\...\Run: [Spotify] => C:\Users\Uzivatel\AppData\Roaming\Spotify\Spotify.exe [25591712 2019-07-16] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-1332348435-3952591356-909228679-1000\...\RunOnce: [Application Restart #3] => C:\Program Files (x86)\Brother\SoftwareUpdateNotification\SoftwareUpdateNotificationService.exe [3581952 2017-04-05] (Brother Industries, Ltd.) [File not signed]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-04] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2008-09-04] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-19] (Fox Magic Software) [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.100\Installer\chrmstp.exe [2019-07-16] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00EEC67F-7769-454F-95FC-4C2FB3493957} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {00FE8F93-0764-44A7-9687-EC33ED8A799C} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {0A7CA73B-CE09-43B1-8646-50241A28CCF4} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {0E762DD3-5712-4DC1-BA6F-00C32E65DFE9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\MpCmdRun.exe [470176 2019-07-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {118B69D2-33C5-4094-A75D-281166F567E5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1706F5AA-0BCA-4E59-AFB3-2CFCE23E13C4} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {1A7C9D86-E208-4D8A-8DBB-2E08C5E84801} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26045472 2019-06-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {26E437CF-EF1D-49DD-B5E2-715FAF6BE585} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {28E2D337-D3E9-4DD1-AE8C-4F233B6D1C4A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1332348435-3952591356-909228679-1000UA1d25949cceec550 => C:\Users\Uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {28F79DF2-66E9-471C-9598-2569BBFF5387} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26045472 2019-06-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {2AFAAB0F-C222-4826-9BAC-1D90D3B418C8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\MpCmdRun.exe [470176 2019-07-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2C88F607-8D75-4BDE-824E-627DD668E296} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2E37611B-90CB-4273-BAEA-3907BD099984} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-07-15] (Adobe Inc. -> Adobe)
Task: {3D502813-D1D2-41CB-ACCC-1FE28968EF83} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1403536 2019-07-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {3F620358-0C8F-4A4B-819C-687986B8563C} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1403536 2019-07-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {4075AA6F-B619-4F0E-B79E-695792318898} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {453E4444-5521-4C7C-ACFD-7CA3E5A0D928} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {49584494-56EB-423B-A8EC-11421CEDD3F1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-07-15] (Adobe Inc. -> Adobe)
Task: {5392DF1D-6BC9-4F35-AB03-951A63B496C2} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_142_pepper.exe [1452544 2019-02-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {56921D99-D5EB-4500-A4E0-339ED10C7D71} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\MpCmdRun.exe [470176 2019-07-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {6087E5E2-7BF4-47D6-AAD5-490CCA2B6810} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1332348435-3952591356-909228679-1000UA => C:\Users\Uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {69007947-8C1A-40DE-87CA-1F47C8333B99} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1332348435-3952591356-909228679-1000Core => C:\Users\Uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {764C755F-E027-4C99-AB84-558965911830} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {766FBC1F-4D8C-41B9-971D-00CB352D9284} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7BAC6774-B906-40AE-908E-DD5AC4DB94AA} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {850CB7A0-5388-4B3C-8283-A35BFA7B0AF5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4404888 2019-07-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {87DB5543-9A65-4B3B-9886-2D718FB7FB68} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8E239226-BB74-4231-9A53-66F9B54E4AE7} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [758400 2019-07-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {921024A5-7579-4DCD-8309-C25CDAE9FB0F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {9625759F-C769-4BEA-902F-0AE6F05B1016} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {99F7AF79-FA42-477A-B2F8-13E7B97AF806} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9CCC0D1B-01BF-4B5E-9E01-C304DC4F284D} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A2218FDE-1D9E-4D54-8BF7-2982815F9249} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {A5D2CD9B-7BDF-43C1-8AF6-42B9FABE8F5C} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B559D76E-4742-4ED0-91DB-C336C3D1A8EA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\MpCmdRun.exe [470176 2019-07-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {BD0CEA1E-E769-4D69-A16F-CCAF532F18CE} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe
Task: {C0B50F6A-1FC6-4C27-979F-4D500E712D58} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C4B26656-2B6C-4E8F-9A5A-5852D9CABCEE} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {C6FA6607-A47C-4216-B187-161EE92ACF84} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {C87E6963-DB12-42F6-8A51-45E2675D8C69} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D5BABA95-95CC-498C-A0CE-EF0351426CDD} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D622D7A3-C2CD-44E8-8B2D-3A9A1974511F} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {D831B67F-3165-4861-B72E-84903D1F8431} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DB670137-AE23-4535-BD71-EC3AF03201D2} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {DF71C223-E759-4CE8-9F33-E38DFAFE14AF} - System32\Tasks\{5F6BDC3E-C1FD-4139-8332-059B7896CA87} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\The KMPlayer\KMPSetup.exe" -d "C:\Program Files (x86)\The KMPlayer"
Task: {E036C546-4AAC-4A69-8C23-C00DE671CD87} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {E98121B3-A5FA-4F06-9EA6-A022AB174569} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {EAF32249-F2EB-4ECE-A205-09D3A57BFEF1} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {ED3225A3-C50E-4AB0-BDA9-AEB25B96801A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4404888 2019-07-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {F336FEF6-EC22-4237-9A77-43A928C19EDF} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FD04F33A-1616-4DBD-9A86-ED95B1980FAC} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {FD989352-26AB-42A4-9479-5F4B307CF9C8} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1332348435-3952591356-909228679-1000Core1d25949cccf9d30 => C:\Users\Uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1332348435-3952591356-909228679-1000Core.job => C:\Users\Uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1332348435-3952591356-909228679-1000UA.job => C:\Users\Uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{493e21de-14ec-4508-834b-adbd8b09ae84}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{6a1e98de-2bf5-44e2-9cc9-0b402406e9a8}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-1332348435-3952591356-909228679-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1332348435-3952591356-909228679-1000 -> {105B0D51-56A0-4EE7-A41E-5175BC0BD94D} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1332348435-3952591356-909228679-1000 -> {127EE9EC-779D-40E5-9243-A2A97FD46BD1} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1332348435-3952591356-909228679-1000 -> {214D043C-D6C5-48BE-AE84-444B597BEE5F} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454
SearchScopes: HKU\S-1-5-21-1332348435-3952591356-909228679-1000 -> {2EF7F36D-EC80-4036-82B7-F48301FC70A6} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1332348435-3952591356-909228679-1000 -> {61911BF0-6A88-4B48-B28C-1992FABEACFE} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1332348435-3952591356-909228679-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-1332348435-3952591356-909228679-1000 -> {8BC8057A-E3DC-40AB-9E01-A7632B10B382} URL = hxxp://www.firmy.cz/phr/{searchTerms}?sourceid ... arch_12454
SearchScopes: HKU\S-1-5-21-1332348435-3952591356-909228679-1000 -> {A67FA295-C3E3-41A1-9985-8CFA850B874D} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2019-07-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-07-19] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Professional 7\Bin\PlusIEContextMenu.dll [2011-06-30] (Zeon Corporation -> Zeon Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-01-21] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-12] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-12] (Oracle America, Inc. -> Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-19] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-19] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-19] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-19] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\9slcp39g.default [2019-07-16]
FF Homepage: Mozilla\Firefox\Profiles\9slcp39g.default -> hxxp://mail.ru/cnt/10445?gp=818407
FF Extension: (Firefox Hotfix) - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\9slcp39g.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-17] [Legacy]
FF Extension: (Домашняя страница Mail.Ru) - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\9slcp39g.default\Extensions\homepage@mail.ru [2016-12-28] [Legacy]
FF Extension: (Поиск@Mail.Ru) - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\9slcp39g.default\Extensions\search@mail.ru [2016-12-28] [Legacy]
FF Extension: (Визуальные закладки @Mail.Ru) - C:\Users\Uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\9slcp39g.default\Extensions\{a38384b3-2d1d-4f36-bc22-0f7ae402bcd7} [2016-12-28] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_223.dll [2019-07-15] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-15] (Adobe Inc. -> )
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] (Apple Inc. -> )
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google Inc -> Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Windows\SysWOW64\npdeployJava1.dll [2015-03-12] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-12] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-12] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-07-19] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-07-19] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-15] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-03-17] (VideoLAN) [File not signed]
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Professional 7\bin\nppdf.dll [2011-07-15] (Zeon Corporation -> Zeon Corporation)
FF Plugin HKU\S-1-5-21-1332348435-3952591356-909228679-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Uzivatel\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-15] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-1332348435-3952591356-909228679-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Uzivatel\AppData\Local\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-15] (Google Inc -> Google LLC)

Chrome:
=======
CHR DefaultProfile: Default
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default [2019-07-19]
CHR Extension: (Prezentace) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-29]
CHR Extension: (Dokumenty Google) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-18]
CHR Extension: (Disk Google) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-21]
CHR Extension: (YouTube) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-20]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-04-27]
CHR Extension: (Vyhledávání Google) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-21]
CHR Extension: (Tabulky) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-29]
CHR Extension: (Dokumenty Google offline) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-07]
CHR Extension: (AdBlock) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-07-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-05-06]
CHR Extension: (Gmail) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-19]
CHR Extension: (Chrome Media Router) - C:\Users\Uzivatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-07-19]

Opera:
=======
OPR Extension: (Adblock Plus) - C:\Users\Uzivatel\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2016-11-04]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc. -> Apple Inc.)
S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc. -> Autodesk, Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-01-18] (Brother Industries, Ltd.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11153952 2019-06-27] (Microsoft Corporation -> Microsoft Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [77336 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6634224 2018-02-02] (TeamViewer GmbH -> TeamViewer GmbH)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\NisSrv.exe [2455544 2019-07-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\MsMpEng.exe [110104 2019-07-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.1.6.0\WsAppService.exe [388608 2016-01-28] (Wondershare) [File not signed]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 athur; C:\WINDOWS\System32\drivers\athurx.sys [1847296 2010-01-05] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77440 2017-04-27] (Malwarebytes Corporation -> )
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [604160 2018-04-12] (Microsoft Windows -> Realtek )
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-10] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [44544 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47704 2019-07-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [367032 2019-07-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54200 2019-07-16] (Microsoft Windows -> Microsoft Corporation)
S3 MBAMFarflt; \??\C:\WINDOWS\system32\drivers\farflt.sys [X]
S3 MBAMProtection; \??\C:\WINDOWS\system32\drivers\mbam.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-19 18:00 - 2019-07-19 18:00 - 000002559 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-07-19 18:00 - 2019-07-19 18:00 - 000002553 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-07-19 18:00 - 2019-07-19 18:00 - 000002530 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-07-19 18:00 - 2019-07-19 18:00 - 000002525 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-07-19 18:00 - 2019-07-19 18:00 - 000002518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2019-07-19 18:00 - 2019-07-19 18:00 - 000002486 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-07-19 18:00 - 2019-07-19 18:00 - 000002451 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-07-19 18:00 - 2019-07-19 18:00 - 000002447 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-07-19 18:00 - 2019-07-19 18:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-07-17 17:26 - 2019-07-17 17:28 - 000014850 ____C C:\Users\Uzivatel\Desktop\Fixlog.txt
2019-07-16 09:10 - 2019-07-16 09:14 - 000058694 ____C C:\Users\Uzivatel\Desktop\Addition.txt
2019-07-16 09:03 - 2019-07-19 18:03 - 000036646 ____C C:\Users\Uzivatel\Desktop\FRST.txt
2019-07-16 09:02 - 2019-07-16 08:57 - 002095104 ____C (Farbar) C:\Users\Uzivatel\Desktop\FRST64.exe
2019-07-16 08:48 - 2019-05-31 03:57 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-07-16 08:48 - 2019-05-31 03:57 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-07-16 00:37 - 2019-07-04 11:40 - 021390504 ____C (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-07-16 00:37 - 2019-07-04 11:40 - 001616840 ____C (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-07-16 00:37 - 2019-07-04 11:18 - 003614208 ____C (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-07-16 00:37 - 2019-07-04 10:37 - 002882048 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-07-16 00:37 - 2019-07-04 06:57 - 003292152 ____C (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-07-16 00:37 - 2019-07-04 06:56 - 009084216 ____C (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-07-16 00:37 - 2019-07-04 06:56 - 007519896 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-07-16 00:37 - 2019-07-04 06:56 - 007436536 ____C (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-07-16 00:37 - 2019-07-04 06:42 - 006570368 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-07-16 00:37 - 2019-07-04 06:42 - 006044008 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-07-16 00:37 - 2019-07-04 06:37 - 025857536 ____C (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-07-16 00:37 - 2019-07-04 06:33 - 022017536 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-07-16 00:37 - 2019-07-04 06:29 - 022717440 ____C (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-07-16 00:37 - 2019-07-04 06:26 - 004385280 ____C (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-07-16 00:37 - 2019-07-04 06:25 - 019372544 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-07-16 00:37 - 2019-07-04 06:25 - 007589888 ____C (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-07-16 00:37 - 2019-07-04 06:25 - 004861440 ____C (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-07-16 00:37 - 2019-07-04 06:21 - 005784064 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-07-16 00:37 - 2019-06-13 14:04 - 001721144 ____C (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-07-16 00:37 - 2019-06-13 13:42 - 004038688 ____C (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-07-16 00:37 - 2019-06-13 13:18 - 006586880 ____C (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-07-16 00:37 - 2019-06-13 13:18 - 004847104 ____C (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-07-16 00:37 - 2019-06-13 13:17 - 012756992 ____C (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-07-16 00:37 - 2019-06-13 13:15 - 004718080 ____C (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-07-16 00:37 - 2019-06-13 13:13 - 002920448 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2019-07-16 00:37 - 2019-06-13 11:54 - 011942912 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-07-16 00:37 - 2019-06-13 08:47 - 005625160 ____C (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-07-16 00:37 - 2019-05-17 08:30 - 013878784 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-07-16 00:37 - 2019-05-17 08:19 - 004515840 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-07-16 00:37 - 2019-05-17 07:44 - 016597504 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-07-16 00:37 - 2019-05-17 07:38 - 004709376 ____C (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-07-16 00:37 - 2019-05-17 07:31 - 004937216 ____C (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-07-16 00:37 - 2019-05-03 08:01 - 008189440 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-07-16 00:36 - 2019-07-04 11:40 - 001631808 ____C (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-07-16 00:36 - 2019-07-04 11:40 - 000790416 ____C (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-07-16 00:36 - 2019-07-04 11:21 - 008627200 ____C (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-07-16 00:36 - 2019-07-04 11:20 - 001609216 ____C (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-07-16 00:36 - 2019-07-04 11:19 - 000420864 ____C (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2019-07-16 00:36 - 2019-07-04 11:18 - 001663488 ____C (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-07-16 00:36 - 2019-07-04 10:56 - 001453416 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-07-16 00:36 - 2019-07-04 10:54 - 000662352 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-07-16 00:36 - 2019-07-04 10:51 - 020384128 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-07-16 00:36 - 2019-07-04 10:41 - 007990784 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-07-16 00:36 - 2019-07-04 10:36 - 001471488 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-07-16 00:36 - 2019-07-04 07:00 - 001035040 ____C (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-07-16 00:36 - 2019-07-04 06:58 - 001328440 ____C (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-07-16 00:36 - 2019-07-04 06:58 - 001219896 ____C (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-07-16 00:36 - 2019-07-04 06:57 - 001027384 ____C (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-07-16 00:36 - 2019-07-04 06:57 - 000986128 ____C (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-07-16 00:36 - 2019-07-04 06:57 - 000776784 ____C (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-07-16 00:36 - 2019-07-04 06:57 - 000723728 ____C (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-07-16 00:36 - 2019-07-04 06:57 - 000708696 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-07-16 00:36 - 2019-07-04 06:57 - 000568104 ____C (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-07-16 00:36 - 2019-07-04 06:57 - 000362264 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-07-16 00:36 - 2019-07-04 06:56 - 002810680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-07-16 00:36 - 2019-07-04 06:56 - 002571640 ____C (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-07-16 00:36 - 2019-07-04 06:56 - 001566520 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2019-07-16 00:36 - 2019-07-04 06:56 - 001459120 ____C (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-07-16 00:36 - 2019-07-04 06:56 - 001260776 ____C (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-07-16 00:36 - 2019-07-04 06:56 - 001141496 ____C (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-07-16 00:36 - 2019-07-04 06:56 - 000983936 ____C (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-07-16 00:36 - 2019-07-04 06:56 - 000767536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-07-16 00:36 - 2019-07-04 06:56 - 000734952 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-07-16 00:36 - 2019-07-04 06:56 - 000713272 ____C (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-07-16 00:36 - 2019-07-04 06:56 - 000604984 ____C (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-07-16 00:36 - 2019-07-04 06:56 - 000493752 ____C (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2019-07-16 00:36 - 2019-07-04 06:43 - 000832016 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-07-16 00:36 - 2019-07-04 06:43 - 000665440 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-07-16 00:36 - 2019-07-04 06:43 - 000287376 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-07-16 00:36 - 2019-07-04 06:42 - 002479176 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-07-16 00:36 - 2019-07-04 06:42 - 001980984 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-07-16 00:36 - 2019-07-04 06:42 - 001427768 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2019-07-16 00:36 - 2019-07-04 06:42 - 000573808 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-07-16 00:36 - 2019-07-04 06:42 - 000356312 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2019-07-16 00:36 - 2019-07-04 06:41 - 000559328 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-07-16 00:36 - 2019-07-04 06:26 - 000310272 ____C (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-07-16 00:36 - 2019-07-04 06:25 - 003401216 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-07-16 00:36 - 2019-07-04 06:25 - 000295424 ____C (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-07-16 00:36 - 2019-07-04 06:24 - 000567808 ____C (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-07-16 00:36 - 2019-07-04 06:24 - 000153600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-07-16 00:36 - 2019-07-04 06:23 - 001765888 ____C (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-07-16 00:36 - 2019-07-04 06:23 - 001217536 ____C (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-07-16 00:36 - 2019-07-04 06:22 - 003707904 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-07-16 00:36 - 2019-07-04 06:22 - 002587648 ____C (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-07-16 00:36 - 2019-07-04 06:22 - 002176000 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-07-16 00:36 - 2019-07-04 06:22 - 001561088 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-07-16 00:36 - 2019-07-04 06:22 - 001549824 ____C (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-07-16 00:36 - 2019-07-04 06:22 - 001175552 ____C (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-07-16 00:36 - 2019-07-04 06:21 - 005307392 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-07-16 00:36 - 2019-07-04 06:21 - 003202560 ____C (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-07-16 00:36 - 2019-07-04 06:21 - 002166784 ____C (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-07-16 00:36 - 2019-07-04 06:21 - 001920000 ____C (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-07-16 00:36 - 2019-07-04 06:21 - 001220608 ____C (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-07-16 00:36 - 2019-07-04 06:20 - 001156608 ____C (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-07-16 00:36 - 2019-07-04 06:20 - 000544256 ____C (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-07-16 00:36 - 2019-07-04 06:20 - 000392704 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-07-16 00:36 - 2019-07-04 06:19 - 000886272 ____C (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-07-16 00:36 - 2019-07-04 06:18 - 002602496 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-07-16 00:36 - 2019-07-04 06:18 - 000953344 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-07-16 00:36 - 2019-07-04 06:17 - 000531968 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-07-16 00:36 - 2019-06-13 14:15 - 000324408 ____C (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-07-16 00:36 - 2019-06-13 14:12 - 002871848 ____C (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-07-16 00:36 - 2019-06-13 14:05 - 000810296 ____C (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-07-16 00:36 - 2019-06-13 14:00 - 000464696 ____C (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-07-16 00:36 - 2019-06-13 13:59 - 000740664 ____C (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-07-16 00:36 - 2019-06-13 13:58 - 000637752 ____C (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-07-16 00:36 - 2019-06-13 13:58 - 000071480 ____C (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-07-16 00:36 - 2019-06-13 13:56 - 000164152 ____C (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-07-16 00:36 - 2019-06-13 13:43 - 001048480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-07-16 00:36 - 2019-06-13 13:42 - 000566536 ____C (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2019-07-16 00:36 - 2019-06-13 13:40 - 000540984 ____C (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-07-16 00:36 - 2019-06-13 13:38 - 000766264 ____C (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-07-16 00:36 - 2019-06-13 13:36 - 000251000 ____C (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2019-07-16 00:36 - 2019-06-13 13:35 - 001376688 ____C (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-07-16 00:36 - 2019-06-13 13:16 - 000767488 ____C (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2019-07-16 00:36 - 2019-06-13 13:14 - 001127936 ____C (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-07-16 00:36 - 2019-06-13 13:14 - 000900096 ____C (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2019-07-16 00:36 - 2019-06-13 13:14 - 000346624 ____C (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-07-16 00:36 - 2019-06-13 13:13 - 001339392 ____C (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2019-07-16 00:36 - 2019-06-13 13:13 - 000951808 ____C (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-07-16 00:36 - 2019-06-13 13:13 - 000765440 ____C (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-07-16 00:36 - 2019-06-13 12:07 - 001027008 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-07-16 00:36 - 2019-06-13 12:07 - 000660496 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-07-16 00:36 - 2019-06-13 12:05 - 003700160 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-07-16 00:36 - 2019-06-13 11:55 - 005657088 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-07-16 00:36 - 2019-06-13 11:51 - 000622080 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-07-16 00:36 - 2019-06-13 11:50 - 000896512 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-07-16 00:36 - 2019-06-13 11:49 - 002406400 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-07-16 00:36 - 2019-06-13 09:46 - 000713216 ____C (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2019-07-16 00:36 - 2019-06-13 09:01 - 000513336 ____C (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-07-16 00:36 - 2019-06-13 09:01 - 000511288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-07-16 00:36 - 2019-06-13 08:59 - 000785264 ____C (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-07-16 00:36 - 2019-06-13 08:47 - 001063224 ____C (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-07-16 00:36 - 2019-06-13 08:46 - 001076536 ____C (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2019-07-16 00:36 - 2019-06-13 08:46 - 000510296 ____C (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-07-16 00:36 - 2019-06-13 08:46 - 000093984 ____C (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-07-16 00:36 - 2019-06-13 08:45 - 002421560 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-07-16 00:36 - 2019-06-13 08:44 - 002769688 ____C (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-07-16 00:36 - 2019-06-13 08:44 - 002546704 ____C (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-07-16 00:36 - 2019-06-13 08:44 - 001098272 ____C (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-07-16 00:36 - 2019-06-13 08:44 - 001033696 ____C (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-07-16 00:36 - 2019-06-13 08:44 - 000607112 ____C (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2019-07-16 00:36 - 2019-06-13 08:44 - 000545808 ____C (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-07-16 00:36 - 2019-06-13 08:44 - 000130624 ____C (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-07-16 00:36 - 2019-06-13 08:16 - 001626112 ____C (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-07-16 00:36 - 2019-06-13 08:15 - 000433152 ____C (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-07-16 00:36 - 2019-06-13 08:14 - 003318784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-07-16 00:36 - 2019-06-13 08:14 - 000361472 ____C (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-07-16 00:36 - 2019-06-13 08:14 - 000302080 ____C (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2019-07-16 00:36 - 2019-06-13 08:13 - 004771840 ____C (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-07-16 00:36 - 2019-06-13 08:13 - 002370048 ____C (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-07-16 00:36 - 2019-06-13 08:13 - 000322560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-07-16 00:36 - 2019-06-13 08:13 - 000110592 ____C (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-07-16 00:36 - 2019-06-13 08:12 - 000916480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-07-16 00:36 - 2019-06-13 08:12 - 000894464 ____C (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-07-16 00:36 - 2019-06-13 08:12 - 000808448 ____C (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-07-16 00:36 - 2019-06-13 08:12 - 000624640 ____C (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-07-16 00:36 - 2019-06-13 08:12 - 000532992 ____C (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2019-07-16 00:36 - 2019-06-13 08:10 - 002912256 ____C (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-07-16 00:36 - 2019-06-13 08:10 - 001400832 ____C (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-07-16 00:36 - 2019-06-13 08:10 - 001215488 ____C (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-07-16 00:36 - 2019-06-13 08:10 - 000871424 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2019-07-16 00:36 - 2019-06-13 08:10 - 000869376 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-07-16 00:36 - 2019-06-13 08:10 - 000849408 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2019-07-16 00:36 - 2019-06-13 08:10 - 000523776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-07-16 00:36 - 2019-06-13 08:09 - 001854976 ____C (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-07-16 00:36 - 2019-06-13 08:09 - 000922112 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-07-16 00:36 - 2019-06-13 08:08 - 000506368 ____C (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-07-16 00:36 - 2019-06-13 07:14 - 000415544 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-07-16 00:36 - 2019-06-13 07:08 - 000443632 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-07-16 00:36 - 2019-06-13 07:07 - 000080744 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-07-16 00:36 - 2019-06-13 07:06 - 002256768 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-07-16 00:36 - 2019-06-13 07:06 - 001130776 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-07-16 00:36 - 2019-06-13 07:06 - 000581600 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-07-16 00:36 - 2019-06-13 06:47 - 003554304 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2019-07-16 00:36 - 2019-06-13 06:47 - 002899456 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-07-16 00:36 - 2019-06-13 06:46 - 000608768 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-07-16 00:36 - 2019-06-13 06:46 - 000331776 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-07-16 00:36 - 2019-06-13 06:44 - 001003008 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-07-16 00:36 - 2019-06-13 06:44 - 000648192 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2019-07-16 00:36 - 2019-06-13 06:44 - 000630784 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2019-07-16 00:36 - 2019-06-13 06:43 - 000681472 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-07-16 00:36 - 2019-06-13 06:43 - 000646656 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2019-07-16 00:36 - 2019-06-07 12:41 - 004055552 ____C (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-07-16 00:36 - 2019-06-07 12:40 - 001364992 ____C (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-07-16 00:36 - 2019-06-07 12:04 - 004056064 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-07-16 00:36 - 2019-06-07 08:07 - 000707384 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-07-16 00:36 - 2019-06-07 07:57 - 002719032 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-07-16 00:36 - 2019-06-07 07:57 - 001934808 ____C (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-07-16 00:36 - 2019-06-07 07:57 - 001209696 ____C (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-07-16 00:36 - 2019-06-07 07:57 - 000792888 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-07-16 00:36 - 2019-06-07 07:57 - 000594024 ____C (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-07-16 00:36 - 2019-06-07 07:57 - 000435000 ____C (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-07-16 00:36 - 2019-06-07 07:57 - 000383504 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-07-16 00:36 - 2019-06-07 07:47 - 000380432 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-07-16 00:36 - 2019-06-07 07:46 - 001805656 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-07-16 00:36 - 2019-06-07 07:46 - 001011872 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-07-16 00:36 - 2019-06-07 07:23 - 000561152 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-07-16 00:36 - 2019-06-07 07:21 - 000473600 ____C (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2019-07-16 00:36 - 2019-06-07 07:19 - 000778240 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-07-16 00:36 - 2019-06-07 07:18 - 000686592 ____C (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-07-16 00:36 - 2019-06-07 07:17 - 000961024 ____C (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-07-16 00:36 - 2019-06-07 07:17 - 000889344 ____C (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-07-16 00:36 - 2019-06-07 07:16 - 000900096 ____C (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-07-16 00:36 - 2019-06-07 07:16 - 000478720 ____C (Microsoft Corporation) C:\WINDOWS\system32\taskcomp.dll
2019-07-16 00:36 - 2019-05-19 00:12 - 000353280 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-07-16 00:36 - 2019-05-17 14:40 - 002394960 ____C (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-07-16 00:36 - 2019-05-17 14:25 - 004491264 ____C (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-07-16 00:36 - 2019-05-17 14:21 - 001180672 ____C (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-07-16 00:36 - 2019-05-17 14:21 - 000878592 ____C (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-07-16 00:36 - 2019-05-17 14:19 - 000757248 ____C (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2019-07-16 00:36 - 2019-05-17 13:58 - 003397632 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-07-16 00:36 - 2019-05-17 13:55 - 000704000 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-07-16 00:36 - 2019-05-17 08:44 - 000829960 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2019-07-16 00:36 - 2019-05-17 08:44 - 000550520 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-07-16 00:36 - 2019-05-17 08:42 - 004789944 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-07-16 00:36 - 2019-05-17 08:42 - 001989552 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-07-16 00:36 - 2019-05-17 08:42 - 001620264 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-07-16 00:36 - 2019-05-17 08:42 - 001380096 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-07-16 00:36 - 2019-05-17 08:26 - 002969600 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-07-16 00:36 - 2019-05-17 08:19 - 001630720 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-07-16 00:36 - 2019-05-17 08:19 - 001110528 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2019-07-16 00:36 - 2019-05-17 08:19 - 000835584 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-07-16 00:36 - 2019-05-17 08:18 - 002796032 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2019-07-16 00:36 - 2019-05-17 08:18 - 001006592 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-07-16 00:36 - 2019-05-17 08:08 - 000491200 ____C (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-07-16 00:36 - 2019-05-17 08:07 - 004404720 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-07-16 00:36 - 2019-05-17 08:07 - 002467320 ____C (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-07-16 00:36 - 2019-05-17 08:07 - 001288712 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-07-16 00:36 - 2019-05-17 08:07 - 000930616 ____C (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2019-07-16 00:36 - 2019-05-17 08:07 - 000275768 ____C (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-07-16 00:36 - 2019-05-17 08:07 - 000260800 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-07-16 00:36 - 2019-05-17 08:06 - 001943136 ____C (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-07-16 00:36 - 2019-05-17 08:06 - 001784696 ____C (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-07-16 00:36 - 2019-05-17 08:04 - 001826816 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-07-16 00:36 - 2019-05-17 07:34 - 001804288 ____C (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-07-16 00:36 - 2019-05-17 07:34 - 000671744 ____C (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2019-07-16 00:36 - 2019-05-17 07:33 - 003091456 ____C (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-07-16 00:36 - 2019-05-17 07:33 - 001487360 ____C (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2019-07-16 00:36 - 2019-05-17 07:33 - 000787968 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-07-16 00:36 - 2019-05-17 07:32 - 001070080 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2019-07-16 00:36 - 2019-05-17 07:32 - 000815104 ____C (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-07-16 00:36 - 2019-05-17 07:31 - 003376640 ____C (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2019-07-16 00:36 - 2019-05-17 07:31 - 003293184 ____C (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2019-07-16 00:36 - 2019-05-17 07:31 - 001805312 ____C (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-07-16 00:36 - 2019-05-17 07:31 - 001383424 ____C (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-07-16 00:36 - 2019-05-17 07:31 - 001211904 ____C (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-07-16 00:36 - 2019-05-17 07:31 - 001027584 ____C (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2019-07-16 00:36 - 2019-05-17 07:31 - 000620032 ____C (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-07-16 00:36 - 2019-05-17 07:30 - 000917504 ____C (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-07-16 00:36 - 2019-05-17 07:30 - 000276992 ____C (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2019-07-16 00:36 - 2019-05-03 13:49 - 001288704 ____C (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-07-16 00:36 - 2019-05-03 08:32 - 000493880 ____C (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-07-16 00:36 - 2019-05-03 08:00 - 006661632 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-07-16 00:36 - 2019-05-03 07:54 - 000845824 ____C (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-07-16 00:36 - 2019-05-03 07:54 - 000776192 ____C (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-07-16 00:36 - 2019-05-03 07:54 - 000669184 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-07-16 00:36 - 2019-05-03 07:53 - 000204800 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-07-16 00:36 - 2019-05-03 07:53 - 000186880 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-07-16 00:36 - 2019-05-03 07:53 - 000184320 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-07-16 00:36 - 2019-05-03 07:53 - 000181760 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-07-16 00:36 - 2019-04-19 12:54 - 000720200 ____C (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-07-16 00:36 - 2019-04-19 12:34 - 000522240 ____C (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-07-16 00:36 - 2019-04-19 11:37 - 000607960 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-07-16 00:36 - 2019-04-19 11:25 - 000423936 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-07-16 00:36 - 2019-04-19 07:06 - 000798520 ____C (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2019-07-16 00:36 - 2019-04-19 07:01 - 000576016 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2019-07-16 00:36 - 2019-04-19 06:43 - 000150016 ____C (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-07-16 00:36 - 2019-04-19 06:40 - 000243712 ____C (Microsoft Corporation) C:\WINDOWS\system32\JpnServiceDS.dll
2019-07-16 00:36 - 2019-04-19 06:38 - 000593408 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-07-16 00:36 - 2019-04-19 06:38 - 000304128 ____C (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-07-16 00:36 - 2019-04-19 06:37 - 000397312 ____C (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-07-16 00:36 - 2019-04-19 06:37 - 000381952 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2019-07-16 00:36 - 2019-04-19 06:36 - 000827392 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-07-16 00:36 - 2019-04-19 06:36 - 000546816 ____C (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2019-07-16 00:36 - 2019-04-19 06:35 - 001458688 ____C (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-07-16 00:36 - 2019-04-19 06:35 - 000784896 ____C (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2019-07-16 00:36 - 2019-04-19 06:34 - 000935936 ____C (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-07-16 00:36 - 2019-04-19 06:34 - 000653312 ____C (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2019-07-16 00:36 - 2019-04-19 05:18 - 000806360 ____C C:\WINDOWS\SysWOW64\locale.nls
2019-07-16 00:36 - 2019-04-19 05:18 - 000806360 ____C C:\WINDOWS\system32\locale.nls
2019-07-16 00:35 - 2019-07-04 11:43 - 000094008 ____C (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-07-16 00:35 - 2019-07-04 11:22 - 000131072 ____C (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-07-16 00:35 - 2019-07-04 11:22 - 000128000 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-07-16 00:35 - 2019-07-04 06:58 - 000416312 ____C (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2019-07-16 00:35 - 2019-07-04 06:58 - 000192824 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-07-16 00:35 - 2019-07-04 06:57 - 000209424 ____C (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-07-16 00:35 - 2019-07-04 06:57 - 000194360 ____C (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-07-16 00:35 - 2019-07-04 06:57 - 000137656 ____C (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2019-07-16 00:35 - 2019-07-04 06:57 - 000134968 ____C (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-07-16 00:35 - 2019-07-04 06:57 - 000091776 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2019-07-16 00:35 - 2019-07-04 06:56 - 000115512 ____C (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-07-16 00:35 - 2019-07-04 06:43 - 000328696 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2019-07-16 00:35 - 2019-07-04 06:43 - 000191800 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-07-16 00:35 - 2019-07-04 06:42 - 000097272 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2019-07-16 00:35 - 2019-07-04 06:26 - 000051200 ____C (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-07-16 00:35 - 2019-07-04 06:25 - 000079872 ____C (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-07-16 00:35 - 2019-07-04 06:24 - 000726528 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2019-07-16 00:35 - 2019-07-04 06:24 - 000462336 ____C (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-07-16 00:35 - 2019-07-04 06:23 - 000786432 ____C (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-07-16 00:35 - 2019-07-04 06:22 - 000300544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-07-16 00:35 - 2019-07-04 06:22 - 000110592 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-07-16 00:35 - 2019-07-04 06:22 - 000032768 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-07-16 00:35 - 2019-07-04 06:21 - 000324096 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-07-16 00:35 - 2019-07-04 06:21 - 000124416 ____C (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-07-16 00:35 - 2019-07-04 06:21 - 000059392 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-07-16 00:35 - 2019-07-04 06:20 - 000330752 ____C (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2019-07-16 00:35 - 2019-07-04 06:19 - 000230912 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-07-16 00:35 - 2019-07-04 06:18 - 001076224 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-07-16 00:35 - 2019-07-04 06:18 - 000965632 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-07-16 00:35 - 2019-07-04 06:18 - 000275968 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2019-07-16 00:35 - 2019-07-04 05:01 - 000001312 ____C C:\WINDOWS\system32\tcbres.wim
2019-07-16 00:35 - 2019-06-21 10:50 - 000280584 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2019-07-16 00:35 - 2019-06-13 13:37 - 000101192 ____C (Microsoft Corporation) C:\WINDOWS\system32\changepk.exe
2019-07-16 00:35 - 2019-06-13 13:36 - 000236520 ____C (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2019-07-16 00:35 - 2019-06-13 13:34 - 000146888 ____C (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2019-07-16 00:35 - 2019-06-13 13:17 - 000178176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2019-07-16 00:35 - 2019-06-13 13:17 - 000115200 ____C (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2019-07-16 00:35 - 2019-06-13 13:17 - 000109056 ____C (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2019-07-16 00:35 - 2019-06-13 13:17 - 000093184 ____C (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2019-07-16 00:35 - 2019-06-13 13:15 - 000041984 ____C (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2019-07-16 00:35 - 2019-06-13 13:14 - 000246272 ____C (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2019-07-16 00:35 - 2019-06-13 13:13 - 000181248 ____C (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2019-07-16 00:35 - 2019-06-13 13:12 - 000394240 ____C (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2019-07-16 00:35 - 2019-06-13 13:10 - 000239104 ____C (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2019-07-16 00:35 - 2019-06-13 12:07 - 000221232 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2019-07-16 00:35 - 2019-06-13 11:54 - 000151552 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2019-07-16 00:35 - 2019-06-13 11:53 - 000089600 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-07-16 00:35 - 2019-06-13 11:49 - 000371200 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2019-07-16 00:35 - 2019-06-13 09:48 - 000677376 ____C (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2019-07-16 00:35 - 2019-06-13 09:01 - 000036152 ____C (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-07-16 00:35 - 2019-06-13 08:17 - 000106496 ____C (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-07-16 00:35 - 2019-06-13 08:16 - 000140288 ____C (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-07-16 00:35 - 2019-06-13 08:15 - 000514560 ____C (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-07-16 00:35 - 2019-06-13 08:15 - 000204288 ____C (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2019-07-16 00:35 - 2019-06-13 08:15 - 000137728 ____C (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2019-07-16 00:35 - 2019-06-13 08:15 - 000083456 ____C (Microsoft Corporation) C:\WINDOWS\system32\KdsCli.dll
2019-07-16 00:35 - 2019-06-13 08:14 - 000409088 ____C (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2019-07-16 00:35 - 2019-06-13 08:13 - 000761344 ____C (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-07-16 00:35 - 2019-06-13 08:12 - 000501248 ____C (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2019-07-16 00:35 - 2019-06-13 08:11 - 000508416 ____C (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-07-16 00:35 - 2019-06-13 08:11 - 000271872 ____C (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2019-07-16 00:35 - 2019-06-13 08:11 - 000048128 ____C (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2019-07-16 00:35 - 2019-06-13 08:09 - 000755712 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-07-16 00:35 - 2019-06-13 07:07 - 000101192 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-07-16 00:35 - 2019-06-13 06:49 - 000172544 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2019-07-16 00:35 - 2019-06-13 06:47 - 000450048 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2019-07-16 00:35 - 2019-06-13 06:46 - 000038400 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2019-07-16 00:35 - 2019-06-13 06:45 - 000602112 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-07-16 00:35 - 2019-06-13 06:45 - 000578560 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-07-16 00:35 - 2019-06-13 06:44 - 000582144 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-07-16 00:35 - 2019-06-13 06:44 - 000251904 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-07-16 00:35 - 2019-06-13 06:43 - 000445952 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-07-16 00:35 - 2019-06-07 12:48 - 000064000 ____C (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-07-16 00:35 - 2019-06-07 12:47 - 000059904 ____C (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-07-16 00:35 - 2019-06-07 12:10 - 000046080 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-07-16 00:35 - 2019-06-07 07:58 - 000422416 ____C (Microsoft Corporation) C:\WINDOWS\system32\wmicmiplugin.dll
2019-07-16 00:35 - 2019-06-07 07:58 - 000076304 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-07-16 00:35 - 2019-06-07 07:57 - 000413720 ____C (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-07-16 00:35 - 2019-06-07 07:57 - 000412984 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-07-16 00:35 - 2019-06-07 07:57 - 000170296 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-07-16 00:35 - 2019-06-07 07:57 - 000148280 ____C (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-07-16 00:35 - 2019-06-07 07:46 - 000128792 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-07-16 00:35 - 2019-06-07 07:24 - 001361408 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-07-16 00:35 - 2019-06-07 07:23 - 000209408 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-07-16 00:35 - 2019-06-07 07:22 - 000233984 ____C (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2019-07-16 00:35 - 2019-06-07 07:22 - 000216064 ____C (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2019-07-16 00:35 - 2019-06-07 07:21 - 000154112 ____C (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-07-16 00:35 - 2019-06-07 07:20 - 001708544 ____C (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-07-16 00:35 - 2019-06-07 07:20 - 000726528 ____C (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-07-16 00:35 - 2019-06-07 07:19 - 000369664 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskcomp.dll
2019-07-16 00:35 - 2019-05-19 00:12 - 001311744 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-07-16 00:35 - 2019-05-19 00:12 - 000341504 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-07-16 00:35 - 2019-05-19 00:12 - 000241152 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-07-16 00:35 - 2019-05-17 14:44 - 000348160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-07-16 00:35 - 2019-05-17 14:25 - 000039424 ____C (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2019-07-16 00:35 - 2019-05-17 14:24 - 000122368 ____C (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-07-16 00:35 - 2019-05-17 14:23 - 000110080 ____C (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-07-16 00:35 - 2019-05-17 14:22 - 000392192 ____C (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-07-16 00:35 - 2019-05-17 14:22 - 000182784 ____C (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2019-07-16 00:35 - 2019-05-17 14:21 - 001121792 ____C (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-07-16 00:35 - 2019-05-17 14:21 - 000274944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dot3gpui.dll
2019-07-16 00:35 - 2019-05-17 14:21 - 000221184 ____C (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2019-07-16 00:35 - 2019-05-17 14:20 - 002084864 ____C (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-07-16 00:35 - 2019-05-17 14:07 - 002206424 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-07-16 00:35 - 2019-05-17 13:56 - 000344576 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2019-07-16 00:35 - 2019-05-17 13:56 - 000240640 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3gpui.dll
2019-07-16 00:35 - 2019-05-17 13:55 - 000668160 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2019-07-16 00:35 - 2019-05-17 13:55 - 000470528 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcSpecfc.dll
2019-07-16 00:35 - 2019-05-17 13:54 - 002016768 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-07-16 00:35 - 2019-05-17 13:54 - 000908288 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-07-16 00:35 - 2019-05-17 11:33 - 001008640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-07-16 00:35 - 2019-05-17 10:52 - 000868864 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-07-16 00:35 - 2019-05-17 09:07 - 000105272 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-07-16 00:35 - 2019-05-17 08:43 - 000297688 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll
2019-07-16 00:35 - 2019-05-17 08:42 - 000129088 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2019-07-16 00:35 - 2019-05-17 08:42 - 000125504 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2019-07-16 00:35 - 2019-05-17 08:23 - 000074240 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-07-16 00:35 - 2019-05-17 08:23 - 000068096 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-07-16 00:35 - 2019-05-17 08:23 - 000002560 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-07-16 00:35 - 2019-05-17 08:22 - 000142848 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2019-07-16 00:35 - 2019-05-17 08:22 - 000031232 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2019-07-16 00:35 - 2019-05-17 08:21 - 000326144 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe
2019-07-16 00:35 - 2019-05-17 08:21 - 000224768 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2019-07-16 00:35 - 2019-05-17 08:20 - 000366080 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-07-16 00:35 - 2019-05-17 08:20 - 000118272 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-07-16 00:35 - 2019-05-17 08:19 - 000873472 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2019-07-16 00:35 - 2019-05-17 08:08 - 000401328 ____C (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2019-07-16 00:35 - 2019-05-17 08:06 - 001307648 ____C (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2019-07-16 00:35 - 2019-05-17 08:06 - 000151888 ____C (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2019-07-16 00:35 - 2019-05-17 08:00 - 001295360 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2019-07-16 00:35 - 2019-05-17 07:37 - 000185344 ____C (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2019-07-16 00:35 - 2019-05-17 07:37 - 000108544 ____C (Microsoft Corporation) C:\WINDOWS\system32\DuCsps.dll
2019-07-16 00:35 - 2019-05-17 07:36 - 000228864 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-07-16 00:35 - 2019-05-17 07:36 - 000115200 ____C (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-07-16 00:35 - 2019-05-17 07:36 - 000096768 ____C (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-07-16 00:35 - 2019-05-17 07:36 - 000067584 ____C (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2019-07-16 00:35 - 2019-05-17 07:36 - 000040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-07-16 00:35 - 2019-05-17 07:36 - 000034816 ____C (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-07-16 00:35 - 2019-05-17 07:36 - 000002560 ____C (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-07-16 00:35 - 2019-05-17 07:35 - 000362496 ____C (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2019-07-16 00:35 - 2019-05-17 07:34 - 000275456 ____C (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2019-07-16 00:35 - 2019-05-17 07:34 - 000270336 ____C (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2019-07-16 00:35 - 2019-05-17 07:34 - 000175104 ____C (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-07-16 00:35 - 2019-05-17 07:34 - 000141312 ____C (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-07-16 00:35 - 2019-05-17 07:34 - 000047616 ____C (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2019-07-16 00:35 - 2019-05-17 07:33 - 000270336 ____C (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2019-07-16 00:35 - 2019-05-17 07:31 - 000466432 ____C (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-07-16 00:35 - 2019-05-03 14:13 - 000396088 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2019-07-16 00:35 - 2019-05-03 13:55 - 000123392 ____C (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-07-16 00:35 - 2019-05-03 13:54 - 000177664 ____C (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-07-16 00:35 - 2019-05-03 13:52 - 000119808 ____C (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-07-16 00:35 - 2019-05-03 13:49 - 000488448 ____C (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-07-16 00:35 - 2019-05-03 13:49 - 000210944 ____C (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-07-16 00:35 - 2019-05-03 13:30 - 000138752 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-07-16 00:35 - 2019-05-03 13:30 - 000098304 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-07-16 00:35 - 2019-05-03 13:27 - 000176640 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-07-16 00:35 - 2019-05-03 13:26 - 000425472 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-07-16 00:35 - 2019-05-03 08:43 - 000177128 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-07-16 00:35 - 2019-05-03 08:34 - 000159864 ____C (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-07-16 00:35 - 2019-05-03 08:33 - 000063072 ____C (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-07-16 00:35 - 2019-05-03 08:32 - 000438984 ____C (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-07-16 00:35 - 2019-05-03 08:32 - 000164664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-07-16 00:35 - 2019-05-03 08:20 - 000434704 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-07-16 00:35 - 2019-05-03 08:20 - 000384976 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-07-16 00:35 - 2019-05-03 08:20 - 000146920 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-07-16 00:35 - 2019-05-03 08:19 - 000056288 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-07-16 00:35 - 2019-05-03 08:00 - 000120832 ____C (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-07-16 00:35 - 2019-05-03 08:00 - 000099328 ____C (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2019-07-16 00:35 - 2019-05-03 07:59 - 000204288 ____C (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-07-16 00:35 - 2019-05-03 07:56 - 000773632 ____C (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-07-16 00:35 - 2019-05-03 07:55 - 000659968 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-07-16 00:35 - 2019-05-03 07:54 - 000778752 ____C (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2019-07-16 00:35 - 2019-05-03 07:54 - 000667136 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-07-16 00:35 - 2019-04-19 12:38 - 000058368 ____C (Microsoft Corporation) C:\WINDOWS\system32\RDSPnf.exe
2019-07-16 00:35 - 2019-04-19 12:38 - 000040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2019-07-16 00:35 - 2019-04-19 11:30 - 000036864 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfproc.dll
2019-07-16 00:35 - 2019-04-19 06:41 - 000095232 ____C (Microsoft Corporation) C:\WINDOWS\system32\EduPrintProv.exe
2019-07-16 00:35 - 2019-04-19 06:40 - 000342528 ____C (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-07-16 00:35 - 2019-04-19 06:40 - 000167936 ____C (Microsoft Corporation) C:\WINDOWS\system32\FilterDS.dll
2019-07-16 00:35 - 2019-04-19 06:40 - 000081408 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll
2019-07-16 00:35 - 2019-04-19 06:39 - 000425472 ____C (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2019-07-16 00:35 - 2019-04-19 06:39 - 000374784 ____C (Microsoft Corporation) C:\WINDOWS\system32\BingASDS.dll
2019-07-16 00:35 - 2019-04-19 06:38 - 000300544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-07-16 00:35 - 2019-04-19 06:37 - 000221184 ____C (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-07-16 00:35 - 2019-04-19 06:36 - 001300992 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2019-07-16 00:35 - 2019-04-19 06:36 - 000357888 ____C (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-07-16 00:35 - 2019-04-19 06:36 - 000186368 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-07-16 00:35 - 2019-04-19 06:35 - 001938944 ____C (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2019-07-16 00:35 - 2019-04-19 06:35 - 000535040 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2019-07-16 00:35 - 2019-04-19 06:35 - 000312320 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-07-16 00:35 - 2019-04-09 03:48 - 000376320 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-07-16 00:01 - 2019-07-15 23:57 - 007025360 ____C (Malwarebytes) C:\Users\Uzivatel\Desktop\adwcleaner_7.3.exe

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-19 18:04 - 2018-05-21 07:07 - 000004208 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{530343BF-965E-4F46-B704-C25D7D73F7E4}
2019-07-19 18:04 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-07-19 17:59 - 2012-12-19 17:49 - 000000000 ___DC C:\Program Files (x86)\Microsoft Office
2019-07-19 17:57 - 2015-08-19 10:45 - 000000000 ___DC C:\FRST
2019-07-19 17:55 - 2018-05-21 06:39 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-07-19 17:38 - 2015-10-13 20:15 - 000000000 ___DC C:\Users\Uzivatel\AppData\Local\Spotify
2019-07-19 17:38 - 2015-10-13 20:11 - 000000000 ___DC C:\Users\Uzivatel\AppData\Roaming\Spotify
2019-07-19 17:37 - 2018-10-07 15:58 - 000000000 ____D C:\Users\Uzivatel\AppData\Local\D3DSCache
2019-07-19 17:36 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-07-19 17:31 - 2018-05-21 07:07 - 000000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2019-07-19 17:31 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-07-19 17:31 - 2017-10-29 17:37 - 000000000 ____D C:\ProgramData\NVIDIA
2019-07-19 17:30 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-07-19 17:24 - 2018-01-06 21:40 - 000000000 ____D C:\Users\Uzivatel\AppData\Local\Packages
2019-07-19 16:51 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-07-19 16:51 - 2013-12-11 22:09 - 000000000 ___DC C:\Program Files (x86)\TeamViewer
2019-07-16 17:48 - 2016-12-28 19:45 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-07-16 17:48 - 2016-12-28 19:45 - 000002260 ____C C:\Users\Public\Desktop\Google Chrome.lnk
2019-07-16 17:31 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-07-16 17:05 - 2012-07-25 15:01 - 000000000 ___DC C:\Users\Uzivatel\AppData\LocalLow\Temp
2019-07-16 08:55 - 2018-05-21 06:44 - 001776048 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-07-16 08:55 - 2018-04-12 17:50 - 000743502 _____ C:\WINDOWS\system32\perfh005.dat
2019-07-16 08:55 - 2018-04-12 17:50 - 000159208 _____ C:\WINDOWS\system32\perfc005.dat
2019-07-16 08:50 - 2018-01-06 22:04 - 000000000 ___RD C:\Users\Uzivatel\3D Objects
2019-07-16 08:50 - 2015-11-26 17:27 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-07-16 08:49 - 2018-05-21 06:39 - 000619864 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-07-16 01:25 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-07-16 01:25 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-07-16 01:25 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-07-16 01:25 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-07-16 01:25 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-07-16 01:25 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-07-16 01:25 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-07-16 01:25 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-07-16 01:25 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\Provisioning
2019-07-16 01:25 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-07-16 01:25 - 2018-04-11 23:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-07-16 01:08 - 2017-09-30 10:44 - 000000000 ____D C:\Program Files\rempl
2019-07-16 01:06 - 2013-07-28 08:54 - 000000000 ___DC C:\WINDOWS\system32\MRT
2019-07-16 00:59 - 2012-05-24 16:11 - 136618864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-07-16 00:29 - 2018-03-09 20:06 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-07-16 00:17 - 2018-05-21 06:45 - 000000000 ____D C:\Users\Uzivatel
2019-07-16 00:05 - 2017-01-12 16:26 - 000000000 ___DC C:\AdwCleaner
2019-07-15 23:40 - 2018-05-21 07:07 - 000003768 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1332348435-3952591356-909228679-1000UA1d25949cceec550
2019-07-15 23:40 - 2018-05-21 07:07 - 000003500 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1332348435-3952591356-909228679-1000Core1d25949cccf9d30
2019-07-15 23:40 - 2018-05-21 07:07 - 000003472 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-07-15 23:40 - 2018-05-21 07:07 - 000003348 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-07-15 23:38 - 2010-11-21 05:27 - 000741432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-07-15 23:35 - 2017-07-11 22:57 - 000000000 ____D C:\Program Files\UNP
2019-07-15 23:20 - 2018-05-21 07:07 - 000003376 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1332348435-3952591356-909228679-1000
2019-07-15 23:19 - 2018-05-21 06:45 - 000002411 _____ C:\Users\Uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-07-15 23:19 - 2015-11-26 17:35 - 000000000 ___RD C:\Users\Uzivatel\OneDrive
2019-07-15 23:18 - 2018-05-21 07:07 - 000004652 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-07-15 23:17 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-07-15 23:16 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed

==================== Files in the root of some directories ================

2013-04-07 21:35 - 2013-04-07 21:35 - 000003492 ____C () C:\Users\Uzivatel\AppData\Local\recently-used.xbel

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================

[Conder]

Otvor poznamkovy blok (Win+R -> notepad -> enter)

• Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

  Kód: Vybrat vše

  Start
  CloseProcesses:
  CreateRestorePoint:
  
  C:\Users\Uzivatel\AppData\Local\Microsoft\Office\Spw
  C:\Users\Uzivatel\AppData\Local\Microsoft\Office\15.0\OfficeFileCache
  
  Hosts:
  EmptyTemp:
  End

• Uloz na plochu s nazvom fixlist.txt
• Spusti znovu FRST a klikni na Fix
• Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
• Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj

[vineran]

Fix result of Farbar Recovery Scan Tool (x64) Version: 15-07-2019 01
Ran by Uzivatel (22-07-2019 15:59:10) Run:3
Running from C:\Users\Uzivatel\Desktop
Loaded Profiles: Uzivatel (Available Profiles: Uzivatel & UpdatusUser)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

C:\Users\Uzivatel\AppData\Local\Microsoft\Office\Spw
C:\Users\Uzivatel\AppData\Local\Microsoft\Office\15.0\OfficeFileCache

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.
"C:\Users\Uzivatel\AppData\Local\Microsoft\Office\Spw" => not found
"C:\Users\Uzivatel\AppData\Local\Microsoft\Office\15.0\OfficeFileCache" => not found
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 9461760 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 77179796 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 5055124 B
Edge => 0 B
Chrome => 14276588 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 25838 B
NetworkService => 0 B
Uzivatel => 207060 B
UpdatusUser => 0 B

RecycleBin => 0 B
EmptyTemp: => 101.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:00:21 ====

[Conder]

Pretrvava este problem?

Skontroluj, ci nie su dostupne nejake aktualizacie cez Windows Update (otvor Start -> Nastavenia -> Aktualizacia a zabezpecenie -> Vyhladat aktualizacie). Na tomto mieste tiez otvor Rozsirene nastavenia a skontroluj, ci je zapnuta prva moznost "Poskytovat aktualizacie pre dalsie produkty Microsoft ..." (ak nie je, tak ju zapni a znova daj vyhladat aktualizacie).

[vineran]

vypadá to že je v klidu

[Conder]

Tak este upraceme po pouzitych nastrojoch:

• Stiahni DelFix: https://toolslib.net/downloads/finish/2-delfix/
• Uloz na plochu a spusti
• Nechaj oznacenu moznost "Remove disinfection tools"
• Klikni na "Run"