Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Pomalý počítač

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Uživatelský avatar
Flack007
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 93
Registrován: 14 črc 2010 13:10

Pomalý počítač

#1 Příspěvek od Flack007 »

Zdravím, dostal se mi do rukou tento počítač, který prostě neběží jak má. Pomalé zapínání, načítání stránek v prohlížeči a naprosto zaplněn nesmyslnými programy.
Stejně se mi myslím, že v něm něco je. Můžete se prosím podívat.

Logfile of random's system information tool 1.10 (written by random/random)
Run by HP at 2019-08-27 10:58:20
Microsoft Windows 10 Home
System drive C: has 836 GB (89%) free of 937 GB
Total RAM: 7113 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:59:03, on 27.08.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17763.0592)
Boot mode: Normal

Running processes:
C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
C:\Program Files\trend micro\HP.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HRTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/?pc=HRTE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08262019233152755\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User '?')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08262019233153374\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User '?')
O4 - HKUS\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08262019233154846\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR (User '?')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: AdaptiveSleepService - Unknown owner - c:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google LLC - C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @oem29.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\System32\ibtsiva (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 9722 bytes

======Listing Processes======








C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s bthserv
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s hidserv
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -s BTAGService
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s PhoneSvc
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\WLANExt.exe 1984407470944
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\svchost.exe -k apphost -s AppHostSvc
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\ibtsiva
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s TapiSrv
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"

C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer

C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc

C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
"c:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV

"C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
"C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv

C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc


C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"fontdrvhost.exe"
"dwm.exe"
atieclxx
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /SRSPS
"C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe"
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"ctfmon.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\AMD\CNext\CNext\cnext.exe" atlogon
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\HP\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\HP\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\HP\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=76.0.3809.132 --initial-client-data=0x88,0x8c,0x90,0x80,0x94,0x7ff85cfdef08,0x7ff85cfdef18,0x7ff85cfdef28
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=2540 --on-initialized-event-handle=72 --parent-handle=444 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --gpu-preferences=IAAAAAAAAADgAAAwAAAAAAAAYAAAAAAACAAAAAAAAAAoAAAABAAAACAAAAAAAAAAKAAAAAAAAAAwAAAAAAAAADgAAAAAAAAAEAAAAAAAAAAAAAAABQAAABAAAAAAAAAAAAAAAAYAAAAQAAAAAAAAAAEAAAAFAAAAEAAAAAAAAAABAAAABgAAAA== --service-request-channel-token=127707218637007882 --mojo-platform-channel-handle=1496 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --service-sandbox-type=network --service-request-channel-token=15938892127220795714 --mojo-platform-channel-handle=2120 /prefetch:8
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17352718730514470446 --renderer-client-id=14 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=4376 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
"C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe" -ServerName:App.AppXc75wvwned5vhz4xyxxecvgdjhdkgsdza.mca
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\ImmersiveControlPanel\SystemSettings.exe" -ServerName:microsoft.windows.immersivecontrolpanel
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=14109457041298651756 --renderer-client-id=35 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3924 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17691186179509542508 --renderer-client-id=39 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5112 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=2280474872580960654 --renderer-client-id=40 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=5992 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=15426385810134558076 --renderer-client-id=41 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6196 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=554338544986805676 --renderer-client-id=42 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6428 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=1500658456165312477 --renderer-client-id=43 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6408 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=909979621991928114 --renderer-client-id=54 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8072 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=5469550079327824533 --renderer-client-id=56 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7220 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=5002319960199276661 --renderer-client-id=65 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7116 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=15598421879168828055 --renderer-client-id=66 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=7484 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=8721464219422293088 --renderer-client-id=88 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=6880 /prefetch:1
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s gpsvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s NgcCtnrSvc
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=13793261472938293473 --renderer-client-id=89 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8504 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17158869667102635601 --renderer-client-id=90 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=8308 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=17022702365669207865 --renderer-client-id=91 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=3000 /prefetch:1
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files\CCleaner\CCleaner64.exe" /monitor
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 796 800 808 8192 804
C:\WINDOWS\system32\AUDIODG.EXE 0x538
"C:\Users\HP\Downloads\RSITx64.exe"

"C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1656,17760916769382789897,7821656637096661251,131072 --lang=cs --enable-auto-reload --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=2502058023472882730 --renderer-client-id=97 --no-v8-untrusted-code-mitigations --mojo-platform-channel-handle=9128 /prefetch:1

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-26 221664]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2018-09-15 83968]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2016-02-25 8848640]
"StartCN"=c:\Program Files\AMD\CNext\CNext\cnext.exe [2016-03-26 4998856]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2019-08-15 22714912]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2019-08-27 10:58:21 ----D---- C:\Program Files\trend micro
2019-08-27 10:58:20 ----D---- C:\rsit
2019-08-26 23:31:45 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2019-08-26 23:03:22 ----A---- C:\WINDOWS\system32\drivers\MbamElam.sys
2019-08-26 23:03:14 ----A---- C:\WINDOWS\system32\drivers\mbae64.sys
2019-08-26 23:03:03 ----D---- C:\ProgramData\Malwarebytes
2019-08-26 23:03:03 ----D---- C:\Program Files\Malwarebytes
2019-08-26 20:55:42 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2019-08-26 20:55:41 ----A---- C:\WINDOWS\system32\wmp.dll
2019-08-26 20:55:40 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2019-08-26 20:55:40 ----A---- C:\WINDOWS\system32\SyncController.dll
2019-08-26 20:55:39 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2019-08-26 20:55:39 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2019-08-26 20:55:37 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2019-08-26 20:55:24 ----A---- C:\WINDOWS\SYSWOW64\P2P.dll
2019-08-26 20:55:24 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2019-08-26 20:55:23 ----A---- C:\WINDOWS\SYSWOW64\p2pnetsh.dll
2019-08-26 20:55:23 ----A---- C:\WINDOWS\SYSWOW64\P2PGraph.dll
2019-08-26 20:55:23 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2019-08-26 20:55:23 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2019-08-26 20:55:22 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2019-08-26 20:55:22 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2019-08-26 20:55:22 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2019-08-26 20:55:22 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2019-08-26 20:55:21 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2019-08-26 20:55:17 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2019-08-26 20:55:15 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2019-08-26 20:55:15 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2019-08-26 20:55:15 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2019-08-26 20:55:14 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2019-08-26 20:55:14 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2019-08-26 20:55:14 ----A---- C:\WINDOWS\SYSWOW64\msrd2x40.dll
2019-08-26 20:55:14 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2019-08-26 20:55:13 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2019-08-26 20:55:10 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2019-08-26 20:55:10 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2019-08-26 20:55:03 ----A---- C:\WINDOWS\system32\pnrpsvc.dll
2019-08-26 20:55:03 ----A---- C:\WINDOWS\system32\p2psvc.dll
2019-08-26 20:55:03 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2019-08-26 20:55:03 ----A---- C:\WINDOWS\system32\P2PGraph.dll
2019-08-26 20:55:03 ----A---- C:\WINDOWS\system32\P2P.dll
2019-08-26 20:55:03 ----A---- C:\WINDOWS\system32\Groupinghc.dll
2019-08-26 20:55:01 ----A---- C:\WINDOWS\system32\mstscax.dll
2019-08-26 20:55:00 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2019-08-26 20:55:00 ----A---- C:\WINDOWS\system32\reseteng.dll
2019-08-26 20:55:00 ----A---- C:\WINDOWS\system32\offreg.dll
2019-08-26 20:55:00 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2019-08-26 20:54:59 ----A---- C:\WINDOWS\system32\systemreset.exe
2019-08-26 20:54:59 ----A---- C:\WINDOWS\system32\srms.dat
2019-08-26 20:54:59 ----A---- C:\WINDOWS\system32\nltest.exe
2019-08-26 20:54:58 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2019-08-26 20:54:58 ----A---- C:\WINDOWS\system32\werconcpl.dll
2019-08-26 20:54:57 ----A---- C:\WINDOWS\system32\msfeeds.dll
2019-08-26 20:54:57 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2019-08-26 20:54:57 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2019-08-26 20:54:55 ----A---- C:\WINDOWS\system32\ieframe.dll
2019-08-26 20:54:53 ----A---- C:\WINDOWS\system32\edgehtml.dll
2019-08-26 20:54:51 ----A---- C:\WINDOWS\system32\mshtml.dll
2019-08-26 20:54:50 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2019-08-26 20:54:49 ----A---- C:\WINDOWS\system32\werui.dll
2019-08-26 20:54:49 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2019-08-26 20:54:49 ----A---- C:\WINDOWS\system32\Chakra.dll
2019-08-26 20:54:48 ----A---- C:\WINDOWS\system32\jscript.dll
2019-08-26 20:54:48 ----A---- C:\WINDOWS\system32\ClipUp.exe
2019-08-26 20:54:45 ----A---- C:\WINDOWS\system32\RDXService.dll
2019-08-26 20:54:45 ----A---- C:\WINDOWS\system32\mispace.dll
2019-08-26 20:54:45 ----A---- C:\WINDOWS\system32\fsutil.exe
2019-08-26 20:54:45 ----A---- C:\WINDOWS\system32\BioIso.exe
2019-08-26 20:54:44 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2019-08-26 20:54:44 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2019-08-26 20:54:43 ----A---- C:\WINDOWS\SYSWOW64\shunimpl.dll
2019-08-26 20:54:43 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2019-08-26 20:54:43 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2019-08-26 20:54:43 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2019-08-26 20:54:43 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2019-08-26 20:54:42 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2019-08-26 20:54:42 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2019-08-26 20:54:42 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2019-08-26 20:54:41 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2019-08-26 20:54:41 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2019-08-26 20:54:41 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2019-08-26 20:54:40 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2019-08-26 20:54:40 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2019-08-26 20:54:40 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2019-08-26 20:54:40 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2019-08-26 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\xmllite.dll
2019-08-26 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2019-08-26 20:54:39 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2019-08-26 20:54:38 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-08-26 20:54:37 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2019-08-26 20:54:37 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2019-08-26 20:54:37 ----A---- C:\WINDOWS\SYSWOW64\drvsetup.dll
2019-08-26 20:54:37 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2019-08-26 20:54:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2019-08-26 20:54:36 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2019-08-26 20:54:36 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2019-08-26 20:54:36 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2019-08-26 20:54:36 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2019-08-26 20:54:35 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2019-08-26 20:54:35 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2019-08-26 20:54:35 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2019-08-26 20:54:35 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2019-08-26 20:54:34 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2019-08-26 20:54:34 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2019-08-26 20:54:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2019-08-26 20:54:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-26 20:54:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2019-08-26 20:54:33 ----A---- C:\WINDOWS\SYSWOW64\ComposableShellProxyStub.dll
2019-08-26 20:54:32 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2019-08-26 20:54:32 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2019-08-26 20:54:32 ----A---- C:\WINDOWS\SYSWOW64\LicensingDiagSpp.dll
2019-08-26 20:54:31 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2019-08-26 20:54:31 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2019-08-26 20:54:31 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2019-08-26 20:54:30 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2019-08-26 20:54:30 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2019-08-26 20:54:30 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2019-08-26 20:54:30 ----A---- C:\WINDOWS\system32\t2embed.dll
2019-08-26 20:54:30 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2019-08-26 20:54:30 ----A---- C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2019-08-26 20:54:29 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-08-26 20:54:29 ----A---- C:\WINDOWS\system32\gdi32full.dll
2019-08-26 20:54:28 ----A---- C:\WINDOWS\system32\wininet.dll
2019-08-26 20:54:28 ----A---- C:\WINDOWS\system32\iertutil.dll
2019-08-26 20:54:27 ----A---- C:\WINDOWS\system32\gpsvc.dll
2019-08-26 20:54:23 ----A---- C:\WINDOWS\system32\fontsub.dll
2019-08-26 20:54:23 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2019-08-26 20:54:23 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2019-08-26 20:54:22 ----A---- C:\WINDOWS\system32\kdnet.dll
2019-08-26 20:54:22 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2019-08-26 20:54:03 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2019-08-26 20:54:03 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2019-08-26 20:54:03 ----A---- C:\WINDOWS\system32\KernelBase.dll
2019-08-26 20:54:03 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2019-08-26 20:54:02 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2019-08-26 20:54:02 ----A---- C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-08-26 20:54:02 ----A---- C:\WINDOWS\system32\CoreShell.dll
2019-08-26 20:54:02 ----A---- C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-08-26 20:54:01 ----A---- C:\WINDOWS\system32\twinui.dll
2019-08-26 20:54:01 ----A---- C:\WINDOWS\system32\sppc.dll
2019-08-26 20:54:01 ----A---- C:\WINDOWS\system32\msctf.dll
2019-08-26 20:54:01 ----A---- C:\WINDOWS\system32\bootux.dll
2019-08-26 20:54:00 ----A---- C:\WINDOWS\system32\winresume.exe
2019-08-26 20:54:00 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-08-26 20:54:00 ----A---- C:\WINDOWS\system32\pcasvc.dll
2019-08-26 20:54:00 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2019-08-26 20:53:59 ----A---- C:\WINDOWS\system32\winload.exe
2019-08-26 20:53:58 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2019-08-26 20:53:57 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2019-08-26 20:53:54 ----A---- C:\WINDOWS\system32\shell32.dll
2019-08-26 20:53:54 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2019-08-26 20:53:53 ----A---- C:\WINDOWS\system32\sppsvc.exe
2019-08-26 20:53:53 ----A---- C:\WINDOWS\system32\sppcext.dll
2019-08-26 20:53:53 ----A---- C:\WINDOWS\system32\shunimpl.dll
2019-08-26 20:53:53 ----A---- C:\WINDOWS\system32\comdlg32.dll
2019-08-26 20:53:52 ----A---- C:\WINDOWS\system32\sppobjs.dll
2019-08-26 20:53:51 ----A---- C:\WINDOWS\system32\sppwinob.dll
2019-08-26 20:53:50 ----A---- C:\WINDOWS\system32\services.exe
2019-08-26 20:53:50 ----A---- C:\WINDOWS\system32\LicensingDiagSpp.dll
2019-08-26 20:53:49 ----A---- C:\WINDOWS\system32\vpnike.dll
2019-08-26 20:53:49 ----A---- C:\WINDOWS\system32\rastapi.dll
2019-08-26 20:53:49 ----A---- C:\WINDOWS\system32\rasmans.dll
2019-08-26 20:53:49 ----A---- C:\WINDOWS\system32\mprddm.dll
2019-08-26 20:53:49 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2019-08-26 20:53:48 ----A---- C:\WINDOWS\system32\vbscript.dll
2019-08-26 20:53:48 ----A---- C:\WINDOWS\system32\nlasvc.dll
2019-08-26 20:53:48 ----A---- C:\WINDOWS\system32\newdev.dll
2019-08-26 20:53:48 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2019-08-26 20:53:48 ----A---- C:\WINDOWS\system32\drvinst.exe
2019-08-26 20:53:48 ----A---- C:\WINDOWS\system32\APMon.dll
2019-08-26 20:53:47 ----A---- C:\WINDOWS\system32\hal.dll
2019-08-26 20:53:47 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2019-08-26 20:53:45 ----A---- C:\WINDOWS\system32\win32kfull.sys
2019-08-26 20:53:45 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2019-08-26 20:53:45 ----A---- C:\WINDOWS\system32\daxexec.dll
2019-08-26 20:53:44 ----A---- C:\WINDOWS\system32\psmsrv.dll
2019-08-26 20:53:44 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-08-26 20:53:43 ----A---- C:\WINDOWS\system32\rmclient.dll
2019-08-26 20:53:43 ----A---- C:\WINDOWS\system32\rdpbase.dll
2019-08-26 20:53:43 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-08-26 20:53:42 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-08-26 20:53:42 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-08-26 20:53:42 ----A---- C:\WINDOWS\system32\Unistore.dll
2019-08-26 20:53:42 ----A---- C:\WINDOWS\system32\ISM.dll
2019-08-26 20:53:41 ----A---- C:\WINDOWS\system32\msxml6.dll
2019-08-26 20:53:40 ----A---- C:\WINDOWS\system32\tquery.dll
2019-08-26 20:53:40 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2019-08-26 20:53:40 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-08-26 20:53:40 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2019-08-26 20:53:40 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2019-08-26 20:53:39 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2019-08-26 20:53:39 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2019-08-26 20:53:39 ----A---- C:\WINDOWS\system32\mssrch.dll
2019-08-26 20:53:39 ----A---- C:\WINDOWS\system32\mssph.dll
2019-08-26 20:53:39 ----A---- C:\WINDOWS\system32\msscntrs.dll
2019-08-26 20:53:38 ----A---- C:\WINDOWS\system32\win32kbase.sys
2019-08-26 20:53:38 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2019-08-26 20:53:37 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2019-08-26 20:53:37 ----A---- C:\WINDOWS\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-26 20:53:37 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-08-26 20:53:37 ----A---- C:\WINDOWS\system32\appsruprov.dll
2019-08-26 20:53:36 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2019-08-26 20:53:35 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-08-26 20:53:35 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2019-08-26 20:53:35 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-08-26 20:53:34 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-08-26 20:53:33 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2019-08-26 20:53:33 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-08-26 20:53:32 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-08-26 20:53:32 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-08-26 20:53:31 ----A---- C:\WINDOWS\system32\StartTileData.dll
2019-08-26 20:53:31 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-08-26 20:53:30 ----A---- C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-08-26 20:53:30 ----A---- C:\WINDOWS\explorer.exe
2019-08-26 20:53:29 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2019-08-26 20:53:29 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2019-08-26 20:53:27 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2019-08-26 20:53:26 ----A---- C:\WINDOWS\system32\wpx.dll
2019-08-26 20:53:26 ----A---- C:\WINDOWS\system32\hmkd.dll
2019-08-26 20:53:25 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2019-08-26 20:53:25 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2019-08-26 20:53:24 ----A---- C:\WINDOWS\system32\WpcTok.exe
2019-08-26 20:53:24 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2019-08-26 20:53:24 ----A---- C:\WINDOWS\system32\WpcMon.exe
2019-08-26 20:53:23 ----A---- C:\WINDOWS\system32\kdcpw.dll
2019-08-26 20:53:00 ----A---- C:\WINDOWS\system32\drivers\http.sys
2019-08-26 20:52:59 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2019-08-26 20:52:59 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2019-08-26 20:52:59 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2019-08-26 20:52:59 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2019-08-26 20:52:59 ----A---- C:\WINDOWS\system32\wermgr.exe
2019-08-26 20:52:58 ----A---- C:\WINDOWS\system32\WerFault.exe
2019-08-26 20:52:58 ----A---- C:\WINDOWS\system32\wer.dll
2019-08-26 20:52:58 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-08-26 20:52:58 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2019-08-26 20:52:58 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2019-08-26 20:52:58 ----A---- C:\WINDOWS\system32\Faultrep.dll
2019-08-26 20:52:57 ----A---- C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2019-08-26 20:52:57 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-08-26 20:52:57 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2019-08-26 20:52:57 ----A---- C:\WINDOWS\system32\MusNotification.exe
2019-08-26 20:52:56 ----A---- C:\WINDOWS\system32\usoapi.dll
2019-08-26 20:52:56 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2019-08-26 20:52:56 ----A---- C:\WINDOWS\system32\updatecsp.dll
2019-08-26 20:52:55 ----A---- C:\WINDOWS\system32\wuuhext.dll
2019-08-26 20:52:55 ----A---- C:\WINDOWS\system32\usocore.dll
2019-08-26 20:52:55 ----A---- C:\WINDOWS\system32\UsoClient.exe
2019-08-26 20:52:55 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2019-08-26 20:52:54 ----A---- C:\WINDOWS\system32\wuaueng.dll
2019-08-26 20:52:54 ----A---- C:\WINDOWS\system32\wuapi.dll
2019-08-26 20:52:54 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2019-08-26 20:52:53 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2019-08-26 20:52:53 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2019-08-26 20:52:53 ----A---- C:\WINDOWS\system32\diagtrack.dll
2019-08-26 20:52:52 ----A---- C:\WINDOWS\system32\skci.dll
2019-08-26 20:52:52 ----A---- C:\WINDOWS\system32\lsasrv.dll
2019-08-26 20:52:52 ----A---- C:\WINDOWS\system32\LsaIso.exe
2019-08-26 20:52:52 ----A---- C:\WINDOWS\system32\drvsetup.dll
2019-08-26 20:52:52 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2019-08-26 20:52:51 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2019-08-26 20:52:51 ----A---- C:\WINDOWS\system32\tcbloader.dll
2019-08-26 20:52:51 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2019-08-26 20:52:50 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2019-08-26 20:52:50 ----A---- C:\WINDOWS\system32\netlogon.dll
2019-08-26 20:52:50 ----A---- C:\WINDOWS\system32\kerberos.dll
2019-08-26 20:52:49 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2019-08-26 20:52:49 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2019-08-26 20:52:49 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2019-08-26 20:52:49 ----A---- C:\WINDOWS\system32\KerbClientShared.dll
2019-08-26 20:52:49 ----A---- C:\WINDOWS\system32\DiskSnapshot.exe
2019-08-26 20:52:48 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2019-08-26 20:52:48 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2019-08-26 20:52:48 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2019-08-26 20:52:47 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2019-08-26 20:52:47 ----A---- C:\WINDOWS\system32\wldp.dll
2019-08-26 20:52:47 ----A---- C:\WINDOWS\system32\ci.dll
2019-08-26 20:52:46 ----A---- C:\WINDOWS\system32\tzres.dll
2019-08-26 20:52:46 ----A---- C:\WINDOWS\system32\rpcss.dll
2019-08-26 20:52:46 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2019-08-26 20:52:46 ----A---- C:\WINDOWS\system32\logoncli.dll
2019-08-26 20:52:46 ----A---- C:\WINDOWS\system32\combase.dll
2019-08-26 20:52:45 ----A---- C:\WINDOWS\system32\xmllite.dll
2019-08-26 20:52:45 ----A---- C:\WINDOWS\system32\oleaut32.dll
2019-08-26 20:52:45 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2019-08-26 20:52:45 ----A---- C:\WINDOWS\system32\dnsapi.dll
2019-08-26 20:52:44 ----A---- C:\WINDOWS\system32\wc_storage.dll
2019-08-26 20:52:44 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2019-08-26 20:52:44 ----A---- C:\WINDOWS\system32\bcdedit.exe
2019-08-26 20:52:43 ----A---- C:\WINDOWS\system32\windows.storage.dll
2019-08-26 20:52:43 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2019-08-26 20:52:42 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2019-08-26 20:52:41 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2019-08-26 20:52:41 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2019-08-26 20:52:40 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2019-08-26 20:52:39 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2019-08-26 20:52:37 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2019-08-26 20:52:37 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2019-08-26 20:52:35 ----A---- C:\WINDOWS\system32\hvax64.exe
2019-08-26 20:52:35 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2019-08-26 20:52:34 ----A---- C:\WINDOWS\system32\hvix64.exe
2019-08-26 20:52:34 ----A---- C:\WINDOWS\system32\drivers\winhv.sys
2019-08-26 20:52:33 ----A---- C:\WINDOWS\system32\rdpnano.dll
2019-08-26 20:52:33 ----A---- C:\WINDOWS\system32\computestorage.dll
2019-08-26 20:52:32 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2019-08-26 20:52:32 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2019-08-26 20:52:32 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2019-08-26 20:52:31 ----A---- C:\WINDOWS\system32\drivers\pmem.sys
2019-08-26 20:52:30 ----A---- C:\WINDOWS\system32\drivers\uefi.sys
2019-08-26 20:52:30 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2019-08-26 20:52:29 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
2019-08-26 17:54:48 ----D---- C:\KVRT_Data
2019-08-13 11:08:03 ----A---- C:\WINDOWS\SYSWOW64\WMADMOE.DLL
2019-08-13 11:08:03 ----A---- C:\WINDOWS\SYSWOW64\WMADMOD.DLL
2019-08-13 11:08:03 ----A---- C:\WINDOWS\SYSWOW64\mfh264enc.dll
2019-08-13 11:08:03 ----A---- C:\WINDOWS\system32\WMADMOE.DLL
2019-08-13 11:08:03 ----A---- C:\WINDOWS\system32\WMADMOD.DLL
2019-08-13 11:08:02 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.dll
2019-08-13 11:08:02 ----A---- C:\WINDOWS\system32\mfh264enc.dll
2019-08-13 11:08:01 ----A---- C:\WINDOWS\SYSWOW64\mfcore.dll
2019-08-13 11:08:01 ----A---- C:\WINDOWS\system32\mfps.dll
2019-08-13 11:08:00 ----A---- C:\WINDOWS\system32\mfcore.dll
2019-08-13 11:07:59 ----A---- C:\WINDOWS\system32\Windows.Media.dll
2019-08-13 11:07:58 ----A---- C:\WINDOWS\SYSWOW64\fveapibase.dll
2019-08-13 11:07:58 ----A---- C:\WINDOWS\SYSWOW64\fveapi.dll
2019-08-13 11:07:55 ----A---- C:\WINDOWS\system32\fveapibase.dll
2019-08-13 11:07:55 ----A---- C:\WINDOWS\system32\drivers\fvevol.sys
2019-08-13 11:07:54 ----A---- C:\WINDOWS\system32\WMSPDMOE.DLL
2019-08-13 11:07:54 ----A---- C:\WINDOWS\system32\fveapi.dll
2019-08-13 11:07:37 ----A---- C:\WINDOWS\SYSWOW64\AcGenral.dll
2019-08-13 11:07:36 ----A---- C:\WINDOWS\SYSWOW64\ieproxy.dll
2019-08-13 11:07:33 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2019-08-13 11:07:32 ----A---- C:\WINDOWS\SYSWOW64\EdgeManager.dll
2019-08-13 11:07:29 ----A---- C:\WINDOWS\SYSWOW64\webplatstorageserver.dll
2019-08-13 11:07:28 ----A---- C:\WINDOWS\SYSWOW64\storagewmi.dll
2019-08-13 11:07:28 ----A---- C:\WINDOWS\system32\wwansvc.dll
2019-08-13 11:07:28 ----A---- C:\WINDOWS\system32\SpaceAgent.exe
2019-08-13 11:07:28 ----A---- C:\WINDOWS\system32\drivers\mrxdav.sys
2019-08-13 11:07:28 ----A---- C:\WINDOWS\system32\drivers\MbbCx.sys
2019-08-13 11:07:27 ----A---- C:\WINDOWS\system32\SpaceControl.dll
2019-08-13 11:07:27 ----A---- C:\WINDOWS\system32\SharedRealitySvc.dll
2019-08-13 11:07:27 ----A---- C:\WINDOWS\system32\CXHProvisioningServer.dll
2019-08-13 11:07:25 ----A---- C:\WINDOWS\system32\rdpclip.exe
2019-08-13 11:07:25 ----A---- C:\WINDOWS\system32\nettrace.dll
2019-08-13 11:07:25 ----A---- C:\WINDOWS\system32\AcGenral.dll
2019-08-13 11:07:24 ----A---- C:\WINDOWS\system32\nshwfp.dll
2019-08-13 11:07:23 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2019-08-13 11:07:23 ----A---- C:\WINDOWS\system32\jscript9.dll
2019-08-13 11:07:20 ----A---- C:\WINDOWS\system32\EdgeManager.dll
2019-08-13 11:07:16 ----A---- C:\WINDOWS\system32\webplatstorageserver.dll
2019-08-13 11:07:16 ----A---- C:\WINDOWS\system32\ieproxy.dll
2019-08-13 11:07:13 ----A---- C:\WINDOWS\system32\StorSvc.dll
2019-08-13 11:07:12 ----A---- C:\WINDOWS\system32\CompMgmtLauncher.exe
2019-08-13 11:07:10 ----A---- C:\WINDOWS\system32\storagewmi.dll
2019-08-13 11:07:10 ----A---- C:\WINDOWS\system32\spaceman.exe
2019-08-13 11:07:09 ----A---- C:\WINDOWS\system32\spacebridge.dll
2019-08-13 11:07:08 ----A---- C:\WINDOWS\SYSWOW64\rastls.dll
2019-08-13 11:07:07 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncHost.exe
2019-08-13 11:07:07 ----A---- C:\WINDOWS\SYSWOW64\SettingSyncCore.dll
2019-08-13 11:07:07 ----A---- C:\WINDOWS\SYSWOW64\msIso.dll
2019-08-13 11:07:07 ----A---- C:\WINDOWS\SYSWOW64\edgeIso.dll
2019-08-13 11:07:06 ----A---- C:\WINDOWS\SYSWOW64\Windows.Internal.Management.dll
2019-08-13 11:07:06 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2019-08-13 11:07:06 ----A---- C:\WINDOWS\SYSWOW64\tdh.dll
2019-08-13 11:07:06 ----A---- C:\WINDOWS\SYSWOW64\mf3216.dll
2019-08-13 11:07:06 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2019-08-13 11:07:05 ----A---- C:\WINDOWS\SYSWOW64\vssapi.dll
2019-08-13 11:07:05 ----A---- C:\WINDOWS\SYSWOW64\uReFS.dll
2019-08-13 11:07:05 ----A---- C:\WINDOWS\SYSWOW64\dmenrollengine.dll
2019-08-13 11:07:05 ----A---- C:\WINDOWS\SYSWOW64\cmd.exe
2019-08-13 11:07:04 ----A---- C:\WINDOWS\SYSWOW64\dcomp.dll
2019-08-13 11:06:55 ----A---- C:\WINDOWS\SYSWOW64\AppXDeploymentClient.dll
2019-08-13 11:06:54 ----A---- C:\WINDOWS\SYSWOW64\rdpcore.dll
2019-08-13 11:06:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Storage.ApplicationData.dll
2019-08-13 11:06:53 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Radios.dll
2019-08-13 11:06:53 ----A---- C:\WINDOWS\SYSWOW64\cdp.dll
2019-08-13 11:06:51 ----A---- C:\WINDOWS\SYSWOW64\TokenBrokerUI.dll
2019-08-13 11:06:51 ----A---- C:\WINDOWS\SYSWOW64\gdi32.dll
2019-08-13 11:06:51 ----A---- C:\WINDOWS\SYSWOW64\dmvdsitf.dll
2019-08-13 11:06:51 ----A---- C:\WINDOWS\SYSWOW64\cdprt.dll
2019-08-13 11:06:50 ----A---- C:\WINDOWS\SYSWOW64\sppcext.dll
2019-08-13 11:06:50 ----A---- C:\WINDOWS\SYSWOW64\LicensingWinRT.dll
2019-08-13 11:06:50 ----A---- C:\WINDOWS\SYSWOW64\InputSwitch.dll
2019-08-13 11:06:50 ----A---- C:\WINDOWS\SYSWOW64\EditionUpgradeManagerObj.dll
2019-08-13 11:06:48 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Xaml.dll
2019-08-13 11:06:47 ----A---- C:\WINDOWS\SYSWOW64\wlanapi.dll
2019-08-13 11:06:47 ----A---- C:\WINDOWS\system32\WebRuntimeManager.dll
2019-08-13 11:06:46 ----A---- C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-08-13 11:06:46 ----A---- C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-08-13 11:06:46 ----A---- C:\WINDOWS\system32\mdmmigrator.dll
2019-08-13 11:06:46 ----A---- C:\WINDOWS\system32\DMPushRouterCore.dll
2019-08-13 11:06:46 ----A---- C:\WINDOWS\system32\dmenrollengine.dll
2019-08-13 11:06:46 ----A---- C:\WINDOWS\system32\DeviceEnroller.exe
2019-08-13 11:06:45 ----A---- C:\WINDOWS\system32\urlmon.dll
2019-08-13 11:06:45 ----A---- C:\WINDOWS\system32\msIso.dll
2019-08-13 11:06:45 ----A---- C:\WINDOWS\system32\edgeIso.dll
2019-08-13 11:06:44 ----A---- C:\WINDOWS\system32\NcaSvc.dll
2019-08-13 11:06:44 ----A---- C:\WINDOWS\system32\efscore.dll
2019-08-13 11:06:37 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2019-08-13 11:06:36 ----A---- C:\WINDOWS\system32\mf3216.dll
2019-08-13 11:06:36 ----A---- C:\WINDOWS\system32\drivers\srvnet.sys
2019-08-13 11:06:36 ----A---- C:\WINDOWS\system32\drivers\srv2.sys
2019-08-13 11:06:36 ----A---- C:\WINDOWS\system32\drivers\fltMgr.sys
2019-08-13 11:06:35 ----A---- C:\WINDOWS\system32\ntdll.dll
2019-08-13 11:06:35 ----A---- C:\WINDOWS\system32\drivers\ntfs.sys
2019-08-13 11:06:35 ----A---- C:\WINDOWS\system32\drivers\Classpnp.sys
2019-08-13 11:06:34 ----A---- C:\WINDOWS\system32\phoneactivate.exe
2019-08-13 11:06:34 ----A---- C:\WINDOWS\system32\dmvdsitf.dll
2019-08-13 11:06:34 ----A---- C:\WINDOWS\system32\dcomp.dll
2019-08-13 11:06:33 ----A---- C:\WINDOWS\system32\UpgradeResultsUI.exe
2019-08-13 11:06:33 ----A---- C:\WINDOWS\system32\sppcommdlg.dll
2019-08-13 11:06:33 ----A---- C:\WINDOWS\system32\LicensingUI.exe
2019-08-13 11:06:32 ----A---- C:\WINDOWS\system32\WSReset.exe
2019-08-13 11:06:32 ----A---- C:\WINDOWS\system32\TokenBrokerUI.dll
2019-08-13 11:06:32 ----A---- C:\WINDOWS\system32\InputSwitch.dll
2019-08-13 11:06:31 ----A---- C:\WINDOWS\system32\Windows.UI.Logon.dll
2019-08-13 11:06:31 ----A---- C:\WINDOWS\system32\vdsbas.dll
2019-08-13 11:06:31 ----A---- C:\WINDOWS\system32\slui.exe
2019-08-13 11:06:31 ----A---- C:\WINDOWS\system32\LicensingWinRT.dll
2019-08-13 11:06:31 ----A---- C:\WINDOWS\system32\devinv.dll
2019-08-13 11:06:30 ----A---- C:\WINDOWS\system32\appraiser.dll
2019-08-13 11:06:30 ----A---- C:\WINDOWS\system32\aitstatic.exe
2019-08-13 11:06:30 ----A---- C:\WINDOWS\system32\acmigration.dll
2019-08-13 11:06:26 ----A---- C:\WINDOWS\system32\win32appinventorycsp.dll
2019-08-13 11:06:26 ----A---- C:\WINDOWS\system32\uReFS.dll
2019-08-13 11:06:26 ----A---- C:\WINDOWS\system32\refsutil.exe
2019-08-13 11:06:26 ----A---- C:\WINDOWS\system32\invagent.dll
2019-08-13 11:06:26 ----A---- C:\WINDOWS\system32\CompatTelRunner.exe
2019-08-13 11:06:26 ----A---- C:\WINDOWS\system32\aeinv.dll
2019-08-13 11:06:19 ----A---- C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-08-13 11:06:19 ----A---- C:\WINDOWS\system32\generaltel.dll
2019-08-13 11:06:18 ----A---- C:\WINDOWS\system32\NotificationControllerPS.dll
2019-08-13 11:06:18 ----A---- C:\WINDOWS\system32\NotificationController.dll
2019-08-13 11:06:17 ----A---- C:\WINDOWS\system32\QuietHours.dll
2019-08-13 11:06:16 ----A---- C:\WINDOWS\system32\VSSVC.exe
2019-08-13 11:06:16 ----A---- C:\WINDOWS\system32\vssapi.dll
2019-08-13 11:06:16 ----A---- C:\WINDOWS\system32\twinui.pcshell.dll
2019-08-13 11:06:16 ----A---- C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2019-08-13 11:06:15 ----A---- C:\WINDOWS\system32\SettingSyncHost.exe
2019-08-13 11:06:14 ----A---- C:\WINDOWS\system32\SettingSyncCore.dll
2019-08-13 11:06:13 ----A---- C:\WINDOWS\system32\rascustom.dll
2019-08-13 11:06:12 ----A---- C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-08-13 11:06:12 ----A---- C:\WINDOWS\system32\netprofmsvc.dll
2019-08-13 11:06:10 ----A---- C:\WINDOWS\system32\cmd.exe
2019-08-13 11:06:09 ----A---- C:\WINDOWS\system32\TDLMigration.dll
2019-08-13 11:06:09 ----A---- C:\WINDOWS\system32\rdpcore.dll
2019-08-13 11:06:09 ----A---- C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-08-13 11:06:08 ----A---- C:\WINDOWS\system32\MPSSVC.dll
2019-08-13 11:06:08 ----A---- C:\WINDOWS\system32\InputService.dll
2019-08-13 11:06:06 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2019-08-13 11:06:05 ----A---- C:\WINDOWS\system32\gdi32.dll
2019-08-13 11:06:05 ----A---- C:\WINDOWS\system32\FntCache.dll
2019-08-13 11:06:05 ----A---- C:\WINDOWS\system32\drivers\dxgmms2.sys
2019-08-13 11:06:04 ----A---- C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-08-13 11:06:04 ----A---- C:\WINDOWS\system32\DWrite.dll
2019-08-13 11:06:04 ----A---- C:\WINDOWS\system32\cdprt.dll
2019-08-13 11:06:04 ----A---- C:\WINDOWS\system32\cdp.dll
2019-08-13 11:06:03 ----A---- C:\WINDOWS\system32\Windows.Devices.Radios.dll
2019-08-13 11:06:03 ----A---- C:\WINDOWS\system32\Windows.CloudStore.dll
2019-08-13 11:06:03 ----A---- C:\WINDOWS\system32\cdpusersvc.dll
2019-08-13 11:06:03 ----A---- C:\WINDOWS\system32\cdpsvc.dll
2019-08-13 11:06:03 ----A---- C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-08-13 11:06:02 ----A---- C:\WINDOWS\system32\dssvc.dll
2019-08-13 11:06:02 ----A---- C:\WINDOWS\system32\AppxSysprep.dll
2019-08-13 11:06:01 ----A---- C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2019-08-13 11:06:00 ----A---- C:\WINDOWS\system32\AppxAllUserStore.dll
2019-08-13 11:05:54 ----A---- C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-08-13 11:05:53 ----A---- C:\WINDOWS\system32\TpmTasks.dll
2019-08-13 11:05:53 ----A---- C:\WINDOWS\system32\spoolsv.exe
2019-08-13 11:05:53 ----A---- C:\WINDOWS\system32\localspl.dll
2019-08-13 11:05:53 ----A---- C:\WINDOWS\splwow64.exe
2019-08-13 11:05:52 ----A---- C:\WINDOWS\system32\wlansvc.dll
2019-08-13 11:05:52 ----A---- C:\WINDOWS\system32\wlanmsm.dll
2019-08-13 11:05:52 ----A---- C:\WINDOWS\system32\wlanapi.dll
2019-08-13 11:05:52 ----A---- C:\WINDOWS\system32\WiFiCloudStore.dll
2019-08-13 11:05:50 ----A---- C:\WINDOWS\system32\RjvMDMConfig.dll
2019-08-13 11:05:50 ----A---- C:\WINDOWS\system32\MDMAgent.exe
2019-08-13 11:05:49 ----A---- C:\WINDOWS\system32\audiosrv.dll
2019-08-13 11:05:49 ----A---- C:\WINDOWS\system32\AudioEng.dll
2019-08-13 11:05:49 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-08-13 11:05:48 ----A---- C:\WINDOWS\system32\TaskFlowDataEngine.dll
2019-08-13 11:05:40 ----A---- C:\WINDOWS\system32\wersvc.dll
2019-08-13 11:05:38 ----A---- C:\WINDOWS\system32\mf.dll
2019-08-13 11:05:37 ----A---- C:\WINDOWS\system32\securekernel.exe
2019-08-13 11:05:36 ----A---- C:\WINDOWS\SYSWOW64\aepic.dll
2019-08-13 11:05:36 ----A---- C:\WINDOWS\system32\wkssvc.dll
2019-08-13 11:05:36 ----A---- C:\WINDOWS\system32\rastls.dll
2019-08-13 11:05:35 ----A---- C:\WINDOWS\SYSWOW64\winhttp.dll
2019-08-13 11:05:35 ----A---- C:\WINDOWS\SYSWOW64\IPHLPAPI.DLL
2019-08-13 11:05:35 ----A---- C:\WINDOWS\system32\winhttp.dll
2019-08-13 11:05:35 ----A---- C:\WINDOWS\system32\profsvc.dll
2019-08-13 11:05:34 ----A---- C:\WINDOWS\system32\DeviceCensus.exe
2019-08-13 11:05:34 ----A---- C:\WINDOWS\system32\dcntel.dll
2019-08-13 11:05:34 ----A---- C:\WINDOWS\system32\aepic.dll
2019-08-13 11:05:33 ----A---- C:\WINDOWS\system32\wcimage.dll
2019-08-13 11:05:33 ----A---- C:\WINDOWS\system32\IPHLPAPI.DLL
2019-08-13 11:05:32 ----A---- C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-08-13 11:05:31 ----A---- C:\WINDOWS\system32\profext.dll
2019-08-13 11:05:30 ----A---- C:\WINDOWS\system32\tdh.dll
2019-08-13 11:05:30 ----A---- C:\WINDOWS\system32\drivers\winnat.sys
2019-08-13 11:05:29 ----A---- C:\WINDOWS\SYSWOW64\DWrite.dll
2019-08-13 11:05:29 ----A---- C:\WINDOWS\system32\pkeyhelper.dll
2019-08-13 11:05:29 ----A---- C:\WINDOWS\system32\drivers\ClipSp.sys
2019-08-13 11:05:29 ----A---- C:\WINDOWS\system32\ClipSVC.dll
2019-08-13 11:05:28 ----A---- C:\WINDOWS\SYSWOW64\spacebridge.dll
2019-08-13 11:05:28 ----A---- C:\WINDOWS\SYSWOW64\profext.dll
2019-08-13 11:05:28 ----A---- C:\WINDOWS\SYSWOW64\AppxAllUserStore.dll
2019-08-13 11:05:24 ----A---- C:\WINDOWS\SYSWOW64\WMSPDMOE.DLL
2019-08-13 11:05:24 ----A---- C:\WINDOWS\SYSWOW64\nshwfp.dll
2019-08-13 11:05:24 ----A---- C:\WINDOWS\system32\rdpudd.dll
2019-08-13 11:05:24 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2019-08-13 11:05:23 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2019-08-13 11:05:23 ----A---- C:\WINDOWS\system32\drivers\spacedump.sys
2019-08-13 11:05:23 ----A---- C:\WINDOWS\system32\drivers\sdbus.sys
2019-08-13 11:05:23 ----A---- C:\WINDOWS\system32\drivers\msiscsi.sys
2019-08-13 11:05:23 ----A---- C:\WINDOWS\system32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys

======List of files/folders modified in the last 1 month======

2019-08-27 10:59:01 ----D---- C:\WINDOWS\Temp
2019-08-27 10:58:33 ----D---- C:\WINDOWS\Prefetch
2019-08-27 10:58:21 ----RD---- C:\Program Files
2019-08-27 10:51:11 ----D---- C:\WINDOWS\system32\Tasks
2019-08-27 10:41:08 ----D---- C:\WINDOWS\system32\sru
2019-08-26 23:34:23 ----D---- C:\Windows
2019-08-26 23:33:03 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-08-26 23:31:47 ----D---- C:\WINDOWS\system32\catroot2
2019-08-26 23:31:46 ----D---- C:\WINDOWS\system32\drivers
2019-08-26 23:31:34 ----D---- C:\WINDOWS\System32
2019-08-26 23:24:12 ----DC---- C:\WINDOWS\Panther
2019-08-26 23:24:12 ----D---- C:\WINDOWS\INF
2019-08-26 23:24:11 ----D---- C:\WINDOWS\LiveKernelReports
2019-08-26 23:24:11 ----D---- C:\WINDOWS\debug
2019-08-26 23:15:22 ----SHD---- C:\WINDOWS\Installer
2019-08-26 23:15:22 ----SHD---- C:\Config.Msi
2019-08-26 23:15:22 ----D---- C:\ProgramData\Package Cache
2019-08-26 23:14:50 ----D---- C:\WINDOWS\AppReadiness
2019-08-26 23:13:56 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2019-08-26 23:08:53 ----D---- C:\WINDOWS\system32\config
2019-08-26 23:08:48 ----D---- C:\WINDOWS\WinSxS
2019-08-26 23:07:55 ----D---- C:\WINDOWS\system32\DriverStore
2019-08-26 23:04:57 ----D---- C:\WINDOWS\SYSWOW64\oobe
2019-08-26 23:04:57 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2019-08-26 23:04:57 ----D---- C:\WINDOWS\SysWOW64
2019-08-26 23:04:56 ----SD---- C:\WINDOWS\system32\UNP
2019-08-26 23:04:56 ----D---- C:\WINDOWS\system32\wbem
2019-08-26 23:04:56 ----D---- C:\WINDOWS\system32\oobe
2019-08-26 23:04:56 ----D---- C:\WINDOWS\system32\en-US
2019-08-26 23:04:56 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2019-08-26 23:04:55 ----D---- C:\WINDOWS\system32\cs-CZ
2019-08-26 23:04:55 ----D---- C:\WINDOWS\system32\Boot
2019-08-26 23:04:48 ----D---- C:\WINDOWS\Provisioning
2019-08-26 23:04:48 ----D---- C:\WINDOWS\bcastdvr
2019-08-26 23:04:48 ----D---- C:\Program Files\internet explorer
2019-08-26 23:04:48 ----D---- C:\Program Files (x86)\Internet Explorer
2019-08-26 23:03:22 ----HD---- C:\WINDOWS\ELAMBKUP
2019-08-26 23:03:03 ----HD---- C:\ProgramData
2019-08-26 21:05:15 ----D---- C:\WINDOWS\system32\MRT
2019-08-26 21:01:07 ----AC---- C:\WINDOWS\system32\MRT.exe
2019-08-26 21:00:14 ----D---- C:\WINDOWS\CbsTemp
2019-08-26 17:52:45 ----HD---- C:\Program Files\WindowsApps
2019-08-26 17:38:08 ----RD---- C:\WINDOWS\Microsoft.NET
2019-08-26 17:34:02 ----SHD---- C:\System Volume Information
2019-08-26 17:32:52 ----AD---- C:\Program Files (x86)\Microsoft Office
2019-08-26 17:14:23 ----AD---- C:\KMPlayer
2019-08-26 17:06:43 ----D---- C:\WINDOWS\system32\SleepStudy
2019-08-13 11:40:09 ----D---- C:\WINDOWS\SYSWOW64\Dism
2019-08-13 11:40:03 ----D---- C:\WINDOWS\system32\migration
2019-08-13 11:40:03 ----D---- C:\WINDOWS\system32\Dism
2019-08-13 11:40:03 ----D---- C:\WINDOWS\system32\appraiser
2019-08-13 11:40:01 ----D---- C:\WINDOWS\ShellExperiences
2019-08-13 11:40:01 ----D---- C:\WINDOWS\ShellComponents
2019-08-13 11:40:01 ----D---- C:\WINDOWS\apppatch
2019-08-04 23:28:15 ----D---- C:\WINDOWS\system32\drivers\wd

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amdkmpfd;@oem23.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2016-04-03 79120]
R0 amdpsp;@oem7.inf,%amdpsp.SVCDESC%;AMD PSP Service; C:\WINDOWS\system32\DRIVERS\amdpsp.sys [2017-06-12 243048]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-04-01 55608]
R0 SgrmAgent;@%SystemRoot%\System32\Drivers\SgrmAgent.sys,-1001; C:\WINDOWS\system32\drivers\SgrmAgent.sys [2018-09-15 87552]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-09-15 40960]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-09-15 63288]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-09-15 60416]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-09-15 8704]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2019-04-01 452096]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-04-01 51712]
R3 AmdAS4;@oem26.inf,%AmdAS4.SVCDESC%;AmdAS4 service; C:\WINDOWS\System32\drivers\AmdAS4.sys [2016-04-03 27384]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2016-04-03 23983104]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2016-04-03 674816]
R3 AtiHDAudioService;@oem13.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWT6.sys [2016-04-03 111120]
R3 BthA2DP;@microsoft_bluetooth_a2dp.inf,%BthA2dp.ServiceDescription%;Microsoft Bluetooth A2dp driver; C:\WINDOWS\system32\DRIVERS\BthA2dp.sys [2019-04-01 215552]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2019-04-01 111104]
R3 BthHFAud;@wdma_bt.inf,%DISPLAY_NAME%;Bluetooth handsfree; C:\WINDOWS\system32\DRIVERS\BthHfAud.sys [2018-09-15 56832]
R3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-08-13 91136]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-09-15 133120]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2019-08-26 92672]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-09-15 63288]
R3 ibtusb;@oem14.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\system32\DRIVERS\ibtusb.sys [2017-12-06 136128]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2016-02-25 4802816]
R3 MBAMSwissArmy;MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [2019-08-26 275232]
R3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2018-09-15 53760]
R3 Netwtw04;@oem28.inf,%NIC_Service_DispName_WINT_64%;Ovladač adaptéru Intel(R) Wireless pro systém Windows 10 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [2018-10-12 8723648]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-09-15 202240]
R3 rt640x64;@oem0.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2016-02-25 935168]
R3 SmbDrv;SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys [2017-08-18 53848]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-09-15 42504]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-09-15 319488]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-09-15 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-09-15 148480]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-09-15 124416]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-09-15 128512]
S0 MbamElam;MbamElam; C:\WINDOWS\system32\DRIVERS\MbamElam.sys [2019-06-26 20936]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-09-15 75264]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-09-15 79872]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-09-15 58880]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-09-15 68608]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-09-15 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-08-26 134968]
S0 SmartSAMD;SmartSAMD; C:\WINDOWS\System32\drivers\SmartSAMD.sys [2018-09-15 219960]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-09-15 19968]
S3 amdkmcsp;@oem7.inf,%amdkmcsp.SVCDESC%;AMD Kernel Mode CSP Service; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [2017-06-12 101232]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-09-15 18432]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2019-08-26 104248]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2018-09-15 34816]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2019-08-26 1232384]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-09-15 40960]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-09-15 125952]
S3 dg_ssudbus;@oem17.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2017-05-18 131984]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2017-10-16 30264]
S3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2017-11-05 47672]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-09-15 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-09-15 51512]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2018-09-15 60928]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2019-06-17 80400]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-09-15 27648]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-09-15 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-09-15 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-09-15 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-09-15 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-09-15 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2018-09-15 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2018-09-15 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-09-15 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-09-15 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2018-09-15 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2018-09-15 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-09-15 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-09-15 45568]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-09-15 42496]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-09-15 124928]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-09-15 515384]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-09-15 58680]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-08-13 290304]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-09-15 1150496]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-09-15 153616]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-09-15 184320]
S3 Netwtw02;___ Ovladač adaptéru Intel(R) Wireless pro systém Windows 10 64 Bit; C:\WINDOWS\System32\drivers\Netwtw02.sys [2016-02-06 6724368]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-09-15 148480]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2018-09-15 85504]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-08-26 117248]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-09-15 17408]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-04-09 981816]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-09-15 108032]
S3 RTSUER;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2016-02-25 413912]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-09-15 33080]
S3 SmbDrvI;SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [2016-03-14 62568]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-09-15 33280]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdaptiveSleepService;AdaptiveSleepService; c:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [2016-03-26 138752]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2019-07-24 88136]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2016-04-03 249344]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 CDPUserSvc_1828aa;Uživatelská služba platformy připojených zařízení_1828aa; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 ClickToRunSvc;Microsoft Office Click-to-Run Service; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2019-08-08 11469920]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2018-09-05 670816]
R2 ibtsiva;@oem29.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\System32\ibtsiva []
R2 MBAMService;Malwarebytes Service; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [2019-06-26 6744288]
R2 OneSyncSvc_1828aa;Hostitel synchronizace_1828aa; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2018-09-05 170592]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2016-02-25 310016]
R2 SgrmBroker;@%SystemRoot%\System32\SgrmBroker.exe,-100; C:\WINDOWS\system32\SgrmBroker.exe [2019-04-09 255128]
R3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 cbdhsvc_1828aa;Uživatelská služba schránky_1828aa; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2019-08-26 864568]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-03 153168]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-09-15 52816]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BcastDVRUserService_1828aa;Uživatelská služba pro GameDVR a vysílání her_1828aa; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BluetoothUserService_1828aa;Služba pro podporu uživatelů Bluetooth_1828aa; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService_1828aa;CaptureService_1828aa; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc_1828aa;ConsentUX_1828aa; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicePickerUserSvc_1828aa;DevicePicker_1828aa; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc_1828aa;Tok zařízení_1828aa; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-06-16 92672]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-04-01 43632]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\elevation_service.exe [2019-08-24 1096176]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-03 153168]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService_1828aa;Služba zasílání zpráv_1828aa; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2018-09-05 310880]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2002-02-01 226304]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2018-09-15 78848]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PimIndexMaintenanceSvc_1828aa;Data kontaktů_1828aa; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc_1828aa;PrintWorkflow_1828aa; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-09-15 1269248]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 SharedRealitySvc;@%SystemRoot%\system32\SharedRealitySvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]

-----------------EOF-----------------
Obrázek

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113388
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý počítač

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Uživatelský avatar
Flack007
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 93
Registrován: 14 črc 2010 13:10

Re: Pomalý počítač

#3 Příspěvek od Flack007 »

# -------------------------------
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build: 07-23-2019
# Database: 2019-08-27.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-27-2019
# Duration: 00:00:03
# OS: Windows 10 Home
# Cleaned: 13
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.HPCeement
Deleted Preinstalled.HPRegistrationService
Deleted Preinstalled.HPSupportAssistant
Deleted Preinstalled.HPWelcome


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1433 octets] - [27/08/2019 15:46:37]
AdwCleaner[S01].txt - [1494 octets] - [27/08/2019 15:50:40]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########
Obrázek

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113388
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý počítač

#4 Příspěvek od Rudy »

OK. Teď dejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Uživatelský avatar
Flack007
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 93
Registrován: 14 črc 2010 13:10

Re: Pomalý počítač

#5 Příspěvek od Flack007 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-08-2019
Ran by HP (administrator) on LAPTOP-OQ8NCB6M (HP HP Notebook) (28-08-2019 08:43:49)
Running from C:\Users\HP\Desktop
Loaded Profiles: HP & (Available Profiles: HP)
Platform: Windows 10 Home Version 1809 17763.678 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cnext.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\NisSrv.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8848640 2016-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [StartCN] => c:\Program Files\AMD\CNext\CNext\cnext.exe [4998856 2016-03-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22714912 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22714912 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-17] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-09-17] (Electronic Arts -> On2.com)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-26] (Google LLC -> Google LLC)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {194A9FFF-0B6E-478E-8EFD-17A820AC679A} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [114736 2019-08-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {3A79306B-D3D3-4309-9805-ED81D6715E86} - System32\Tasks\HPDAS => C:\Program [Argument = Files\HP\HP ePrint\HP.DeliveryAndStatus.Desktop.App.exe /CheckJobs]
Task: {45EF38A8-3B13-4F87-B1E2-2E555225426B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-08-15] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {47A8048E-A8CB-4922-93AB-CB642FA258CA} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1551936 2019-08-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {85768FE8-D719-40BE-8E70-0C4514219A28} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27351656 2019-08-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {891F9839-1DDC-4DB1-8D32-ECC1EEC33185} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-08-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A16FF1D0-F956-4B90-B81C-DBBFAB440AFE} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1447512 2019-08-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {B193CED5-DA86-4E6C-9C78-44D4CD879E3D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-08-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C339BDF3-21A5-4AD0-856D-03D72B8543AF} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {C850DD1F-F44B-4DF8-9839-F4C8797E62ED} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16585328 2019-08-15] (Piriform Software Ltd -> Piriform Ltd)
Task: {CEE218DA-73DF-4133-ACA9-1C011D139CD5} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [114736 2019-08-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {D2FEF5F0-0996-4A6A-A46D-AE92E6F330BE} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2045832 2019-08-26] (AVAST Software s.r.o. -> AVAST Software)
Task: {D48D0217-C298-41EB-9CF3-4D127D29B86C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-03] (Google Inc -> Google Inc.)
Task: {D93E22E3-5689-4267-A30D-8DB76CB10BAD} - System32\Tasks\Microsoft\Windows\rempl\shell-usoscan => C:\Program Files\rempl\remsh.exe
Task: {DEC59582-AD18-4B30-A6FF-F7CE5EB82626} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-08-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E18055A9-CA90-4913-81CB-4581B2A4D3E9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-03] (Google Inc -> Google Inc.)
Task: {E1E3549F-5EC8-428D-9D3A-119A87CD1377} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-08-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E927A7A8-A83B-4216-AEF8-7AA6B1D831E9} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1447512 2019-08-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {EDF3FC23-70D8-4D30-8D4A-9B5AC8F5BB73} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {F15FDAF6-AF6C-4E91-84FD-BB2E6F8382E1} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27351656 2019-08-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {FEED0963-3896-40B6-8EBD-77E17DC746A8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{46096549-1076-4886-83c9-36a44aae935f}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HRTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HRTE
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HRTE
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
SearchScopes: HKLM -> {12C313C1-050C-4C67-A413-9D33587CBE6B} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {12C313C1-050C-4C67-A413-9D33587CBE6B} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-2637491491-1068149313-1415535580-1001 -> {12C313C1-050C-4C67-A413-9D33587CBE6B} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098 -> {12C313C1-050C-4C67-A413-9D33587CBE6B} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-04] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1219159.dll [2015-06-26] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-06-01] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-06-01] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-08-21] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.cz/
CHR Profile: C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default [2019-08-28]
CHR Extension: (Prezentace) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-17]
CHR Extension: (Dokumenty) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-17]
CHR Extension: (Disk Google) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-10-03]
CHR Extension: (YouTube) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-03]
CHR Extension: (Adobe Acrobat) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-08-26]
CHR Extension: (Tabulky) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-17]
CHR Extension: (Dokumenty Google offline) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Gmail) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-30]
CHR Extension: (Chrome Media Router) - C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-26]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdaptiveSleepService; c:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [138752 2016-03-26] () [File not signed]
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [249344 2016-04-03] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11469920 2019-08-08] (Microsoft Corporation -> Microsoft Corporation)
R2 ibtsiva; C:\WINDOWS\System32\ibtsiva.exe [529912 2018-12-21] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [310880 2018-09-05] (Intel Corporation -> )
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [310016 2016-02-25] (Realtek Semiconductor Corp -> Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-08-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-08-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4059744 2018-09-05] (Intel Corporation -> Intel® Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmdAS4; C:\WINDOWS\System32\drivers\AmdAS4.sys [27384 2016-04-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, INC.)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [23983104 2016-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [674816 2016-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [79120 2016-04-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdpsp; C:\WINDOWS\System32\DRIVERS\amdpsp.sys [243048 2017-06-12] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWT6.sys [111120 2016-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-10-16] (Disc Soft Ltd -> Disc Soft Ltd)
S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-11-05] (Disc Soft Ltd -> Disc Soft Ltd)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136128 2017-12-06] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-08-27] (Malwarebytes Corporation -> Malwarebytes)
S3 Netwtw02; C:\WINDOWS\System32\drivers\Netwtw02.sys [6724368 2016-02-06] (Intel Corporation-Wireless Connectivity Solutions -> Intel Corporation)
R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [8723648 2018-10-12] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [935168 2016-02-25] (Realtek Semiconductor Corp -> Realtek )
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [413912 2016-02-25] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver_AMDASF.sys [53848 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
S3 SmbDrvI; C:\WINDOWS\System32\drivers\Smb_driver_Intel.sys [62568 2016-03-14] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-08-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [344288 2019-08-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54496 2019-08-04] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2019-05-16] (HP Inc. -> HP)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-28 08:43 - 2019-08-28 08:46 - 000023061 _____ C:\Users\HP\Desktop\FRST.txt
2019-08-28 08:42 - 2019-08-28 08:43 - 000000000 ____D C:\FRST
2019-08-28 08:41 - 2019-08-28 08:41 - 001613312 _____ (Farbar) C:\Users\HP\Downloads\FRST64.exe
2019-08-28 08:41 - 2019-08-28 08:41 - 001613312 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2019-08-28 08:37 - 2019-08-28 08:37 - 001388448 _____ C:\Users\Public\ASR.dat
2019-08-27 15:53 - 2019-08-27 15:53 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-08-27 15:48 - 2019-08-27 15:48 - 007623880 _____ (Malwarebytes) C:\Users\HP\Downloads\AdwCleaner.exe
2019-08-27 15:45 - 2019-08-27 15:52 - 000000000 ____D C:\AdwCleaner
2019-08-27 15:45 - 2019-08-27 15:44 - 007623880 _____ (Malwarebytes) C:\Users\HP\Desktop\adwcleaner_7.4.exe
2019-08-27 15:44 - 2019-08-27 15:44 - 007623880 _____ (Malwarebytes) C:\Users\HP\Downloads\adwcleaner_7.4.exe
2019-08-27 10:58 - 2019-08-27 10:59 - 000000000 ____D C:\rsit
2019-08-27 10:58 - 2019-08-27 10:59 - 000000000 ____D C:\Program Files\trend micro
2019-08-27 10:58 - 2019-08-27 10:58 - 001222144 _____ C:\Users\HP\Desktop\RSITx64.exe
2019-08-27 10:50 - 2019-08-27 10:50 - 020889016 _____ (Piriform Software Ltd) C:\Users\HP\Downloads\ccsetup561.exe
2019-08-27 10:49 - 2019-08-27 10:49 - 000201728 _____ (OldTimer Tools) C:\Users\HP\Desktop\OTC.exe
2019-08-27 10:45 - 2019-08-27 10:45 - 001802704 _____ (Bleeping Computer, LLC) C:\Users\HP\Desktop\rkill.exe
2019-08-26 23:03 - 2019-08-26 23:03 - 000001919 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-08-26 23:03 - 2019-08-26 23:03 - 000000000 ____D C:\Users\HP\AppData\Local\mbamtray
2019-08-26 23:03 - 2019-08-26 23:03 - 000000000 ____D C:\Users\HP\AppData\Local\mbam
2019-08-26 23:03 - 2019-08-26 23:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-08-26 23:03 - 2019-08-26 23:03 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-08-26 23:03 - 2019-08-26 23:03 - 000000000 ____D C:\Program Files\Malwarebytes
2019-08-26 23:03 - 2019-06-26 13:00 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-08-26 23:03 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-08-26 20:55 - 2019-08-26 20:55 - 020816896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 019011584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 012244992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 008900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 002942976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 002323688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 002177336 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 002017792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-08-26 20:55 - 2019-08-26 20:55 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-08-26 20:55 - 2019-08-26 20:55 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2019-08-26 20:55 - 2019-08-26 20:55 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe
2019-08-26 20:55 - 2019-08-26 20:55 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000092832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2019-08-26 20:55 - 2019-08-26 20:55 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Groupinghc.dll
2019-08-26 20:55 - 2019-08-26 20:55 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 026808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 023453696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 012939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 007871488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 006925312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 006544552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 006441472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 006308016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 005587968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 004628992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 004344832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 003818632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-08-26 20:54 - 2019-08-26 20:54 - 003656704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 002926096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-08-26 20:54 - 2019-08-26 20:54 - 002778760 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 002700792 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 002278792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-08-26 20:54 - 2019-08-26 20:54 - 002073232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001733120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001483872 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001477432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001465984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001280000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001278808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-08-26 20:54 - 2019-08-26 20:54 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001222160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-08-26 20:54 - 2019-08-26 20:54 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-08-26 20:54 - 2019-08-26 20:54 - 001180464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000993792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-08-26 20:54 - 2019-08-26 20:54 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000806024 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2019-08-26 20:54 - 2019-08-26 20:54 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000783184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000763392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000658944 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000535056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-08-26 20:54 - 2019-08-26 20:54 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-08-26 20:54 - 2019-08-26 20:54 - 000522104 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-08-26 20:54 - 2019-08-26 20:54 - 000515440 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000398928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000383504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-08-26 20:54 - 2019-08-26 20:54 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-08-26 20:54 - 2019-08-26 20:54 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingDiagSpp.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2019-08-26 20:54 - 2019-08-26 20:54 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-08-26 20:54 - 2019-08-26 20:54 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-08-26 20:54 - 2019-08-26 20:54 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe
2019-08-26 20:54 - 2019-08-26 20:54 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000173216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000121656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000114128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000058882 _____ C:\WINDOWS\system32\srms.dat
2019-08-26 20:54 - 2019-08-26 20:54 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2019-08-26 20:54 - 2019-08-26 20:54 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shunimpl.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 022114960 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 009682744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 007884288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 005570968 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 004737536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 004351656 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 004056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 003635200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-08-26 20:53 - 2019-08-26 20:53 - 003385856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 003363856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-08-26 20:53 - 2019-08-26 20:53 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 002842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 002438576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 002421760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-08-26 20:53 - 2019-08-26 20:53 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 001966904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-08-26 20:53 - 2019-08-26 20:53 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 001701880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-08-26 20:53 - 2019-08-26 20:53 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 001479184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 001472568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 001466880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 001344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-08-26 20:53 - 2019-08-26 20:53 - 001321784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 001260560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-08-26 20:53 - 2019-08-26 20:53 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 001098272 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 001038336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000864568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2019-08-26 20:53 - 2019-08-26 20:53 - 000771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000678680 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000586256 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2019-08-26 20:53 - 2019-08-26 20:53 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingDiagSpp.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 000262336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000200504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-08-26 20:53 - 2019-08-26 20:53 - 000152080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2019-08-26 20:53 - 2019-08-26 20:53 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2019-08-26 20:53 - 2019-08-26 20:53 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdcpw.dll
2019-08-26 20:53 - 2019-08-26 20:53 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\shunimpl.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 007687784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 003567104 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 003335224 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 002999808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 002767160 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-08-26 20:52 - 2019-08-26 20:52 - 002593544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 002022096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 001892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 001674752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 001662264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 001294488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-08-26 20:52 - 2019-08-26 20:52 - 001205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 001048376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 001020416 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 001004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000895792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000850976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000799784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000794040 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000788480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000764416 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000758688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000732168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-08-26 20:52 - 2019-08-26 20:52 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-08-26 20:52 - 2019-08-26 20:52 - 000603280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000508968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000482104 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000449576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000444728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000375752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000310072 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000294512 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000278624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000253256 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000248120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2019-08-26 20:52 - 2019-08-26 20:52 - 000230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000203064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000193040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000189712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2019-08-26 20:52 - 2019-08-26 20:52 - 000125016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pmem.sys
2019-08-26 20:52 - 2019-08-26 20:52 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-08-26 20:52 - 2019-08-26 20:52 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2019-08-26 20:52 - 2019-08-26 20:52 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiskSnapshot.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000087056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-08-26 20:52 - 2019-08-26 20:52 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2019-08-26 20:52 - 2019-08-26 20:52 - 000032784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2019-08-26 20:52 - 2019-08-26 20:52 - 000032568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys
2019-08-26 20:52 - 2019-08-26 20:52 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-08-26 20:52 - 2019-08-26 20:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-08-26 20:52 - 2019-08-26 20:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-08-26 20:52 - 2019-08-26 20:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-08-26 20:52 - 2019-08-26 20:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-08-26 20:52 - 2019-08-26 20:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-08-26 20:52 - 2019-08-26 20:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-08-26 20:52 - 2019-08-26 20:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-08-26 20:52 - 2019-08-26 20:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-08-26 17:54 - 2019-08-26 23:00 - 000000000 ____D C:\KVRT_Data
2019-08-26 17:51 - 2019-08-26 17:53 - 170044712 _____ (AO Kaspersky Lab) C:\Users\HP\Desktop\KVRT.exe
2019-08-26 17:51 - 2019-08-26 17:52 - 064333800 _____ (Malwarebytes ) C:\Users\HP\Downloads\mb3-setup-37469.37469-3.8.3.2965-1.0.613-1.0.11270.exe
2019-08-26 17:51 - 2019-08-26 17:52 - 064333800 _____ (Malwarebytes ) C:\Users\HP\Downloads\mb3-setup-37469.37469-3.8.3.2965-1.0.613-1.0.11270 (1).exe
2019-08-26 17:34 - 2019-08-26 17:34 - 000002566 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-08-26 17:34 - 2019-08-26 17:34 - 000002560 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-08-26 17:34 - 2019-08-26 17:34 - 000002537 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-08-26 17:34 - 2019-08-26 17:34 - 000002532 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-08-26 17:34 - 2019-08-26 17:34 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-08-26 17:34 - 2019-08-26 17:34 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-08-26 17:34 - 2019-08-26 17:34 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-08-26 17:34 - 2019-08-26 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-08-13 11:08 - 2019-08-13 11:08 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-08-13 11:08 - 2019-08-13 11:08 - 005115384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-08-13 11:08 - 2019-08-13 11:08 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-08-13 11:08 - 2019-08-13 11:08 - 000747568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2019-08-13 11:08 - 2019-08-13 11:08 - 000743216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2019-08-13 11:08 - 2019-08-13 11:08 - 000687896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2019-08-13 11:08 - 2019-08-13 11:08 - 000673520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2019-08-13 11:08 - 2019-08-13 11:08 - 000573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2019-08-13 11:08 - 2019-08-13 11:08 - 000560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2019-08-13 11:08 - 2019-08-13 11:08 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-08-13 11:07 - 2019-08-13 11:08 - 007727336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 004880896 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 003738624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 002714624 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 002393088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 002013696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 001763328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 001427592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 001266192 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-08-13 11:07 - 2019-08-13 11:07 - 001254400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOE.DLL
2019-08-13 11:07 - 2019-08-13 11:07 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000964608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000828728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-08-13 11:07 - 2019-08-13 11:07 - 000798736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2019-08-13 11:07 - 2019-08-13 11:07 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000660032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-08-13 11:07 - 2019-08-13 11:07 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2019-08-13 11:07 - 2019-08-13 11:07 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000362496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-08-13 11:07 - 2019-08-13 11:07 - 000260096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmd.exe
2019-08-13 11:07 - 2019-08-13 11:07 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2019-08-13 11:07 - 2019-08-13 11:07 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2019-08-13 11:07 - 2019-08-13 11:07 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompMgmtLauncher.exe
2019-08-13 11:07 - 2019-08-13 11:07 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-08-13 11:07 - 2019-08-13 11:07 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
2019-08-13 11:06 - 2019-08-13 11:06 - 015221248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 005566464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 005528064 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 005297664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 003630592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 003427328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 003081728 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 002982400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 002871816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-08-13 11:06 - 2019-08-13 11:06 - 002693120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 002626872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-08-13 11:06 - 2019-08-13 11:06 - 002050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001863168 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001837136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001794048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001721352 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001622016 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2019-08-13 11:06 - 2019-08-13 11:06 - 001316352 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001259520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001162320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001125416 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001075712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001052672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 001010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-08-13 11:06 - 2019-08-13 11:06 - 000998928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-08-13 11:06 - 2019-08-13 11:06 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000863544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-08-13 11:06 - 2019-08-13 11:06 - 000810504 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000807480 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-08-13 11:06 - 2019-08-13 11:06 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-08-13 11:06 - 2019-08-13 11:06 - 000740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000730936 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000652528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000637968 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2019-08-13 11:06 - 2019-08-13 11:06 - 000464912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000439096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-08-13 11:06 - 2019-08-13 11:06 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2019-08-13 11:06 - 2019-08-13 11:06 - 000431416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-08-13 11:06 - 2019-08-13 11:06 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-08-13 11:06 - 2019-08-13 11:06 - 000414208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-08-13 11:06 - 2019-08-13 11:06 - 000351432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000333128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-08-13 11:06 - 2019-08-13 11:06 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000279920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmd.exe
2019-08-13 11:06 - 2019-08-13 11:06 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopSwitcherDataModel.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000219448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-08-13 11:06 - 2019-08-13 11:06 - 000157024 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Radios.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000149232 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingUI.exe
2019-08-13 11:06 - 2019-08-13 11:06 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000137864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000115120 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2019-08-13 11:06 - 2019-08-13 11:06 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSReset.exe
2019-08-13 11:06 - 2019-08-13 11:06 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2019-08-13 11:06 - 2019-08-13 11:06 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2019-08-13 11:05 - 2019-08-13 11:05 - 017484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 002633216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 002085376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 001676288 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 001308672 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 001199616 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 001052984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-08-13 11:05 - 2019-08-13 11:05 - 001043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOE.DLL
2019-08-13 11:05 - 2019-08-13 11:05 - 000987736 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000871784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000865272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-08-13 11:05 - 2019-08-13 11:05 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000770096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000768224 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-08-13 11:05 - 2019-08-13 11:05 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000541184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-08-13 11:05 - 2019-08-13 11:05 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000511504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2019-08-13 11:05 - 2019-08-13 11:05 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000423480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000415752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000298296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2019-08-13 11:05 - 2019-08-13 11:05 - 000292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2019-08-13 11:05 - 2019-08-13 11:05 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000241944 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2019-08-13 11:05 - 2019-08-13 11:05 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-08-13 11:05 - 2019-08-13 11:05 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000198456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-08-13 11:05 - 2019-08-13 11:05 - 000197832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IPHLPAPI.DLL
2019-08-13 11:05 - 2019-08-13 11:05 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-08-13 11:05 - 2019-08-13 11:05 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2019-08-13 11:05 - 2019-08-13 11:05 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
2019-08-13 11:05 - 2019-08-13 11:05 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcimage.dll
2019-08-13 11:05 - 2019-08-13 11:05 - 000036360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-08-04 23:39 - 2019-08-27 15:53 - 000212992 _____ C:\WINDOWS\system32\ClickToRun_Pipeline16

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-08-28 08:35 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-08-27 15:53 - 2019-04-01 14:04 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-08-27 15:52 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-08-27 15:52 - 2017-10-09 00:18 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-08-27 15:52 - 2016-12-09 11:01 - 000000000 ____D C:\Users\HP\AppData\Roaming\Hewlett-Packard
2019-08-27 15:52 - 2016-12-09 11:01 - 000000000 ____D C:\Users\HP\AppData\Local\HP
2019-08-27 15:52 - 2016-10-10 15:57 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2019-08-27 15:52 - 2016-10-10 15:51 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2019-08-27 15:52 - 2016-04-18 06:08 - 000000000 ____D C:\Program Files\HP
2019-08-27 15:52 - 2016-04-09 09:56 - 000000000 ___HD C:\hp
2019-08-27 11:06 - 2019-06-16 19:41 - 000000000 ____D C:\Users\HP\Desktop\Auto
2019-08-27 11:06 - 2017-11-26 18:21 - 000000000 ____D C:\Users\HP\Desktop\fotky
2019-08-27 11:06 - 2017-10-18 13:37 - 000000000 ____D C:\Users\HP\Desktop\Hudba auto
2019-08-27 10:51 - 2019-04-01 14:04 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-08-27 10:51 - 2018-11-06 15:06 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-08-26 23:24 - 2019-04-01 10:55 - 000000000 ___DC C:\WINDOWS\Panther
2019-08-26 23:24 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-08-26 23:24 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-08-26 23:15 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-08-26 23:15 - 2018-01-31 02:59 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
2019-08-26 23:15 - 2016-04-18 06:09 - 000000000 ____D C:\ProgramData\Package Cache
2019-08-26 23:13 - 2019-04-01 13:57 - 001842140 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-08-26 23:13 - 2018-09-15 19:32 - 000752246 _____ C:\WINDOWS\system32\perfh005.dat
2019-08-26 23:13 - 2018-09-15 19:32 - 000162686 _____ C:\WINDOWS\system32\perfc005.dat
2019-08-26 23:09 - 2018-01-31 03:23 - 000000000 ___RD C:\Users\HP\3D Objects
2019-08-26 23:09 - 2015-11-02 20:02 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-08-26 23:07 - 2019-04-01 13:37 - 000532016 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-08-26 23:06 - 2017-11-05 15:16 - 012582912 _____ C:\Users\HP\Downloads\PowerISO6-x64.vhdx
2019-08-26 23:04 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-08-26 23:04 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-08-26 23:04 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-08-26 23:04 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Provisioning
2019-08-26 23:04 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-08-26 23:03 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-08-26 23:02 - 2018-09-15 08:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-08-26 22:58 - 2017-10-03 17:18 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-26 22:58 - 2017-10-03 17:18 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-26 21:05 - 2017-10-03 22:31 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-08-26 21:01 - 2017-10-03 22:31 - 134272480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-08-26 21:00 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-08-26 17:52 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-08-26 17:32 - 2016-04-18 06:11 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-08-26 17:29 - 2019-04-01 14:04 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-08-26 17:28 - 2017-11-12 10:43 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-26 17:14 - 2017-11-05 14:02 - 000000000 ____D C:\KMPlayer
2019-08-26 17:06 - 2019-04-01 13:37 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-08-13 11:40 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-08-13 11:40 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-08-13 11:40 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-08-13 11:40 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-08-13 11:40 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-08-04 23:28 - 2018-02-14 19:07 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd

==================== Files in the root of some directories ================

2019-08-28 08:37 - 2019-08-28 08:37 - 001388448 _____ () C:\Users\Public\ASR.dat

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ============================
Obrázek

Uživatelský avatar
Flack007
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 93
Registrován: 14 črc 2010 13:10

Re: Pomalý počítač

#6 Příspěvek od Flack007 »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-08-2019
Ran by HP (28-08-2019 08:49:00)
Running from C:\Users\HP\Desktop
Windows 10 Home Version 1809 17763.678 (X64) (2019-04-01 12:05:48)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2637491491-1068149313-1415535580-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2637491491-1068149313-1415535580-503 - Limited - Disabled)
Guest (S-1-5-21-2637491491-1068149313-1415535580-501 - Limited - Disabled)
HP (S-1-5-21-2637491491-1068149313-1415535580-1001 - Administrator - Enabled) => C:\Users\HP
WDAGUtilityAccount (S-1-5-21-2637491491-1068149313-1415535580-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.9.159 - Adobe Systems, Inc.)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 5.00 - Advanced Micro Devices, Inc.)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Catalyst Control Center Next Localization BR (HKLM\...\{020D236C-0860-8700-6645-A8D7DF7D1219}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{5FBFEC71-C194-6D96-21D9-80C183E25878}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{9A841032-8472-D1CE-0ACB-E399AC7A2199}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{9DF52711-9C0C-5B80-6304-49CE67D2824D}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{7516F9DE-6B63-B709-84CE-3098F06DD318}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{AF5429E4-27FD-3F52-A54D-6BD8F4A68963}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{5BA23300-0626-7146-471A-5BF56F8B5CBD}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{3FF26615-BB9E-2C89-6532-4B6215A20BB5}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{58EB8CBE-C35C-ADE2-1F58-0F9D453976D4}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{B8D846ED-A061-FC73-1A80-E45A70FC8BE1}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{05B3192F-37A6-D1F0-365B-476D69C3F0D2}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{B84C4DE7-F6A1-CC2A-9EE3-781DC5D600C2}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{401E894B-7172-98C5-0DA6-A05F78EE79B9}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{A3A601FE-245E-B0EE-F0B1-DDACCBBFDF7B}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{E6332ED4-35E5-CC2A-4E37-612FC1985994}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{89551DFD-EC10-8C4C-E127-9EEB614346FA}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{9E3D8484-056C-E087-D6F4-FCCD5EF6FABB}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{ADC3E089-7CA6-E182-26B3-A7DA6438636D}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{01C748AD-07EC-9D6B-3F15-43D49C5E9DE6}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{E5407BDB-DAF1-F28E-B835-BB90F20A3333}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{9A8954B1-8591-D49B-F337-800094222F7E}) (Version: 2016.0326.2041.34859 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.61 - Piriform)
DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 76.0.3809.132 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{D533A322-AB13-4D6E-80AB-19254C376262}) (Version: 18.1.1605.3087 - Intel Corporation)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.2.2.3 - PandoraTV)
Malwarebytes verze 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft Office 365 - cs-cz (HKLM\...\O365HomePremRetail - cs-cz) (Version: 16.0.11901.20218 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11901.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11901.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11901.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.11901.20218 - Microsoft Corporation) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.6.1001.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7743 - Realtek Semiconductor Corp.)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{FBA3961B-D1DF-493C-BC1F-E67D3B832895}) (Version: 2.56.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM-x32\...\{DE45508F-369E-4476-8F19-088F4933340E}) (Version: 1.8.0.0 - Microsoft Corporation) Hidden
VirtualDJ 2018 (HKLM-x32\...\{9CE1367A-3C11-4895-99E0-23E511C7DD8C}) (Version: 8.3.4720.0 - Atomix Productions)

Packages:
=========
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1807.9.0_x64__8wekyb3d8bbwe [2018-08-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1807.9.0_x86__8wekyb3d8bbwe [2018-08-08] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.2.8172.0_x86__8wekyb3d8bbwe [2018-08-26] (Microsoft Studios) [MS Ad]
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.10827.20186.0_x64__8wekyb3d8bbwe [2018-11-06] (Microsoft Corporation) [MS Ad]

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2637491491-1068149313-1415535580-1001_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2015-06-25 16:53 - 2015-06-25 16:53 - 000011776 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2015-06-25 16:51 - 2015-06-25 16:51 - 002013696 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2015-06-25 17:34 - 2015-06-25 17:34 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2015-06-25 17:37 - 2015-06-25 17:37 - 000739840 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-06-25 17:38 - 2015-06-25 17:38 - 000071168 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-06-25 17:35 - 2015-06-25 17:35 - 000014336 _____ () [File not signed] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000049664 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qdds.dll
2015-06-25 17:15 - 2015-06-25 17:15 - 000029696 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000037376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2015-06-25 17:15 - 2015-06-25 17:15 - 000030208 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000459776 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjp2.dll
2015-06-25 17:15 - 2015-06-25 17:15 - 000236544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000275456 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qmng.dll
2015-06-25 17:17 - 2015-06-25 17:17 - 000023552 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000022528 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000351744 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qtiff.dll
2015-06-25 17:20 - 2015-06-25 17:20 - 000021504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2015-06-25 17:21 - 2015-06-25 17:21 - 000374784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2015-06-25 17:14 - 2015-06-25 17:14 - 001212416 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2015-07-02 12:58 - 2015-07-02 12:58 - 005496320 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2015-06-25 17:03 - 2015-06-25 17:03 - 005804544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2015-06-25 17:00 - 2015-06-25 17:00 - 001061376 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2015-06-25 17:23 - 2015-06-25 17:23 - 003187712 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2015-06-25 17:28 - 2015-06-25 17:28 - 002924544 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2015-06-25 17:16 - 2015-06-25 17:16 - 000310784 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2015-06-25 17:08 - 2015-06-25 17:08 - 005444608 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2015-06-25 17:58 - 2015-06-25 17:58 - 000277504 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2015-06-25 16:59 - 2015-06-25 16:59 - 000193024 _____ (The Qt Company Ltd) [File not signed] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 09:24 - 2018-11-16 07:40 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155402473\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155414457\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155405082\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155417223\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\HP\Desktop\batman-arkham-knigth-batman.jpg
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\Control Panel\Desktop\\Wallpaper -> C:\Users\HP\Desktop\batman-arkham-knigth-batman.jpg
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "PowerDVD14Agent"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\...\StartupApproved\Run: => "gtarcade"
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\...\StartupApproved\Run: => "gtarcade"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{B26CC0B3-79FF-477E-B613-98F9187BC8DA}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{718CE3F5-A0F3-4BCA-A5ED-6FC231AA1415}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{EDEA6F4E-37E3-4D40-939B-8EA14AE5EFCD}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{C6E7762F-C0C4-4EC0-9019-F56A1B6B6B71}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{69B2F886-590A-477B-9E8C-A75043BB8920}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

01-06-2019 12:49:00 Windows Update
16-06-2019 19:30:21 Windows Update
16-06-2019 19:33:21 Windows Update
13-08-2019 10:44:14 Instalační služba modulů systému Windows
26-08-2019 17:33:07 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/28/2019 08:38:57 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (08/27/2019 03:43:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AdaptiveSleepService.exe, verze: 0.0.0.0, časové razítko: 0x56f72873
Název chybujícího modulu: AdaptiveSleepService.exe, verze: 0.0.0.0, časové razítko: 0x56f72873
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000000b9f4
ID chybujícího procesu: 0x1ba0
Čas spuštění chybující aplikace: 0x01d55c55e72660b4
Cesta k chybující aplikaci: c:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
Cesta k chybujícímu modulu: c:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
ID zprávy: 67a8b299-c57b-438d-bee2-ea13c9c03620
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (08/27/2019 10:43:42 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0


System errors:
=============
Error: (08/28/2019 08:42:59 AM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-OQ8NCB6M)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-OQ8NCB6M\HP (SID: S-1-5-21-2637491491-1068149313-1415535580-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/28/2019 08:39:39 AM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-OQ8NCB6M)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-OQ8NCB6M\HP (SID: S-1-5-21-2637491491-1068149313-1415535580-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/28/2019 08:35:35 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/28/2019 08:35:35 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/27/2019 04:34:17 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-OQ8NCB6M)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-OQ8NCB6M\HP (SID: S-1-5-21-2637491491-1068149313-1415535580-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/27/2019 04:21:54 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-OQ8NCB6M)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-OQ8NCB6M\HP (SID: S-1-5-21-2637491491-1068149313-1415535580-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/27/2019 03:56:27 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.SecurityAppBroker
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (08/27/2019 03:56:27 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscDataProtection
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2019-08-27 16:47:56.973
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {389D36DC-ECA6-475E-9DDD-C0C913123BA1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-08-27 16:34:06.513
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {B3DE8400-60FF-4065-A34E-6811BEC068F0}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-08-27 16:21:45.445
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {EB2CF20A-F895-4C5B-810B-CAED50EA4BBF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-08-27 16:14:08.387
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {EC9EFFB6-78DD-434F-AD1D-A8BD74804121}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-08-26 17:55:40.270
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {4BB753EA-83B1-42AD-BEF9-4442CB75FFDF}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: LAPTOP-OQ8NCB6M\HP

Date: 2019-08-13 10:56:06.881
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.299.1362.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2019-06-16 19:48:11.047
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.295.826.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16000.6
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

Date: 2019-06-16 19:29:49.540
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.293.2700.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15900.4
Kód chyby: 0x80240016
Popis chyby :Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

==================== Memory info ===========================

BIOS: Insyde F.17 09/02/2016
Motherboard: HP 81F6
Processor: AMD A8-7410 APU with AMD Radeon R5 Graphics
Percentage of memory in use: 48%
Total physical RAM: 7113.01 MB
Available physical RAM: 3663.61 MB
Total Virtual: 8265.01 MB
Available Virtual: 4862.82 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:915.11 GB) (Free:810.38 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:14.42 GB) (Free:1.71 GB) NTFS ==>[system with boot components (obtained from drive)]

\\?\Volume{7eae46c5-4cee-45da-b17a-d6149c340784}\ () (Fixed) (Total:1.71 GB) (Free:1.18 GB) NTFS
\\?\Volume{46374345-6126-409e-bd6f-88e0d4676f11}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: E79E28BB)

Partition: GPT.

==================== End of Addition.txt ============================
Obrázek

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113388
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý počítač

#7 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start

CloseProcesses:
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
Task: {C339BDF3-21A5-4AD0-856D-03D72B8543AF} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {D48D0217-C298-41EB-9CF3-4D127D29B86C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-03] (Google Inc -> Google Inc.)
Task: {E18055A9-CA90-4913-81CB-4581B2A4D3E9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-03] (Google Inc -> Google Inc.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HRTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HRTE
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HRTE
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Uživatelský avatar
Flack007
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 93
Registrován: 14 črc 2010 13:10

Re: Pomalý počítač

#8 Příspěvek od Flack007 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 28-08-2019 02
Ran by HP (28-08-2019 18:41:15) Run:3
Running from C:\Users\HP\Desktop
Loaded Profiles: HP (Available Profiles: HP)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> No File
Task: {C339BDF3-21A5-4AD0-856D-03D72B8543AF} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {D48D0217-C298-41EB-9CF3-4D127D29B86C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-03] (Google Inc -> Google Inc.)
Task: {E18055A9-CA90-4913-81CB-4581B2A4D3E9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-10-03] (Google Inc -> Google Inc.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HRTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HRTE
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HRTE
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => not found
HKLM\Software\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => not found
HKLM\Software\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => not found
HKLM\Software\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => not found
HKLM\Software\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => not found
HKLM\Software\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => not found
HKLM\Software\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => not found
HKLM\Software\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => not found
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1 => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2 => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3 => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4 => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5 => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive6 => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{9AA2F32D-362A-42D9-9328-24A483E2CCC3} => not found
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive7 => not found
HKLM\Software\Wow6432Node\Classes\CLSID\{C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C339BDF3-21A5-4AD0-856D-03D72B8543AF}" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D48D0217-C298-41EB-9CF3-4D127D29B86C}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E18055A9-CA90-4913-81CB-4581B2A4D3E9}" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page" => not found
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL" => not found
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HRTE => Error: No automatic fix found for this entry.
HKU\S-1-5-21-2637491491-1068149313-1415535580-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-08272019155406098\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HRTE => Error: No automatic fix found for this entry.

=========== EmptyTemp: ==========

BITS transfer queue => 12083200 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 11704471 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 38577 B
Edge => 0 B
Chrome => 7314419 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 1942 B
NetworkService => 0 B
HP => 13365 B

RecycleBin => 0 B
EmptyTemp: => 29.7 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 18:43:13 ====
Obrázek

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113388
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý počítač

#9 Příspěvek od Rudy »

OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Uživatelský avatar
Flack007
Vzorný návštěvník
Vzorný návštěvník
Příspěvky: 93
Registrován: 14 črc 2010 13:10

Re: Pomalý počítač

#10 Příspěvek od Flack007 »

Ano, už je to o dost lepší :)
Obrázek

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 113388
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Pomalý počítač

#11 Příspěvek od Rudy »

Tak to jsem rád. :)
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět