Dobrý den,
čistím kamarádce notebook, který měl předinstalovaný McAfee a spoustu HP programů.
To jsem jaksi odstranil, ale i přesto notebook vypadá zpomalený a všimnul jsem si, že v
logu FRST jsou nějaké zbytky McAfee a HP softwarů. Proto bych poprosil o menší pomoc.
Předem děkuji, za Vaši odpověď.
--------------- FRST LOG
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-08-2019 02
Ran by marei (administrator) on LAPTOP-JF5BAEQ4 (HP HP Laptop 15-db0xxx) (29-08-2019 19:30:10)
Running from C:\Users\marei\Desktop
Loaded Profiles: marei (Available Profiles: marei)
Platform: Windows 10 Home Version 1803 17134.950 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atiesrxx.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\marei\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.19031.11411.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9279328 2018-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Session] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1505832 2018-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4436520 2018-04-20] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-02-23] (Realtek Semiconductor Corp. -> Realtek)
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\...\Run: [Gaijin.Net Updater] => C:\Users\marei\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2105416 2019-07-24] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3210528 2019-08-22] (Valve -> Valve Corporation)
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\...\RunOnce: [Uninstall 19.152.0801.0007\amd64] => C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\marei\AppData\Local\Microsoft\OneDrive\19.152.0801.0007\amd64"
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\...\RunOnce: [Uninstall 19.152.0801.0007] => C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\marei\AppData\Local\Microsoft\OneDrive\19.152.0801.0007"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-28] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {083D7ABA-7BAE-458C-AB5E-6F7D222EB364} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [69512 2018-10-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {1A505298-7FBC-4308-8120-3653D229A262} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {27F58A30-CCA6-418B-BCBA-C5FBF3AA1745} - System32\Tasks\HPCeeScheduleFormarei => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [97656 2018-09-11] (HP Inc. -> HP Inc.)
Task: {34B8DB8B-4871-4ECD-8FEA-08AB63B015B0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49544 2018-10-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {49AFD118-0F2D-44A0-8033-E38F451AEBA0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4C126167-C811-4367-8856-4294AD939770} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {5A8AEE9B-C8EE-49DD-8780-A47457A815B4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-26] (Google Inc -> Google LLC)
Task: {60323F52-BAB4-4CEF-B51F-64EC3C99BDAB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6BE09870-180C-4712-B192-C44A1E709CDE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {6CDB4BB5-FB12-4EDD-9993-654A59161995} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {7FDB885A-3623-4252-8EDA-8CDCE8F3736F} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\marei\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {83903C80-4820-4A57-8B17-B0D5E783AF2D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {8F0DA0B1-7E40-404A-A352-D14652A21678} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {B6ED7A06-AB5C-403C-99BB-208F56C25065} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-26] (Google Inc -> Google LLC)
Task: {C9172801-532C-43C1-A195-C5058E8DB266} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FF3C5612-87DA-4C1B-8DA5-7AFBB46F663C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\HPCeeScheduleFormarei.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{93bd424a-8c1b-4b9b-acf4-0bfc4e94c70c}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {3576F213-C286-46C1-99C1-6FD1EE915CB3} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {3576F213-C286-46C1-99C1-6FD1EE915CB3} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-3222860412-1896180296-621945987-1002 -> {3576F213-C286-46C1-99C1-6FD1EE915CB3} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-26] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-26] (Google Inc -> Google LLC)
Chrome:
=======
CHR Profile: C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default [2019-08-29]
CHR Extension: (Prezentace) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-26]
CHR Extension: (Dokumenty) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-26]
CHR Extension: (Disk Google) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-26]
CHR Extension: (YouTube) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-26]
CHR Extension: (Volume Booster) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejkiikneibegknkgimmihdpcbcedgmpo [2019-08-19]
CHR Extension: (Tabulky) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-07-26]
CHR Extension: (AdBlock) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-08-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-07-26]
CHR Extension: (Gmail) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-26]
CHR Extension: (Chrome Media Router) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-14]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD External Events Utility; C:\windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atiesrxx.exe [481768 2018-10-23] (Advanced Micro Devices, Inc. -> AMD)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [679400 2018-04-02] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [779392 2019-01-24] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [268128 2018-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 RtkBtManServ; C:\windows\RtkBtManServ.exe [726600 2019-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [351784 2018-04-20] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AmdAS4; C:\windows\System32\drivers\AmdAS4.sys [27016 2018-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, INC.)
R3 amdkmdag; C:\windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atikmdag.sys [44624360 2018-10-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atikmpag.sys [567784 2018-10-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdpsp; C:\windows\System32\drivers\amdpsp.sys [137104 2018-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
S3 AmUStor; C:\windows\system32\drivers\AmUStor.SYS [108992 2018-04-27] (Alcorlink Corp. -> )
S3 AppleLowerFilter; C:\windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 AtiHDAudioService; C:\windows\system32\drivers\AtihdWT6.sys [111112 2018-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 dg_ssudbus; C:\windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 rt640x64; C:\windows\System32\drivers\rt640x64.sys [1026896 2018-04-12] (Realtek Semiconductor Corp. -> Realtek )
R3 RtkBtFilter; C:\windows\system32\DRIVERS\RtkBtfilter.sys [796560 2019-06-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
R3 RTWlanE; C:\windows\System32\drivers\rtwlane.sys [11708504 2019-07-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
R3 SmbDrv; C:\windows\system32\DRIVERS\Smb_driver_AMDASF.sys [45096 2018-04-20] (Synaptics Incorporated -> Synaptics Incorporated)
S3 SmbDrvI; C:\windows\System32\drivers\Smb_driver_Intel.sys [46632 2018-04-20] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\windows\System32\drivers\wd\WdBoot.sys [47496 2019-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\wd\WdFilter.sys [344288 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\windows\System32\drivers\WirelessButtonDriver64.sys [35392 2019-05-16] (HP Inc. -> HP)
S3 H2OFFT; \SystemRoot\System32\drivers\H2OFFT64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-08-29 19:30 - 2019-08-29 19:31 - 000020055 _____ C:\Users\marei\Desktop\FRST.txt
2019-08-29 19:30 - 2019-08-29 19:30 - 000000000 ____D C:\Users\marei\Desktop\FRST-OlderVersion
2019-08-29 19:29 - 2019-08-29 19:30 - 001613824 _____ (Farbar) C:\Users\marei\Desktop\FRST64.exe
2019-08-29 19:29 - 2019-08-29 19:30 - 000000000 ____D C:\FRST
2019-08-29 19:01 - 2019-08-29 19:17 - 000000000 ____D C:\ProgramData\McInstTemp0060861567098074
2019-08-29 15:21 - 2019-08-29 15:21 - 003335016 _____ C:\Users\marei\Downloads\winrar-x64-571cz.exe
2019-08-29 15:21 - 2019-08-29 15:21 - 000000000 ____D C:\Users\marei\AppData\Roaming\WinRAR
2019-08-29 15:21 - 2019-08-29 15:21 - 000000000 ____D C:\Users\marei\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-08-29 15:21 - 2019-08-29 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-08-29 15:21 - 2019-08-29 15:21 - 000000000 ____D C:\Program Files\WinRAR
2019-08-29 15:06 - 2019-08-29 15:06 - 000000000 ____D C:\Users\marei\AppData\Local\ATI
2019-08-29 15:02 - 2019-08-29 15:11 - 000000000 ____D C:\Users\marei\Documents\Euro Truck Simulator 2
2019-08-29 14:29 - 2019-08-29 14:29 - 000000222 _____ C:\Users\marei\Desktop\Euro Truck Simulator 2.url
2019-08-29 14:29 - 2019-08-29 14:29 - 000000000 ____D C:\Users\marei\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-08-29 14:19 - 2019-08-29 14:19 - 000000000 ___HD C:\$WINDOWS.~BT
2019-08-29 14:12 - 2019-08-29 14:13 - 000000000 ____D C:\Users\marei\AppData\Local\Steam
2019-08-29 14:12 - 2019-08-29 14:12 - 000000000 ____D C:\Users\marei\AppData\Local\CEF
2019-08-29 14:08 - 2019-08-29 19:19 - 000000000 ____D C:\Program Files (x86)\Steam
2019-08-29 14:08 - 2019-08-29 14:08 - 001573568 _____ C:\Users\marei\Downloads\SteamSetup.exe
2019-08-29 14:08 - 2019-08-29 14:08 - 000001039 _____ C:\Users\Public\Desktop\Steam.lnk
2019-08-29 14:08 - 2019-08-29 14:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2019-08-19 00:39 - 2019-08-19 00:47 - 000000000 ____D C:\Users\marei\AppData\Roaming\TeamViewer
2019-08-19 00:39 - 2019-08-19 00:39 - 023055896 _____ (TeamViewer GmbH) C:\Users\marei\Downloads\TeamViewer_Setup.exe
2019-08-19 00:29 - 2019-08-24 01:05 - 000000000 ____D C:\Users\marei\AppData\Roaming\vlc
2019-08-19 00:28 - 2019-08-19 00:28 - 000000923 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-08-19 00:28 - 2019-08-19 00:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-08-19 00:28 - 2019-08-19 00:28 - 000000000 ____D C:\Program Files\VideoLAN
2019-08-19 00:27 - 2019-08-19 00:28 - 042034704 _____ C:\Users\marei\Downloads\vlc-3.0.7.1-win64.exe
2019-08-19 00:17 - 2019-08-29 19:12 - 000000000 ____D C:\AdwCleaner
2019-08-19 00:17 - 2019-08-19 00:17 - 007623880 _____ (Malwarebytes) C:\Users\marei\Downloads\adwcleaner_7.4.exe
2019-08-19 00:15 - 2019-08-19 00:15 - 000007601 _____ C:\Users\marei\AppData\Local\Resmon.ResmonCfg
2019-08-13 21:09 - 2019-08-07 15:13 - 021389776 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2019-08-13 21:09 - 2019-08-07 15:13 - 001632112 _____ (Microsoft Corporation) C:\windows\system32\gdi32full.dll
2019-08-13 21:09 - 2019-08-07 15:13 - 001515904 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2019-08-13 21:09 - 2019-08-07 15:13 - 000790208 _____ (Microsoft Corporation) C:\windows\system32\fontdrvhost.exe
2019-08-13 21:09 - 2019-08-07 14:58 - 000178176 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2019-08-13 21:09 - 2019-08-07 14:58 - 000123392 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2019-08-13 21:09 - 2019-08-07 14:55 - 008626688 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2019-08-13 21:09 - 2019-08-07 14:55 - 000424448 _____ (Microsoft Corporation) C:\windows\system32\P2PGraph.dll
2019-08-13 21:09 - 2019-08-07 14:55 - 000210944 _____ (Microsoft Corporation) C:\windows\system32\P2P.dll
2019-08-13 21:09 - 2019-08-07 14:54 - 004783104 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2019-08-13 21:09 - 2019-08-07 14:53 - 003614208 _____ (Microsoft Corporation) C:\windows\system32\win32kfull.sys
2019-08-13 21:09 - 2019-08-07 14:53 - 000343552 _____ (Microsoft Corporation) C:\windows\system32\pnrpsvc.dll
2019-08-13 21:09 - 2019-08-07 14:53 - 000202752 _____ (Microsoft Corporation) C:\windows\system32\p2pnetsh.dll
2019-08-13 21:09 - 2019-08-07 14:52 - 001663488 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll
2019-08-13 21:09 - 2019-08-07 14:51 - 000424960 _____ (Microsoft Corporation) C:\windows\system32\p2psvc.dll
2019-08-13 21:09 - 2019-08-07 14:43 - 001453416 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32full.dll
2019-08-13 21:09 - 2019-08-07 14:41 - 001322688 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2019-08-13 21:09 - 2019-08-07 14:41 - 000662112 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontdrvhost.exe
2019-08-13 21:09 - 2019-08-07 14:40 - 020384344 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2019-08-13 21:09 - 2019-08-07 14:30 - 000138752 _____ (Microsoft Corporation) C:\windows\SysWOW64\t2embed.dll
2019-08-13 21:09 - 2019-08-07 14:30 - 000098304 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2019-08-13 21:09 - 2019-08-07 14:27 - 007990272 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2019-08-13 21:09 - 2019-08-07 14:26 - 000366592 _____ (Microsoft Corporation) C:\windows\SysWOW64\P2PGraph.dll
2019-08-13 21:09 - 2019-08-07 14:26 - 000174592 _____ (Microsoft Corporation) C:\windows\SysWOW64\P2P.dll
2019-08-13 21:09 - 2019-08-07 14:25 - 004175360 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2019-08-13 21:09 - 2019-08-07 14:24 - 002882048 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32kfull.sys
2019-08-13 21:09 - 2019-08-07 14:24 - 001472000 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll
2019-08-13 21:09 - 2019-08-07 14:24 - 000178176 _____ (Microsoft Corporation) C:\windows\SysWOW64\p2pnetsh.dll
2019-08-13 21:09 - 2019-08-07 11:40 - 000868864 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 001328440 _____ (Microsoft Corporation) C:\windows\system32\wpx.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 001219896 _____ (Microsoft Corporation) C:\windows\system32\hvix64.exe
2019-08-13 21:09 - 2019-08-07 10:09 - 001098064 _____ (Microsoft Corporation) C:\windows\system32\msvproc.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 001027384 _____ (Microsoft Corporation) C:\windows\system32\hvax64.exe
2019-08-13 21:09 - 2019-08-07 10:09 - 000568104 _____ (Microsoft Corporation) C:\windows\system32\tcblaunch.exe
2019-08-13 21:09 - 2019-08-07 10:09 - 000194352 _____ (Microsoft Corporation) C:\windows\system32\skci.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 000192824 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2019-08-13 21:09 - 2019-08-07 10:09 - 000134968 _____ (Microsoft Corporation) C:\windows\system32\hvloader.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 000095008 _____ (Microsoft Corporation) C:\windows\system32\wldp.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 007435720 _____ (Microsoft Corporation) C:\windows\system32\windows.storage.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 002810680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2019-08-13 21:09 - 2019-08-07 10:08 - 002470648 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 001566736 _____ (Microsoft Corporation) C:\windows\system32\AppxPackaging.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 001141712 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2019-08-13 21:09 - 2019-08-07 10:08 - 000723216 _____ (Microsoft Corporation) C:\windows\system32\ci.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 000710232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2019-08-13 21:09 - 2019-08-07 10:08 - 000494992 _____ (Microsoft Corporation) C:\windows\system32\bcryptprimitives.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 000227744 _____ (Microsoft Corporation) C:\windows\system32\xmllite.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 000170296 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2019-08-13 21:09 - 2019-08-07 10:08 - 000130840 _____ (Microsoft Corporation) C:\windows\system32\rmclient.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 000091568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dumpfve.sys
2019-08-13 21:09 - 2019-08-07 10:07 - 009084432 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2019-08-13 21:09 - 2019-08-07 10:07 - 007520112 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Protection.PlayReady.dll
2019-08-13 21:09 - 2019-08-07 10:07 - 002719240 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2019-08-13 21:09 - 2019-08-07 10:07 - 001459328 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2019-08-13 21:09 - 2019-08-07 10:07 - 001260992 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2019-08-13 21:09 - 2019-08-07 10:07 - 001031696 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2019-08-13 21:09 - 2019-08-07 10:07 - 000984152 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2019-08-13 21:09 - 2019-08-07 10:07 - 000786288 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2019-08-13 21:09 - 2019-08-07 10:07 - 000115728 _____ (Microsoft Corporation) C:\windows\system32\kdnet.dll
2019-08-13 21:09 - 2019-08-07 09:57 - 000081256 _____ (Microsoft Corporation) C:\windows\SysWOW64\wldp.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 006570368 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 006044008 _____ (Microsoft Corporation) C:\windows\SysWOW64\windows.storage.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 001993344 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 001427768 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxPackaging.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 000357336 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcryptprimitives.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 000192608 _____ (Microsoft Corporation) C:\windows\SysWOW64\xmllite.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 000101400 _____ (Microsoft Corporation) C:\windows\SysWOW64\rmclient.dll
2019-08-13 21:09 - 2019-08-07 09:55 - 000603792 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2019-08-13 21:09 - 2019-08-07 09:49 - 025857536 _____ (Microsoft Corporation) C:\windows\system32\edgehtml.dll
2019-08-13 21:09 - 2019-08-07 09:47 - 022017536 _____ (Microsoft Corporation) C:\windows\SysWOW64\edgehtml.dll
2019-08-13 21:09 - 2019-08-07 09:44 - 008189440 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Pdf.dll
2019-08-13 21:09 - 2019-08-07 09:42 - 022717952 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2019-08-13 21:09 - 2019-08-07 09:39 - 019372544 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2019-08-13 21:09 - 2019-08-07 09:38 - 006661632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Data.Pdf.dll
2019-08-13 21:09 - 2019-08-07 09:38 - 004385792 _____ (Microsoft Corporation) C:\windows\system32\EdgeContent.dll
2019-08-13 21:09 - 2019-08-07 09:38 - 000310272 _____ (Microsoft Corporation) C:\windows\system32\wc_storage.dll
2019-08-13 21:09 - 2019-08-07 09:38 - 000113664 _____ (Microsoft Corporation) C:\windows\system32\CoreShellExtFramework.dll
2019-08-13 21:09 - 2019-08-07 09:37 - 000386048 _____ (Microsoft Corporation) C:\windows\system32\Windows.System.Diagnostics.dll
2019-08-13 21:09 - 2019-08-07 09:37 - 000170496 _____ (Microsoft Corporation) C:\windows\system32\appsruprov.dll
2019-08-13 21:09 - 2019-08-07 09:37 - 000079872 _____ (Microsoft Corporation) C:\windows\system32\offreg.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 007572480 _____ (Microsoft Corporation) C:\windows\system32\Chakra.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000462336 _____ (Microsoft Corporation) C:\windows\system32\bcdedit.exe
2019-08-13 21:09 - 2019-08-07 09:36 - 000354816 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000326144 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Flights.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000311296 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.System.Diagnostics.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000209408 _____ (Microsoft Corporation) C:\windows\system32\MicrosoftAccountTokenProvider.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000154112 _____ (Microsoft Corporation) C:\windows\system32\Chakradiag.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 001361408 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSPhotography.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000726528 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2019-08-13 21:09 - 2019-08-07 09:35 - 000624640 _____ (Microsoft Corporation) C:\windows\system32\PsmServiceExtHost.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000619520 _____ (Microsoft Corporation) C:\windows\system32\SyncController.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000567808 _____ (Microsoft Corporation) C:\windows\system32\daxexec.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000265728 _____ (Microsoft Corporation) C:\windows\system32\psmsrv.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000153088 _____ (Microsoft Corporation) C:\windows\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 005769728 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakra.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 001826816 _____ (Microsoft Corporation) C:\windows\system32\Windows.CloudStore.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 001680384 _____ (Microsoft Corporation) C:\windows\system32\CoreShell.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 001549824 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000786432 _____ (Microsoft Corporation) C:\windows\system32\iphlpsvc.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000521216 _____ (Microsoft Corporation) C:\windows\SysWOW64\SyncController.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000392704 _____ (Microsoft Corporation) C:\windows\SysWOW64\daxexec.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000278528 _____ (Microsoft Corporation) C:\windows\system32\ComposableShellProxyStub.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000059392 _____ (Microsoft Corporation) C:\windows\SysWOW64\offreg.dll
2019-08-13 21:09 - 2019-08-07 09:33 - 001220608 _____ (Microsoft Corporation) C:\windows\system32\Unistore.dll
2019-08-13 21:09 - 2019-08-07 09:33 - 000228864 _____ (Microsoft Corporation) C:\windows\system32\ssdpsrv.dll
2019-08-13 21:09 - 2019-08-07 09:33 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakradiag.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 004938240 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 004516864 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 002165760 _____ (Microsoft Corporation) C:\windows\system32\win32kbase.sys
2019-08-13 21:09 - 2019-08-07 09:32 - 001235968 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpbase.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 001154048 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000669184 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000330752 _____ (Microsoft Corporation) C:\windows\system32\ncryptprov.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000318976 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncryptprov.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000135168 _____ (Microsoft Corporation) C:\windows\SysWOW64\ComposableShellProxyStub.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 001421312 _____ (Microsoft Corporation) C:\windows\system32\rdpbase.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 001110016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthport.sys
2019-08-13 21:09 - 2019-08-07 09:31 - 000965632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Unistore.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000947200 _____ (Microsoft Corporation) C:\windows\system32\wcmsvc.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000925696 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000793088 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000776192 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000544256 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000531968 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000367616 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2019-08-13 21:09 - 2019-08-07 08:15 - 000001310 _____ C:\windows\system32\tcbres.wim
2019-08-13 21:09 - 2019-07-11 08:48 - 001008640 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.MixedRealityCapture.dll
2019-08-13 21:09 - 2019-07-11 03:30 - 000353280 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll
2019-08-13 21:09 - 2019-07-11 03:30 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msexcl40.dll
2019-08-13 21:09 - 2019-07-11 03:30 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd2x40.dll
2019-08-13 21:09 - 2019-07-09 10:07 - 000506088 _____ (Microsoft Corporation) C:\windows\system32\systemreset.exe
2019-08-13 21:09 - 2019-07-09 10:04 - 000348664 _____ (Microsoft Corporation) C:\windows\system32\MusNotifyIcon.exe
2019-08-13 21:09 - 2019-07-09 10:01 - 004527792 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe
2019-08-13 21:09 - 2019-07-09 10:00 - 001616824 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll
2019-08-13 21:09 - 2019-07-09 09:44 - 012757504 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2019-08-13 21:09 - 2019-07-09 09:44 - 000039936 _____ (Microsoft Corporation) C:\windows\system32\WindowsUpdateElevatedInstaller.exe
2019-08-13 21:09 - 2019-07-09 09:43 - 004718080 _____ (Microsoft Corporation) C:\windows\system32\twinui.pcshell.dll
2019-08-13 21:09 - 2019-07-09 09:43 - 000124416 _____ (Microsoft Corporation) C:\windows\system32\musdialoghandlers.dll
2019-08-13 21:09 - 2019-07-09 09:43 - 000123392 _____ (Microsoft Corporation) C:\windows\system32\sdshext.dll
2019-08-13 21:09 - 2019-07-09 09:41 - 002019840 _____ (Microsoft Corporation) C:\windows\system32\ResetEngine.dll
2019-08-13 21:09 - 2019-07-09 09:40 - 000677888 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2019-08-13 21:09 - 2019-07-09 09:39 - 001210880 _____ (Microsoft Corporation) C:\windows\system32\sdclt.exe
2019-08-13 21:09 - 2019-07-09 09:39 - 001193472 _____ (Microsoft Corporation) C:\windows\system32\sdengin2.dll
2019-08-13 21:09 - 2019-07-09 09:39 - 001121792 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2019-08-13 21:09 - 2019-07-09 09:38 - 000740864 _____ (Microsoft Corporation) C:\windows\system32\LogonController.dll
2019-08-13 21:09 - 2019-07-09 09:37 - 001180672 _____ (Microsoft Corporation) C:\windows\system32\reseteng.dll
2019-08-13 21:09 - 2019-07-09 09:37 - 000517632 _____ (Microsoft Corporation) C:\windows\system32\newdev.dll
2019-08-13 21:09 - 2019-07-09 09:37 - 000174080 _____ (Microsoft Corporation) C:\windows\system32\ResetEngOnline.dll
2019-08-13 21:09 - 2019-07-09 09:37 - 000167424 _____ (Microsoft Corporation) C:\windows\system32\drvinst.exe
2019-08-13 21:09 - 2019-07-09 08:42 - 011943424 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2019-08-13 21:09 - 2019-07-09 08:38 - 000908288 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSWorkspace.dll
2019-08-13 21:09 - 2019-07-09 08:37 - 000485888 _____ (Microsoft Corporation) C:\windows\SysWOW64\newdev.dll
2019-08-13 21:09 - 2019-07-09 05:29 - 000375312 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pci.sys
2019-08-13 21:09 - 2019-07-09 05:29 - 000230200 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tpm.sys
2019-08-13 21:09 - 2019-07-09 05:29 - 000031032 _____ (Microsoft Corporation) C:\windows\system32\Drivers\uefi.sys
2019-08-13 21:09 - 2019-07-09 05:23 - 001213264 _____ (Microsoft Corporation) C:\windows\system32\ClipUp.exe
2019-08-13 21:09 - 2019-07-09 05:23 - 001035040 _____ (Microsoft Corporation) C:\windows\system32\ApplyTrustOffline.exe
2019-08-13 21:09 - 2019-07-09 05:21 - 005625160 _____ (Microsoft Corporation) C:\windows\system32\StartTileData.dll
2019-08-13 21:09 - 2019-07-09 05:21 - 000133136 _____ (Microsoft Corporation) C:\windows\system32\ImplatSetup.dll
2019-08-13 21:09 - 2019-07-09 05:20 - 000500536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2019-08-13 21:09 - 2019-07-09 05:20 - 000275512 _____ (Microsoft Corporation) C:\windows\system32\LsaIso.exe
2019-08-13 21:09 - 2019-07-09 05:20 - 000227640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2019-08-13 21:09 - 2019-07-09 05:19 - 002769472 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 002371504 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 001674216 _____ (Microsoft Corporation) C:\windows\system32\dcomp.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000799248 _____ (Microsoft Corporation) C:\windows\system32\NetSetupEngine.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000767232 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000713488 _____ (Microsoft Corporation) C:\windows\system32\MSVideoDSP.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000152104 _____ (Microsoft Corporation) C:\windows\system32\KerbClientShared.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000142352 _____ (Microsoft Corporation) C:\windows\system32\NetSetupApi.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000046608 _____ (Microsoft Corporation) C:\windows\system32\Drivers\werkernel.sys
2019-08-13 21:09 - 2019-07-09 05:12 - 002331480 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2019-08-13 21:09 - 2019-07-09 05:12 - 001286528 _____ (Microsoft Corporation) C:\windows\SysWOW64\dcomp.dll
2019-08-13 21:09 - 2019-07-09 05:12 - 000573808 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2019-08-13 21:09 - 2019-07-09 05:12 - 000125504 _____ (Microsoft Corporation) C:\windows\SysWOW64\KerbClientShared.dll
2019-08-13 21:09 - 2019-07-09 05:11 - 002257336 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2019-08-13 21:09 - 2019-07-09 05:11 - 000576528 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupEngine.dll
2019-08-13 21:09 - 2019-07-09 05:11 - 000108560 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupApi.dll
2019-08-13 21:09 - 2019-07-09 04:56 - 000068096 _____ (Microsoft Corporation) C:\windows\SysWOW64\usoapi.dll
2019-08-13 21:09 - 2019-07-09 04:56 - 000046080 _____ (Microsoft Corporation) C:\windows\SysWOW64\hmkd.dll
2019-08-13 21:09 - 2019-07-09 04:55 - 002700288 _____ (Microsoft Corporation) C:\windows\SysWOW64\tquery.dll
2019-08-13 21:09 - 2019-07-09 04:55 - 000081408 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetDriverInstall.dll
2019-08-13 21:09 - 2019-07-09 04:55 - 000002560 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2019-08-13 21:09 - 2019-07-09 04:53 - 003708416 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2019-08-13 21:09 - 2019-07-09 04:53 - 000288768 _____ (Microsoft Corporation) C:\windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-08-13 21:09 - 2019-07-09 04:52 - 002258944 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssrch.dll
2019-08-13 21:09 - 2019-07-09 04:52 - 000058368 _____ (Microsoft Corporation) C:\windows\system32\hmkd.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000608768 _____ (Microsoft Corporation) C:\windows\SysWOW64\EdgeManager.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000578560 _____ (Microsoft Corporation) C:\windows\SysWOW64\webplatstorageserver.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\mssprxy.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000119296 _____ (Microsoft Corporation) C:\windows\SysWOW64\updatepolicy.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000115200 _____ (Microsoft Corporation) C:\windows\system32\updatecsp.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000108544 _____ (Microsoft Corporation) C:\windows\system32\DuCsps.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000106496 _____ (Microsoft Corporation) C:\windows\system32\NotificationControllerPS.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000097792 _____ (Microsoft Corporation) C:\windows\system32\usoapi.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000041472 _____ (Microsoft Corporation) C:\windows\system32\UsoClient.exe
2019-08-13 21:09 - 2019-07-09 04:50 - 004861440 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 001003008 _____ (Microsoft Corporation) C:\windows\SysWOW64\TokenBroker.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000835584 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000681472 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000659456 _____ (Microsoft Corporation) C:\windows\SysWOW64\netlogon.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000414720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cldflt.sys
2019-08-13 21:09 - 2019-07-09 04:50 - 000141312 _____ C:\windows\system32\DataStoreCacheDumpTool.exe
2019-08-13 21:09 - 2019-07-09 04:50 - 000078848 _____ (Microsoft Corporation) C:\windows\system32\NetCfgNotifyObjectHost.exe
2019-08-13 21:09 - 2019-07-09 04:50 - 000026624 _____ (Microsoft Corporation) C:\windows\system32\kdcpw.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000002560 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2019-08-13 21:09 - 2019-07-09 04:49 - 000856576 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchIndexer.exe
2019-08-13 21:09 - 2019-07-09 04:49 - 000735744 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssvp.dll
2019-08-13 21:09 - 2019-07-09 04:49 - 000487424 _____ (Microsoft Corporation) C:\windows\system32\MusNotification.exe
2019-08-13 21:09 - 2019-07-09 04:49 - 000372736 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupShim.dll
2019-08-13 21:09 - 2019-07-09 04:49 - 000348160 _____ (Microsoft Corporation) C:\windows\system32\MusNotificationUx.exe
2019-08-13 21:09 - 2019-07-09 04:49 - 000345088 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchProtocolHost.exe
2019-08-13 21:09 - 2019-07-09 04:49 - 000145408 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssph.dll
2019-08-13 21:09 - 2019-07-09 04:49 - 000110592 _____ (Microsoft Corporation) C:\windows\system32\NetDriverInstall.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 003402240 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentServer.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000697344 _____ (Microsoft Corporation) C:\windows\system32\vpnike.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000395776 _____ (Microsoft Corporation) C:\windows\system32\Search.ProtocolHandler.MAPI2.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000335360 _____ (Microsoft Corporation) C:\windows\system32\NetSetupSvc.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000227328 _____ (Microsoft Corporation) C:\windows\system32\SearchFilterHost.exe
2019-08-13 21:09 - 2019-07-09 04:48 - 000175104 _____ (Microsoft Corporation) C:\windows\system32\wuuhosdeployment.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000142848 _____ (Microsoft Corporation) C:\windows\system32\updatepolicy.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 003392000 _____ (Microsoft Corporation) C:\windows\system32\tquery.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 002738688 _____ (Microsoft Corporation) C:\windows\system32\mssrch.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 002176000 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentExtensions.onecore.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 000928768 _____ (Microsoft Corporation) C:\windows\system32\MusUpdateHandlers.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 000894464 _____ (Microsoft Corporation) C:\windows\system32\webplatstorageserver.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 000808448 _____ (Microsoft Corporation) C:\windows\system32\EdgeManager.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 000726528 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2019-08-13 21:09 - 2019-07-09 04:46 - 002912256 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2019-08-13 21:09 - 2019-07-09 04:46 - 001561088 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentExtensions.desktop.dll
2019-08-13 21:09 - 2019-07-09 04:46 - 000532992 _____ (Microsoft Corporation) C:\windows\system32\QuietHours.dll
2019-08-13 21:09 - 2019-07-09 04:46 - 000300544 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 001400832 _____ (Microsoft Corporation) C:\windows\system32\TokenBroker.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 001218560 _____ (Microsoft Corporation) C:\windows\system32\NotificationController.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 000773120 _____ (Microsoft Corporation) C:\windows\system32\netlogon.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 000510976 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Notifications.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 000504832 _____ (Microsoft Corporation) C:\windows\system32\NetSetupShim.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 001058304 _____ (Microsoft Corporation) C:\windows\system32\SearchIndexer.exe
2019-08-13 21:09 - 2019-07-09 04:44 - 000922112 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.Web.Core.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 000796672 _____ (Microsoft Corporation) C:\windows\system32\mssvp.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 000629248 _____ (Microsoft Corporation) C:\windows\system32\updatehandlers.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 000466432 _____ (Microsoft Corporation) C:\windows\system32\wuuhext.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 000406528 _____ (Microsoft Corporation) C:\windows\system32\SearchProtocolHost.exe
2019-08-13 21:09 - 2019-07-09 04:44 - 000176640 _____ (Microsoft Corporation) C:\windows\system32\mssph.dll
2019-08-13 21:09 - 2019-07-09 04:43 - 001854976 _____ (Microsoft Corporation) C:\windows\system32\wevtsvc.dll
2019-08-13 21:09 - 2019-07-09 04:43 - 001398272 _____ (Microsoft Corporation) C:\windows\system32\usocore.dll
2019-08-13 21:09 - 2019-07-09 04:43 - 000917504 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2019-08-13 21:09 - 2019-07-09 04:43 - 000582144 _____ (Microsoft Corporation) C:\windows\system32\NgcCtnrSvc.dll
2019-08-13 21:09 - 2019-06-20 04:21 - 000058882 _____ C:\windows\system32\srms.dat
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-08-29 19:24 - 2018-06-02 11:33 - 000744924 _____ C:\windows\system32\perfh005.dat
2019-08-29 19:24 - 2018-06-02 11:33 - 000159594 _____ C:\windows\system32\perfc005.dat
2019-08-29 19:24 - 2018-04-28 08:11 - 001826110 _____ C:\windows\system32\PerfStringBackup.INI
2019-08-29 19:24 - 2018-04-12 01:36 - 000000000 ____D C:\windows\INF
2019-08-29 19:20 - 2018-12-24 21:45 - 000000000 ___RD C:\Users\marei\OneDrive
2019-08-29 19:18 - 2019-01-11 22:26 - 000000000 ____D C:\Users\marei\AppData\Local\D3DSCache
2019-08-29 19:18 - 2018-04-12 01:38 - 000000000 ____D C:\windows\AppReadiness
2019-08-29 19:17 - 2019-07-09 19:40 - 000000364 _____ C:\windows\Tasks\HPCeeScheduleFormarei.job
2019-08-29 19:17 - 2018-09-25 03:30 - 000000000 ____D C:\Program Files\mcafee
2019-08-29 19:17 - 2018-09-25 03:05 - 000065536 _____ C:\windows\psp_storage.bin
2019-08-29 19:17 - 2018-04-28 08:06 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-08-29 19:17 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-08-29 19:17 - 2018-04-11 23:04 - 000786432 _____ C:\windows\system32\config\BBI
2019-08-29 19:16 - 2018-06-02 01:59 - 000000000 ____D C:\ProgramData\HP
2019-08-29 19:16 - 2018-05-29 01:00 - 000000000 ___HD C:\hp
2019-08-29 19:05 - 2018-09-25 03:30 - 000000000 ____D C:\windows\System32\Tasks\McAfee
2019-08-29 19:05 - 2018-04-12 01:38 - 000000000 ___HD C:\windows\ELAMBKUP
2019-08-29 19:05 - 2018-04-11 23:04 - 000032768 _____ C:\windows\system32\config\ELAM
2019-08-29 18:59 - 2018-06-02 01:59 - 000000000 ____D C:\Program Files (x86)\HP
2019-08-29 18:59 - 2018-06-02 01:59 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2019-08-29 18:53 - 2018-12-24 21:41 - 000000000 ____D C:\Users\marei\AppData\Local\Hewlett-Packard
2019-08-29 18:53 - 2018-06-02 02:00 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2019-08-29 18:53 - 2018-06-02 01:59 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2019-08-29 18:48 - 2018-04-28 08:06 - 000000000 ____D C:\windows\system32\SleepStudy
2019-08-29 15:39 - 2018-06-02 02:01 - 000000000 ____D C:\ProgramData\Package Cache
2019-08-29 15:39 - 2018-06-02 02:00 - 000000000 ____D C:\Program Files\HP
2019-08-29 15:37 - 2018-06-02 01:59 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-08-29 14:19 - 2018-04-28 09:02 - 000000000 ____D C:\windows\Panther
2019-08-29 14:13 - 2018-12-24 21:38 - 000000000 ____D C:\Users\marei\AppData\Local\AMD
2019-08-28 13:22 - 2019-07-09 19:40 - 000003256 _____ C:\windows\System32\Tasks\HPCeeScheduleFormarei
2019-08-28 13:22 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-08-28 13:18 - 2019-07-26 20:39 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-28 13:18 - 2019-07-26 20:39 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-21 16:37 - 2018-09-25 03:26 - 000000000 ____D C:\windows\HP
2019-08-21 16:37 - 2018-06-02 11:23 - 000000000 ____D C:\SWSetup
2019-08-15 09:50 - 2019-02-08 18:54 - 000000000 ____D C:\Users\marei\AppData\Local\Crossout
2019-08-14 00:16 - 2018-12-24 21:38 - 000000000 ___RD C:\Users\marei\3D Objects
2019-08-14 00:16 - 2018-04-28 08:07 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-08-14 00:14 - 2018-04-28 08:06 - 000319208 _____ C:\windows\system32\FNTCACHE.DAT
2019-08-14 00:13 - 2018-06-02 11:35 - 000000000 ____D C:\windows\system32\Drivers\en-GB
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ___SD C:\windows\system32\UNP
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\TextInput
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\system32\oobe
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\ShellExperiences
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\Provisioning
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\bcastdvr
2019-08-13 21:16 - 2018-04-12 01:30 - 000000000 ____D C:\windows\CbsTemp
2019-08-13 21:08 - 2018-12-25 02:29 - 000000000 ____D C:\windows\system32\MRT
2019-08-13 21:06 - 2018-12-25 02:29 - 134272480 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2019-08-04 12:17 - 2018-12-25 01:52 - 000000000 ____D C:\Program Files\rempl
==================== Files in the root of some directories ================
2019-08-19 00:15 - 2019-08-19 00:15 - 000007601 _____ () C:\Users\marei\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Vyčištění pomalého PC od bloatwaru
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Vyčištění pomalého PC od bloatwaru
- Přílohy
-
- Addition.zip
- (8.61 KiB) Staženo 74 x
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vyčištění pomalého PC od bloatwaru
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vyčištění pomalého PC od bloatwaru
# -------------------------------
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build: 07-23-2019
# Database: 2019-08-27.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-29-2019
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 1
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Not Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\world-of-tanks-blitz.en.softonic.com
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [2421 octets] - [19/08/2019 00:18:26]
AdwCleaner[S01].txt - [2482 octets] - [29/08/2019 15:19:34]
AdwCleaner[S02].txt - [1770 octets] - [29/08/2019 19:16:33]
AdwCleaner[C02].txt - [1982 octets] - [29/08/2019 19:16:54]
AdwCleaner[S03].txt - [1785 octets] - [29/08/2019 19:58:09]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C03].txt ##########
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build: 07-23-2019
# Database: 2019-08-27.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-29-2019
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 1
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Not Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\world-of-tanks-blitz.en.softonic.com
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [2421 octets] - [19/08/2019 00:18:26]
AdwCleaner[S01].txt - [2482 octets] - [29/08/2019 15:19:34]
AdwCleaner[S02].txt - [1770 octets] - [29/08/2019 19:16:33]
AdwCleaner[C02].txt - [1982 octets] - [29/08/2019 19:16:54]
AdwCleaner[S03].txt - [1785 octets] - [29/08/2019 19:58:09]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C03].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vyčištění pomalého PC od bloatwaru
OK. Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vyčištění pomalého PC od bloatwaru
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-08-2019
Ran by marei (administrator) on LAPTOP-JF5BAEQ4 (HP HP Laptop 15-db0xxx) (29-08-2019 21:25:33)
Running from C:\Users\marei\Desktop
Loaded Profiles: marei (Available Profiles: marei)
Platform: Windows 10 Home Version 1803 17134.950 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atiesrxx.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\marei\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19051.16210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9279328 2018-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Session] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1505832 2018-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4436520 2018-04-20] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-02-23] (Realtek Semiconductor Corp. -> Realtek)
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\...\Run: [Gaijin.Net Updater] => C:\Users\marei\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2105416 2019-07-24] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3210528 2019-08-22] (Valve -> Valve Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-28] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {083D7ABA-7BAE-458C-AB5E-6F7D222EB364} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [69512 2018-10-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {1A505298-7FBC-4308-8120-3653D229A262} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {27F58A30-CCA6-418B-BCBA-C5FBF3AA1745} - System32\Tasks\HPCeeScheduleFormarei => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [97656 2018-09-11] (HP Inc. -> HP Inc.)
Task: {34B8DB8B-4871-4ECD-8FEA-08AB63B015B0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49544 2018-10-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {49AFD118-0F2D-44A0-8033-E38F451AEBA0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4C126167-C811-4367-8856-4294AD939770} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {5A8AEE9B-C8EE-49DD-8780-A47457A815B4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-26] (Google Inc -> Google LLC)
Task: {60323F52-BAB4-4CEF-B51F-64EC3C99BDAB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6BE09870-180C-4712-B192-C44A1E709CDE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {6CDB4BB5-FB12-4EDD-9993-654A59161995} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {7FDB885A-3623-4252-8EDA-8CDCE8F3736F} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\marei\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {83903C80-4820-4A57-8B17-B0D5E783AF2D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {8F0DA0B1-7E40-404A-A352-D14652A21678} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {B6ED7A06-AB5C-403C-99BB-208F56C25065} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-26] (Google Inc -> Google LLC)
Task: {C9172801-532C-43C1-A195-C5058E8DB266} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FF3C5612-87DA-4C1B-8DA5-7AFBB46F663C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\HPCeeScheduleFormarei.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{93bd424a-8c1b-4b9b-acf4-0bfc4e94c70c}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {3576F213-C286-46C1-99C1-6FD1EE915CB3} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {3576F213-C286-46C1-99C1-6FD1EE915CB3} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-3222860412-1896180296-621945987-1002 -> {3576F213-C286-46C1-99C1-6FD1EE915CB3} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-26] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-26] (Google Inc -> Google LLC)
Chrome:
=======
CHR Profile: C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default [2019-08-29]
CHR Extension: (Prezentace) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-26]
CHR Extension: (Dokumenty) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-26]
CHR Extension: (Disk Google) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-26]
CHR Extension: (YouTube) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-26]
CHR Extension: (Volume Booster) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejkiikneibegknkgimmihdpcbcedgmpo [2019-08-19]
CHR Extension: (Tabulky) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-07-26]
CHR Extension: (AdBlock) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-08-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-07-26]
CHR Extension: (Gmail) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-26]
CHR Extension: (Chrome Media Router) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-14]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD External Events Utility; C:\windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atiesrxx.exe [481768 2018-10-23] (Advanced Micro Devices, Inc. -> AMD)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [679400 2018-04-02] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [779392 2019-01-24] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [268128 2018-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 RtkBtManServ; C:\windows\RtkBtManServ.exe [726600 2019-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [351784 2018-04-20] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AmdAS4; C:\windows\System32\drivers\AmdAS4.sys [27016 2018-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, INC.)
R3 amdkmdag; C:\windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atikmdag.sys [44624360 2018-10-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atikmpag.sys [567784 2018-10-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdpsp; C:\windows\System32\drivers\amdpsp.sys [137104 2018-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
S3 AmUStor; C:\windows\system32\drivers\AmUStor.SYS [108992 2018-04-27] (Alcorlink Corp. -> )
S3 AppleLowerFilter; C:\windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 AtiHDAudioService; C:\windows\system32\drivers\AtihdWT6.sys [111112 2018-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 dg_ssudbus; C:\windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 rt640x64; C:\windows\System32\drivers\rt640x64.sys [1026896 2018-04-12] (Realtek Semiconductor Corp. -> Realtek )
R3 RtkBtFilter; C:\windows\system32\DRIVERS\RtkBtfilter.sys [796560 2019-06-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
R3 RTWlanE; C:\windows\System32\drivers\rtwlane.sys [11708504 2019-07-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
R3 SmbDrv; C:\windows\system32\DRIVERS\Smb_driver_AMDASF.sys [45096 2018-04-20] (Synaptics Incorporated -> Synaptics Incorporated)
S3 SmbDrvI; C:\windows\System32\drivers\Smb_driver_Intel.sys [46632 2018-04-20] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\windows\System32\drivers\wd\WdBoot.sys [47496 2019-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\wd\WdFilter.sys [344288 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\windows\System32\drivers\WirelessButtonDriver64.sys [35392 2019-05-16] (HP Inc. -> HP)
S3 H2OFFT; \SystemRoot\System32\drivers\H2OFFT64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-08-29 21:25 - 2019-08-29 21:27 - 000021255 _____ C:\Users\marei\Desktop\FRST.txt
2019-08-29 21:25 - 2019-08-29 21:25 - 000000000 ____D C:\Users\marei\Desktop\FRST-OlderVersion
2019-08-29 19:57 - 2019-08-29 15:17 - 007623880 _____ (Malwarebytes) C:\Users\marei\Desktop\adwcleaner_7.4.exe
2019-08-29 19:29 - 2019-08-29 21:25 - 001613824 _____ (Farbar) C:\Users\marei\Desktop\FRST64.exe
2019-08-29 19:29 - 2019-08-29 21:25 - 000000000 ____D C:\FRST
2019-08-29 15:21 - 2019-08-29 15:21 - 003335016 _____ C:\Users\marei\Downloads\winrar-x64-571cz.exe
2019-08-29 15:21 - 2019-08-29 15:21 - 000000000 ____D C:\Users\marei\AppData\Roaming\WinRAR
2019-08-29 15:21 - 2019-08-29 15:21 - 000000000 ____D C:\Users\marei\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-08-29 15:21 - 2019-08-29 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-08-29 15:21 - 2019-08-29 15:21 - 000000000 ____D C:\Program Files\WinRAR
2019-08-29 15:06 - 2019-08-29 15:06 - 000000000 ____D C:\Users\marei\AppData\Local\ATI
2019-08-29 15:02 - 2019-08-29 15:11 - 000000000 ____D C:\Users\marei\Documents\Euro Truck Simulator 2
2019-08-29 14:29 - 2019-08-29 14:29 - 000000222 _____ C:\Users\marei\Desktop\Euro Truck Simulator 2.url
2019-08-29 14:29 - 2019-08-29 14:29 - 000000000 ____D C:\Users\marei\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-08-29 14:19 - 2019-08-29 14:19 - 000000000 ___HD C:\$WINDOWS.~BT
2019-08-29 14:12 - 2019-08-29 14:13 - 000000000 ____D C:\Users\marei\AppData\Local\Steam
2019-08-29 14:12 - 2019-08-29 14:12 - 000000000 ____D C:\Users\marei\AppData\Local\CEF
2019-08-29 14:08 - 2019-08-29 20:00 - 000000000 ____D C:\Program Files (x86)\Steam
2019-08-29 14:08 - 2019-08-29 14:08 - 001573568 _____ C:\Users\marei\Downloads\SteamSetup.exe
2019-08-29 14:08 - 2019-08-29 14:08 - 000001039 _____ C:\Users\Public\Desktop\Steam.lnk
2019-08-29 14:08 - 2019-08-29 14:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2019-08-19 00:39 - 2019-08-19 00:47 - 000000000 ____D C:\Users\marei\AppData\Roaming\TeamViewer
2019-08-19 00:39 - 2019-08-19 00:39 - 023055896 _____ (TeamViewer GmbH) C:\Users\marei\Downloads\TeamViewer_Setup.exe
2019-08-19 00:29 - 2019-08-24 01:05 - 000000000 ____D C:\Users\marei\AppData\Roaming\vlc
2019-08-19 00:28 - 2019-08-19 00:28 - 000000923 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-08-19 00:28 - 2019-08-19 00:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-08-19 00:28 - 2019-08-19 00:28 - 000000000 ____D C:\Program Files\VideoLAN
2019-08-19 00:27 - 2019-08-19 00:28 - 042034704 _____ C:\Users\marei\Downloads\vlc-3.0.7.1-win64.exe
2019-08-19 00:17 - 2019-08-29 19:12 - 000000000 ____D C:\AdwCleaner
2019-08-19 00:17 - 2019-08-19 00:17 - 007623880 _____ (Malwarebytes) C:\Users\marei\Downloads\adwcleaner_7.4.exe
2019-08-19 00:15 - 2019-08-19 00:15 - 000007601 _____ C:\Users\marei\AppData\Local\Resmon.ResmonCfg
2019-08-13 21:09 - 2019-08-07 15:13 - 021389776 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2019-08-13 21:09 - 2019-08-07 15:13 - 001632112 _____ (Microsoft Corporation) C:\windows\system32\gdi32full.dll
2019-08-13 21:09 - 2019-08-07 15:13 - 001515904 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2019-08-13 21:09 - 2019-08-07 15:13 - 000790208 _____ (Microsoft Corporation) C:\windows\system32\fontdrvhost.exe
2019-08-13 21:09 - 2019-08-07 14:58 - 000178176 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2019-08-13 21:09 - 2019-08-07 14:58 - 000123392 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2019-08-13 21:09 - 2019-08-07 14:55 - 008626688 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2019-08-13 21:09 - 2019-08-07 14:55 - 000424448 _____ (Microsoft Corporation) C:\windows\system32\P2PGraph.dll
2019-08-13 21:09 - 2019-08-07 14:55 - 000210944 _____ (Microsoft Corporation) C:\windows\system32\P2P.dll
2019-08-13 21:09 - 2019-08-07 14:54 - 004783104 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2019-08-13 21:09 - 2019-08-07 14:53 - 003614208 _____ (Microsoft Corporation) C:\windows\system32\win32kfull.sys
2019-08-13 21:09 - 2019-08-07 14:53 - 000343552 _____ (Microsoft Corporation) C:\windows\system32\pnrpsvc.dll
2019-08-13 21:09 - 2019-08-07 14:53 - 000202752 _____ (Microsoft Corporation) C:\windows\system32\p2pnetsh.dll
2019-08-13 21:09 - 2019-08-07 14:52 - 001663488 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll
2019-08-13 21:09 - 2019-08-07 14:51 - 000424960 _____ (Microsoft Corporation) C:\windows\system32\p2psvc.dll
2019-08-13 21:09 - 2019-08-07 14:43 - 001453416 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32full.dll
2019-08-13 21:09 - 2019-08-07 14:41 - 001322688 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2019-08-13 21:09 - 2019-08-07 14:41 - 000662112 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontdrvhost.exe
2019-08-13 21:09 - 2019-08-07 14:40 - 020384344 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2019-08-13 21:09 - 2019-08-07 14:30 - 000138752 _____ (Microsoft Corporation) C:\windows\SysWOW64\t2embed.dll
2019-08-13 21:09 - 2019-08-07 14:30 - 000098304 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2019-08-13 21:09 - 2019-08-07 14:27 - 007990272 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2019-08-13 21:09 - 2019-08-07 14:26 - 000366592 _____ (Microsoft Corporation) C:\windows\SysWOW64\P2PGraph.dll
2019-08-13 21:09 - 2019-08-07 14:26 - 000174592 _____ (Microsoft Corporation) C:\windows\SysWOW64\P2P.dll
2019-08-13 21:09 - 2019-08-07 14:25 - 004175360 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2019-08-13 21:09 - 2019-08-07 14:24 - 002882048 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32kfull.sys
2019-08-13 21:09 - 2019-08-07 14:24 - 001472000 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll
2019-08-13 21:09 - 2019-08-07 14:24 - 000178176 _____ (Microsoft Corporation) C:\windows\SysWOW64\p2pnetsh.dll
2019-08-13 21:09 - 2019-08-07 11:40 - 000868864 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 001328440 _____ (Microsoft Corporation) C:\windows\system32\wpx.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 001219896 _____ (Microsoft Corporation) C:\windows\system32\hvix64.exe
2019-08-13 21:09 - 2019-08-07 10:09 - 001098064 _____ (Microsoft Corporation) C:\windows\system32\msvproc.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 001027384 _____ (Microsoft Corporation) C:\windows\system32\hvax64.exe
2019-08-13 21:09 - 2019-08-07 10:09 - 000568104 _____ (Microsoft Corporation) C:\windows\system32\tcblaunch.exe
2019-08-13 21:09 - 2019-08-07 10:09 - 000194352 _____ (Microsoft Corporation) C:\windows\system32\skci.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 000192824 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2019-08-13 21:09 - 2019-08-07 10:09 - 000134968 _____ (Microsoft Corporation) C:\windows\system32\hvloader.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 000095008 _____ (Microsoft Corporation) C:\windows\system32\wldp.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 007435720 _____ (Microsoft Corporation) C:\windows\system32\windows.storage.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 002810680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2019-08-13 21:09 - 2019-08-07 10:08 - 002470648 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 001566736 _____ (Microsoft Corporation) C:\windows\system32\AppxPackaging.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 001141712 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2019-08-13 21:09 - 2019-08-07 10:08 - 000723216 _____ (Microsoft Corporation) C:\windows\system32\ci.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 000710232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2019-08-13 21:09 - 2019-08-07 10:08 - 000494992 _____ (Microsoft Corporation) C:\windows\system32\bcryptprimitives.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 000227744 _____ (Microsoft Corporation) C:\windows\system32\xmllite.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 000170296 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2019-08-13 21:09 - 2019-08-07 10:08 - 000130840 _____ (Microsoft Corporation) C:\windows\system32\rmclient.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 000091568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dumpfve.sys
2019-08-13 21:09 - 2019-08-07 10:07 - 009084432 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2019-08-13 21:09 - 2019-08-07 10:07 - 007520112 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Protection.PlayReady.dll
2019-08-13 21:09 - 2019-08-07 10:07 - 002719240 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2019-08-13 21:09 - 2019-08-07 10:07 - 001459328 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2019-08-13 21:09 - 2019-08-07 10:07 - 001260992 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2019-08-13 21:09 - 2019-08-07 10:07 - 001031696 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2019-08-13 21:09 - 2019-08-07 10:07 - 000984152 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2019-08-13 21:09 - 2019-08-07 10:07 - 000786288 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2019-08-13 21:09 - 2019-08-07 10:07 - 000115728 _____ (Microsoft Corporation) C:\windows\system32\kdnet.dll
2019-08-13 21:09 - 2019-08-07 09:57 - 000081256 _____ (Microsoft Corporation) C:\windows\SysWOW64\wldp.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 006570368 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 006044008 _____ (Microsoft Corporation) C:\windows\SysWOW64\windows.storage.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 001993344 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 001427768 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxPackaging.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 000357336 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcryptprimitives.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 000192608 _____ (Microsoft Corporation) C:\windows\SysWOW64\xmllite.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 000101400 _____ (Microsoft Corporation) C:\windows\SysWOW64\rmclient.dll
2019-08-13 21:09 - 2019-08-07 09:55 - 000603792 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2019-08-13 21:09 - 2019-08-07 09:49 - 025857536 _____ (Microsoft Corporation) C:\windows\system32\edgehtml.dll
2019-08-13 21:09 - 2019-08-07 09:47 - 022017536 _____ (Microsoft Corporation) C:\windows\SysWOW64\edgehtml.dll
2019-08-13 21:09 - 2019-08-07 09:44 - 008189440 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Pdf.dll
2019-08-13 21:09 - 2019-08-07 09:42 - 022717952 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2019-08-13 21:09 - 2019-08-07 09:39 - 019372544 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2019-08-13 21:09 - 2019-08-07 09:38 - 006661632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Data.Pdf.dll
2019-08-13 21:09 - 2019-08-07 09:38 - 004385792 _____ (Microsoft Corporation) C:\windows\system32\EdgeContent.dll
2019-08-13 21:09 - 2019-08-07 09:38 - 000310272 _____ (Microsoft Corporation) C:\windows\system32\wc_storage.dll
2019-08-13 21:09 - 2019-08-07 09:38 - 000113664 _____ (Microsoft Corporation) C:\windows\system32\CoreShellExtFramework.dll
2019-08-13 21:09 - 2019-08-07 09:37 - 000386048 _____ (Microsoft Corporation) C:\windows\system32\Windows.System.Diagnostics.dll
2019-08-13 21:09 - 2019-08-07 09:37 - 000170496 _____ (Microsoft Corporation) C:\windows\system32\appsruprov.dll
2019-08-13 21:09 - 2019-08-07 09:37 - 000079872 _____ (Microsoft Corporation) C:\windows\system32\offreg.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 007572480 _____ (Microsoft Corporation) C:\windows\system32\Chakra.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000462336 _____ (Microsoft Corporation) C:\windows\system32\bcdedit.exe
2019-08-13 21:09 - 2019-08-07 09:36 - 000354816 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000326144 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Flights.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000311296 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.System.Diagnostics.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000209408 _____ (Microsoft Corporation) C:\windows\system32\MicrosoftAccountTokenProvider.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000154112 _____ (Microsoft Corporation) C:\windows\system32\Chakradiag.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 001361408 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSPhotography.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000726528 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2019-08-13 21:09 - 2019-08-07 09:35 - 000624640 _____ (Microsoft Corporation) C:\windows\system32\PsmServiceExtHost.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000619520 _____ (Microsoft Corporation) C:\windows\system32\SyncController.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000567808 _____ (Microsoft Corporation) C:\windows\system32\daxexec.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000265728 _____ (Microsoft Corporation) C:\windows\system32\psmsrv.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000153088 _____ (Microsoft Corporation) C:\windows\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 005769728 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakra.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 001826816 _____ (Microsoft Corporation) C:\windows\system32\Windows.CloudStore.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 001680384 _____ (Microsoft Corporation) C:\windows\system32\CoreShell.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 001549824 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000786432 _____ (Microsoft Corporation) C:\windows\system32\iphlpsvc.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000521216 _____ (Microsoft Corporation) C:\windows\SysWOW64\SyncController.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000392704 _____ (Microsoft Corporation) C:\windows\SysWOW64\daxexec.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000278528 _____ (Microsoft Corporation) C:\windows\system32\ComposableShellProxyStub.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000059392 _____ (Microsoft Corporation) C:\windows\SysWOW64\offreg.dll
2019-08-13 21:09 - 2019-08-07 09:33 - 001220608 _____ (Microsoft Corporation) C:\windows\system32\Unistore.dll
2019-08-13 21:09 - 2019-08-07 09:33 - 000228864 _____ (Microsoft Corporation) C:\windows\system32\ssdpsrv.dll
2019-08-13 21:09 - 2019-08-07 09:33 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakradiag.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 004938240 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 004516864 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 002165760 _____ (Microsoft Corporation) C:\windows\system32\win32kbase.sys
2019-08-13 21:09 - 2019-08-07 09:32 - 001235968 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpbase.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 001154048 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000669184 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000330752 _____ (Microsoft Corporation) C:\windows\system32\ncryptprov.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000318976 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncryptprov.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000135168 _____ (Microsoft Corporation) C:\windows\SysWOW64\ComposableShellProxyStub.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 001421312 _____ (Microsoft Corporation) C:\windows\system32\rdpbase.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 001110016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthport.sys
2019-08-13 21:09 - 2019-08-07 09:31 - 000965632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Unistore.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000947200 _____ (Microsoft Corporation) C:\windows\system32\wcmsvc.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000925696 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000793088 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000776192 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000544256 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000531968 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000367616 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2019-08-13 21:09 - 2019-08-07 08:15 - 000001310 _____ C:\windows\system32\tcbres.wim
2019-08-13 21:09 - 2019-07-11 08:48 - 001008640 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.MixedRealityCapture.dll
2019-08-13 21:09 - 2019-07-11 03:30 - 000353280 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll
2019-08-13 21:09 - 2019-07-11 03:30 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msexcl40.dll
2019-08-13 21:09 - 2019-07-11 03:30 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd2x40.dll
2019-08-13 21:09 - 2019-07-09 10:07 - 000506088 _____ (Microsoft Corporation) C:\windows\system32\systemreset.exe
2019-08-13 21:09 - 2019-07-09 10:04 - 000348664 _____ (Microsoft Corporation) C:\windows\system32\MusNotifyIcon.exe
2019-08-13 21:09 - 2019-07-09 10:01 - 004527792 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe
2019-08-13 21:09 - 2019-07-09 10:00 - 001616824 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll
2019-08-13 21:09 - 2019-07-09 09:44 - 012757504 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2019-08-13 21:09 - 2019-07-09 09:44 - 000039936 _____ (Microsoft Corporation) C:\windows\system32\WindowsUpdateElevatedInstaller.exe
2019-08-13 21:09 - 2019-07-09 09:43 - 004718080 _____ (Microsoft Corporation) C:\windows\system32\twinui.pcshell.dll
2019-08-13 21:09 - 2019-07-09 09:43 - 000124416 _____ (Microsoft Corporation) C:\windows\system32\musdialoghandlers.dll
2019-08-13 21:09 - 2019-07-09 09:43 - 000123392 _____ (Microsoft Corporation) C:\windows\system32\sdshext.dll
2019-08-13 21:09 - 2019-07-09 09:41 - 002019840 _____ (Microsoft Corporation) C:\windows\system32\ResetEngine.dll
2019-08-13 21:09 - 2019-07-09 09:40 - 000677888 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2019-08-13 21:09 - 2019-07-09 09:39 - 001210880 _____ (Microsoft Corporation) C:\windows\system32\sdclt.exe
2019-08-13 21:09 - 2019-07-09 09:39 - 001193472 _____ (Microsoft Corporation) C:\windows\system32\sdengin2.dll
2019-08-13 21:09 - 2019-07-09 09:39 - 001121792 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2019-08-13 21:09 - 2019-07-09 09:38 - 000740864 _____ (Microsoft Corporation) C:\windows\system32\LogonController.dll
2019-08-13 21:09 - 2019-07-09 09:37 - 001180672 _____ (Microsoft Corporation) C:\windows\system32\reseteng.dll
2019-08-13 21:09 - 2019-07-09 09:37 - 000517632 _____ (Microsoft Corporation) C:\windows\system32\newdev.dll
2019-08-13 21:09 - 2019-07-09 09:37 - 000174080 _____ (Microsoft Corporation) C:\windows\system32\ResetEngOnline.dll
2019-08-13 21:09 - 2019-07-09 09:37 - 000167424 _____ (Microsoft Corporation) C:\windows\system32\drvinst.exe
2019-08-13 21:09 - 2019-07-09 08:42 - 011943424 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2019-08-13 21:09 - 2019-07-09 08:38 - 000908288 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSWorkspace.dll
2019-08-13 21:09 - 2019-07-09 08:37 - 000485888 _____ (Microsoft Corporation) C:\windows\SysWOW64\newdev.dll
2019-08-13 21:09 - 2019-07-09 05:29 - 000375312 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pci.sys
2019-08-13 21:09 - 2019-07-09 05:29 - 000230200 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tpm.sys
2019-08-13 21:09 - 2019-07-09 05:29 - 000031032 _____ (Microsoft Corporation) C:\windows\system32\Drivers\uefi.sys
2019-08-13 21:09 - 2019-07-09 05:23 - 001213264 _____ (Microsoft Corporation) C:\windows\system32\ClipUp.exe
2019-08-13 21:09 - 2019-07-09 05:23 - 001035040 _____ (Microsoft Corporation) C:\windows\system32\ApplyTrustOffline.exe
2019-08-13 21:09 - 2019-07-09 05:21 - 005625160 _____ (Microsoft Corporation) C:\windows\system32\StartTileData.dll
2019-08-13 21:09 - 2019-07-09 05:21 - 000133136 _____ (Microsoft Corporation) C:\windows\system32\ImplatSetup.dll
2019-08-13 21:09 - 2019-07-09 05:20 - 000500536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2019-08-13 21:09 - 2019-07-09 05:20 - 000275512 _____ (Microsoft Corporation) C:\windows\system32\LsaIso.exe
2019-08-13 21:09 - 2019-07-09 05:20 - 000227640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2019-08-13 21:09 - 2019-07-09 05:19 - 002769472 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 002371504 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 001674216 _____ (Microsoft Corporation) C:\windows\system32\dcomp.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000799248 _____ (Microsoft Corporation) C:\windows\system32\NetSetupEngine.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000767232 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000713488 _____ (Microsoft Corporation) C:\windows\system32\MSVideoDSP.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000152104 _____ (Microsoft Corporation) C:\windows\system32\KerbClientShared.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000142352 _____ (Microsoft Corporation) C:\windows\system32\NetSetupApi.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000046608 _____ (Microsoft Corporation) C:\windows\system32\Drivers\werkernel.sys
2019-08-13 21:09 - 2019-07-09 05:12 - 002331480 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2019-08-13 21:09 - 2019-07-09 05:12 - 001286528 _____ (Microsoft Corporation) C:\windows\SysWOW64\dcomp.dll
2019-08-13 21:09 - 2019-07-09 05:12 - 000573808 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2019-08-13 21:09 - 2019-07-09 05:12 - 000125504 _____ (Microsoft Corporation) C:\windows\SysWOW64\KerbClientShared.dll
2019-08-13 21:09 - 2019-07-09 05:11 - 002257336 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2019-08-13 21:09 - 2019-07-09 05:11 - 000576528 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupEngine.dll
2019-08-13 21:09 - 2019-07-09 05:11 - 000108560 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupApi.dll
2019-08-13 21:09 - 2019-07-09 04:56 - 000068096 _____ (Microsoft Corporation) C:\windows\SysWOW64\usoapi.dll
2019-08-13 21:09 - 2019-07-09 04:56 - 000046080 _____ (Microsoft Corporation) C:\windows\SysWOW64\hmkd.dll
2019-08-13 21:09 - 2019-07-09 04:55 - 002700288 _____ (Microsoft Corporation) C:\windows\SysWOW64\tquery.dll
2019-08-13 21:09 - 2019-07-09 04:55 - 000081408 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetDriverInstall.dll
2019-08-13 21:09 - 2019-07-09 04:55 - 000002560 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2019-08-13 21:09 - 2019-07-09 04:53 - 003708416 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2019-08-13 21:09 - 2019-07-09 04:53 - 000288768 _____ (Microsoft Corporation) C:\windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-08-13 21:09 - 2019-07-09 04:52 - 002258944 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssrch.dll
2019-08-13 21:09 - 2019-07-09 04:52 - 000058368 _____ (Microsoft Corporation) C:\windows\system32\hmkd.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000608768 _____ (Microsoft Corporation) C:\windows\SysWOW64\EdgeManager.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000578560 _____ (Microsoft Corporation) C:\windows\SysWOW64\webplatstorageserver.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\mssprxy.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000119296 _____ (Microsoft Corporation) C:\windows\SysWOW64\updatepolicy.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000115200 _____ (Microsoft Corporation) C:\windows\system32\updatecsp.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000108544 _____ (Microsoft Corporation) C:\windows\system32\DuCsps.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000106496 _____ (Microsoft Corporation) C:\windows\system32\NotificationControllerPS.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000097792 _____ (Microsoft Corporation) C:\windows\system32\usoapi.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000041472 _____ (Microsoft Corporation) C:\windows\system32\UsoClient.exe
2019-08-13 21:09 - 2019-07-09 04:50 - 004861440 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 001003008 _____ (Microsoft Corporation) C:\windows\SysWOW64\TokenBroker.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000835584 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000681472 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000659456 _____ (Microsoft Corporation) C:\windows\SysWOW64\netlogon.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000414720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cldflt.sys
2019-08-13 21:09 - 2019-07-09 04:50 - 000141312 _____ C:\windows\system32\DataStoreCacheDumpTool.exe
2019-08-13 21:09 - 2019-07-09 04:50 - 000078848 _____ (Microsoft Corporation) C:\windows\system32\NetCfgNotifyObjectHost.exe
2019-08-13 21:09 - 2019-07-09 04:50 - 000026624 _____ (Microsoft Corporation) C:\windows\system32\kdcpw.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000002560 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2019-08-13 21:09 - 2019-07-09 04:49 - 000856576 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchIndexer.exe
2019-08-13 21:09 - 2019-07-09 04:49 - 000735744 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssvp.dll
2019-08-13 21:09 - 2019-07-09 04:49 - 000487424 _____ (Microsoft Corporation) C:\windows\system32\MusNotification.exe
2019-08-13 21:09 - 2019-07-09 04:49 - 000372736 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupShim.dll
2019-08-13 21:09 - 2019-07-09 04:49 - 000348160 _____ (Microsoft Corporation) C:\windows\system32\MusNotificationUx.exe
2019-08-13 21:09 - 2019-07-09 04:49 - 000345088 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchProtocolHost.exe
2019-08-13 21:09 - 2019-07-09 04:49 - 000145408 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssph.dll
2019-08-13 21:09 - 2019-07-09 04:49 - 000110592 _____ (Microsoft Corporation) C:\windows\system32\NetDriverInstall.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 003402240 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentServer.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000697344 _____ (Microsoft Corporation) C:\windows\system32\vpnike.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000395776 _____ (Microsoft Corporation) C:\windows\system32\Search.ProtocolHandler.MAPI2.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000335360 _____ (Microsoft Corporation) C:\windows\system32\NetSetupSvc.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000227328 _____ (Microsoft Corporation) C:\windows\system32\SearchFilterHost.exe
2019-08-13 21:09 - 2019-07-09 04:48 - 000175104 _____ (Microsoft Corporation) C:\windows\system32\wuuhosdeployment.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000142848 _____ (Microsoft Corporation) C:\windows\system32\updatepolicy.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 003392000 _____ (Microsoft Corporation) C:\windows\system32\tquery.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 002738688 _____ (Microsoft Corporation) C:\windows\system32\mssrch.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 002176000 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentExtensions.onecore.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 000928768 _____ (Microsoft Corporation) C:\windows\system32\MusUpdateHandlers.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 000894464 _____ (Microsoft Corporation) C:\windows\system32\webplatstorageserver.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 000808448 _____ (Microsoft Corporation) C:\windows\system32\EdgeManager.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 000726528 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2019-08-13 21:09 - 2019-07-09 04:46 - 002912256 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2019-08-13 21:09 - 2019-07-09 04:46 - 001561088 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentExtensions.desktop.dll
2019-08-13 21:09 - 2019-07-09 04:46 - 000532992 _____ (Microsoft Corporation) C:\windows\system32\QuietHours.dll
2019-08-13 21:09 - 2019-07-09 04:46 - 000300544 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 001400832 _____ (Microsoft Corporation) C:\windows\system32\TokenBroker.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 001218560 _____ (Microsoft Corporation) C:\windows\system32\NotificationController.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 000773120 _____ (Microsoft Corporation) C:\windows\system32\netlogon.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 000510976 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Notifications.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 000504832 _____ (Microsoft Corporation) C:\windows\system32\NetSetupShim.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 001058304 _____ (Microsoft Corporation) C:\windows\system32\SearchIndexer.exe
2019-08-13 21:09 - 2019-07-09 04:44 - 000922112 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.Web.Core.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 000796672 _____ (Microsoft Corporation) C:\windows\system32\mssvp.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 000629248 _____ (Microsoft Corporation) C:\windows\system32\updatehandlers.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 000466432 _____ (Microsoft Corporation) C:\windows\system32\wuuhext.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 000406528 _____ (Microsoft Corporation) C:\windows\system32\SearchProtocolHost.exe
2019-08-13 21:09 - 2019-07-09 04:44 - 000176640 _____ (Microsoft Corporation) C:\windows\system32\mssph.dll
2019-08-13 21:09 - 2019-07-09 04:43 - 001854976 _____ (Microsoft Corporation) C:\windows\system32\wevtsvc.dll
2019-08-13 21:09 - 2019-07-09 04:43 - 001398272 _____ (Microsoft Corporation) C:\windows\system32\usocore.dll
2019-08-13 21:09 - 2019-07-09 04:43 - 000917504 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2019-08-13 21:09 - 2019-07-09 04:43 - 000582144 _____ (Microsoft Corporation) C:\windows\system32\NgcCtnrSvc.dll
2019-08-13 21:09 - 2019-06-20 04:21 - 000058882 _____ C:\windows\system32\srms.dat
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-08-29 21:03 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-08-29 20:03 - 2018-06-02 11:33 - 000744924 _____ C:\windows\system32\perfh005.dat
2019-08-29 20:03 - 2018-06-02 11:33 - 000159594 _____ C:\windows\system32\perfc005.dat
2019-08-29 20:03 - 2018-04-28 08:11 - 001826110 _____ C:\windows\system32\PerfStringBackup.INI
2019-08-29 20:03 - 2018-04-12 01:36 - 000000000 ____D C:\windows\INF
2019-08-29 19:58 - 2018-09-25 03:05 - 000065536 _____ C:\windows\psp_storage.bin
2019-08-29 19:58 - 2018-04-28 08:06 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-08-29 19:58 - 2018-04-11 23:04 - 000786432 _____ C:\windows\system32\config\BBI
2019-08-29 19:33 - 2018-04-12 01:38 - 000000000 ____D C:\windows\AppReadiness
2019-08-29 19:20 - 2018-12-24 21:45 - 000000000 ___RD C:\Users\marei\OneDrive
2019-08-29 19:18 - 2019-01-11 22:26 - 000000000 ____D C:\Users\marei\AppData\Local\D3DSCache
2019-08-29 19:17 - 2019-07-09 19:40 - 000000364 _____ C:\windows\Tasks\HPCeeScheduleFormarei.job
2019-08-29 19:17 - 2018-09-25 03:30 - 000000000 ____D C:\Program Files\mcafee
2019-08-29 19:16 - 2018-06-02 01:59 - 000000000 ____D C:\ProgramData\HP
2019-08-29 19:16 - 2018-06-02 01:59 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2019-08-29 19:16 - 2018-05-29 01:00 - 000000000 ___HD C:\hp
2019-08-29 19:05 - 2018-09-25 03:30 - 000000000 ____D C:\windows\System32\Tasks\McAfee
2019-08-29 19:05 - 2018-04-12 01:38 - 000000000 ___HD C:\windows\ELAMBKUP
2019-08-29 19:05 - 2018-04-11 23:04 - 000032768 _____ C:\windows\system32\config\ELAM
2019-08-29 18:59 - 2018-06-02 01:59 - 000000000 ____D C:\Program Files (x86)\HP
2019-08-29 18:53 - 2018-12-24 21:41 - 000000000 ____D C:\Users\marei\AppData\Local\Hewlett-Packard
2019-08-29 18:53 - 2018-06-02 02:00 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2019-08-29 18:53 - 2018-06-02 01:59 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2019-08-29 18:48 - 2018-04-28 08:06 - 000000000 ____D C:\windows\system32\SleepStudy
2019-08-29 15:39 - 2018-06-02 02:01 - 000000000 ____D C:\ProgramData\Package Cache
2019-08-29 15:39 - 2018-06-02 02:00 - 000000000 ____D C:\Program Files\HP
2019-08-29 15:37 - 2018-06-02 01:59 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-08-29 14:19 - 2018-04-28 09:02 - 000000000 ____D C:\windows\Panther
2019-08-29 14:13 - 2018-12-24 21:38 - 000000000 ____D C:\Users\marei\AppData\Local\AMD
2019-08-28 13:22 - 2019-07-09 19:40 - 000003256 _____ C:\windows\System32\Tasks\HPCeeScheduleFormarei
2019-08-28 13:22 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-08-28 13:18 - 2019-07-26 20:39 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-28 13:18 - 2019-07-26 20:39 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-21 16:37 - 2018-09-25 03:26 - 000000000 ____D C:\windows\HP
2019-08-21 16:37 - 2018-06-02 11:23 - 000000000 ____D C:\SWSetup
2019-08-15 09:50 - 2019-02-08 18:54 - 000000000 ____D C:\Users\marei\AppData\Local\Crossout
2019-08-14 00:16 - 2018-12-24 21:38 - 000000000 ___RD C:\Users\marei\3D Objects
2019-08-14 00:16 - 2018-04-28 08:07 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-08-14 00:14 - 2018-04-28 08:06 - 000319208 _____ C:\windows\system32\FNTCACHE.DAT
2019-08-14 00:13 - 2018-06-02 11:35 - 000000000 ____D C:\windows\system32\Drivers\en-GB
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ___SD C:\windows\system32\UNP
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\TextInput
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\system32\oobe
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\ShellExperiences
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\Provisioning
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\bcastdvr
2019-08-13 21:16 - 2018-04-12 01:30 - 000000000 ____D C:\windows\CbsTemp
2019-08-13 21:08 - 2018-12-25 02:29 - 000000000 ____D C:\windows\system32\MRT
2019-08-13 21:06 - 2018-12-25 02:29 - 134272480 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2019-08-04 12:17 - 2018-12-25 01:52 - 000000000 ____D C:\Program Files\rempl
==================== Files in the root of some directories ================
2019-08-19 00:15 - 2019-08-19 00:15 - 000007601 _____ () C:\Users\marei\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
Ran by marei (administrator) on LAPTOP-JF5BAEQ4 (HP HP Laptop 15-db0xxx) (29-08-2019 21:25:33)
Running from C:\Users\marei\Desktop
Loaded Profiles: marei (Available Profiles: marei)
Platform: Windows 10 Home Version 1803 17134.950 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atiesrxx.exe
(Gaijin Network LTD -> Gaijin Entertainment) C:\Users\marei\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19051.16210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor Corp. -> Realtek) C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9279328 2018-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Session] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1505832 2018-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [4436520 2018-04-20] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM-x32\...\Run: [RtlS5Wake] => C:\Program Files (x86)\Realtek\PCIE Wireless LAN\RtlS5Wake\RtlS5Wake.exe [2097600 2018-02-23] (Realtek Semiconductor Corp. -> Realtek)
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\...\Run: [Gaijin.Net Updater] => C:\Users\marei\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2105416 2019-07-24] (Gaijin Network LTD -> Gaijin Entertainment)
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3210528 2019-08-22] (Valve -> Valve Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-28] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {083D7ABA-7BAE-458C-AB5E-6F7D222EB364} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [69512 2018-10-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {1A505298-7FBC-4308-8120-3653D229A262} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {27F58A30-CCA6-418B-BCBA-C5FBF3AA1745} - System32\Tasks\HPCeeScheduleFormarei => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [97656 2018-09-11] (HP Inc. -> HP Inc.)
Task: {34B8DB8B-4871-4ECD-8FEA-08AB63B015B0} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49544 2018-10-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {49AFD118-0F2D-44A0-8033-E38F451AEBA0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4C126167-C811-4367-8856-4294AD939770} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {5A8AEE9B-C8EE-49DD-8780-A47457A815B4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-26] (Google Inc -> Google LLC)
Task: {60323F52-BAB4-4CEF-B51F-64EC3C99BDAB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6BE09870-180C-4712-B192-C44A1E709CDE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {6CDB4BB5-FB12-4EDD-9993-654A59161995} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe
Task: {7FDB885A-3623-4252-8EDA-8CDCE8F3736F} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\marei\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {83903C80-4820-4A57-8B17-B0D5E783AF2D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {8F0DA0B1-7E40-404A-A352-D14652A21678} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe
Task: {B6ED7A06-AB5C-403C-99BB-208F56C25065} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-26] (Google Inc -> Google LLC)
Task: {C9172801-532C-43C1-A195-C5058E8DB266} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FF3C5612-87DA-4C1B-8DA5-7AFBB46F663C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\HPCeeScheduleFormarei.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{93bd424a-8c1b-4b9b-acf4-0bfc4e94c70c}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-3222860412-1896180296-621945987-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {3576F213-C286-46C1-99C1-6FD1EE915CB3} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {3576F213-C286-46C1-99C1-6FD1EE915CB3} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-3222860412-1896180296-621945987-1002 -> {3576F213-C286-46C1-99C1-6FD1EE915CB3} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
FireFox:
========
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-26] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-26] (Google Inc -> Google LLC)
Chrome:
=======
CHR Profile: C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default [2019-08-29]
CHR Extension: (Prezentace) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-07-26]
CHR Extension: (Dokumenty) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-07-26]
CHR Extension: (Disk Google) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-07-26]
CHR Extension: (YouTube) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-07-26]
CHR Extension: (Volume Booster) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejkiikneibegknkgimmihdpcbcedgmpo [2019-08-19]
CHR Extension: (Tabulky) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-07-26]
CHR Extension: (Dokumenty Google offline) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-07-26]
CHR Extension: (AdBlock) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-08-29]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-07-26]
CHR Extension: (Gmail) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-07-26]
CHR Extension: (Chrome Media Router) - C:\Users\marei\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-14]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD External Events Utility; C:\windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atiesrxx.exe [481768 2018-10-23] (Advanced Micro Devices, Inc. -> AMD)
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [679400 2018-04-02] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [779392 2019-01-24] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [268128 2018-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 RtkBtManServ; C:\windows\RtkBtManServ.exe [726600 2019-06-25] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [351784 2018-04-20] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AmdAS4; C:\windows\System32\drivers\AmdAS4.sys [27016 2018-04-13] (Advanced Micro Devices Inc. -> Advanced Micro Devices, INC.)
R3 amdkmdag; C:\windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atikmdag.sys [44624360 2018-10-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\windows\System32\DriverStore\FileRepository\c0334924.inf_amd64_05abf00239dfc53b\B334881\atikmpag.sys [567784 2018-10-23] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R0 amdpsp; C:\windows\System32\drivers\amdpsp.sys [137104 2018-04-13] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
S3 AmUStor; C:\windows\system32\drivers\AmUStor.SYS [108992 2018-04-27] (Alcorlink Corp. -> )
S3 AppleLowerFilter; C:\windows\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R3 AtiHDAudioService; C:\windows\system32\drivers\AtihdWT6.sys [111112 2018-04-13] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 dg_ssudbus; C:\windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 rt640x64; C:\windows\System32\drivers\rt640x64.sys [1026896 2018-04-12] (Realtek Semiconductor Corp. -> Realtek )
R3 RtkBtFilter; C:\windows\system32\DRIVERS\RtkBtfilter.sys [796560 2019-06-25] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
R3 RTWlanE; C:\windows\System32\drivers\rtwlane.sys [11708504 2019-07-03] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
R3 SmbDrv; C:\windows\system32\DRIVERS\Smb_driver_AMDASF.sys [45096 2018-04-20] (Synaptics Incorporated -> Synaptics Incorporated)
S3 SmbDrvI; C:\windows\System32\drivers\Smb_driver_Intel.sys [46632 2018-04-20] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\windows\System32\drivers\wd\WdBoot.sys [47496 2019-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\windows\System32\drivers\wd\WdFilter.sys [344288 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\windows\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\windows\System32\drivers\WirelessButtonDriver64.sys [35392 2019-05-16] (HP Inc. -> HP)
S3 H2OFFT; \SystemRoot\System32\drivers\H2OFFT64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-08-29 21:25 - 2019-08-29 21:27 - 000021255 _____ C:\Users\marei\Desktop\FRST.txt
2019-08-29 21:25 - 2019-08-29 21:25 - 000000000 ____D C:\Users\marei\Desktop\FRST-OlderVersion
2019-08-29 19:57 - 2019-08-29 15:17 - 007623880 _____ (Malwarebytes) C:\Users\marei\Desktop\adwcleaner_7.4.exe
2019-08-29 19:29 - 2019-08-29 21:25 - 001613824 _____ (Farbar) C:\Users\marei\Desktop\FRST64.exe
2019-08-29 19:29 - 2019-08-29 21:25 - 000000000 ____D C:\FRST
2019-08-29 15:21 - 2019-08-29 15:21 - 003335016 _____ C:\Users\marei\Downloads\winrar-x64-571cz.exe
2019-08-29 15:21 - 2019-08-29 15:21 - 000000000 ____D C:\Users\marei\AppData\Roaming\WinRAR
2019-08-29 15:21 - 2019-08-29 15:21 - 000000000 ____D C:\Users\marei\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-08-29 15:21 - 2019-08-29 15:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-08-29 15:21 - 2019-08-29 15:21 - 000000000 ____D C:\Program Files\WinRAR
2019-08-29 15:06 - 2019-08-29 15:06 - 000000000 ____D C:\Users\marei\AppData\Local\ATI
2019-08-29 15:02 - 2019-08-29 15:11 - 000000000 ____D C:\Users\marei\Documents\Euro Truck Simulator 2
2019-08-29 14:29 - 2019-08-29 14:29 - 000000222 _____ C:\Users\marei\Desktop\Euro Truck Simulator 2.url
2019-08-29 14:29 - 2019-08-29 14:29 - 000000000 ____D C:\Users\marei\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-08-29 14:19 - 2019-08-29 14:19 - 000000000 ___HD C:\$WINDOWS.~BT
2019-08-29 14:12 - 2019-08-29 14:13 - 000000000 ____D C:\Users\marei\AppData\Local\Steam
2019-08-29 14:12 - 2019-08-29 14:12 - 000000000 ____D C:\Users\marei\AppData\Local\CEF
2019-08-29 14:08 - 2019-08-29 20:00 - 000000000 ____D C:\Program Files (x86)\Steam
2019-08-29 14:08 - 2019-08-29 14:08 - 001573568 _____ C:\Users\marei\Downloads\SteamSetup.exe
2019-08-29 14:08 - 2019-08-29 14:08 - 000001039 _____ C:\Users\Public\Desktop\Steam.lnk
2019-08-29 14:08 - 2019-08-29 14:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2019-08-19 00:39 - 2019-08-19 00:47 - 000000000 ____D C:\Users\marei\AppData\Roaming\TeamViewer
2019-08-19 00:39 - 2019-08-19 00:39 - 023055896 _____ (TeamViewer GmbH) C:\Users\marei\Downloads\TeamViewer_Setup.exe
2019-08-19 00:29 - 2019-08-24 01:05 - 000000000 ____D C:\Users\marei\AppData\Roaming\vlc
2019-08-19 00:28 - 2019-08-19 00:28 - 000000923 _____ C:\Users\Public\Desktop\VLC media player.lnk
2019-08-19 00:28 - 2019-08-19 00:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-08-19 00:28 - 2019-08-19 00:28 - 000000000 ____D C:\Program Files\VideoLAN
2019-08-19 00:27 - 2019-08-19 00:28 - 042034704 _____ C:\Users\marei\Downloads\vlc-3.0.7.1-win64.exe
2019-08-19 00:17 - 2019-08-29 19:12 - 000000000 ____D C:\AdwCleaner
2019-08-19 00:17 - 2019-08-19 00:17 - 007623880 _____ (Malwarebytes) C:\Users\marei\Downloads\adwcleaner_7.4.exe
2019-08-19 00:15 - 2019-08-19 00:15 - 000007601 _____ C:\Users\marei\AppData\Local\Resmon.ResmonCfg
2019-08-13 21:09 - 2019-08-07 15:13 - 021389776 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2019-08-13 21:09 - 2019-08-07 15:13 - 001632112 _____ (Microsoft Corporation) C:\windows\system32\gdi32full.dll
2019-08-13 21:09 - 2019-08-07 15:13 - 001515904 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll
2019-08-13 21:09 - 2019-08-07 15:13 - 000790208 _____ (Microsoft Corporation) C:\windows\system32\fontdrvhost.exe
2019-08-13 21:09 - 2019-08-07 14:58 - 000178176 _____ (Microsoft Corporation) C:\windows\system32\t2embed.dll
2019-08-13 21:09 - 2019-08-07 14:58 - 000123392 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2019-08-13 21:09 - 2019-08-07 14:55 - 008626688 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2019-08-13 21:09 - 2019-08-07 14:55 - 000424448 _____ (Microsoft Corporation) C:\windows\system32\P2PGraph.dll
2019-08-13 21:09 - 2019-08-07 14:55 - 000210944 _____ (Microsoft Corporation) C:\windows\system32\P2P.dll
2019-08-13 21:09 - 2019-08-07 14:54 - 004783104 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2019-08-13 21:09 - 2019-08-07 14:53 - 003614208 _____ (Microsoft Corporation) C:\windows\system32\win32kfull.sys
2019-08-13 21:09 - 2019-08-07 14:53 - 000343552 _____ (Microsoft Corporation) C:\windows\system32\pnrpsvc.dll
2019-08-13 21:09 - 2019-08-07 14:53 - 000202752 _____ (Microsoft Corporation) C:\windows\system32\p2pnetsh.dll
2019-08-13 21:09 - 2019-08-07 14:52 - 001663488 _____ (Microsoft Corporation) C:\windows\system32\GdiPlus.dll
2019-08-13 21:09 - 2019-08-07 14:51 - 000424960 _____ (Microsoft Corporation) C:\windows\system32\p2psvc.dll
2019-08-13 21:09 - 2019-08-07 14:43 - 001453416 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32full.dll
2019-08-13 21:09 - 2019-08-07 14:41 - 001322688 _____ (Microsoft Corporation) C:\windows\SysWOW64\msctf.dll
2019-08-13 21:09 - 2019-08-07 14:41 - 000662112 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontdrvhost.exe
2019-08-13 21:09 - 2019-08-07 14:40 - 020384344 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2019-08-13 21:09 - 2019-08-07 14:30 - 000138752 _____ (Microsoft Corporation) C:\windows\SysWOW64\t2embed.dll
2019-08-13 21:09 - 2019-08-07 14:30 - 000098304 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2019-08-13 21:09 - 2019-08-07 14:27 - 007990272 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2019-08-13 21:09 - 2019-08-07 14:26 - 000366592 _____ (Microsoft Corporation) C:\windows\SysWOW64\P2PGraph.dll
2019-08-13 21:09 - 2019-08-07 14:26 - 000174592 _____ (Microsoft Corporation) C:\windows\SysWOW64\P2P.dll
2019-08-13 21:09 - 2019-08-07 14:25 - 004175360 _____ (Microsoft Corporation) C:\windows\SysWOW64\ExplorerFrame.dll
2019-08-13 21:09 - 2019-08-07 14:24 - 002882048 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32kfull.sys
2019-08-13 21:09 - 2019-08-07 14:24 - 001472000 _____ (Microsoft Corporation) C:\windows\SysWOW64\GdiPlus.dll
2019-08-13 21:09 - 2019-08-07 14:24 - 000178176 _____ (Microsoft Corporation) C:\windows\SysWOW64\p2pnetsh.dll
2019-08-13 21:09 - 2019-08-07 11:40 - 000868864 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 001328440 _____ (Microsoft Corporation) C:\windows\system32\wpx.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 001219896 _____ (Microsoft Corporation) C:\windows\system32\hvix64.exe
2019-08-13 21:09 - 2019-08-07 10:09 - 001098064 _____ (Microsoft Corporation) C:\windows\system32\msvproc.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 001027384 _____ (Microsoft Corporation) C:\windows\system32\hvax64.exe
2019-08-13 21:09 - 2019-08-07 10:09 - 000568104 _____ (Microsoft Corporation) C:\windows\system32\tcblaunch.exe
2019-08-13 21:09 - 2019-08-07 10:09 - 000194352 _____ (Microsoft Corporation) C:\windows\system32\skci.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 000192824 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2019-08-13 21:09 - 2019-08-07 10:09 - 000134968 _____ (Microsoft Corporation) C:\windows\system32\hvloader.dll
2019-08-13 21:09 - 2019-08-07 10:09 - 000095008 _____ (Microsoft Corporation) C:\windows\system32\wldp.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 007435720 _____ (Microsoft Corporation) C:\windows\system32\windows.storage.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 002810680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2019-08-13 21:09 - 2019-08-07 10:08 - 002470648 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 001566736 _____ (Microsoft Corporation) C:\windows\system32\AppxPackaging.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 001141712 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2019-08-13 21:09 - 2019-08-07 10:08 - 000723216 _____ (Microsoft Corporation) C:\windows\system32\ci.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 000710232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2019-08-13 21:09 - 2019-08-07 10:08 - 000494992 _____ (Microsoft Corporation) C:\windows\system32\bcryptprimitives.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 000227744 _____ (Microsoft Corporation) C:\windows\system32\xmllite.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 000170296 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2019-08-13 21:09 - 2019-08-07 10:08 - 000130840 _____ (Microsoft Corporation) C:\windows\system32\rmclient.dll
2019-08-13 21:09 - 2019-08-07 10:08 - 000091568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dumpfve.sys
2019-08-13 21:09 - 2019-08-07 10:07 - 009084432 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2019-08-13 21:09 - 2019-08-07 10:07 - 007520112 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.Protection.PlayReady.dll
2019-08-13 21:09 - 2019-08-07 10:07 - 002719240 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2019-08-13 21:09 - 2019-08-07 10:07 - 001459328 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2019-08-13 21:09 - 2019-08-07 10:07 - 001260992 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2019-08-13 21:09 - 2019-08-07 10:07 - 001031696 _____ (Microsoft Corporation) C:\windows\system32\Drivers\http.sys
2019-08-13 21:09 - 2019-08-07 10:07 - 000984152 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2019-08-13 21:09 - 2019-08-07 10:07 - 000786288 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2019-08-13 21:09 - 2019-08-07 10:07 - 000115728 _____ (Microsoft Corporation) C:\windows\system32\kdnet.dll
2019-08-13 21:09 - 2019-08-07 09:57 - 000081256 _____ (Microsoft Corporation) C:\windows\SysWOW64\wldp.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 006570368 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 006044008 _____ (Microsoft Corporation) C:\windows\SysWOW64\windows.storage.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 001993344 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 001427768 _____ (Microsoft Corporation) C:\windows\SysWOW64\AppxPackaging.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 000357336 _____ (Microsoft Corporation) C:\windows\SysWOW64\bcryptprimitives.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 000192608 _____ (Microsoft Corporation) C:\windows\SysWOW64\xmllite.dll
2019-08-13 21:09 - 2019-08-07 09:56 - 000101400 _____ (Microsoft Corporation) C:\windows\SysWOW64\rmclient.dll
2019-08-13 21:09 - 2019-08-07 09:55 - 000603792 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2019-08-13 21:09 - 2019-08-07 09:49 - 025857536 _____ (Microsoft Corporation) C:\windows\system32\edgehtml.dll
2019-08-13 21:09 - 2019-08-07 09:47 - 022017536 _____ (Microsoft Corporation) C:\windows\SysWOW64\edgehtml.dll
2019-08-13 21:09 - 2019-08-07 09:44 - 008189440 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Pdf.dll
2019-08-13 21:09 - 2019-08-07 09:42 - 022717952 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2019-08-13 21:09 - 2019-08-07 09:39 - 019372544 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2019-08-13 21:09 - 2019-08-07 09:38 - 006661632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Data.Pdf.dll
2019-08-13 21:09 - 2019-08-07 09:38 - 004385792 _____ (Microsoft Corporation) C:\windows\system32\EdgeContent.dll
2019-08-13 21:09 - 2019-08-07 09:38 - 000310272 _____ (Microsoft Corporation) C:\windows\system32\wc_storage.dll
2019-08-13 21:09 - 2019-08-07 09:38 - 000113664 _____ (Microsoft Corporation) C:\windows\system32\CoreShellExtFramework.dll
2019-08-13 21:09 - 2019-08-07 09:37 - 000386048 _____ (Microsoft Corporation) C:\windows\system32\Windows.System.Diagnostics.dll
2019-08-13 21:09 - 2019-08-07 09:37 - 000170496 _____ (Microsoft Corporation) C:\windows\system32\appsruprov.dll
2019-08-13 21:09 - 2019-08-07 09:37 - 000079872 _____ (Microsoft Corporation) C:\windows\system32\offreg.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 007572480 _____ (Microsoft Corporation) C:\windows\system32\Chakra.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000462336 _____ (Microsoft Corporation) C:\windows\system32\bcdedit.exe
2019-08-13 21:09 - 2019-08-07 09:36 - 000354816 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000326144 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Flights.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000311296 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.System.Diagnostics.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000209408 _____ (Microsoft Corporation) C:\windows\system32\MicrosoftAccountTokenProvider.dll
2019-08-13 21:09 - 2019-08-07 09:36 - 000154112 _____ (Microsoft Corporation) C:\windows\system32\Chakradiag.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 001361408 _____ (Microsoft Corporation) C:\windows\SysWOW64\MSPhotography.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000726528 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2019-08-13 21:09 - 2019-08-07 09:35 - 000624640 _____ (Microsoft Corporation) C:\windows\system32\PsmServiceExtHost.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000619520 _____ (Microsoft Corporation) C:\windows\system32\SyncController.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000567808 _____ (Microsoft Corporation) C:\windows\system32\daxexec.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000265728 _____ (Microsoft Corporation) C:\windows\system32\psmsrv.dll
2019-08-13 21:09 - 2019-08-07 09:35 - 000153088 _____ (Microsoft Corporation) C:\windows\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 005769728 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakra.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 001826816 _____ (Microsoft Corporation) C:\windows\system32\Windows.CloudStore.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 001680384 _____ (Microsoft Corporation) C:\windows\system32\CoreShell.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 001549824 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000786432 _____ (Microsoft Corporation) C:\windows\system32\iphlpsvc.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000521216 _____ (Microsoft Corporation) C:\windows\SysWOW64\SyncController.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000392704 _____ (Microsoft Corporation) C:\windows\SysWOW64\daxexec.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000278528 _____ (Microsoft Corporation) C:\windows\system32\ComposableShellProxyStub.dll
2019-08-13 21:09 - 2019-08-07 09:34 - 000059392 _____ (Microsoft Corporation) C:\windows\SysWOW64\offreg.dll
2019-08-13 21:09 - 2019-08-07 09:33 - 001220608 _____ (Microsoft Corporation) C:\windows\system32\Unistore.dll
2019-08-13 21:09 - 2019-08-07 09:33 - 000228864 _____ (Microsoft Corporation) C:\windows\system32\ssdpsrv.dll
2019-08-13 21:09 - 2019-08-07 09:33 - 000115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\Chakradiag.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 004938240 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 004516864 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 002165760 _____ (Microsoft Corporation) C:\windows\system32\win32kbase.sys
2019-08-13 21:09 - 2019-08-07 09:32 - 001235968 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpbase.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 001154048 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000669184 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000330752 _____ (Microsoft Corporation) C:\windows\system32\ncryptprov.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000318976 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000275968 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncryptprov.dll
2019-08-13 21:09 - 2019-08-07 09:32 - 000135168 _____ (Microsoft Corporation) C:\windows\SysWOW64\ComposableShellProxyStub.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 001421312 _____ (Microsoft Corporation) C:\windows\system32\rdpbase.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 001110016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthport.sys
2019-08-13 21:09 - 2019-08-07 09:31 - 000965632 _____ (Microsoft Corporation) C:\windows\SysWOW64\Unistore.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000947200 _____ (Microsoft Corporation) C:\windows\system32\wcmsvc.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000925696 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000793088 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000776192 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000544256 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000531968 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2019-08-13 21:09 - 2019-08-07 09:31 - 000367616 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2019-08-13 21:09 - 2019-08-07 08:15 - 000001310 _____ C:\windows\system32\tcbres.wim
2019-08-13 21:09 - 2019-07-11 08:48 - 001008640 _____ (Microsoft Corporation) C:\windows\system32\Windows.Media.MixedRealityCapture.dll
2019-08-13 21:09 - 2019-07-11 03:30 - 000353280 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd3x40.dll
2019-08-13 21:09 - 2019-07-11 03:30 - 000341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msexcl40.dll
2019-08-13 21:09 - 2019-07-11 03:30 - 000313344 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrd2x40.dll
2019-08-13 21:09 - 2019-07-09 10:07 - 000506088 _____ (Microsoft Corporation) C:\windows\system32\systemreset.exe
2019-08-13 21:09 - 2019-07-09 10:04 - 000348664 _____ (Microsoft Corporation) C:\windows\system32\MusNotifyIcon.exe
2019-08-13 21:09 - 2019-07-09 10:01 - 004527792 _____ (Microsoft Corporation) C:\windows\system32\sppsvc.exe
2019-08-13 21:09 - 2019-07-09 10:00 - 001616824 _____ (Microsoft Corporation) C:\windows\system32\sppobjs.dll
2019-08-13 21:09 - 2019-07-09 09:44 - 012757504 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2019-08-13 21:09 - 2019-07-09 09:44 - 000039936 _____ (Microsoft Corporation) C:\windows\system32\WindowsUpdateElevatedInstaller.exe
2019-08-13 21:09 - 2019-07-09 09:43 - 004718080 _____ (Microsoft Corporation) C:\windows\system32\twinui.pcshell.dll
2019-08-13 21:09 - 2019-07-09 09:43 - 000124416 _____ (Microsoft Corporation) C:\windows\system32\musdialoghandlers.dll
2019-08-13 21:09 - 2019-07-09 09:43 - 000123392 _____ (Microsoft Corporation) C:\windows\system32\sdshext.dll
2019-08-13 21:09 - 2019-07-09 09:41 - 002019840 _____ (Microsoft Corporation) C:\windows\system32\ResetEngine.dll
2019-08-13 21:09 - 2019-07-09 09:40 - 000677888 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2019-08-13 21:09 - 2019-07-09 09:39 - 001210880 _____ (Microsoft Corporation) C:\windows\system32\sdclt.exe
2019-08-13 21:09 - 2019-07-09 09:39 - 001193472 _____ (Microsoft Corporation) C:\windows\system32\sdengin2.dll
2019-08-13 21:09 - 2019-07-09 09:39 - 001121792 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2019-08-13 21:09 - 2019-07-09 09:38 - 000740864 _____ (Microsoft Corporation) C:\windows\system32\LogonController.dll
2019-08-13 21:09 - 2019-07-09 09:37 - 001180672 _____ (Microsoft Corporation) C:\windows\system32\reseteng.dll
2019-08-13 21:09 - 2019-07-09 09:37 - 000517632 _____ (Microsoft Corporation) C:\windows\system32\newdev.dll
2019-08-13 21:09 - 2019-07-09 09:37 - 000174080 _____ (Microsoft Corporation) C:\windows\system32\ResetEngOnline.dll
2019-08-13 21:09 - 2019-07-09 09:37 - 000167424 _____ (Microsoft Corporation) C:\windows\system32\drvinst.exe
2019-08-13 21:09 - 2019-07-09 08:42 - 011943424 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2019-08-13 21:09 - 2019-07-09 08:38 - 000908288 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSWorkspace.dll
2019-08-13 21:09 - 2019-07-09 08:37 - 000485888 _____ (Microsoft Corporation) C:\windows\SysWOW64\newdev.dll
2019-08-13 21:09 - 2019-07-09 05:29 - 000375312 _____ (Microsoft Corporation) C:\windows\system32\Drivers\pci.sys
2019-08-13 21:09 - 2019-07-09 05:29 - 000230200 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tpm.sys
2019-08-13 21:09 - 2019-07-09 05:29 - 000031032 _____ (Microsoft Corporation) C:\windows\system32\Drivers\uefi.sys
2019-08-13 21:09 - 2019-07-09 05:23 - 001213264 _____ (Microsoft Corporation) C:\windows\system32\ClipUp.exe
2019-08-13 21:09 - 2019-07-09 05:23 - 001035040 _____ (Microsoft Corporation) C:\windows\system32\ApplyTrustOffline.exe
2019-08-13 21:09 - 2019-07-09 05:21 - 005625160 _____ (Microsoft Corporation) C:\windows\system32\StartTileData.dll
2019-08-13 21:09 - 2019-07-09 05:21 - 000133136 _____ (Microsoft Corporation) C:\windows\system32\ImplatSetup.dll
2019-08-13 21:09 - 2019-07-09 05:20 - 000500536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2019-08-13 21:09 - 2019-07-09 05:20 - 000275512 _____ (Microsoft Corporation) C:\windows\system32\LsaIso.exe
2019-08-13 21:09 - 2019-07-09 05:20 - 000227640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2019-08-13 21:09 - 2019-07-09 05:19 - 002769472 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 002371504 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 001674216 _____ (Microsoft Corporation) C:\windows\system32\dcomp.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000799248 _____ (Microsoft Corporation) C:\windows\system32\NetSetupEngine.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000767232 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000713488 _____ (Microsoft Corporation) C:\windows\system32\MSVideoDSP.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000152104 _____ (Microsoft Corporation) C:\windows\system32\KerbClientShared.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000142352 _____ (Microsoft Corporation) C:\windows\system32\NetSetupApi.dll
2019-08-13 21:09 - 2019-07-09 05:19 - 000046608 _____ (Microsoft Corporation) C:\windows\system32\Drivers\werkernel.sys
2019-08-13 21:09 - 2019-07-09 05:12 - 002331480 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2019-08-13 21:09 - 2019-07-09 05:12 - 001286528 _____ (Microsoft Corporation) C:\windows\SysWOW64\dcomp.dll
2019-08-13 21:09 - 2019-07-09 05:12 - 000573808 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2019-08-13 21:09 - 2019-07-09 05:12 - 000125504 _____ (Microsoft Corporation) C:\windows\SysWOW64\KerbClientShared.dll
2019-08-13 21:09 - 2019-07-09 05:11 - 002257336 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2019-08-13 21:09 - 2019-07-09 05:11 - 000576528 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupEngine.dll
2019-08-13 21:09 - 2019-07-09 05:11 - 000108560 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupApi.dll
2019-08-13 21:09 - 2019-07-09 04:56 - 000068096 _____ (Microsoft Corporation) C:\windows\SysWOW64\usoapi.dll
2019-08-13 21:09 - 2019-07-09 04:56 - 000046080 _____ (Microsoft Corporation) C:\windows\SysWOW64\hmkd.dll
2019-08-13 21:09 - 2019-07-09 04:55 - 002700288 _____ (Microsoft Corporation) C:\windows\SysWOW64\tquery.dll
2019-08-13 21:09 - 2019-07-09 04:55 - 000081408 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetDriverInstall.dll
2019-08-13 21:09 - 2019-07-09 04:55 - 000002560 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2019-08-13 21:09 - 2019-07-09 04:53 - 003708416 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2019-08-13 21:09 - 2019-07-09 04:53 - 000288768 _____ (Microsoft Corporation) C:\windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-08-13 21:09 - 2019-07-09 04:52 - 002258944 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssrch.dll
2019-08-13 21:09 - 2019-07-09 04:52 - 000058368 _____ (Microsoft Corporation) C:\windows\system32\hmkd.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000608768 _____ (Microsoft Corporation) C:\windows\SysWOW64\EdgeManager.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000578560 _____ (Microsoft Corporation) C:\windows\SysWOW64\webplatstorageserver.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000144384 _____ (Microsoft Corporation) C:\windows\system32\mssprxy.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000119296 _____ (Microsoft Corporation) C:\windows\SysWOW64\updatepolicy.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000115200 _____ (Microsoft Corporation) C:\windows\system32\updatecsp.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000108544 _____ (Microsoft Corporation) C:\windows\system32\DuCsps.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000106496 _____ (Microsoft Corporation) C:\windows\system32\NotificationControllerPS.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000097792 _____ (Microsoft Corporation) C:\windows\system32\usoapi.dll
2019-08-13 21:09 - 2019-07-09 04:51 - 000041472 _____ (Microsoft Corporation) C:\windows\system32\UsoClient.exe
2019-08-13 21:09 - 2019-07-09 04:50 - 004861440 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 001003008 _____ (Microsoft Corporation) C:\windows\SysWOW64\TokenBroker.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000835584 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000681472 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000659456 _____ (Microsoft Corporation) C:\windows\SysWOW64\netlogon.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000414720 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cldflt.sys
2019-08-13 21:09 - 2019-07-09 04:50 - 000141312 _____ C:\windows\system32\DataStoreCacheDumpTool.exe
2019-08-13 21:09 - 2019-07-09 04:50 - 000078848 _____ (Microsoft Corporation) C:\windows\system32\NetCfgNotifyObjectHost.exe
2019-08-13 21:09 - 2019-07-09 04:50 - 000026624 _____ (Microsoft Corporation) C:\windows\system32\kdcpw.dll
2019-08-13 21:09 - 2019-07-09 04:50 - 000002560 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2019-08-13 21:09 - 2019-07-09 04:49 - 000856576 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchIndexer.exe
2019-08-13 21:09 - 2019-07-09 04:49 - 000735744 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssvp.dll
2019-08-13 21:09 - 2019-07-09 04:49 - 000487424 _____ (Microsoft Corporation) C:\windows\system32\MusNotification.exe
2019-08-13 21:09 - 2019-07-09 04:49 - 000372736 _____ (Microsoft Corporation) C:\windows\SysWOW64\NetSetupShim.dll
2019-08-13 21:09 - 2019-07-09 04:49 - 000348160 _____ (Microsoft Corporation) C:\windows\system32\MusNotificationUx.exe
2019-08-13 21:09 - 2019-07-09 04:49 - 000345088 _____ (Microsoft Corporation) C:\windows\SysWOW64\SearchProtocolHost.exe
2019-08-13 21:09 - 2019-07-09 04:49 - 000145408 _____ (Microsoft Corporation) C:\windows\SysWOW64\mssph.dll
2019-08-13 21:09 - 2019-07-09 04:49 - 000110592 _____ (Microsoft Corporation) C:\windows\system32\NetDriverInstall.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 003402240 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentServer.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000697344 _____ (Microsoft Corporation) C:\windows\system32\vpnike.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000395776 _____ (Microsoft Corporation) C:\windows\system32\Search.ProtocolHandler.MAPI2.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000335360 _____ (Microsoft Corporation) C:\windows\system32\NetSetupSvc.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000227328 _____ (Microsoft Corporation) C:\windows\system32\SearchFilterHost.exe
2019-08-13 21:09 - 2019-07-09 04:48 - 000175104 _____ (Microsoft Corporation) C:\windows\system32\wuuhosdeployment.dll
2019-08-13 21:09 - 2019-07-09 04:48 - 000142848 _____ (Microsoft Corporation) C:\windows\system32\updatepolicy.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 003392000 _____ (Microsoft Corporation) C:\windows\system32\tquery.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 002738688 _____ (Microsoft Corporation) C:\windows\system32\mssrch.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 002176000 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentExtensions.onecore.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 000928768 _____ (Microsoft Corporation) C:\windows\system32\MusUpdateHandlers.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 000894464 _____ (Microsoft Corporation) C:\windows\system32\webplatstorageserver.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 000808448 _____ (Microsoft Corporation) C:\windows\system32\EdgeManager.dll
2019-08-13 21:09 - 2019-07-09 04:47 - 000726528 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2019-08-13 21:09 - 2019-07-09 04:46 - 002912256 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2019-08-13 21:09 - 2019-07-09 04:46 - 001561088 _____ (Microsoft Corporation) C:\windows\system32\AppXDeploymentExtensions.desktop.dll
2019-08-13 21:09 - 2019-07-09 04:46 - 000532992 _____ (Microsoft Corporation) C:\windows\system32\QuietHours.dll
2019-08-13 21:09 - 2019-07-09 04:46 - 000300544 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 001400832 _____ (Microsoft Corporation) C:\windows\system32\TokenBroker.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 001218560 _____ (Microsoft Corporation) C:\windows\system32\NotificationController.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 000773120 _____ (Microsoft Corporation) C:\windows\system32\netlogon.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 000510976 _____ (Microsoft Corporation) C:\windows\system32\SettingsHandlers_Notifications.dll
2019-08-13 21:09 - 2019-07-09 04:45 - 000504832 _____ (Microsoft Corporation) C:\windows\system32\NetSetupShim.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 001058304 _____ (Microsoft Corporation) C:\windows\system32\SearchIndexer.exe
2019-08-13 21:09 - 2019-07-09 04:44 - 000922112 _____ (Microsoft Corporation) C:\windows\system32\Windows.Security.Authentication.Web.Core.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 000796672 _____ (Microsoft Corporation) C:\windows\system32\mssvp.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 000629248 _____ (Microsoft Corporation) C:\windows\system32\updatehandlers.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 000466432 _____ (Microsoft Corporation) C:\windows\system32\wuuhext.dll
2019-08-13 21:09 - 2019-07-09 04:44 - 000406528 _____ (Microsoft Corporation) C:\windows\system32\SearchProtocolHost.exe
2019-08-13 21:09 - 2019-07-09 04:44 - 000176640 _____ (Microsoft Corporation) C:\windows\system32\mssph.dll
2019-08-13 21:09 - 2019-07-09 04:43 - 001854976 _____ (Microsoft Corporation) C:\windows\system32\wevtsvc.dll
2019-08-13 21:09 - 2019-07-09 04:43 - 001398272 _____ (Microsoft Corporation) C:\windows\system32\usocore.dll
2019-08-13 21:09 - 2019-07-09 04:43 - 000917504 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2019-08-13 21:09 - 2019-07-09 04:43 - 000582144 _____ (Microsoft Corporation) C:\windows\system32\NgcCtnrSvc.dll
2019-08-13 21:09 - 2019-06-20 04:21 - 000058882 _____ C:\windows\system32\srms.dat
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-08-29 21:03 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-08-29 20:03 - 2018-06-02 11:33 - 000744924 _____ C:\windows\system32\perfh005.dat
2019-08-29 20:03 - 2018-06-02 11:33 - 000159594 _____ C:\windows\system32\perfc005.dat
2019-08-29 20:03 - 2018-04-28 08:11 - 001826110 _____ C:\windows\system32\PerfStringBackup.INI
2019-08-29 20:03 - 2018-04-12 01:36 - 000000000 ____D C:\windows\INF
2019-08-29 19:58 - 2018-09-25 03:05 - 000065536 _____ C:\windows\psp_storage.bin
2019-08-29 19:58 - 2018-04-28 08:06 - 000000006 ____H C:\windows\Tasks\SA.DAT
2019-08-29 19:58 - 2018-04-11 23:04 - 000786432 _____ C:\windows\system32\config\BBI
2019-08-29 19:33 - 2018-04-12 01:38 - 000000000 ____D C:\windows\AppReadiness
2019-08-29 19:20 - 2018-12-24 21:45 - 000000000 ___RD C:\Users\marei\OneDrive
2019-08-29 19:18 - 2019-01-11 22:26 - 000000000 ____D C:\Users\marei\AppData\Local\D3DSCache
2019-08-29 19:17 - 2019-07-09 19:40 - 000000364 _____ C:\windows\Tasks\HPCeeScheduleFormarei.job
2019-08-29 19:17 - 2018-09-25 03:30 - 000000000 ____D C:\Program Files\mcafee
2019-08-29 19:16 - 2018-06-02 01:59 - 000000000 ____D C:\ProgramData\HP
2019-08-29 19:16 - 2018-06-02 01:59 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2019-08-29 19:16 - 2018-05-29 01:00 - 000000000 ___HD C:\hp
2019-08-29 19:05 - 2018-09-25 03:30 - 000000000 ____D C:\windows\System32\Tasks\McAfee
2019-08-29 19:05 - 2018-04-12 01:38 - 000000000 ___HD C:\windows\ELAMBKUP
2019-08-29 19:05 - 2018-04-11 23:04 - 000032768 _____ C:\windows\system32\config\ELAM
2019-08-29 18:59 - 2018-06-02 01:59 - 000000000 ____D C:\Program Files (x86)\HP
2019-08-29 18:53 - 2018-12-24 21:41 - 000000000 ____D C:\Users\marei\AppData\Local\Hewlett-Packard
2019-08-29 18:53 - 2018-06-02 02:00 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2019-08-29 18:53 - 2018-06-02 01:59 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2019-08-29 18:48 - 2018-04-28 08:06 - 000000000 ____D C:\windows\system32\SleepStudy
2019-08-29 15:39 - 2018-06-02 02:01 - 000000000 ____D C:\ProgramData\Package Cache
2019-08-29 15:39 - 2018-06-02 02:00 - 000000000 ____D C:\Program Files\HP
2019-08-29 15:37 - 2018-06-02 01:59 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2019-08-29 14:19 - 2018-04-28 09:02 - 000000000 ____D C:\windows\Panther
2019-08-29 14:13 - 2018-12-24 21:38 - 000000000 ____D C:\Users\marei\AppData\Local\AMD
2019-08-28 13:22 - 2019-07-09 19:40 - 000003256 _____ C:\windows\System32\Tasks\HPCeeScheduleFormarei
2019-08-28 13:22 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-08-28 13:18 - 2019-07-26 20:39 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-08-28 13:18 - 2019-07-26 20:39 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-08-21 16:37 - 2018-09-25 03:26 - 000000000 ____D C:\windows\HP
2019-08-21 16:37 - 2018-06-02 11:23 - 000000000 ____D C:\SWSetup
2019-08-15 09:50 - 2019-02-08 18:54 - 000000000 ____D C:\Users\marei\AppData\Local\Crossout
2019-08-14 00:16 - 2018-12-24 21:38 - 000000000 ___RD C:\Users\marei\3D Objects
2019-08-14 00:16 - 2018-04-28 08:07 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-08-14 00:14 - 2018-04-28 08:06 - 000319208 _____ C:\windows\system32\FNTCACHE.DAT
2019-08-14 00:13 - 2018-06-02 11:35 - 000000000 ____D C:\windows\system32\Drivers\en-GB
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ___SD C:\windows\system32\UNP
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\TextInput
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\system32\oobe
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\ShellExperiences
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\Provisioning
2019-08-14 00:13 - 2018-04-12 01:38 - 000000000 ____D C:\windows\bcastdvr
2019-08-13 21:16 - 2018-04-12 01:30 - 000000000 ____D C:\windows\CbsTemp
2019-08-13 21:08 - 2018-12-25 02:29 - 000000000 ____D C:\windows\system32\MRT
2019-08-13 21:06 - 2018-12-25 02:29 - 134272480 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2019-08-04 12:17 - 2018-12-25 01:52 - 000000000 ____D C:\Program Files\rempl
==================== Files in the root of some directories ================
2019-08-19 00:15 - 2019-08-19 00:15 - 000007601 _____ () C:\Users\marei\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
- Přílohy
-
- Addition.zip
- (8.74 KiB) Staženo 55 x
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vyčištění pomalého PC od bloatwaru
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
Task: {5A8AEE9B-C8EE-49DD-8780-A47457A815B4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-26] (Google Inc -> Google LLC)
Task: {B6ED7A06-AB5C-403C-99BB-208F56C25065} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-26] (Google Inc -> Google LLC)
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FirewallRules: [{135E15A8-95DC-496D-B9FD-F66306A53802}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe No File
FirewallRules: [{339119EC-11AF-4D65-9E91-13F9EADC721C}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe No File
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vyčištění pomalého PC od bloatwaru
Fix result of Farbar Recovery Scan Tool (x64) Version: 29-08-2019
Ran by marei (29-08-2019 22:44:41) Run:1
Running from C:\Users\marei\Desktop
Loaded Profiles: marei (Available Profiles: marei)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
Task: {5A8AEE9B-C8EE-49DD-8780-A47457A815B4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-26] (Google Inc -> Google LLC)
Task: {B6ED7A06-AB5C-403C-99BB-208F56C25065} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-26] (Google Inc -> Google LLC)
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FirewallRules: [{135E15A8-95DC-496D-B9FD-F66306A53802}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe No File
FirewallRules: [{339119EC-11AF-4D65-9E91-13F9EADC721C}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5A8AEE9B-C8EE-49DD-8780-A47457A815B4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5A8AEE9B-C8EE-49DD-8780-A47457A815B4}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B6ED7A06-AB5C-403C-99BB-208F56C25065}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B6ED7A06-AB5C-403C-99BB-208F56C25065}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{135E15A8-95DC-496D-B9FD-F66306A53802}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{339119EC-11AF-4D65-9E91-13F9EADC721C}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 9199616 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 45694399 B
Java, Flash, Steam htmlcache => 13737257 B
Windows/system/drivers => 2397629 B
Edge => 25584259 B
Chrome => 486092668 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 1304005 B
systemprofile32 => 0 B
LocalService => 20414 B
LocalService => 0 B
NetworkService => 6245192 B
NetworkService => 0 B
marei => 78562569 B
RecycleBin => 653948051 B
EmptyTemp: => 1.2 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 22:45:53 ====
Ran by marei (29-08-2019 22:44:41) Run:1
Running from C:\Users\marei\Desktop
Loaded Profiles: marei (Available Profiles: marei)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
Task: {5A8AEE9B-C8EE-49DD-8780-A47457A815B4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-26] (Google Inc -> Google LLC)
Task: {B6ED7A06-AB5C-403C-99BB-208F56C25065} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-26] (Google Inc -> Google LLC)
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FirewallRules: [{135E15A8-95DC-496D-B9FD-F66306A53802}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe No File
FirewallRules: [{339119EC-11AF-4D65-9E91-13F9EADC721C}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe No File
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5A8AEE9B-C8EE-49DD-8780-A47457A815B4}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5A8AEE9B-C8EE-49DD-8780-A47457A815B4}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B6ED7A06-AB5C-403C-99BB-208F56C25065}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B6ED7A06-AB5C-403C-99BB-208F56C25065}" => removed successfully
C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{135E15A8-95DC-496D-B9FD-F66306A53802}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{339119EC-11AF-4D65-9E91-13F9EADC721C}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 9199616 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 45694399 B
Java, Flash, Steam htmlcache => 13737257 B
Windows/system/drivers => 2397629 B
Edge => 25584259 B
Chrome => 486092668 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 1304005 B
systemprofile32 => 0 B
LocalService => 20414 B
LocalService => 0 B
NetworkService => 6245192 B
NetworkService => 0 B
marei => 78562569 B
RecycleBin => 653948051 B
EmptyTemp: => 1.2 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 22:45:53 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vyčištění pomalého PC od bloatwaru
OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vyčištění pomalého PC od bloatwaru
Vše v pořádku, děkuji 
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vyčištění pomalého PC od bloatwaru
Rádo se stalo!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?