Stále pomaly počítač.
Čím to může být? Děkuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by HP at 2019-09-10 18:23:36
Microsoft Windows 10 Home
System drive C: has 809 GB (86%) free of 936 GB
Total RAM: 4013 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:24:03, on 10.09.2019
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.17763.0592)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe
C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
C:\Program Files\trend micro\HP.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://hp17win10.msn.com/?pc=HCTE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=12454
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O4 - HKLM\..\Run: [HPMessageService] C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files (x86)\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastWscReporter - AVAST Software - C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\IntelCpHeciSvc.exe
O23 - Service: Intel(R) Content Protection HDCP Service (cplspcon) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\IntelCpHDCPSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @oem4.inf,%ServiceDisplayName%;Intel(R) Dynamic Platform and Thermal Framework service (esifsvc) - Unknown owner - C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google LLC - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HP Comm Recovery (HP Comm Recover) - HP Inc. - C:\Program Files\HPCommRecovery\HPCommRecovery.exe
O23 - Service: HP JumpStart Bridge (HPJumpStartBridge) - HP Inc. - c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe
O23 - Service: HP CASL Framework Service (hpqcaslwmiex) - HP - C:\Program Files (x86)\HP\Shared\hpqwmiex.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: HPWMISVC - HP Inc. - c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
O23 - Service: @oem42.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\System32\ibtsiva (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService2.0.0.0) - Intel Corporation - C:\WINDOWS\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\igfxCUIService.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
O23 - Service: Intel(R) TPM Provisioning Service - Intel(R) Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101 (perceptionsimulation) - Unknown owner - C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SgrmBroker.exe,-100 (SgrmBroker) - Unknown owner - C:\WINDOWS\system32\SgrmBroker.exe (file missing)
O23 - Service: @firewallapi.dll,-50323 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 13005 bytes
======Listing Processes======
winlogon.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s PlugPlay
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-3d365436-21b8-4597-bd55-550fe71d3ced -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-32a2425f-08c0-4b1f-b90a-ed8bb5e95034 -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-cbeee7be-df65-4746-bdd7-7bb28c104caa -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-04eee12b-5afe-49ab-b6b3-ca6e200ed721 -LifetimeId:60982dfe-e5ad-4cf0-a49a-73156d48eb30 -DeviceGroupId: -HostArg:0
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p
"fontdrvhost.exe"
"fontdrvhost.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-c35f6563-34a8-41ec-bf5c-d44a998bb7e0 -SystemEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-5a826e2b-af0c-4416-907a-f69e46cd205b -IoCancelEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-67136f78-796c-4a6b-9b3a-9ed8b47f0a25 -NonStateChangingEventPortName:\UMDFCommunicationPorts\WUDF\HostProcess-9ec206c2-932c-4480-9d0a-010432a5cff9 -LifetimeId:e80c6fc4-4161-44f9-9193-05f94cf3f751 -DeviceGroupId:WudfDefaultDevicePool -HostArg:0
C:\WINDOWS\system32\svchost.exe -k RPCSS -p
C:\WINDOWS\system32\svchost.exe -k DcomLaunch -p -s LSM
"dwm.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s NcbService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s TimeBrokerSvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DisplayEnhancementService
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s EventSystem
C:\WINDOWS\system32\svchost.exe -k LocalService -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s EventLog
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Schedule
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s SENS
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s ProfSvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork -p
C:\WINDOWS\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\igfxCUIService.exe
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s nsi
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s Dhcp
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s NlaSvc
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s netprofm
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s camsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UserManager
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s SysMain
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s Themes
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s AudioEndpointBuilder
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s FontCache
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k appmodel -p -s StateRepository
"C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s Dnscache
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted -p -s WinHttpAutoProxySvc
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p
C:\WINDOWS\System32\svchost.exe -k netsvcs -p -s ShellHWDetection
C:\WINDOWS\system32\WLANExt.exe 2901823398720
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetworkFirewall -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted -p -s lmhosts
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s LanmanWorkstation
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s DeviceAssociationService
"C:\Program Files\Bonjour\mDNSResponder.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -s CertPropSvc
C:\WINDOWS\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\IntelCpHDCPSvc.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService -p -s CryptSvc
C:\WINDOWS\System32\svchost.exe -k utcsvc -p
C:\WINDOWS\System32\svchost.exe -k LocalServiceNoNetwork -p -s DPS
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe"
dashost.exe {77b5ad8a-1ca0-473d-93f9c351f09c111c}
C:\WINDOWS\System32\ibtsiva
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Winmgmt
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s SstpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s WpnService
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TrkWks
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s WdiServiceHost
C:\WINDOWS\System32\svchost.exe -k NetworkService -p -s TapiSrv
C:\WINDOWS\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\IntelCpHeciSvc.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -p -s SSDPSRV
C:\WINDOWS\System32\svchost.exe -k NetSvcs -p -s iphlpsvc
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s LanmanServer
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation -s SCardSvr
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
sihost.exe
"C:\WINDOWS\system32\Intel\DPTF\dptf_helper.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s CDPUserSvc
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup -s WpnUserService
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s TokenBroker
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s TabletInputService
"ctfmon.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s Appinfo
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s CDPSvc
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s PcaSvc
C:\WINDOWS\system32\svchost.exe -k ClipboardSvcGroup -p -s cbdhsvc
"C:\WINDOWS\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\igfxEM.exe"
"C:\Program Files\AVAST Software\Avast\aswEngSrv.exe" /pipename="F4CABE24-D33F-370C-44FC-C053F2E6631F" /binpath="C:\Program Files\AVAST Software\Avast"
C:\WINDOWS\system32\DllHost.exe /Processid:{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalService -p -s LicenseManager
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe" -ServerName:App.AppXffn3yxqvgawq9fpmnhy90fr3y01d1t5b.mca
"C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe" -ServerName:SkypeBackgroundHost
"C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19071.901.0_x64__8wekyb3d8bbwe\YourPhone.exe" -ServerName:App.AppX9yct9q388jvt4h7y0gn06smzkxcsnt8m.mca
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe"
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Windows\System32\SecurityHealthSystray.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
AvastUI.exe /nogui
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
"C:\Program Files\HPCommRecovery\HPCommRecovery.exe"
"C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe"
"c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe"
C:\Windows\System32\CompPkgSrv.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s StorSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s UsoSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wuauserv
C:\WINDOWS\system32\svchost.exe -k LocalService -p -s BthAvctpSvc
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s lfsvc
taskhostw.exe
"C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe" -ServerName:Microsoft.ZuneVideo.AppX758ya5sqdjd98rx6z7g95nw6jy7bqx9y.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19061.18920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s DsSvc
"C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe" -ServerName:App.AppXagta193n5rpf7mheremt3yyfa1g555vc.mca
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 768 772 780 8192 776
C:\WINDOWS\system32\svchost.exe -k netsvcs -p -s wlidsvc
C:\WINDOWS\system32\AUDIODG.EXE 0x4a0
"C:\Users\HP\Desktop\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted -p -s WdiSystemHost
======Scheduled tasks folder======
C:\WINDOWS\tasks\HPCeeScheduleForHP.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForHP (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\vvi2v26k.default
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.255 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=3.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.255 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-15 211848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2017-09-27 440864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-07-15 158696]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2017-09-27 416288]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\WINDOWS\system32\SecurityHealthSystray.exe [2018-09-15 83968]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2018-09-27 9279328]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2019-09-10 268680]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner64.exe [2019-01-10 19645800]
"GoogleDriveSync"=C:\Program Files\Google\Drive\googledrivesync.exe [2019-06-27 46993264]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HPMessageService"=C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [2018-03-22 709152]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioEndpointBuilder]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AudioSrv]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudAddService.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\HdAudBus.Sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SerCx2.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\usbaudio.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{4D36E96C-E325-11CE-BFC1-08002BE10318}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"EnableFullTrustStartupTasks"=2
"EnableUwpStartupTasks"=2
"SupportFullTrustStartupTasks"=1
"SupportUwpStartupTasks"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2019-09-10 18:23:37 ----D---- C:\Program Files\trend micro
2019-09-10 18:23:36 ----D---- C:\rsit
2019-09-10 16:35:42 ----D---- C:\Program Files\Mozilla Firefox
2019-09-10 16:35:23 ----A---- C:\WINDOWS\system32\aswBoot.exe
2019-09-10 16:35:14 ----A---- C:\WINDOWS\system32\drivers\aswStm.sys
2019-09-10 16:35:13 ----A---- C:\WINDOWS\system32\drivers\aswMonFlt.sys
2019-09-10 16:27:15 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerInstaller.exe
2019-08-20 21:30:49 ----A---- C:\WINDOWS\SYSWOW64\SyncController.dll
2019-08-20 21:30:45 ----A---- C:\WINDOWS\system32\wmp.dll
2019-08-20 21:30:38 ----A---- C:\WINDOWS\SYSWOW64\wmp.dll
2019-08-20 21:30:38 ----A---- C:\WINDOWS\system32\SyncController.dll
2019-08-20 21:30:37 ----A---- C:\WINDOWS\SYSWOW64\msmpeg2vdec.dll
2019-08-20 21:30:35 ----A---- C:\WINDOWS\system32\msmpeg2vdec.dll
2019-08-20 21:30:26 ----A---- C:\WINDOWS\system32\drivers\dumpfve.sys
2019-08-20 21:29:39 ----A---- C:\WINDOWS\system32\workfolderssvc.dll
2019-08-20 21:29:38 ----A---- C:\WINDOWS\SYSWOW64\P2P.dll
2019-08-20 21:29:36 ----A---- C:\WINDOWS\SYSWOW64\p2pnetsh.dll
2019-08-20 21:29:33 ----A---- C:\WINDOWS\SYSWOW64\P2PGraph.dll
2019-08-20 21:29:32 ----A---- C:\WINDOWS\SYSWOW64\mstscax.dll
2019-08-20 21:29:31 ----A---- C:\WINDOWS\SYSWOW64\CPFilters.dll
2019-08-20 21:29:30 ----A---- C:\WINDOWS\SYSWOW64\offreg.dll
2019-08-20 21:29:30 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2019-08-20 21:29:29 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2019-08-20 21:29:29 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2019-08-20 21:29:28 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2019-08-20 21:29:22 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2019-08-20 21:29:19 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2019-08-20 21:29:18 ----A---- C:\WINDOWS\SYSWOW64\Chakra.dll
2019-08-20 21:29:17 ----A---- C:\WINDOWS\SYSWOW64\Chakradiag.dll
2019-08-20 21:29:15 ----A---- C:\WINDOWS\SYSWOW64\msrd2x40.dll
2019-08-20 21:29:14 ----A---- C:\WINDOWS\SYSWOW64\msrd3x40.dll
2019-08-20 21:29:12 ----A---- C:\WINDOWS\SYSWOW64\msexcl40.dll
2019-08-20 21:29:11 ----A---- C:\WINDOWS\SYSWOW64\werui.dll
2019-08-20 21:29:11 ----A---- C:\WINDOWS\SYSWOW64\DWWIN.EXE
2019-08-20 21:28:45 ----A---- C:\WINDOWS\SYSWOW64\fsutil.exe
2019-08-20 21:28:44 ----A---- C:\WINDOWS\SYSWOW64\mispace.dll
2019-08-20 21:28:41 ----A---- C:\WINDOWS\system32\pnrpsvc.dll
2019-08-20 21:28:41 ----A---- C:\WINDOWS\system32\p2pnetsh.dll
2019-08-20 21:28:40 ----A---- C:\WINDOWS\system32\p2psvc.dll
2019-08-20 21:28:40 ----A---- C:\WINDOWS\system32\P2PGraph.dll
2019-08-20 21:28:40 ----A---- C:\WINDOWS\system32\P2P.dll
2019-08-20 21:28:40 ----A---- C:\WINDOWS\system32\Groupinghc.dll
2019-08-20 21:28:37 ----A---- C:\WINDOWS\system32\offreg.dll
2019-08-20 21:28:37 ----A---- C:\WINDOWS\system32\mstscax.dll
2019-08-20 21:28:37 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2019-08-20 21:28:36 ----A---- C:\WINDOWS\system32\srms.dat
2019-08-20 21:28:36 ----A---- C:\WINDOWS\system32\ResetEngine.dll
2019-08-20 21:28:36 ----A---- C:\WINDOWS\system32\reseteng.dll
2019-08-20 21:28:35 ----A---- C:\WINDOWS\system32\systemreset.exe
2019-08-20 21:28:35 ----A---- C:\WINDOWS\system32\nltest.exe
2019-08-20 21:28:34 ----A---- C:\WINDOWS\system32\wercplsupport.dll
2019-08-20 21:28:31 ----A---- C:\WINDOWS\system32\werconcpl.dll
2019-08-20 21:28:31 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2019-08-20 21:28:31 ----A---- C:\WINDOWS\system32\DWWIN.EXE
2019-08-20 21:28:30 ----A---- C:\WINDOWS\system32\msfeeds.dll
2019-08-20 21:28:29 ----A---- C:\WINDOWS\system32\ieframe.dll
2019-08-20 21:28:25 ----A---- C:\WINDOWS\system32\edgehtml.dll
2019-08-20 21:28:19 ----A---- C:\WINDOWS\system32\mshtml.dll
2019-08-20 21:28:18 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2019-08-20 21:28:06 ----A---- C:\WINDOWS\system32\Chakradiag.dll
2019-08-20 21:28:06 ----A---- C:\WINDOWS\system32\Chakra.dll
2019-08-20 21:28:05 ----A---- C:\WINDOWS\system32\werui.dll
2019-08-20 21:28:05 ----A---- C:\WINDOWS\system32\jscript.dll
2019-08-20 21:28:04 ----A---- C:\WINDOWS\system32\ClipUp.exe
2019-08-20 21:27:59 ----A---- C:\WINDOWS\system32\mispace.dll
2019-08-20 21:27:59 ----A---- C:\WINDOWS\system32\fsutil.exe
2019-08-20 21:27:46 ----A---- C:\WINDOWS\system32\RDXService.dll
2019-08-20 21:27:46 ----A---- C:\WINDOWS\system32\BioIso.exe
2019-08-20 21:27:43 ----A---- C:\WINDOWS\system32\ssdpsrv.dll
2019-08-20 21:27:38 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2019-08-20 21:27:38 ----A---- C:\WINDOWS\SYSWOW64\ExplorerFrame.dll
2019-08-20 21:27:37 ----A---- C:\WINDOWS\SYSWOW64\shunimpl.dll
2019-08-20 21:27:37 ----A---- C:\WINDOWS\SYSWOW64\newdev.dll
2019-08-20 21:27:37 ----A---- C:\WINDOWS\SYSWOW64\comdlg32.dll
2019-08-20 21:27:36 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2019-08-20 21:27:36 ----A---- C:\WINDOWS\SYSWOW64\mprddm.dll
2019-08-20 21:27:35 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2019-08-20 21:27:34 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2019-08-20 21:27:33 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2019-08-20 21:27:33 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2019-08-20 21:27:32 ----A---- C:\WINDOWS\SYSWOW64\MicrosoftAccountTokenProvider.dll
2019-08-20 21:27:32 ----A---- C:\WINDOWS\SYSWOW64\fontsub.dll
2019-08-20 21:27:31 ----A---- C:\WINDOWS\SYSWOW64\GdiPlus.dll
2019-08-20 21:27:31 ----A---- C:\WINDOWS\SYSWOW64\gdi32full.dll
2019-08-20 21:27:30 ----A---- C:\WINDOWS\SYSWOW64\xmllite.dll
2019-08-20 21:27:30 ----A---- C:\WINDOWS\SYSWOW64\t2embed.dll
2019-08-20 21:27:30 ----A---- C:\WINDOWS\SYSWOW64\daxexec.dll
2019-08-20 21:27:28 ----A---- C:\WINDOWS\SYSWOW64\usoapi.dll
2019-08-20 21:27:26 ----A---- C:\WINDOWS\SYSWOW64\Windows.Media.Protection.PlayReady.dll
2019-08-20 21:27:25 ----A---- C:\WINDOWS\SYSWOW64\Taskmgr.exe
2019-08-20 21:27:24 ----A---- C:\WINDOWS\SYSWOW64\Unistore.dll
2019-08-20 21:27:24 ----A---- C:\WINDOWS\SYSWOW64\drvsetup.dll
2019-08-20 21:27:23 ----A---- C:\WINDOWS\SYSWOW64\rmclient.dll
2019-08-20 21:27:23 ----A---- C:\WINDOWS\SYSWOW64\rdpbase.dll
2019-08-20 21:27:23 ----A---- C:\WINDOWS\SYSWOW64\AppxPackaging.dll
2019-08-20 21:27:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Diagnostics.dll
2019-08-20 21:27:22 ----A---- C:\WINDOWS\SYSWOW64\Windows.Devices.Lights.dll
2019-08-20 21:27:22 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2019-08-20 21:27:21 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2019-08-20 21:27:21 ----A---- C:\WINDOWS\SYSWOW64\Search.ProtocolHandler.MAPI2.dll
2019-08-20 21:27:20 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2019-08-20 21:27:20 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2019-08-20 21:27:19 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2019-08-20 21:27:17 ----A---- C:\WINDOWS\SYSWOW64\windows.storage.dll
2019-08-20 21:27:16 ----A---- C:\WINDOWS\SYSWOW64\Windows.Data.Pdf.dll
2019-08-20 21:27:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.SystemManagement.dll
2019-08-20 21:27:15 ----A---- C:\WINDOWS\SYSWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-20 21:27:14 ----A---- C:\WINDOWS\SYSWOW64\ComposableShellProxyStub.dll
2019-08-20 21:27:13 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2019-08-20 21:27:13 ----A---- C:\WINDOWS\SYSWOW64\LicensingDiagSpp.dll
2019-08-20 21:27:12 ----A---- C:\WINDOWS\SYSWOW64\TokenBroker.dll
2019-08-20 21:27:12 ----A---- C:\WINDOWS\SYSWOW64\ShellCommonCommonProxyStub.dll
2019-08-20 21:27:11 ----A---- C:\WINDOWS\SYSWOW64\Windows.Security.Authentication.Web.Core.dll
2019-08-20 21:27:10 ----A---- C:\WINDOWS\SYSWOW64\explorer.exe
2019-08-20 21:27:09 ----A---- C:\WINDOWS\SYSWOW64\rpcrt4.dll
2019-08-20 21:27:09 ----A---- C:\WINDOWS\SYSWOW64\FlightSettings.dll
2019-08-20 21:27:08 ----A---- C:\WINDOWS\SYSWOW64\hmkd.dll
2019-08-20 21:27:04 ----A---- C:\WINDOWS\system32\t2embed.dll
2019-08-20 21:27:03 ----A---- C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2019-08-20 21:27:02 ----A---- C:\WINDOWS\system32\GdiPlus.dll
2019-08-20 21:27:01 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-08-20 21:27:01 ----A---- C:\WINDOWS\system32\gdi32full.dll
2019-08-20 21:27:00 ----A---- C:\WINDOWS\system32\wininet.dll
2019-08-20 21:26:59 ----A---- C:\WINDOWS\system32\iertutil.dll
2019-08-20 21:26:58 ----A---- C:\WINDOWS\system32\gpsvc.dll
2019-08-20 21:26:52 ----A---- C:\WINDOWS\system32\fontsub.dll
2019-08-20 21:26:51 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2019-08-20 21:26:51 ----A---- C:\WINDOWS\system32\drivers\mrxsmb.sys
2019-08-20 21:26:51 ----A---- C:\WINDOWS\system32\bcryptprimitives.dll
2019-08-20 21:26:50 ----A---- C:\WINDOWS\system32\kdnet.dll
2019-08-20 21:26:22 ----A---- C:\WINDOWS\system32\rpcrt4.dll
2019-08-20 21:26:22 ----A---- C:\WINDOWS\system32\drivers\msrpc.sys
2019-08-20 21:26:21 ----A---- C:\WINDOWS\SYSWOW64\bcryptprimitives.dll
2019-08-20 21:26:21 ----A---- C:\WINDOWS\system32\KernelBase.dll
2019-08-20 21:26:20 ----A---- C:\WINDOWS\SYSWOW64\KernelBase.dll
2019-08-20 21:26:20 ----A---- C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-08-20 21:26:19 ----A---- C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-08-20 21:26:19 ----A---- C:\WINDOWS\system32\CoreShell.dll
2019-08-20 21:26:18 ----A---- C:\WINDOWS\system32\twinui.dll
2019-08-20 21:26:18 ----A---- C:\WINDOWS\system32\sppc.dll
2019-08-20 21:26:17 ----A---- C:\WINDOWS\system32\msctf.dll
2019-08-20 21:26:17 ----A---- C:\WINDOWS\system32\bootux.dll
2019-08-20 21:26:16 ----A---- C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-08-20 21:26:16 ----A---- C:\WINDOWS\system32\pcasvc.dll
2019-08-20 21:26:15 ----A---- C:\WINDOWS\system32\drivers\appid.sys
2019-08-20 21:26:14 ----A---- C:\WINDOWS\system32\winresume.exe
2019-08-20 21:26:14 ----A---- C:\WINDOWS\system32\winload.exe
2019-08-20 21:26:12 ----A---- C:\WINDOWS\system32\Taskmgr.exe
2019-08-20 21:26:12 ----A---- C:\WINDOWS\system32\drivers\refs.sys
2019-08-20 21:26:04 ----A---- C:\WINDOWS\system32\shell32.dll
2019-08-20 21:26:03 ----A---- C:\WINDOWS\system32\ExplorerFrame.dll
2019-08-20 21:26:02 ----A---- C:\WINDOWS\system32\shunimpl.dll
2019-08-20 21:26:02 ----A---- C:\WINDOWS\system32\comdlg32.dll
2019-08-20 21:26:01 ----A---- C:\WINDOWS\system32\sppsvc.exe
2019-08-20 21:26:00 ----A---- C:\WINDOWS\system32\sppcext.dll
2019-08-20 21:25:59 ----A---- C:\WINDOWS\system32\sppwinob.dll
2019-08-20 21:25:59 ----A---- C:\WINDOWS\system32\sppobjs.dll
2019-08-20 21:25:58 ----A---- C:\WINDOWS\system32\LicensingDiagSpp.dll
2019-08-20 21:25:56 ----A---- C:\WINDOWS\system32\services.exe
2019-08-20 21:25:56 ----A---- C:\WINDOWS\system32\rastapi.dll
2019-08-20 21:25:56 ----A---- C:\WINDOWS\system32\drivers\ndproxy.sys
2019-08-20 21:25:55 ----A---- C:\WINDOWS\system32\vpnike.dll
2019-08-20 21:25:55 ----A---- C:\WINDOWS\system32\rasmans.dll
2019-08-20 21:25:55 ----A---- C:\WINDOWS\system32\mprddm.dll
2019-08-20 21:25:54 ----A---- C:\WINDOWS\system32\vbscript.dll
2019-08-20 21:25:54 ----A---- C:\WINDOWS\system32\nlasvc.dll
2019-08-20 21:25:53 ----A---- C:\WINDOWS\system32\newdev.dll
2019-08-20 21:25:53 ----A---- C:\WINDOWS\system32\drvinst.exe
2019-08-20 21:25:53 ----A---- C:\WINDOWS\system32\APMon.dll
2019-08-20 21:25:52 ----A---- C:\WINDOWS\system32\iphlpsvc.dll
2019-08-20 21:25:52 ----A---- C:\WINDOWS\system32\hal.dll
2019-08-20 21:25:52 ----A---- C:\WINDOWS\system32\drivers\ks.sys
2019-08-20 21:25:51 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2019-08-20 21:25:50 ----A---- C:\WINDOWS\system32\daxexec.dll
2019-08-20 21:25:44 ----A---- C:\WINDOWS\system32\win32kfull.sys
2019-08-20 21:25:44 ----A---- C:\WINDOWS\system32\psmsrv.dll
2019-08-20 21:25:44 ----A---- C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-08-20 21:25:42 ----A---- C:\WINDOWS\system32\rmclient.dll
2019-08-20 21:25:42 ----A---- C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-08-20 21:25:41 ----A---- C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-08-20 21:25:41 ----A---- C:\WINDOWS\system32\rdpbase.dll
2019-08-20 21:25:41 ----A---- C:\WINDOWS\system32\ISM.dll
2019-08-20 21:25:40 ----A---- C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-08-20 21:25:40 ----A---- C:\WINDOWS\system32\Unistore.dll
2019-08-20 21:25:39 ----A---- C:\WINDOWS\system32\msxml6.dll
2019-08-20 21:25:38 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2019-08-20 21:25:38 ----A---- C:\WINDOWS\system32\InputLocaleManager.dll
2019-08-20 21:25:38 ----A---- C:\WINDOWS\system32\EdgeContent.dll
2019-08-20 21:25:37 ----A---- C:\WINDOWS\system32\tquery.dll
2019-08-20 21:25:37 ----A---- C:\WINDOWS\system32\SearchFilterHost.exe
2019-08-20 21:25:37 ----A---- C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-08-20 21:25:37 ----A---- C:\WINDOWS\system32\msscntrs.dll
2019-08-20 21:25:36 ----A---- C:\WINDOWS\system32\mssrch.dll
2019-08-20 21:25:36 ----A---- C:\WINDOWS\system32\mssph.dll
2019-08-20 21:25:35 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2019-08-20 21:25:35 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2019-08-20 21:25:34 ----A---- C:\WINDOWS\system32\win32kbase.sys
2019-08-20 21:25:33 ----A---- C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2019-08-20 21:25:33 ----A---- C:\WINDOWS\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-20 21:25:33 ----A---- C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-08-20 21:25:33 ----A---- C:\WINDOWS\system32\appsruprov.dll
2019-08-20 21:25:32 ----A---- C:\WINDOWS\system32\DeviceSetupManager.dll
2019-08-20 21:25:31 ----A---- C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-08-20 21:25:31 ----A---- C:\WINDOWS\system32\TokenBroker.dll
2019-08-20 21:25:31 ----A---- C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-08-20 21:25:29 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-08-20 21:25:29 ----A---- C:\WINDOWS\system32\SecurityHealthService.exe
2019-08-20 21:25:28 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-08-20 21:25:28 ----A---- C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-08-20 21:25:27 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-08-20 21:25:27 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-08-20 21:25:25 ----A---- C:\WINDOWS\system32\StartTileData.dll
2019-08-20 21:25:25 ----A---- C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-08-20 21:25:24 ----A---- C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2019-08-20 21:25:24 ----A---- C:\WINDOWS\explorer.exe
2019-08-20 21:25:23 ----A---- C:\WINDOWS\system32\wpx.dll
2019-08-20 21:25:23 ----A---- C:\WINDOWS\system32\wcmsvc.dll
2019-08-20 21:25:23 ----A---- C:\WINDOWS\system32\hmkd.dll
2019-08-20 21:25:23 ----A---- C:\WINDOWS\system32\drivers\bowser.sys
2019-08-20 21:25:22 ----A---- C:\WINDOWS\system32\drivers\PEAuth.sys
2019-08-20 21:25:21 ----A---- C:\WINDOWS\system32\WpcTok.exe
2019-08-20 21:25:21 ----A---- C:\WINDOWS\system32\WpcRefreshTask.dll
2019-08-20 21:25:21 ----A---- C:\WINDOWS\system32\FlightSettings.dll
2019-08-20 21:25:20 ----A---- C:\WINDOWS\system32\WpcMon.exe
2019-08-20 21:25:20 ----A---- C:\WINDOWS\system32\kdcpw.dll
2019-08-20 21:24:56 ----A---- C:\WINDOWS\system32\drivers\http.sys
2019-08-20 21:24:54 ----A---- C:\WINDOWS\SYSWOW64\wermgr.exe
2019-08-20 21:24:54 ----A---- C:\WINDOWS\SYSWOW64\WerFault.exe
2019-08-20 21:24:54 ----A---- C:\WINDOWS\SYSWOW64\wer.dll
2019-08-20 21:24:54 ----A---- C:\WINDOWS\SYSWOW64\Faultrep.dll
2019-08-20 21:24:53 ----A---- C:\WINDOWS\system32\wermgr.exe
2019-08-20 21:24:53 ----A---- C:\WINDOWS\system32\WerFault.exe
2019-08-20 21:24:53 ----A---- C:\WINDOWS\system32\wer.dll
2019-08-20 21:24:52 ----A---- C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2019-08-20 21:24:52 ----A---- C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-08-20 21:24:52 ----A---- C:\WINDOWS\system32\MusNotifyIcon.exe
2019-08-20 21:24:52 ----A---- C:\WINDOWS\system32\musdialoghandlers.dll
2019-08-20 21:24:52 ----A---- C:\WINDOWS\system32\Faultrep.dll
2019-08-20 21:24:51 ----A---- C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-08-20 21:24:51 ----A---- C:\WINDOWS\system32\MusNotificationUx.exe
2019-08-20 21:24:51 ----A---- C:\WINDOWS\system32\MusNotification.exe
2019-08-20 21:24:50 ----A---- C:\WINDOWS\system32\usoapi.dll
2019-08-20 21:24:50 ----A---- C:\WINDOWS\system32\updatepolicy.dll
2019-08-20 21:24:50 ----A---- C:\WINDOWS\system32\updatecsp.dll
2019-08-20 21:24:49 ----A---- C:\WINDOWS\system32\wuuhext.dll
2019-08-20 21:24:49 ----A---- C:\WINDOWS\system32\usocore.dll
2019-08-20 21:24:49 ----A---- C:\WINDOWS\system32\UsoClient.exe
2019-08-20 21:24:49 ----A---- C:\WINDOWS\system32\updatehandlers.dll
2019-08-20 21:24:48 ----A---- C:\WINDOWS\system32\wuapi.dll
2019-08-20 21:24:48 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2019-08-20 21:24:47 ----A---- C:\WINDOWS\SYSWOW64\dtdump.exe
2019-08-20 21:24:47 ----A---- C:\WINDOWS\system32\wuuhosdeployment.dll
2019-08-20 21:24:47 ----A---- C:\WINDOWS\system32\wuaueng.dll
2019-08-20 21:24:47 ----A---- C:\WINDOWS\system32\diagtrack.dll
2019-08-20 21:24:46 ----A---- C:\WINDOWS\system32\drvsetup.dll
2019-08-20 21:24:46 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2019-08-20 21:24:45 ----A---- C:\WINDOWS\system32\skci.dll
2019-08-20 21:24:45 ----A---- C:\WINDOWS\system32\lsasrv.dll
2019-08-20 21:24:45 ----A---- C:\WINDOWS\system32\LsaIso.exe
2019-08-20 21:24:44 ----A---- C:\WINDOWS\SYSWOW64\netlogon.dll
2019-08-20 21:24:44 ----A---- C:\WINDOWS\system32\wevtsvc.dll
2019-08-20 21:24:44 ----A---- C:\WINDOWS\system32\tcbloader.dll
2019-08-20 21:24:44 ----A---- C:\WINDOWS\system32\tcblaunch.exe
2019-08-20 21:24:43 ----A---- C:\WINDOWS\system32\netlogon.dll
2019-08-20 21:24:43 ----A---- C:\WINDOWS\system32\kerberos.dll
2019-08-20 21:24:43 ----A---- C:\WINDOWS\system32\KerbClientShared.dll
2019-08-20 21:24:42 ----A---- C:\WINDOWS\SYSWOW64\wldp.dll
2019-08-20 21:24:42 ----A---- C:\WINDOWS\system32\DiskSnapshot.exe
2019-08-20 21:24:41 ----A---- C:\WINDOWS\SYSWOW64\tzres.dll
2019-08-20 21:24:41 ----A---- C:\WINDOWS\SYSWOW64\ncryptprov.dll
2019-08-20 21:24:41 ----A---- C:\WINDOWS\SYSWOW64\logoncli.dll
2019-08-20 21:24:41 ----A---- C:\WINDOWS\SYSWOW64\dnsapi.dll
2019-08-20 21:24:41 ----A---- C:\WINDOWS\SYSWOW64\combase.dll
2019-08-20 21:24:40 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2019-08-20 21:24:40 ----A---- C:\WINDOWS\system32\wldp.dll
2019-08-20 21:24:39 ----A---- C:\WINDOWS\system32\combase.dll
2019-08-20 21:24:39 ----A---- C:\WINDOWS\system32\ci.dll
2019-08-20 21:24:38 ----A---- C:\WINDOWS\system32\tzres.dll
2019-08-20 21:24:38 ----A---- C:\WINDOWS\system32\rpcss.dll
2019-08-20 21:24:38 ----A---- C:\WINDOWS\system32\ncryptprov.dll
2019-08-20 21:24:38 ----A---- C:\WINDOWS\system32\logoncli.dll
2019-08-20 21:24:37 ----A---- C:\WINDOWS\system32\xmllite.dll
2019-08-20 21:24:37 ----A---- C:\WINDOWS\system32\oleaut32.dll
2019-08-20 21:24:37 ----A---- C:\WINDOWS\system32\dnsrslvr.dll
2019-08-20 21:24:37 ----A---- C:\WINDOWS\system32\dnsapi.dll
2019-08-20 21:24:36 ----A---- C:\WINDOWS\system32\wc_storage.dll
2019-08-20 21:24:36 ----A---- C:\WINDOWS\system32\drivers\bindflt.sys
2019-08-20 21:24:36 ----A---- C:\WINDOWS\system32\bcdedit.exe
2019-08-20 21:24:35 ----A---- C:\WINDOWS\system32\windows.storage.dll
2019-08-20 21:24:35 ----A---- C:\WINDOWS\system32\AppxPackaging.dll
2019-08-20 21:24:34 ----A---- C:\WINDOWS\SYSWOW64\win32kfull.sys
2019-08-20 21:24:33 ----A---- C:\WINDOWS\SYSWOW64\updatepolicy.dll
2019-08-20 21:24:33 ----A---- C:\WINDOWS\SYSWOW64\msctf.dll
2019-08-20 21:24:29 ----A---- C:\WINDOWS\SYSWOW64\msxml6.dll
2019-08-20 21:24:26 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2019-08-20 21:24:23 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2019-08-20 21:24:22 ----A---- C:\WINDOWS\SYSWOW64\KerbClientShared.dll
2019-08-20 21:24:19 ----A---- C:\WINDOWS\system32\hvax64.exe
2019-08-20 21:24:19 ----A---- C:\WINDOWS\system32\drivers\winhvr.sys
2019-08-20 21:24:18 ----A---- C:\WINDOWS\system32\hvix64.exe
2019-08-20 21:24:18 ----A---- C:\WINDOWS\system32\drivers\winhv.sys
2019-08-20 21:24:17 ----A---- C:\WINDOWS\system32\computestorage.dll
2019-08-20 21:24:16 ----A---- C:\WINDOWS\system32\rdpnano.dll
2019-08-20 21:24:15 ----A---- C:\WINDOWS\system32\drivers\tpm.sys
2019-08-20 21:24:15 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2019-08-20 21:24:14 ----A---- C:\WINDOWS\system32\drivers\BTHUSB.SYS
2019-08-20 21:24:13 ----A---- C:\WINDOWS\system32\drivers\pmem.sys
2019-08-20 21:24:12 ----A---- C:\WINDOWS\system32\drivers\uefi.sys
2019-08-20 21:24:12 ----A---- C:\WINDOWS\system32\drivers\scmbus.sys
2019-08-20 21:24:10 ----A---- C:\WINDOWS\system32\drivers\spaceport.sys
======List of files/folders modified in the last 1 month======
2019-09-10 18:23:37 ----RD---- C:\Program Files
2019-09-10 18:21:09 ----D---- C:\WINDOWS\Temp
2019-09-10 17:49:46 ----D---- C:\WINDOWS\system32\config
2019-09-10 17:48:35 ----D---- C:\WINDOWS\Prefetch
2019-09-10 17:47:50 ----D---- C:\WINDOWS\system32\SleepStudy
2019-09-10 17:47:04 ----D---- C:\WINDOWS\WinSxS
2019-09-10 17:40:06 ----D---- C:\WINDOWS\system32\sru
2019-09-10 17:32:14 ----D---- C:\WINDOWS\system32\LogFiles
2019-09-10 17:32:14 ----D---- C:\WINDOWS\Logs
2019-09-10 17:32:06 ----D---- C:\Windows
2019-09-10 17:28:34 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2019-09-10 17:27:42 ----RD---- C:\WINDOWS\Microsoft.NET
2019-09-10 17:06:44 ----HD---- C:\Program Files\WindowsApps
2019-09-10 16:55:30 ----D---- C:\WINDOWS\AppReadiness
2019-09-10 16:53:34 ----D---- C:\WINDOWS\system32\drivers
2019-09-10 16:44:11 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-10 16:37:52 ----D---- C:\WINDOWS\system32\catroot2
2019-09-10 16:35:23 ----HD---- C:\WINDOWS\ELAMBKUP
2019-09-10 16:35:23 ----D---- C:\WINDOWS\System32
2019-09-10 16:31:27 ----D---- C:\WINDOWS\INF
2019-09-10 16:27:22 ----D---- C:\WINDOWS\system32\Macromed
2019-09-10 16:27:19 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2019-09-10 16:27:15 ----D---- C:\WINDOWS\SysWOW64
2019-08-25 22:19:57 ----D---- C:\UPOL
2019-08-25 21:19:16 ----SHDC---- C:\WINDOWS\Installer
2019-08-25 21:19:15 ----SHD---- C:\Config.Msi
2019-08-22 19:36:41 ----D---- C:\Program Files (x86)\Microsoft Office
2019-08-22 19:12:01 ----D---- C:\WINDOWS\LiveKernelReports
2019-08-21 13:02:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2019-08-21 12:53:53 ----D---- C:\WINDOWS\system32\DriverStore
2019-08-20 22:18:24 ----D---- C:\WINDOWS\SYSWOW64\oobe
2019-08-20 22:18:24 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2019-08-20 22:18:12 ----SD---- C:\WINDOWS\system32\UNP
2019-08-20 22:18:12 ----D---- C:\WINDOWS\system32\wbem
2019-08-20 22:18:12 ----D---- C:\WINDOWS\system32\oobe
2019-08-20 22:18:12 ----D---- C:\WINDOWS\system32\en-US
2019-08-20 22:18:11 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2019-08-20 22:18:11 ----D---- C:\WINDOWS\system32\cs-CZ
2019-08-20 22:18:10 ----D---- C:\WINDOWS\system32\Boot
2019-08-20 22:17:56 ----D---- C:\WINDOWS\Provisioning
2019-08-20 22:17:55 ----D---- C:\WINDOWS\bcastdvr
2019-08-20 22:17:54 ----D---- C:\Program Files\internet explorer
2019-08-20 22:17:54 ----D---- C:\Program Files (x86)\Internet Explorer
2019-08-20 21:51:20 ----D---- C:\WINDOWS\system32\MRT
2019-08-20 21:43:04 ----AC---- C:\WINDOWS\system32\MRT.exe
2019-08-20 21:42:00 ----D---- C:\WINDOWS\CbsTemp
2019-08-20 21:32:05 ----D---- C:\WINDOWS\system32\Tasks
2019-08-20 20:49:21 ----SHD---- C:\System Volume Information
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswArDisk;aswArDisk; C:\WINDOWS\system32\drivers\aswArDisk.sys [2019-09-10 37104]
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsh.sys [2019-09-10 205848]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniv.sys [2019-09-10 61472]
R0 aswElam;aswElam; C:\WINDOWS\system32\drivers\aswElam.sys [2019-01-04 15488]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2019-09-10 87944]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2019-09-10 387176]
R0 iaStorAC;@oem21.inf,%iaStorAC.DeviceDesc%;Intel(R) Chipset SATA/PCIe RST Premium Controller; C:\WINDOWS\System32\drivers\iaStorAC.sys [2018-04-26 942136]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2019-01-30 55608]
R1 afunix;afunix; C:\WINDOWS\system32\drivers\afunix.sys [2018-09-15 40960]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2019-09-10 209552]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriver.sys [2019-09-10 263008]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2019-09-10 282768]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2019-09-10 42288]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2019-09-10 112312]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2019-09-10 1030784]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2019-09-10 478096]
R1 bam;@%SystemRoot%\system32\drivers\bam.sys,-100; C:\WINDOWS\system32\drivers\bam.sys [2018-09-15 63288]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2018-09-15 60416]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2018-09-15 8704]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2019-09-10 169408]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2019-09-10 236024]
R2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2019-03-17 452096]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2019-01-30 51712]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2019-08-20 92672]
R3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2018-09-15 63288]
R3 dptf_cpu;dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [2018-03-29 69536]
R3 esif_lf;esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [2018-03-29 382880]
R3 ibtusb;@oem13.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R); C:\WINDOWS\System32\drivers\ibtusb.sys [2018-05-11 199192]
R3 igfx;igfx; C:\WINDOWS\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\igdkmd64.sys [2019-02-25 16161120]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2018-09-27 6392672]
R3 IntcDAud;@oem38.inf,%IntcAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\System32\DriverStore\FileRepository\intcdaud.inf_amd64_78de84df29d43260\IntcDAud.sys [2019-02-25 674352]
R3 MEIx64;@oem16.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys [2017-11-28 206488]
R3 Netwtw04;@oem27.inf,%NIC_Service_DispName_WINT_64%;Ovladač adaptéru Intel(R) Wireless pro systém Windows 10 64 Bit; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [2018-10-12 8723648]
R3 rt640x64;@oem28.inf,%rt640.Service.DispName%;Realtek RT640 NT Driver; C:\WINDOWS\System32\drivers\rt640x64.sys [2018-04-13 1026896]
S0 bttflt;@virtdisk.inf,%service_desc%;Microsoft Hyper-V VHDPMEM BTT Filter; C:\WINDOWS\System32\drivers\bttflt.sys [2018-09-15 42504]
S0 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2018-09-15 319488]
S0 iaStorAVC;@iastorav.inf,%iaStorAVC.DeviceDesc%;Intel Chipset SATA RAID Controller; C:\WINDOWS\System32\drivers\iaStorAVC.sys [2018-09-15 885048]
S0 ItSas35i;ItSas35i; C:\WINDOWS\System32\drivers\ItSas35i.sys [2018-09-15 148480]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2018-09-15 124416]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2018-09-15 128512]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2018-09-15 75264]
S0 megasas35i;megasas35i; C:\WINDOWS\System32\drivers\megasas35i.sys [2018-09-15 79872]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2018-09-15 58880]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2018-09-15 68608]
S0 Ramdisk;Windows RAM Disk Driver; C:\WINDOWS\system32\DRIVERS\ramdisk.sys [2018-09-15 41784]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2019-08-20 134968]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2018-09-15 19968]
S3 AppleLowerFilter;@oem11.inf,%AppleLowerFilterDisplayName%;Apple Lower Filter Driver; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [2018-05-10 35560]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2018-09-15 18432]
S3 bindflt;@%systemroot%\system32\drivers\bindflt.sys,-100; C:\WINDOWS\system32\drivers\bindflt.sys [2019-08-20 104248]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2019-01-30 111104]
S3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [2019-07-14 91136]
S3 BthMini;@bth.inf,%BTHMINI.SvcDesc%;Bluetooth Radio Driver; C:\WINDOWS\System32\drivers\BTHMINI.sys [2018-09-15 34816]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2018-09-15 133120]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2019-08-20 1232384]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2018-09-15 40960]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2018-09-15 125952]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2018-09-15 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2018-09-15 51512]
S3 hidspi;@hidspi_km.inf,%hidspi.SVCDESC%;Microsoft SPI HID Miniport Driver; C:\WINDOWS\System32\drivers\hidspi.sys [2018-09-15 60928]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2019-07-14 80400]
S3 HwNClx0101;Microsoft Hardware Notifications Class Extension Driver; C:\WINDOWS\System32\Drivers\mshwnclx.sys [2018-09-15 27648]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2018-09-15 1866768]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2018-09-15 36352]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2018-09-15 91136]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2018-09-15 79360]
S3 iaLPSS2i_GPIO2_BXT_P;@iaLPSS2i_GPIO2_BXT_P.inf,%iaLPSS2i_GPIO2_BXT_P.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [2018-09-15 93184]
S3 iaLPSS2i_GPIO2_CNL;@iaLPSS2i_GPIO2_CNL.inf,%iaLPSS2i_GPIO2_CNL.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys [2018-09-15 112128]
S3 iaLPSS2i_GPIO2_GLK;@iaLPSS2i_GPIO2_GLK.inf,%iaLPSS2i_GPIO2_GLK.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys [2018-09-15 96256]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2018-09-15 171520]
S3 iaLPSS2i_I2C_BXT_P;@iaLPSS2i_I2C_BXT_P.inf,%iaLPSS2i_I2C_BXT_P.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [2018-09-15 175104]
S3 iaLPSS2i_I2C_CNL;@iaLPSS2i_I2C_CNL.inf,%iaLPSS2i_I2C_CNL.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys [2018-09-15 180736]
S3 iaLPSS2i_I2C_GLK;@iaLPSS2i_I2C_GLK.inf,%iaLPSS2i_I2C_GLK.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys [2018-09-15 177664]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2018-09-15 566800]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2018-09-15 45568]
S3 IPT;IPT; C:\WINDOWS\System32\drivers\ipt.sys [2018-09-15 42496]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2018-09-15 124928]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2018-09-15 515384]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2018-09-15 58680]
S3 MbbCx;MBB Network Adapter Class Extension; C:\WINDOWS\system32\drivers\MbbCx.sys [2019-07-14 290304]
S3 Microsoft_Bluetooth_AvrcpTransport;@microsoft_bluetooth_avrcptransport.inf,%Microsoft_Bluetooth_AvrcpTransport.ServiceDescription%;Microsoft Bluetooth Avrcp Transport Driver; C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys [2018-09-15 53760]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2018-09-15 1150496]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2018-09-15 153616]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2018-09-15 184320]
S3 nvdimm;@nvdimm.inf,%nvdimm.SvcDesc%;Microsoft NVDIMM device driver; C:\WINDOWS\System32\drivers\nvdimm.sys [2018-09-15 148480]
S3 PktMon;Packet Monitor Driver; C:\WINDOWS\system32\drivers\PktMon.sys [2018-09-15 85504]
S3 pmem;@pmem.inf,%pmem.SvcDesc%;Microsoft persistent memory disk driver; C:\WINDOWS\System32\drivers\pmem.sys [2019-08-20 117248]
S3 PNPMEM;@memory.inf,%PNPMEM.SvcDesc%;Microsoft Memory Module Driver; C:\WINDOWS\System32\drivers\pnpmem.sys [2018-09-15 17408]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2019-04-11 981816]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2018-09-15 202240]
S3 rhproxy;@rhproxy.inf,%rhproxy.SVCDESC%;Resource Hub proxy driver; C:\WINDOWS\System32\drivers\rhproxy.sys [2018-09-15 108032]
S3 RTSUER;Realtek USB Card Reader - UER; C:\WINDOWS\system32\Drivers\RtsUer.sys [2018-03-28 424384]
S3 SDFRd;@SDFRd.inf,%SDFRd.ServiceDesc%;SDF Reflector; C:\WINDOWS\System32\drivers\SDFRd.sys [2018-09-15 33080]
S4 hvcrash;hvcrash; C:\WINDOWS\System32\drivers\hvcrash.sys [2018-09-15 33280]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2019-07-24 88136]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2019-09-10 405072]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 CDPUserSvc_56930;Uživatelská služba platformy připojených zařízení_56930; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 ClickToRunSvc;Služba Microsoft Office Klikni a spusť; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2019-08-06 11153504]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 cplspcon;Intel(R) Content Protection HDCP Service; C:\WINDOWS\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\IntelCpHDCPSvc.exe [2019-02-25 516136]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R2 esifsvc;@oem4.inf,%ServiceDisplayName%;Intel(R) Dynamic Platform and Thermal Framework service; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [2018-03-29 1705040]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2018-09-05 670816]
R2 HP Comm Recover;HP Comm Recovery; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [2017-12-13 1322632]
R2 HPJumpStartBridge;HP JumpStart Bridge; c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe [2017-10-06 477184]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2017-09-27 323952]
R2 HPWMISVC;HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [2017-07-13 628768]
R2 ibtsiva;@oem42.inf,%SERVICE_NAME%;Intel Bluetooth Service; C:\WINDOWS\System32\ibtsiva []
R2 igfxCUIService2.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\igfxCUIService.exe [2019-02-25 421216]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2017-12-03 205968]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2017-12-03 419984]
R2 OneSyncSvc_56930;Hostitel synchronizace_56930; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2018-09-05 170592]
R2 RtkAudioService;Realtek Audio Service; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2018-09-27 268128]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2019-09-10 5975136]
R3 BthAvctpSvc;@%SystemRoot%\system32\BthAvctpSvc.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 camsvc;@%SystemRoot%\system32\CapabilityAccessManager.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 cbdhsvc_56930;Uživatelská služba schránky_56930; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\IntelCpHeciSvc.exe [2019-02-25 508976]
R3 DisplayEnhancementService;@%SystemRoot%\System32\Microsoft.Graphics.Display.DisplayEnhancementService.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2019-01-30 43632]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
R3 PimIndexMaintenanceSvc_56930;Data kontaktů_56930; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
R3 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2019-08-20 864568]
R3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-07-15 154920]
S2 Intel(R) TPM Provisioning Service;Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [2018-03-02 719640]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-09-10 335416]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework64\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2018-09-15 52816]
S3 AvastWscReporter;AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [2019-09-10 57504]
S3 BcastDVRUserService;@%SystemRoot%\system32\BcastDVRUserService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BcastDVRUserService_56930;Uživatelská služba pro GameDVR a vysílání her_56930; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BluetoothUserService;@%SystemRoot%\system32\Microsoft.Bluetooth.UserService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BluetoothUserService_56930;Služba pro podporu uživatelů Bluetooth_56930; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 BTAGService;@%SystemRoot%\system32\BTAGService.dll,-101; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService;@%SystemRoot%\system32\CaptureService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 CaptureService_56930;CaptureService_56930; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 cbdhsvc;@%SystemRoot%\system32\cbdhsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc;@%SystemRoot%\system32\ConsentUxClient.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ConsentUxUserSvc_56930;ConsentUX_56930; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicePickerUserSvc;@%SystemRoot%\system32\Windows.Devices.Picker.dll,-1006; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicePickerUserSvc_56930;DevicePicker_56930; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevicesFlowUserSvc_56930;Tok zařízení_56930; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2019-07-14 92672]
S3 diagsvc;@%systemroot%\system32\DiagSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 GraphicsPerfSvc;@%SystemRoot%\system32\GraphicsPerfSvc.dll,-100; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2019-07-15 154920]
S3 hpqcaslwmiex;HP CASL Framework Service; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [2016-06-03 1031704]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 InstallService;@%SystemRoot%\system32\InstallService.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [2018-03-02 758552]
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 LxpSvc;@%SystemRoot%\system32\LanguageOverlayServer.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MessagingService_56930;Služba zasílání zpráv_56930; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2019-09-10 242720]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2018-09-05 310880]
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 ose;Office Source Engine; c:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2019-08-08 223240]
S3 perceptionsimulation;@%systemroot%\system32\PerceptionSimulation\PerceptionSimulationService.exe,-101; C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe [2018-09-15 78848]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc;@%SystemRoot%\system32\PrintWorkflowService.dll,-100; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PrintWorkflowUserSvc_56930;PrintWorkflow_56930; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
S3 PushToInstall;@%SystemRoot%\system32\pushtoinstall.dll,-200; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2018-09-15 51696]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2018-09-15 1269248]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2018-09-15 51696]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
pomalý počítač
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118271
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý počítač
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/
ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalý počítač
# -------------------------------
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build: 09-05-2019
# Database: 2019-09-06.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-10-2019
# Duration: 00:00:11
# OS: Windows 10 Home
# Cleaned: 32
# Failed: 1
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.HPAudioSwitch Folder C:\Program Files (x86)\HP\HPAUDIOSWITCH
Deleted Preinstalled.HPAudioSwitch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A4CD09B-3DA0-4BF9-9CE3-D2A78B750807}
Deleted Preinstalled.HPAudioSwitch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPAudioSwitch
Deleted Preinstalled.HPAudioSwitch Task C:\Windows\System32\Tasks\HPAUDIOSWITCH
Deleted Preinstalled.HPCeement Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3F235620-5C8E-45A8-9AF7-A7E5AD2BBFEF}
Deleted Preinstalled.HPCeement Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F235620-5C8E-45A8-9AF7-A7E5AD2BBFEF}
Deleted Preinstalled.HPCeement Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPCeeScheduleForHP
Deleted Preinstalled.HPCeement Task C:\Windows\System32\Tasks\HPCEESCHEDULEFORHP
Deleted Preinstalled.HPCeement Task C:\Windows\Tasks\HPCEESCHEDULEFORHP.JOB
Deleted Preinstalled.HPJumpStartBridge Folder C:\Program Files (x86)\HP\HP JUMPSTART BRIDGE
Deleted Preinstalled.HPJumpStartLaunch Folder C:\Program Files (x86)\HP\HP JUMPSTART LAUNCH
Deleted Preinstalled.HPJumpStartLaunch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E79C407B-66CC-4937-B885-D018D4D202A4}
Deleted Preinstalled.HPJumpStartLaunch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPJumpStartLaunch
Deleted Preinstalled.HPJumpStartLaunch Task C:\Windows\System32\Tasks\HPJUMPSTARTLAUNCH
Deleted Preinstalled.HPRegistrationService Folder C:\Program Files (x86)\HP\HP REGISTRATION SERVICE
Deleted Preinstalled.HPRegistrationService Folder C:\ProgramData\HP\HP REGISTRATION SERVICE
Deleted Preinstalled.HPSupportAssistant Folder C:\HP\SUPPORT
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP CUSTOMER FEEDBACK
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\ProgramData\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\HP\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\HP\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Windows\System32\config\systemprofile\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{4AAC4B07-77EF-4BCF-88DC-D24E4DE683E8}
Deleted Preinstalled.HPSureConnect Folder C:\Program Files\HPCOMMRECOVERY
Deleted Preinstalled.HPSureConnect Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6468C4A5-E47E-405F-B675-A70A70983EA6}
Not Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner_Debug.log - [26094 octets] - [10/09/2019 19:33:23]
AdwCleaner[S00].txt - [5223 octets] - [10/09/2019 19:34:05]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build: 09-05-2019
# Database: 2019-09-06.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-10-2019
# Duration: 00:00:11
# OS: Windows 10 Home
# Cleaned: 32
# Failed: 1
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Preinstalled Software ] *****
Deleted Preinstalled.HPAudioSwitch Folder C:\Program Files (x86)\HP\HPAUDIOSWITCH
Deleted Preinstalled.HPAudioSwitch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1A4CD09B-3DA0-4BF9-9CE3-D2A78B750807}
Deleted Preinstalled.HPAudioSwitch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPAudioSwitch
Deleted Preinstalled.HPAudioSwitch Task C:\Windows\System32\Tasks\HPAUDIOSWITCH
Deleted Preinstalled.HPCeement Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3F235620-5C8E-45A8-9AF7-A7E5AD2BBFEF}
Deleted Preinstalled.HPCeement Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F235620-5C8E-45A8-9AF7-A7E5AD2BBFEF}
Deleted Preinstalled.HPCeement Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPCeeScheduleForHP
Deleted Preinstalled.HPCeement Task C:\Windows\System32\Tasks\HPCEESCHEDULEFORHP
Deleted Preinstalled.HPCeement Task C:\Windows\Tasks\HPCEESCHEDULEFORHP.JOB
Deleted Preinstalled.HPJumpStartBridge Folder C:\Program Files (x86)\HP\HP JUMPSTART BRIDGE
Deleted Preinstalled.HPJumpStartLaunch Folder C:\Program Files (x86)\HP\HP JUMPSTART LAUNCH
Deleted Preinstalled.HPJumpStartLaunch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E79C407B-66CC-4937-B885-D018D4D202A4}
Deleted Preinstalled.HPJumpStartLaunch Registry HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\HPJumpStartLaunch
Deleted Preinstalled.HPJumpStartLaunch Task C:\Windows\System32\Tasks\HPJUMPSTARTLAUNCH
Deleted Preinstalled.HPRegistrationService Folder C:\Program Files (x86)\HP\HP REGISTRATION SERVICE
Deleted Preinstalled.HPRegistrationService Folder C:\ProgramData\HP\HP REGISTRATION SERVICE
Deleted Preinstalled.HPSupportAssistant Folder C:\HP\SUPPORT
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP CUSTOMER FEEDBACK
Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\ProgramData\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\HP\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Users\HP\AppData\Roaming\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Folder C:\Windows\System32\config\systemprofile\AppData\Local\HEWLETT-PACKARD\HP SUPPORT FRAMEWORK
Deleted Preinstalled.HPSupportAssistant Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Classes\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}
Deleted Preinstalled.HPSupportAssistant Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{4AAC4B07-77EF-4BCF-88DC-D24E4DE683E8}
Deleted Preinstalled.HPSureConnect Folder C:\Program Files\HPCOMMRECOVERY
Deleted Preinstalled.HPSureConnect Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{6468C4A5-E47E-405F-B675-A70A70983EA6}
Not Deleted Preinstalled.HPSupportAssistant Folder C:\Program Files (x86)\HEWLETT-PACKARD\HP SUPPORT SOLUTIONS
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner_Debug.log - [26094 octets] - [10/09/2019 19:33:23]
AdwCleaner[S00].txt - [5223 octets] - [10/09/2019 19:34:05]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118271
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý počítač
OK. Teďdejte logy FRST+Addition: https://forum.viry.cz/viewtopic.php?f=13&t=154679 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalý počítač
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-09-2019
Ran by HP (administrator) on LAPTOP-0D100ASP (HP HP 250 G6 Notebook PC) (10-09-2019 20:14:52)
Running from C:\Users\HP\Desktop
Loaded Profiles: HP (Available Profiles: HP)
Platform: Windows 10 Home Version 1809 17763.678 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\IntelCpHeciSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19061.18920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19071.901.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9279328 2018-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [709152 2018-03-22] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46993264 2019-06-27] (Google LLC -> )
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {001F81FD-5162-4C15-87AE-3C9939C591E1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-15] (Google Inc -> Google LLC)
Task: {0D557CED-0E1B-4149-AF34-DB9BF13BFD44} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [103896 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {18C0C5CC-C05F-44C9-ADA6-B77CF4D93CC5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-15] (Google Inc -> Google LLC)
Task: {23F0A6A3-B0C0-42EA-BA95-7554704DA6BF} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [758392 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {3A0B9388-7BEB-43F3-8679-12F5859542D2} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26045024 2019-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {3F083023-C3A1-47C3-9DDE-82BF5E2A39AF} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-10] (Adobe Inc. -> Adobe)
Task: {44307B2B-FDD2-4530-9DD9-A9A78D91BCC4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {4614A42D-8294-4B00-AE20-3D3F79F5CC02} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {4BA2C552-8CB8-4023-9307-0605E54B7C65} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [119664 2017-09-27] (HP Inc. -> HP Inc.)
Task: {4DA4EF47-CB9F-491F-B52D-17AAE3E79102} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [103896 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {51C10930-8DB1-48AE-98B3-B578358B75B5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {584D91DA-B3D9-4714-9488-6DB67B22A7E8} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_HP => F:\Install\Hard Disk Sentinel\AHDSentinel.exe
Task: {590EA1B6-B8FE-43D0-92F3-A458EF51E7E4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4404376 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {59E3EEA6-769D-4B99-B103-9AAAD4F6C0C2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4404376 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {5CD0C1EE-D17E-472A-A944-A8113F9C6422} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-10] (Adobe Inc. -> Adobe)
Task: {645394E9-528F-454D-BFC7-7C8992587995} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3942792 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
Task: {75A024E2-351B-4DDE-9593-7035A2D2EE81} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26045024 2019-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {8F53EB86-F72D-43A3-93E6-3759463B9AE4} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {977BDA66-2EB5-4A79-8753-C1097ABD9B03} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {A6D82C03-7657-43D1-A618-DE8754E41F7F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A8237BB1-3F37-4ED3-9660-694AABC70E84} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651632 2017-09-27] (HP Inc. -> HP Inc.)
Task: {B909444B-F84D-45F4-B5E1-1BDAFC9ECDDB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2045832 2019-08-20] (AVAST Software s.r.o. -> AVAST Software)
Task: {C377F8BE-5694-4D34-AA47-4950728193E3} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1403544 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {D0F72333-6950-42B5-B9C9-4AE39EC856A5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1403544 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {E1870F19-5528-4ABA-8DA4-52D7C1FC0A12} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {EC0D5832-6A7B-4B1E-8A1A-1BFE9753697B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14679256 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.88.1
Tcpip\..\Interfaces\{bdedb416-0df6-4da1-b27b-8941cca20a37}: [DhcpNameServer] 192.168.88.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=12454
HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {2B357CF4-0638-4AA7-9968-5C8C64DA0FB6} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {2B357CF4-0638-4AA7-9968-5C8C64DA0FB6} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-2806609648-1026540535-3170127228-1001 -> {2B357CF4-0638-4AA7-9968-5C8C64DA0FB6} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: vvi2v26k.default
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\vvi2v26k.default [2019-09-10]
FF Extension: (ETP Search Volume Study) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\vvi2v26k.default\Extensions\etp-search-volume-study@shield.mozilla.org.xpi [2019-07-03]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\vvi2v26k.default\Extensions\sp@avast.com.xpi [2019-07-03]
FF Extension: (Avast Online Security) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\vvi2v26k.default\Extensions\wrc@avast.com.xpi [2019-01-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-15] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5975136 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [405072 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11153504 2019-08-06] (Microsoft Corporation -> Microsoft Corporation)
R2 esifsvc; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [1705040 2018-03-29] (Intel Corporation -> Intel Corporation)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [323952 2017-09-27] (HP Inc. -> HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
R2 ibtsiva; C:\WINDOWS\System32\ibtsiva.exe [529912 2018-12-21] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [758552 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [719640 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [205968 2017-12-03] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [310880 2018-09-05] (Intel Corporation -> )
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [268128 2018-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [351784 2018-04-19] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2019-01-07] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2019-01-07] (Microsoft Corporation -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4059744 2018-09-05] (Intel Corporation -> Intel® Corporation)
S2 HP Comm Recover; "C:\Program Files\HPCommRecovery\HPCommRecovery.exe" [X]
S2 HPJumpStartBridge; "c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe" [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [209552 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [263008 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [205848 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [61472 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-04] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [282768 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [169408 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112312 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87944 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1030784 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [478096 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [387176 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [69536 2018-03-29] (Intel Corporation -> Intel Corporation)
R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [382880 2018-03-29] (Intel Corporation -> Intel Corporation)
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [942136 2018-04-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\System32\drivers\ibtusb.sys [199192 2018-05-11] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [8723648 2018-10-12] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1026896 2018-04-13] (Realtek Semiconductor Corp. -> Realtek )
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [424384 2018-03-28] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [45096 2018-04-19] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [46632 2018-04-19] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46680 2019-01-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [330936 2019-01-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2019-01-07] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2019-08-06] (HP Inc. -> HP)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-09-10 20:14 - 2019-09-10 20:16 - 000024308 _____ C:\Users\HP\Desktop\FRST.txt
2019-09-10 20:14 - 2019-09-10 20:14 - 000000000 ____D C:\FRST
2019-09-10 20:12 - 2019-09-10 20:12 - 001614848 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2019-09-10 19:33 - 2019-09-10 19:36 - 000000000 ____D C:\AdwCleaner
2019-09-10 19:29 - 2019-09-10 19:29 - 007636680 _____ (Malwarebytes) C:\Users\HP\Desktop\adwcleaner_7.4.1.exe
2019-09-10 18:23 - 2019-09-10 18:24 - 000000000 ____D C:\rsit
2019-09-10 18:23 - 2019-09-10 18:24 - 000000000 ____D C:\Program Files\trend micro
2019-09-10 18:22 - 2019-09-10 18:22 - 001222144 _____ C:\Users\HP\Desktop\RSITx64.exe
2019-09-10 16:35 - 2019-09-10 19:38 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-09-10 16:35 - 2019-09-10 16:34 - 000363912 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-09-10 16:35 - 2019-09-10 16:34 - 000236024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-09-10 16:35 - 2019-09-10 16:34 - 000169408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-09-10 16:27 - 2019-09-10 16:27 - 006035000 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2019-08-22 19:38 - 2019-08-22 19:38 - 000002566 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002560 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002537 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002532 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002525 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-08-20 21:30 - 2019-08-20 21:30 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-08-20 21:30 - 2019-08-20 21:30 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-08-20 21:30 - 2019-08-20 21:30 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-08-20 21:30 - 2019-08-20 21:30 - 002323688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-08-20 21:30 - 2019-08-20 21:30 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2019-08-20 21:30 - 2019-08-20 21:30 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2019-08-20 21:30 - 2019-08-20 21:30 - 000092832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2019-08-20 21:29 - 2019-08-20 21:29 - 020816896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 019011584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 012244992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 002177336 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 002017792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-08-20 21:29 - 2019-08-20 21:29 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-08-20 21:29 - 2019-08-20 21:29 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 026808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 023453696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 012939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 008900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 007871488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 002942976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-08-20 21:28 - 2019-08-20 21:28 - 001290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-08-20 21:28 - 2019-08-20 21:28 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-08-20 21:28 - 2019-08-20 21:28 - 000522104 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-08-20 21:28 - 2019-08-20 21:28 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2019-08-20 21:28 - 2019-08-20 21:28 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-08-20 21:28 - 2019-08-20 21:28 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2019-08-20 21:28 - 2019-08-20 21:28 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe
2019-08-20 21:28 - 2019-08-20 21:28 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Groupinghc.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000058882 _____ C:\WINDOWS\system32\srms.dat
2019-08-20 21:27 - 2019-08-20 21:27 - 006544552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 006441472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 006308016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 005587968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 004628992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 004344832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 003818632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-08-20 21:27 - 2019-08-20 21:27 - 003656704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 002278792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001477432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001465984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001278808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-08-20 21:27 - 2019-08-20 21:27 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001222160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000993792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-08-20 21:27 - 2019-08-20 21:27 - 000806024 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2019-08-20 21:27 - 2019-08-20 21:27 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000783184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000763392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000658944 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-08-20 21:27 - 2019-08-20 21:27 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingDiagSpp.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe
2019-08-20 21:27 - 2019-08-20 21:27 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000173216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000114128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shunimpl.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 022114960 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 006925312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 004737536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-08-20 21:26 - 2019-08-20 21:26 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 002926096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-08-20 21:26 - 2019-08-20 21:26 - 002778760 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 002700792 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 002073232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 001966904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-08-20 21:26 - 2019-08-20 21:26 - 001733120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 001701880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-08-20 21:26 - 2019-08-20 21:26 - 001483872 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 001472568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-08-20 21:26 - 2019-08-20 21:26 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-08-20 21:26 - 2019-08-20 21:26 - 001344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-08-20 21:26 - 2019-08-20 21:26 - 001280000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-08-20 21:26 - 2019-08-20 21:26 - 001180464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000535056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-08-20 21:26 - 2019-08-20 21:26 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000515440 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000398928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000383504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-08-20 21:26 - 2019-08-20 21:26 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-08-20 21:26 - 2019-08-20 21:26 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000121656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\shunimpl.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 009682744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 007884288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 005570968 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 004351656 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 004056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 003635200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 003385856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 003363856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 002842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 002438576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 002421760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001479184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001466880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001321784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001098272 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 001038336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000864568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 000771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000678680 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000586256 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingDiagSpp.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 000262336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000200504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 000152080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdcpw.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 007687784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 003567104 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 003335224 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 002999808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 002767160 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 002593544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 002022096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001674752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001662264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001294488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001260560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 001205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001048376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 001020416 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000895792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000850976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000799784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000794040 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000788480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000764416 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000758688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000732168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000603280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000508968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000482104 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000449576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000444728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000375752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000310072 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000294512 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000278624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000253256 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000248120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000203064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000193040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000189712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000125016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pmem.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2019-08-20 21:24 - 2019-08-20 21:24 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiskSnapshot.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000087056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000032784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000032568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-08-20 20:42 - 2019-08-20 20:43 - 000002363 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-09-10 20:13 - 2018-12-16 20:48 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Mozilla
2019-09-10 20:02 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-09-10 19:52 - 2019-01-31 08:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-09-10 19:43 - 2019-07-15 17:59 - 000000000 ___HD C:\Users\HP\Desktop\.tmp.drivedownload
2019-09-10 19:43 - 2019-01-31 08:37 - 001841644 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-09-10 19:43 - 2019-01-01 21:06 - 000000000 ____D C:\Users\HP\AppData\Local\AVAST Software
2019-09-10 19:43 - 2018-09-15 19:32 - 000753610 _____ C:\WINDOWS\system32\perfh005.dat
2019-09-10 19:43 - 2018-09-15 19:32 - 000163034 _____ C:\WINDOWS\system32\perfc005.dat
2019-09-10 19:43 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-09-10 19:42 - 2019-01-04 21:03 - 000000000 ____D C:\Users\HP\AppData\Local\CrashDumps
2019-09-10 19:39 - 2018-12-03 14:59 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2019-09-10 19:38 - 2019-02-10 15:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-10 19:38 - 2019-01-31 08:43 - 000003990 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-09-10 19:38 - 2019-01-31 08:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-09-10 19:37 - 2018-09-15 08:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-09-10 19:36 - 2018-12-03 15:04 - 000000000 ____D C:\Users\HP\AppData\Roaming\Hewlett-Packard
2019-09-10 19:36 - 2018-12-03 15:02 - 000000000 ____D C:\Users\HP\AppData\Local\Hewlett-Packard
2019-09-10 19:36 - 2018-06-14 09:07 - 000000000 ____D C:\ProgramData\HP
2019-09-10 19:36 - 2018-06-14 09:07 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2019-09-10 19:36 - 2018-06-14 09:07 - 000000000 ____D C:\Program Files (x86)\HP
2019-09-10 17:06 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-09-10 17:06 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-09-10 16:53 - 2019-01-01 20:51 - 000478096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-09-10 16:44 - 2019-02-10 15:21 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-09-10 16:35 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-09-10 16:34 - 2019-02-13 21:52 - 000282768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-09-10 16:34 - 2019-01-01 20:51 - 000387176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-09-10 16:34 - 2019-01-01 20:51 - 000112312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-09-10 16:34 - 2019-01-01 20:51 - 000087944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-09-10 16:34 - 2019-01-01 20:51 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-09-10 16:33 - 2019-01-14 16:47 - 000263008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-09-10 16:33 - 2019-01-04 20:45 - 000205848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-09-10 16:33 - 2019-01-04 20:45 - 000061472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-09-10 16:33 - 2019-01-04 20:45 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-09-10 16:33 - 2019-01-01 20:51 - 001030784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-09-10 16:33 - 2019-01-01 20:51 - 000209552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-09-10 16:27 - 2019-01-31 08:43 - 000004648 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-10 16:27 - 2019-01-31 08:43 - 000004506 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-09-10 16:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-09-10 16:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-08-25 22:19 - 2018-12-18 22:10 - 000000000 ____D C:\UPOL
2019-08-25 21:18 - 2018-12-16 21:44 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-25 21:07 - 2018-12-03 14:59 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
2019-08-25 20:49 - 2019-01-31 08:43 - 000004206 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{0864D2A9-9C5A-4B32-ABB5-FF67B4DA0682}
2019-08-23 00:49 - 2019-01-31 08:23 - 000000000 ____D C:\Users\HP
2019-08-23 00:48 - 2019-07-15 17:32 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-08-23 00:48 - 2019-07-15 17:32 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-08-23 00:48 - 2019-02-14 19:54 - 000003194 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-08-23 00:48 - 2019-02-14 19:54 - 000002238 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-08-23 00:48 - 2019-01-31 08:43 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-08-23 00:48 - 2019-01-31 08:43 - 000002862 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2806609648-1026540535-3170127228-1001
2019-08-23 00:48 - 2019-01-31 08:43 - 000002770 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2019-08-23 00:48 - 2019-01-31 08:43 - 000002502 _____ C:\WINDOWS\System32\Tasks\HPEA3JOBS
2019-08-23 00:48 - 2019-01-31 08:43 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-08-22 19:36 - 2019-02-12 12:47 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-08-22 19:12 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-08-21 12:57 - 2018-12-03 14:59 - 000000000 ___RD C:\Users\HP\3D Objects
2019-08-21 12:57 - 2018-04-28 08:07 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-08-21 12:53 - 2019-01-31 08:15 - 000527464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-08-20 22:18 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-08-20 22:18 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-08-20 22:18 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-08-20 22:17 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Provisioning
2019-08-20 22:17 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-08-20 21:51 - 2018-12-03 16:08 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-08-20 21:43 - 2018-12-03 16:08 - 134272480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-08-20 21:42 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-08-20 20:43 - 2018-12-03 15:05 - 000000000 ___RD C:\Users\HP\OneDrive
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
Ran by HP (administrator) on LAPTOP-0D100ASP (HP HP 250 G6 Notebook PC) (10-09-2019 20:14:52)
Running from C:\Users\HP\Desktop
Loaded Profiles: HP (Available Profiles: HP)
Platform: Windows 10 Home Version 1809 17763.678 (X64) Language: Čeština (Česko)
Default browser: FF
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\IntelCpHeciSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19061.18920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19071.901.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19072.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9279328 2018-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [268680 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [709152 2018-03-22] (HP Inc. -> HP Inc.)
HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46993264 2019-06-27] (Google LLC -> )
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {001F81FD-5162-4C15-87AE-3C9939C591E1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-15] (Google Inc -> Google LLC)
Task: {0D557CED-0E1B-4149-AF34-DB9BF13BFD44} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [103896 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {18C0C5CC-C05F-44C9-ADA6-B77CF4D93CC5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-15] (Google Inc -> Google LLC)
Task: {23F0A6A3-B0C0-42EA-BA95-7554704DA6BF} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [758392 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {3A0B9388-7BEB-43F3-8679-12F5859542D2} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26045024 2019-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {3F083023-C3A1-47C3-9DDE-82BF5E2A39AF} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-09-10] (Adobe Inc. -> Adobe)
Task: {44307B2B-FDD2-4530-9DD9-A9A78D91BCC4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {4614A42D-8294-4B00-AE20-3D3F79F5CC02} - System32\Tasks\HPEA3JOBS => C:\Program [Argument = Files\HP\HP ePrint\hpeprint.exe /CheckJobs]
Task: {4BA2C552-8CB8-4023-9307-0605E54B7C65} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [119664 2017-09-27] (HP Inc. -> HP Inc.)
Task: {4DA4EF47-CB9F-491F-B52D-17AAE3E79102} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [103896 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {51C10930-8DB1-48AE-98B3-B578358B75B5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {584D91DA-B3D9-4714-9488-6DB67B22A7E8} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_HP => F:\Install\Hard Disk Sentinel\AHDSentinel.exe
Task: {590EA1B6-B8FE-43D0-92F3-A458EF51E7E4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4404376 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {59E3EEA6-769D-4B99-B103-9AAAD4F6C0C2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4404376 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {5CD0C1EE-D17E-472A-A944-A8113F9C6422} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [1457720 2019-09-10] (Adobe Inc. -> Adobe)
Task: {645394E9-528F-454D-BFC7-7C8992587995} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3942792 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
Task: {75A024E2-351B-4DDE-9593-7035A2D2EE81} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26045024 2019-08-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {8F53EB86-F72D-43A3-93E6-3759463B9AE4} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {977BDA66-2EB5-4A79-8753-C1097ABD9B03} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems)
Task: {A6D82C03-7657-43D1-A618-DE8754E41F7F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A8237BB1-3F37-4ED3-9660-694AABC70E84} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651632 2017-09-27] (HP Inc. -> HP Inc.)
Task: {B909444B-F84D-45F4-B5E1-1BDAFC9ECDDB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2045832 2019-08-20] (AVAST Software s.r.o. -> AVAST Software)
Task: {C377F8BE-5694-4D34-AA47-4950728193E3} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1403544 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {D0F72333-6950-42B5-B9C9-4AE39EC856A5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1403544 2019-08-22] (Microsoft Corporation -> Microsoft Corporation)
Task: {E1870F19-5528-4ABA-8DA4-52D7C1FC0A12} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {EC0D5832-6A7B-4B1E-8A1A-1BFE9753697B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [14679256 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.88.1
Tcpip\..\Interfaces\{bdedb416-0df6-4da1-b27b-8941cca20a37}: [DhcpNameServer] 192.168.88.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=12454
HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE
SearchScopes: HKLM -> {2B357CF4-0638-4AA7-9968-5C8C64DA0FB6} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {2B357CF4-0638-4AA7-9968-5C8C64DA0FB6} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-2806609648-1026540535-3170127228-1001 -> {2B357CF4-0638-4AA7-9968-5C8C64DA0FB6} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: vvi2v26k.default
FF ProfilePath: C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\vvi2v26k.default [2019-09-10]
FF Extension: (ETP Search Volume Study) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\vvi2v26k.default\Extensions\etp-search-volume-study@shield.mozilla.org.xpi [2019-07-03]
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\vvi2v26k.default\Extensions\sp@avast.com.xpi [2019-07-03]
FF Extension: (Avast Online Security) - C:\Users\HP\AppData\Roaming\Mozilla\Firefox\Profiles\vvi2v26k.default\Extensions\wrc@avast.com.xpi [2019-01-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_255.dll [2019-09-10] (Adobe Inc. -> )
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-09] (Google Inc -> Google, Inc.)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-07-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-07-15] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.)
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5975136 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [405072 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11153504 2019-08-06] (Microsoft Corporation -> Microsoft Corporation)
R2 esifsvc; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [1705040 2018-03-29] (Intel Corporation -> Intel Corporation)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (Hewlett-Packard Company -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [323952 2017-09-27] (HP Inc. -> HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [628768 2017-07-13] (HP Inc. -> HP Inc.)
R2 ibtsiva; C:\WINDOWS\System32\ibtsiva.exe [529912 2018-12-21] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [758552 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [719640 2018-03-02] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [205968 2017-12-03] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [310880 2018-09-05] (Intel Corporation -> )
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [268128 2018-09-27] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [351784 2018-04-19] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2019-01-07] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2019-01-07] (Microsoft Corporation -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4059744 2018-09-05] (Intel Corporation -> Intel® Corporation)
S2 HP Comm Recover; "C:\Program Files\HPCommRecovery\HPCommRecovery.exe" [X]
S2 HPJumpStartBridge; "c:\Program Files (x86)\HP\HP JumpStart Bridge\HPJumpStartBridge.exe" [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [209552 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [263008 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [205848 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [61472 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-04] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [282768 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [169408 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112312 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87944 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1030784 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [478096 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [236024 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [387176 2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [69536 2018-03-29] (Intel Corporation -> Intel Corporation)
R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [382880 2018-03-29] (Intel Corporation -> Intel Corporation)
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [942136 2018-04-26] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\System32\drivers\ibtusb.sys [199192 2018-05-11] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [8723648 2018-10-12] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1026896 2018-04-13] (Realtek Semiconductor Corp. -> Realtek )
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [424384 2018-03-28] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [45096 2018-04-19] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [46632 2018-04-19] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46680 2019-01-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [330936 2019-01-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2019-01-07] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2019-08-06] (HP Inc. -> HP)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-09-10 20:14 - 2019-09-10 20:16 - 000024308 _____ C:\Users\HP\Desktop\FRST.txt
2019-09-10 20:14 - 2019-09-10 20:14 - 000000000 ____D C:\FRST
2019-09-10 20:12 - 2019-09-10 20:12 - 001614848 _____ (Farbar) C:\Users\HP\Desktop\FRST64.exe
2019-09-10 19:33 - 2019-09-10 19:36 - 000000000 ____D C:\AdwCleaner
2019-09-10 19:29 - 2019-09-10 19:29 - 007636680 _____ (Malwarebytes) C:\Users\HP\Desktop\adwcleaner_7.4.1.exe
2019-09-10 18:23 - 2019-09-10 18:24 - 000000000 ____D C:\rsit
2019-09-10 18:23 - 2019-09-10 18:24 - 000000000 ____D C:\Program Files\trend micro
2019-09-10 18:22 - 2019-09-10 18:22 - 001222144 _____ C:\Users\HP\Desktop\RSITx64.exe
2019-09-10 16:35 - 2019-09-10 19:38 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-09-10 16:35 - 2019-09-10 16:34 - 000363912 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-09-10 16:35 - 2019-09-10 16:34 - 000236024 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-09-10 16:35 - 2019-09-10 16:34 - 000169408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-09-10 16:27 - 2019-09-10 16:27 - 006035000 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2019-08-22 19:38 - 2019-08-22 19:38 - 000002566 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002560 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002537 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002532 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002525 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype pro firmy.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000002454 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-08-22 19:38 - 2019-08-22 19:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-08-20 21:30 - 2019-08-20 21:30 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-08-20 21:30 - 2019-08-20 21:30 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-08-20 21:30 - 2019-08-20 21:30 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-08-20 21:30 - 2019-08-20 21:30 - 002323688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-08-20 21:30 - 2019-08-20 21:30 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2019-08-20 21:30 - 2019-08-20 21:30 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2019-08-20 21:30 - 2019-08-20 21:30 - 000092832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2019-08-20 21:29 - 2019-08-20 21:29 - 020816896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 019011584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 012244992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 002177336 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 002017792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-08-20 21:29 - 2019-08-20 21:29 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-08-20 21:29 - 2019-08-20 21:29 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2019-08-20 21:29 - 2019-08-20 21:29 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 026808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 023453696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 012939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 008900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 007871488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 002942976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-08-20 21:28 - 2019-08-20 21:28 - 001290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-08-20 21:28 - 2019-08-20 21:28 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-08-20 21:28 - 2019-08-20 21:28 - 000522104 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-08-20 21:28 - 2019-08-20 21:28 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2019-08-20 21:28 - 2019-08-20 21:28 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-08-20 21:28 - 2019-08-20 21:28 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2019-08-20 21:28 - 2019-08-20 21:28 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe
2019-08-20 21:28 - 2019-08-20 21:28 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Groupinghc.dll
2019-08-20 21:28 - 2019-08-20 21:28 - 000058882 _____ C:\WINDOWS\system32\srms.dat
2019-08-20 21:27 - 2019-08-20 21:27 - 006544552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 006441472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 006308016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 005587968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 004628992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 004344832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 003818632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-08-20 21:27 - 2019-08-20 21:27 - 003656704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 002278792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001477432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001465984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001278808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-08-20 21:27 - 2019-08-20 21:27 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 001222160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000993792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-08-20 21:27 - 2019-08-20 21:27 - 000806024 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe
2019-08-20 21:27 - 2019-08-20 21:27 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000783184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000763392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000658944 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-08-20 21:27 - 2019-08-20 21:27 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingDiagSpp.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe
2019-08-20 21:27 - 2019-08-20 21:27 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000173216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000114128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2019-08-20 21:27 - 2019-08-20 21:27 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shunimpl.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 022114960 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 006925312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 004737536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-08-20 21:26 - 2019-08-20 21:26 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 002926096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-08-20 21:26 - 2019-08-20 21:26 - 002778760 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 002700792 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 002073232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 001966904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-08-20 21:26 - 2019-08-20 21:26 - 001733120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 001701880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-08-20 21:26 - 2019-08-20 21:26 - 001483872 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 001472568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-08-20 21:26 - 2019-08-20 21:26 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-08-20 21:26 - 2019-08-20 21:26 - 001344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-08-20 21:26 - 2019-08-20 21:26 - 001280000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-08-20 21:26 - 2019-08-20 21:26 - 001180464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000535056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-08-20 21:26 - 2019-08-20 21:26 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000515440 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000398928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000383504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-08-20 21:26 - 2019-08-20 21:26 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-08-20 21:26 - 2019-08-20 21:26 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000121656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-08-20 21:26 - 2019-08-20 21:26 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\shunimpl.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 009682744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 007884288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 005570968 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 004351656 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 004056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 003635200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 003385856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 003363856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 002842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 002438576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 002421760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001479184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001466880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001321784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001098272 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 001038336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000864568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 000771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000678680 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000586256 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingDiagSpp.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 000262336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000200504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2019-08-20 21:25 - 2019-08-20 21:25 - 000152080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2019-08-20 21:25 - 2019-08-20 21:25 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-08-20 21:25 - 2019-08-20 21:25 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdcpw.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 007687784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 003567104 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 003335224 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 002999808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 002767160 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 002593544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 002022096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001674752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001662264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001294488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001260560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 001205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001048376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 001020416 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 001004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000895792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000850976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000799784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000794040 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000788480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000764416 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000758688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000732168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000603280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000508968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000482104 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000449576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000444728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000375752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000310072 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000294512 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000278624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000253256 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000248120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000203064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000193040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000189712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000125016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pmem.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2019-08-20 21:24 - 2019-08-20 21:24 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiskSnapshot.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000087056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2019-08-20 21:24 - 2019-08-20 21:24 - 000032784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000032568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys
2019-08-20 21:24 - 2019-08-20 21:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-08-20 21:24 - 2019-08-20 21:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-08-20 20:42 - 2019-08-20 20:43 - 000002363 _____ C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-09-10 20:13 - 2018-12-16 20:48 - 000000000 ____D C:\Users\HP\AppData\LocalLow\Mozilla
2019-09-10 20:02 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-09-10 19:52 - 2019-01-31 08:15 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-09-10 19:43 - 2019-07-15 17:59 - 000000000 ___HD C:\Users\HP\Desktop\.tmp.drivedownload
2019-09-10 19:43 - 2019-01-31 08:37 - 001841644 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-09-10 19:43 - 2019-01-01 21:06 - 000000000 ____D C:\Users\HP\AppData\Local\AVAST Software
2019-09-10 19:43 - 2018-09-15 19:32 - 000753610 _____ C:\WINDOWS\system32\perfh005.dat
2019-09-10 19:43 - 2018-09-15 19:32 - 000163034 _____ C:\WINDOWS\system32\perfc005.dat
2019-09-10 19:43 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-09-10 19:42 - 2019-01-04 21:03 - 000000000 ____D C:\Users\HP\AppData\Local\CrashDumps
2019-09-10 19:39 - 2018-12-03 14:59 - 000000000 __SHD C:\Users\HP\IntelGraphicsProfiles
2019-09-10 19:38 - 2019-02-10 15:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-09-10 19:38 - 2019-01-31 08:43 - 000003990 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-09-10 19:38 - 2019-01-31 08:43 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-09-10 19:37 - 2018-09-15 08:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-09-10 19:36 - 2018-12-03 15:04 - 000000000 ____D C:\Users\HP\AppData\Roaming\Hewlett-Packard
2019-09-10 19:36 - 2018-12-03 15:02 - 000000000 ____D C:\Users\HP\AppData\Local\Hewlett-Packard
2019-09-10 19:36 - 2018-06-14 09:07 - 000000000 ____D C:\ProgramData\HP
2019-09-10 19:36 - 2018-06-14 09:07 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2019-09-10 19:36 - 2018-06-14 09:07 - 000000000 ____D C:\Program Files (x86)\HP
2019-09-10 17:06 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-09-10 17:06 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-09-10 16:53 - 2019-01-01 20:51 - 000478096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-09-10 16:44 - 2019-02-10 15:21 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-09-10 16:35 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-09-10 16:34 - 2019-02-13 21:52 - 000282768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-09-10 16:34 - 2019-01-01 20:51 - 000387176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-09-10 16:34 - 2019-01-01 20:51 - 000112312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-09-10 16:34 - 2019-01-01 20:51 - 000087944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-09-10 16:34 - 2019-01-01 20:51 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-09-10 16:33 - 2019-01-14 16:47 - 000263008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-09-10 16:33 - 2019-01-04 20:45 - 000205848 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-09-10 16:33 - 2019-01-04 20:45 - 000061472 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-09-10 16:33 - 2019-01-04 20:45 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-09-10 16:33 - 2019-01-01 20:51 - 001030784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-09-10 16:33 - 2019-01-01 20:51 - 000209552 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-09-10 16:27 - 2019-01-31 08:43 - 000004648 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-09-10 16:27 - 2019-01-31 08:43 - 000004506 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-09-10 16:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-09-10 16:27 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-08-25 22:19 - 2018-12-18 22:10 - 000000000 ____D C:\UPOL
2019-08-25 21:18 - 2018-12-16 21:44 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-25 21:07 - 2018-12-03 14:59 - 000000000 ____D C:\Users\HP\AppData\Local\Packages
2019-08-25 20:49 - 2019-01-31 08:43 - 000004206 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{0864D2A9-9C5A-4B32-ABB5-FF67B4DA0682}
2019-08-23 00:49 - 2019-01-31 08:23 - 000000000 ____D C:\Users\HP
2019-08-23 00:48 - 2019-07-15 17:32 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-08-23 00:48 - 2019-07-15 17:32 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-08-23 00:48 - 2019-02-14 19:54 - 000003194 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-08-23 00:48 - 2019-02-14 19:54 - 000002238 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-08-23 00:48 - 2019-01-31 08:43 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-08-23 00:48 - 2019-01-31 08:43 - 000002862 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2806609648-1026540535-3170127228-1001
2019-08-23 00:48 - 2019-01-31 08:43 - 000002770 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2019-08-23 00:48 - 2019-01-31 08:43 - 000002502 _____ C:\WINDOWS\System32\Tasks\HPEA3JOBS
2019-08-23 00:48 - 2019-01-31 08:43 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-08-22 19:36 - 2019-02-12 12:47 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-08-22 19:12 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-08-21 12:57 - 2018-12-03 14:59 - 000000000 ___RD C:\Users\HP\3D Objects
2019-08-21 12:57 - 2018-04-28 08:07 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-08-21 12:53 - 2019-01-31 08:15 - 000527464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-08-20 22:18 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-08-20 22:18 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-08-20 22:18 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-08-20 22:17 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Provisioning
2019-08-20 22:17 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-08-20 21:51 - 2018-12-03 16:08 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-08-20 21:43 - 2018-12-03 16:08 - 134272480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-08-20 21:42 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-08-20 20:43 - 2018-12-03 15:05 - 000000000 ___RD C:\Users\HP\OneDrive
==================== SigCheck ===============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ============================
Re: pomalý počítač
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-09-2019
Ran by HP (10-09-2019 20:17:22)
Running from C:\Users\HP\Desktop
Windows 10 Home Version 1809 17763.678 (X64) (2019-01-31 06:45:49)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2806609648-1026540535-3170127228-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2806609648-1026540535-3170127228-503 - Limited - Disabled)
Guest (S-1-5-21-2806609648-1026540535-3170127228-501 - Limited - Disabled)
HP (S-1-5-21-2806609648-1026540535-3170127228-1001 - Administrator - Enabled) => C:\Users\HP
WDAGUtilityAccount (S-1-5-21-2806609648-1026540535-3170127228-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.7.2388 - AVAST Software)
Backup and Sync from Google (HKLM\...\{768C0072-2FD2-4934-9824-B2A1E81AEA5D}) (Version: 3.45.5545.5747 - Google, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform)
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{cdb5f70f-5107-4613-bf69-15de903b5b5d}) (Version: 5.5.22560 - HP Inc.)
HP JumpStart Bridge (HKLM-x32\...\{3FC961DB-BD36-4D8D-B276-0C456A2BB638}) (Version: 1.4.0.441 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{F213102E-FD30-4E22-AF73-4C682D65FFEE}) (Version: 1.4.441.0 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{4E100CB6-9312-48BC-9DC0-4F4D5C338449}) (Version: 12.8.37.11 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{5D308D1F-E37B-431A-8D35-67D16287467D}) (Version: 1.4.28 - HP Inc.)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10207.5567 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1068 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6518 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.0.9.1101 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000050-0200-1029-84C8-B8D95FA3C8C3}) (Version: 20.50.0 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
IrfanView 4.52 (64-bit) (HKLM\...\IrfanView64) (Version: 4.52 - Irfan Skiljan)
Microsoft Office 365 - cs-cz (HKLM\...\o365homepremretail - cs-cz) (Version: 16.0.11328.20392 - Microsoft Corporation)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.11328.20392 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\...\OneDriveSetup.exe) (Version: 19.123.0624.0005 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Mozilla Firefox 69.0 (x64 cs) (HKLM\...\Mozilla Firefox 69.0 (x64 cs)) (Version: 69.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0.1 - Mozilla)
NEF to JPG (HKLM-x32\...\{13D87B39-2A3B-4675-A0D9-B8B01EA2F8E3}_is1) (Version: - neftojpg.com)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11328.20392 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20392 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20392 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.11328.20392 - Microsoft Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.16299.31241 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.25.119.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8544 - Realtek Semiconductor Corp.)
Spotify (HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\...\Spotify) (Version: 1.0.96.181.gf6bc1b6b - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.5.10.69 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2811.0_x64__343d40qqvtj1t [2018-12-03] (Amazon.com)
Booking.com: Big savings on hotels in 96,000 destinations worldwide -> C:\Program Files\WindowsApps\PricelinePartnerNetwork.Booking.comBigsavingsonhot_1.4.4.0_x64__mgae2k3ys4ra0 [2018-12-03] (Priceline Partner Network)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.8.0.1_neutral__6e5tt8cgb93ep [2019-07-03] (Canon Inc.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.2058.0_x64__rz1tebttyb220 [2019-09-10] (Dolby Laboratories)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.1.0_x64__xbfy0k16fey96 [2019-07-03] (Dropbox Inc.)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2018-12-03] (Fitbit)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2018-12-03] (LinkedIn)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.12124.0_x64__8wekyb3d8bbwe [2019-08-20] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2019-08-06] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.93.478.0_x64__mcm4njqhnhss8 [2019-07-03] (Netflix, Inc.)
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe [2019-08-06] (Microsoft Corporation) [MS Ad]
Power Media Player 14 for HP Consumer PCs with DVD -> C:\Program Files\WindowsApps\CyberLinkCorp.hs.PowerMediaPlayer14forHPConsumerPC_14.2.9528.0_x86__06qsbagp91rvg [2019-01-30] (CYBERLINKCOM CORP)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2806609648-1026540535-3170127228-1001_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-06-27] (Google LLC -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-06-27] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\igfxDTCM.dll [2019-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2019-09-10 19:40 - 2019-09-10 19:40 - 000113664 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_ctypes.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000173568 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_elementtree.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 001800192 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_hashlib.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000032256 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_multiprocessing.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000046080 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_psutil_windows.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000047616 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_socket.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 002230784 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_ssl.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000026112 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_yappi.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000080896 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\bz2.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 006277632 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\cello.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000014848 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\common.time34.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000007680 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\hashobjs_ext.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000301568 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\PIL._imaging.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000169472 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\pyexpat.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 001084416 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\pysqlite2._sqlite.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000548864 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\pythoncom27.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 000137728 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\pywintypes27.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 000010752 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\select.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000020992 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\thumbnails_ext.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000689664 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\unicodedata.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000118784 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\usb_ext.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000128512 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32api.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000438784 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32com.shell.shell.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000011776 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32crypt.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000023040 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32event.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000149504 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32file.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000223232 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32gui.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000048128 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32inet.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000029696 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32pdh.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000027648 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32pipe.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000044032 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32process.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000020480 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32profile.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000136192 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32security.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000026624 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32ts.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000034304 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\windows.conditional.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000038400 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\windows.connectivity.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000073216 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\windows.device_monitor.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000110592 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\windows.volumes.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000020480 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\windows.winwrap.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 001325056 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wx._controls_.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 001489408 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wx._core_.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 001007104 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wx._gdi_.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000103424 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wx._html2.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000916992 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wx._misc_.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 001039872 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wx._windows_.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 003042304 _____ (Python Software Foundation) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\python27.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wxbase30u_net_vc90_x64.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wxbase30u_vc90_x64.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wxmsw30u_adv_vc90_x64.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wxmsw30u_core_vc90_x64.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wxmsw30u_html_vc90_x64.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\...\sharepoint.com -> hxxps://upolomouc-files.sharepoint.com
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-12 01:38 - 2019-01-05 01:16 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2018-12-27 17:31 - 2018-12-27 17:31 - 000000447 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\
HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\HP\Pictures\Indonesia 18 - ukázka\DSC_131.JPG
DNS Servers: 192.168.88.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{9F597D4E-CE32-44B0-A04E-0719E17FDE99}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{FD950114-EEBD-4AEC-91CA-4028CA9B6FE0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11126.20266.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{1A550C77-01AC-4304-8D01-FC8746054811}C:\users\hp\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hp\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{C56892F2-4D1C-4440-A6C8-4489091F61E2}C:\users\hp\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hp\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{362C8F18-2D42-4BB2-A846-38DD7AE651DC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8E25118E-6721-4A2E-B84E-901E5DC70955}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9B32654C-D58C-442A-B7A0-F9887CECB850}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3E62E196-FB4C-4F6D-9189-4DB03466E74F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{13C8B1C6-1ED4-48EB-A988-6FB4F8AB7443}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11126.20266.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E735F7CB-E05E-4A94-A9F9-B9A89A45D508}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{137DBB7F-CFBD-4E01-A2CD-AA5680F6DE79}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0EA044A0-42DF-4F05-A7E2-09D4A7A565F4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B3E34793-E9FE-4654-87AD-AE63AF3B97DD}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9D592F2F-8922-46D7-8B55-20F8D8C183C4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{94411DFC-4186-47B4-94D3-CF018C3D038F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E356641E-7F29-4768-8137-0715ED8A90AC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F40F4CF1-B6F1-4AB5-A12F-E330D170DC3F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{6F7F74AD-ED7B-439D-9C45-B3F2BF6A0739}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{1FD4D133-24FE-4CEE-BCE1-B1595F7B655B}C:\users\hp\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hp\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{3E3FF305-AB1D-44FF-B951-9B83D2122714}C:\users\hp\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hp\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
==================== Restore Points =========================
20-08-2019 20:47:53 Windows Update
10-09-2019 18:51:27 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/10/2019 07:41:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: firefox.exe, verze: 69.0.0.7178, časové razítko: 0x5d6491ca
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000690010
ID chybujícího procesu: 0x1b7c
Čas spuštění chybující aplikace: 0x01d567fedae666fa
Cesta k chybující aplikaci: C:\Program Files\Mozilla Firefox\firefox.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: fbb0522b-754c-4eea-a402-cb97f42a80be
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/10/2019 04:25:01 PM) (Source: HP Comm Recovery) (EventID: 0) (User: )
Description: Zpracování události PowerEvent se nezdařilo. Chyba, ke které došlo: System.IO.IOException: Proces nemůže přistupovat k souboru C:\Windows\Temp\signtool.exe, protože soubor je využíván jiným procesem.
v System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
v System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost)
v System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy)
v System.IO.FileStream..ctor(String path, FileMode mode)
v _HPCommRecovery.Tools.Signtool.ExtractSignTool()
v _HPCommRecovery.Tools.Signtool.Verify(String arg)
v _HPCommRecovery.HPAHAgent.CallAgent()
v _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath)
v _HPCommRecovery.HPAHLogger.NewSession()
v _HPCommRecovery.HPCommRecove....
Error: (09/10/2019 04:24:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1359495750
Error: (09/10/2019 04:24:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1359495750
Error: (09/10/2019 04:24:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/25/2019 08:50:55 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (08/25/2019 08:44:19 PM) (Source: HP Comm Recovery) (EventID: 0) (User: )
Description: Zpracování události PowerEvent se nezdařilo. Chyba, ke které došlo: System.IO.IOException: Proces nemůže přistupovat k souboru C:\Windows\Temp\signtool.exe, protože soubor je využíván jiným procesem.
v System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
v System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost)
v System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy)
v System.IO.FileStream..ctor(String path, FileMode mode)
v _HPCommRecovery.Tools.Signtool.ExtractSignTool()
v _HPCommRecovery.Tools.Signtool.Verify(String arg)
v _HPCommRecovery.HPAHAgent.CallAgent()
v _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath)
v _HPCommRecovery.HPAHLogger.NewSession()
v _HPCommRecovery.HPCommRecove....
Error: (08/23/2019 12:49:52 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 16765
System errors:
=============
Error: (09/10/2019 08:10:47 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-0D100ASP)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-0D100ASP\HP (SID: S-1-5-21-2806609648-1026540535-3170127228-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (09/10/2019 08:10:47 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-0D100ASP)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-0D100ASP\HP (SID: S-1-5-21-2806609648-1026540535-3170127228-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (09/10/2019 08:10:17 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-0D100ASP)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-0D100ASP\HP (SID: S-1-5-21-2806609648-1026540535-3170127228-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (09/10/2019 08:10:17 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-0D100ASP)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-0D100ASP\HP (SID: S-1-5-21-2806609648-1026540535-3170127228-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (09/10/2019 07:42:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba HP Comm Recovery neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (09/10/2019 07:42:51 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.
Error: (09/10/2019 07:38:52 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (09/10/2019 07:38:52 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
CodeIntegrity:
===================================
Date: 2019-09-10 16:40:50.544
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-09-10 16:40:50.539
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-09-10 16:40:50.391
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-09-10 16:40:50.381
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-08-21 12:54:06.564
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-08-21 12:54:06.562
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-08-21 12:54:06.534
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-08-21 12:54:06.532
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: Insyde F.33 12/08/2017
Motherboard: HP 832A
Processor: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz
Percentage of memory in use: 58%
Total physical RAM: 4012.82 MB
Available physical RAM: 1647.94 MB
Total Virtual: 6060.82 MB
Available Virtual: 3389.61 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:914.42 GB) (Free:790.08 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:15.86 GB) (Free:2.28 GB) NTFS ==>[system with boot components (obtained from drive)]
\\?\Volume{96c65c12-d156-4969-a5e6-91614a16ccef}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.41 GB) NTFS
\\?\Volume{e226c26a-1ca6-46c9-a9d2-9568421fee23}\ () (Fixed) (Total:0.25 GB) (Free:0.18 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 9922EF87)
Partition: GPT.
==================== End of Addition.txt ============================
Ran by HP (10-09-2019 20:17:22)
Running from C:\Users\HP\Desktop
Windows 10 Home Version 1809 17763.678 (X64) (2019-01-31 06:45:49)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2806609648-1026540535-3170127228-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2806609648-1026540535-3170127228-503 - Limited - Disabled)
Guest (S-1-5-21-2806609648-1026540535-3170127228-501 - Limited - Disabled)
HP (S-1-5-21-2806609648-1026540535-3170127228-1001 - Administrator - Enabled) => C:\Users\HP
WDAGUtilityAccount (S-1-5-21-2806609648-1026540535-3170127228-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.7.2388 - AVAST Software)
Backup and Sync from Google (HKLM\...\{768C0072-2FD2-4934-9824-B2A1E81AEA5D}) (Version: 3.45.5545.5747 - Google, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform)
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{cdb5f70f-5107-4613-bf69-15de903b5b5d}) (Version: 5.5.22560 - HP Inc.)
HP JumpStart Bridge (HKLM-x32\...\{3FC961DB-BD36-4D8D-B276-0C456A2BB638}) (Version: 1.4.0.441 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{F213102E-FD30-4E22-AF73-4C682D65FFEE}) (Version: 1.4.441.0 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{4E100CB6-9312-48BC-9DC0-4F4D5C338449}) (Version: 12.8.37.11 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{5D308D1F-E37B-431A-8D35-67D16287467D}) (Version: 1.4.28 - HP Inc.)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10207.5567 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1068 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6518 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.0.9.1101 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000050-0200-1029-84C8-B8D95FA3C8C3}) (Version: 20.50.0 - Intel Corporation)
Intel® Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
IrfanView 4.52 (64-bit) (HKLM\...\IrfanView64) (Version: 4.52 - Irfan Skiljan)
Microsoft Office 365 - cs-cz (HKLM\...\o365homepremretail - cs-cz) (Version: 16.0.11328.20392 - Microsoft Corporation)
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.11328.20392 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\...\OneDriveSetup.exe) (Version: 19.123.0624.0005 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Mozilla Firefox 69.0 (x64 cs) (HKLM\...\Mozilla Firefox 69.0 (x64 cs)) (Version: 69.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 63.0.1 - Mozilla)
NEF to JPG (HKLM-x32\...\{13D87B39-2A3B-4675-A0D9-B8B01EA2F8E3}_is1) (Version: - neftojpg.com)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11328.20392 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20392 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20392 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.11328.20392 - Microsoft Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.255 - Google, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.16299.31241 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.25.119.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8544 - Realtek Semiconductor Corp.)
Spotify (HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\...\Spotify) (Version: 1.0.96.181.gf6bc1b6b - Spotify AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.5.10.69 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Packages:
=========
Amazon -> C:\Program Files\WindowsApps\Amazon.com.Amazon_2018.519.2811.0_x64__343d40qqvtj1t [2018-12-03] (Amazon.com)
Booking.com: Big savings on hotels in 96,000 destinations worldwide -> C:\Program Files\WindowsApps\PricelinePartnerNetwork.Booking.comBigsavingsonhot_1.4.4.0_x64__mgae2k3ys4ra0 [2018-12-03] (Priceline Partner Network)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.8.0.1_neutral__6e5tt8cgb93ep [2019-07-03] (Canon Inc.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.2058.0_x64__rz1tebttyb220 [2019-09-10] (Dolby Laboratories)
Dropbox promotion -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_20.4.1.0_x64__xbfy0k16fey96 [2019-07-03] (Dropbox Inc.)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2018-12-03] (Fitbit)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2018-12-03] (LinkedIn)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-13] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.12124.0_x64__8wekyb3d8bbwe [2019-08-20] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2019-08-06] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.93.478.0_x64__mcm4njqhnhss8 [2019-07-03] (Netflix, Inc.)
Pošta a Kalendář -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe [2019-08-06] (Microsoft Corporation) [MS Ad]
Power Media Player 14 for HP Consumer PCs with DVD -> C:\Program Files\WindowsApps\CyberLinkCorp.hs.PowerMediaPlayer14forHPConsumerPC_14.2.9528.0_x86__06qsbagp91rvg [2019-01-30] (CYBERLINKCOM CORP)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2806609648-1026540535-3170127228-1001_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2019-06-27] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-06-27] (Google LLC -> Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2019-06-27] (Google LLC -> Google)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki131191.inf_amd64_d668106cb6f2eae0\igfxDTCM.dll [2019-02-25] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-09-10] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2019-09-10 19:40 - 2019-09-10 19:40 - 000113664 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_ctypes.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000173568 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_elementtree.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 001800192 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_hashlib.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000032256 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_multiprocessing.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000046080 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_psutil_windows.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000047616 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_socket.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 002230784 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_ssl.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000026112 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\_yappi.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000080896 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\bz2.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 006277632 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\cello.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000014848 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\common.time34.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000007680 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\hashobjs_ext.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000301568 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\PIL._imaging.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000169472 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\pyexpat.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 001084416 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\pysqlite2._sqlite.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000548864 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\pythoncom27.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 000137728 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\pywintypes27.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 000010752 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\select.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000020992 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\thumbnails_ext.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000689664 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\unicodedata.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000118784 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\usb_ext.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000128512 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32api.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000438784 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32com.shell.shell.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000011776 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32crypt.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000023040 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32event.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000149504 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32file.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000223232 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32gui.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000048128 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32inet.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000029696 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32pdh.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000027648 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32pipe.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000044032 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32process.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000020480 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32profile.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000136192 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32security.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000026624 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\win32ts.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000034304 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\windows.conditional.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000038400 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\windows.connectivity.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000073216 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\windows.device_monitor.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000110592 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\windows.volumes.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000020480 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\windows.winwrap.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 001325056 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wx._controls_.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 001489408 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wx._core_.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 001007104 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wx._gdi_.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000103424 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wx._html2.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 000916992 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wx._misc_.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 001039872 _____ () [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wx._windows_.pyd
2019-09-10 19:40 - 2019-09-10 19:40 - 003042304 _____ (Python Software Foundation) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\python27.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 000202240 _____ (wxWidgets development team) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wxbase30u_net_vc90_x64.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 002831872 _____ (wxWidgets development team) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wxbase30u_vc90_x64.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 001654784 _____ (wxWidgets development team) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wxmsw30u_adv_vc90_x64.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 006542336 _____ (wxWidgets development team) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wxmsw30u_core_vc90_x64.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 000773632 _____ (wxWidgets development team) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wxmsw30u_html_vc90_x64.dll
2019-09-10 19:40 - 2019-09-10 19:40 - 000137216 _____ (wxWidgets development team) [File not signed] C:\Users\HP\AppData\Local\Temp\_MEI66762\wxmsw30u_webview_vc90_x64.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\...\sharepoint.com -> hxxps://upolomouc-files.sharepoint.com
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2018-04-12 01:38 - 2019-01-05 01:16 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2018-12-27 17:31 - 2018-12-27 17:31 - 000000447 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\
HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\HP\Pictures\Indonesia 18 - ukázka\DSC_131.JPG
DNS Servers: 192.168.88.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKU\S-1-5-21-2806609648-1026540535-3170127228-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{9F597D4E-CE32-44B0-A04E-0719E17FDE99}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{FD950114-EEBD-4AEC-91CA-4028CA9B6FE0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11126.20266.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{1A550C77-01AC-4304-8D01-FC8746054811}C:\users\hp\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hp\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{C56892F2-4D1C-4440-A6C8-4489091F61E2}C:\users\hp\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hp\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{362C8F18-2D42-4BB2-A846-38DD7AE651DC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8E25118E-6721-4A2E-B84E-901E5DC70955}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9B32654C-D58C-442A-B7A0-F9887CECB850}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3E62E196-FB4C-4F6D-9189-4DB03466E74F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{13C8B1C6-1ED4-48EB-A988-6FB4F8AB7443}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11126.20266.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E735F7CB-E05E-4A94-A9F9-B9A89A45D508}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{137DBB7F-CFBD-4E01-A2CD-AA5680F6DE79}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0EA044A0-42DF-4F05-A7E2-09D4A7A565F4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B3E34793-E9FE-4654-87AD-AE63AF3B97DD}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9D592F2F-8922-46D7-8B55-20F8D8C183C4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{94411DFC-4186-47B4-94D3-CF018C3D038F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E356641E-7F29-4768-8137-0715ED8A90AC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F40F4CF1-B6F1-4AB5-A12F-E330D170DC3F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{6F7F74AD-ED7B-439D-9C45-B3F2BF6A0739}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{1FD4D133-24FE-4CEE-BCE1-B1595F7B655B}C:\users\hp\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hp\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{3E3FF305-AB1D-44FF-B951-9B83D2122714}C:\users\hp\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\hp\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
==================== Restore Points =========================
20-08-2019 20:47:53 Windows Update
10-09-2019 18:51:27 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/10/2019 07:41:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: firefox.exe, verze: 69.0.0.7178, časové razítko: 0x5d6491ca
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000690010
ID chybujícího procesu: 0x1b7c
Čas spuštění chybující aplikace: 0x01d567fedae666fa
Cesta k chybující aplikaci: C:\Program Files\Mozilla Firefox\firefox.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: fbb0522b-754c-4eea-a402-cb97f42a80be
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (09/10/2019 04:25:01 PM) (Source: HP Comm Recovery) (EventID: 0) (User: )
Description: Zpracování události PowerEvent se nezdařilo. Chyba, ke které došlo: System.IO.IOException: Proces nemůže přistupovat k souboru C:\Windows\Temp\signtool.exe, protože soubor je využíván jiným procesem.
v System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
v System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost)
v System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy)
v System.IO.FileStream..ctor(String path, FileMode mode)
v _HPCommRecovery.Tools.Signtool.ExtractSignTool()
v _HPCommRecovery.Tools.Signtool.Verify(String arg)
v _HPCommRecovery.HPAHAgent.CallAgent()
v _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath)
v _HPCommRecovery.HPAHLogger.NewSession()
v _HPCommRecovery.HPCommRecove....
Error: (09/10/2019 04:24:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1359495750
Error: (09/10/2019 04:24:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1359495750
Error: (09/10/2019 04:24:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/25/2019 08:50:55 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (08/25/2019 08:44:19 PM) (Source: HP Comm Recovery) (EventID: 0) (User: )
Description: Zpracování události PowerEvent se nezdařilo. Chyba, ke které došlo: System.IO.IOException: Proces nemůže přistupovat k souboru C:\Windows\Temp\signtool.exe, protože soubor je využíván jiným procesem.
v System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath)
v System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost)
v System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy)
v System.IO.FileStream..ctor(String path, FileMode mode)
v _HPCommRecovery.Tools.Signtool.ExtractSignTool()
v _HPCommRecovery.Tools.Signtool.Verify(String arg)
v _HPCommRecovery.HPAHAgent.CallAgent()
v _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath)
v _HPCommRecovery.HPAHLogger.NewSession()
v _HPCommRecovery.HPCommRecove....
Error: (08/23/2019 12:49:52 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 16765
System errors:
=============
Error: (09/10/2019 08:10:47 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-0D100ASP)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-0D100ASP\HP (SID: S-1-5-21-2806609648-1026540535-3170127228-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (09/10/2019 08:10:47 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-0D100ASP)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-0D100ASP\HP (SID: S-1-5-21-2806609648-1026540535-3170127228-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (09/10/2019 08:10:17 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-0D100ASP)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-0D100ASP\HP (SID: S-1-5-21-2806609648-1026540535-3170127228-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (09/10/2019 08:10:17 PM) (Source: DCOM) (EventID: 10016) (User: LAPTOP-0D100ASP)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli LAPTOP-0D100ASP\HP (SID: S-1-5-21-2806609648-1026540535-3170127228-1001) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (09/10/2019 07:42:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba HP Comm Recovery neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (09/10/2019 07:42:51 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Služba Optimalizace doručení přestala během spouštění reagovat.
Error: (09/10/2019 07:38:52 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (09/10/2019 07:38:52 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
CodeIntegrity:
===================================
Date: 2019-09-10 16:40:50.544
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-09-10 16:40:50.539
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-09-10 16:40:50.391
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-09-10 16:40:50.381
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-08-21 12:54:06.564
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-08-21 12:54:06.562
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-08-21 12:54:06.534
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2019-08-21 12:54:06.532
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
BIOS: Insyde F.33 12/08/2017
Motherboard: HP 832A
Processor: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz
Percentage of memory in use: 58%
Total physical RAM: 4012.82 MB
Available physical RAM: 1647.94 MB
Total Virtual: 6060.82 MB
Available Virtual: 3389.61 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:914.42 GB) (Free:790.08 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:15.86 GB) (Free:2.28 GB) NTFS ==>[system with boot components (obtained from drive)]
\\?\Volume{96c65c12-d156-4969-a5e6-91614a16ccef}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.41 GB) NTFS
\\?\Volume{e226c26a-1ca6-46c9-a9d2-9568421fee23}\ () (Fixed) (Total:0.25 GB) (Free:0.18 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 9922EF87)
Partition: GPT.
==================== End of Addition.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 118271
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý počítač
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
C:\Users\HP\AppData\Local\Temp
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {001F81FD-5162-4C15-87AE-3C9939C591E1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-15] (Google Inc -> Google LLC)
Task: {18C0C5CC-C05F-44C9-ADA6-B77CF4D93CC5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-15] (Google Inc -> Google LLC)
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
EmptyTewmp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalý počítač
Fix result of Farbar Recovery Scan Tool (x64) Version: 08-09-2019
Ran by HP (10-09-2019 22:33:21) Run:1
Running from C:\Users\HP\Desktop
Loaded Profiles: HP (Available Profiles: HP)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
C:\Users\HP\AppData\Local\Temp
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {001F81FD-5162-4C15-87AE-3C9939C591E1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-15] (Google Inc -> Google LLC)
Task: {18C0C5CC-C05F-44C9-ADA6-B77CF4D93CC5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-15] (Google Inc -> Google LLC)
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
EmptyTewmp:
End
*****************
Processes closed successfully.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
C:\Users\HP\AppData\Local\Temp => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{001F81FD-5162-4C15-87AE-3C9939C591E1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{001F81FD-5162-4C15-87AE-3C9939C591E1}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{18C0C5CC-C05F-44C9-ADA6-B77CF4D93CC5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{18C0C5CC-C05F-44C9-ADA6-B77CF4D93CC5}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
EmptyTewmp: => Error: No automatic fix found for this entry.
The system needed a reboot.
==== End of Fixlog 22:34:07 ====
Ran by HP (10-09-2019 22:33:21) Run:1
Running from C:\Users\HP\Desktop
Loaded Profiles: HP (Available Profiles: HP)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
C:\Users\HP\AppData\Local\Temp
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {001F81FD-5162-4C15-87AE-3C9939C591E1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-15] (Google Inc -> Google LLC)
Task: {18C0C5CC-C05F-44C9-ADA6-B77CF4D93CC5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-15] (Google Inc -> Google LLC)
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
EmptyTewmp:
End
*****************
Processes closed successfully.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
C:\Users\HP\AppData\Local\Temp => moved successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{001F81FD-5162-4C15-87AE-3C9939C591E1}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{001F81FD-5162-4C15-87AE-3C9939C591E1}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{18C0C5CC-C05F-44C9-ADA6-B77CF4D93CC5}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{18C0C5CC-C05F-44C9-ADA6-B77CF4D93CC5}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
EmptyTewmp: => Error: No automatic fix found for this entry.
The system needed a reboot.
==== End of Fixlog 22:34:07 ====
-
Rudy
- Site Admin
- Příspěvky: 118271
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý počítač
Promiňte, udělal jsem chybu ve skriptu. Částečně bylo smazáno. Ještě spusťte stejným způsobem tento skript:
aby se vyčistily i dočasné soubory. Omlouvám se.Start
CloseProcesses:
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalý počítač
Fix result of Farbar Recovery Scan Tool (x64) Version: 08-09-2019
Ran by HP (11-09-2019 13:42:10) Run:2
Running from C:\Users\HP\Desktop
Loaded Profiles: HP (Available Profiles: HP)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
EmptyTemp:
End
*****************
Processes closed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 118506504 B
Java, Flash, Steam htmlcache => 1335 B
Windows/system/drivers => 808365 B
Edge => 490774 B
Chrome => 0 B
Firefox => 769605047 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 1230744 B
LocalService => 0 B
NetworkService => 3854 B
NetworkService => 0 B
HP => 122435023 B
RecycleBin => 28889894 B
EmptyTemp: => 1003.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 13:43:17 ====
Ran by HP (11-09-2019 13:42:10) Run:2
Running from C:\Users\HP\Desktop
Loaded Profiles: HP (Available Profiles: HP)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
EmptyTemp:
End
*****************
Processes closed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 118506504 B
Java, Flash, Steam htmlcache => 1335 B
Windows/system/drivers => 808365 B
Edge => 490774 B
Chrome => 0 B
Firefox => 769605047 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 1230744 B
LocalService => 0 B
NetworkService => 3854 B
NetworkService => 0 B
HP => 122435023 B
RecycleBin => 28889894 B
EmptyTemp: => 1003.7 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 13:43:17 ====
-
Rudy
- Site Admin
- Příspěvky: 118271
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý počítač
Teď je všechno pryč. Nastala nějaká změna k lepšímu?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalý počítač
Možná nepatrně. Spouštění programů je stále hrozně pomalé.
-
Rudy
- Site Admin
- Příspěvky: 118271
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý počítač
Zkuste defragmentovat systémový disk.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: pomalý počítač
Stále stejný problém. Nemůže být něco s diskem? Když spustím správce úloh, tak svítí červeně a běží na 100%.
-
Rudy
- Site Admin
- Příspěvky: 118271
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: pomalý počítač
Který proces ho nejvíce zatěžuje?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?