Ahoj, prosím vás o kontrolu a prečistenie, spomalený a zahrieva.
Dá sa nejak docieliť trvalý stav, ako je tesne po prečistení JRT-čkom? Lebo vtedy šlape ako hodinky. Stačí keď reštartujem systém a zasa je pomalý ako predtým.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-11-2019
Ran by Pedro (administrator) on DESKTOP-NVJD1LG (LENOVO 20344) (14-11-2019 22:17:18)
Running from C:\Users\Pedro\Desktop
Loaded Profiles: Pedro (Available Profiles: defaultuser0 & Pedro)
Platform: Windows 10 Home Version 1809 17763.864 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(A&H Software House Inc -> A&H Software House, Inc.) C:\Program Files\Luxriot\Luxriot Monitor\VMSWatchdog.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\YMC\ymc.exe
(Logitech Inc -> Logitech) C:\ProgramData\LogiShrd\LogiOptions\Software\Current\LogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:\ProgramData\LogiShrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\NisSrv.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(StagWare) [File not signed] C:\Program Files (x86)\NoteBook FanControl\NbfcService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3961528 2016-11-04] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2179208 2019-08-27] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [9309936 2015-09-10] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [47677240 2019-10-10] (Google LLC -> )
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe [1688872 2007-12-13] (Nero AG -> Nero AG)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\Run: [Unified Remote V3] => C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3187384 2017-12-13] (Unified Intents AB -> Unified Intents AB)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\Run: [Spotify] => C:\Users\Pedro\AppData\Roaming\Spotify\Spotify.exe [21144992 2019-11-14] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\MountPoints2: {81b4c8ed-8878-11e9-b424-e8b1fc0cf016} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.97\Installer\chrmstp.exe [2019-11-11] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {3079691B-2A4C-44D8-AF6F-45E97ECFD909} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {33A01DC2-E3D9-4857-A46B-9CE1B8585E95} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {36640D29-E85B-4262-B733-8EBD10BFDB75} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {5EF62143-5E7B-4D11-8362-A567E09BF1D2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {63AD62E4-9973-4972-9091-47AE22B42F55} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {662DCD39-C11B-47AA-BA0B-449010F553E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-11] (Google Inc -> Google Inc.)
Task: {7D9A14BB-DE3E-4935-AC4F-7C59CFCD9123} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {978B9388-647B-48B6-AEAF-41040AE6DFFD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9C651596-A1CC-468F-9A98-72D135E959DB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {D17FDC10-6084-4D7D-86DC-B4C29A23671E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E484F4EC-E7DC-400A-8D0D-51DCF8855F6A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EB05FDC5-C030-48BC-BA23-0D6AB6D3288E} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3961528 2016-11-04] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {F067FB99-1CA1-4579-B2B1-B5786FD61F15} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe
Task: {F777BDC6-9695-4A67-8E41-B1A90D98B38E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-11] (Google Inc -> Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ac0d6cbe-f5ed-45ea-b2e8-a97d491a4b4e}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-03] (Oracle America, Inc. -> Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2018-03-14] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: knaq84ry.default
FF ProfilePath: C:\Users\Pedro\AppData\Roaming\Mozilla\Firefox\Profiles\knaq84ry.default [2019-11-10]
FF Homepage: Mozilla\Firefox\Profiles\knaq84ry.default -> hxxps://www.google.com/
FF Session Restore: Mozilla\Firefox\Profiles\knaq84ry.default -> is enabled.
FF HKLM\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2017-10-09] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
FF Plugin-x32: Web Components -> C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll [2013-03-04] (HANGZHOU HIKVISION DIGITAL TECHNOLOGY CO.,LTD. -> )
Chrome:
=======
CHR HomePage: Default -> hxxp://google.sk/
CHR DefaultSearchKeyword: Default -> google.sk__
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default [2019-11-14]
CHR Extension: (Prezentácie) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-11]
CHR Extension: (Just Black) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2019-06-05]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2018-12-11]
CHR Extension: (Dokumenty) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-11]
CHR Extension: (Disk Google) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-11]
CHR Extension: (YouTube) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-11]
CHR Extension: (uBlock Origin) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-10-29]
CHR Extension: (Tabuľky) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-11]
CHR Extension: (I don't care about cookies) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2019-10-12]
CHR Extension: (Web Components) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\filcobblndaenakhejinpjdblekilpgn [2018-12-11]
CHR Extension: (Vzdialená plocha Chrome) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-07-20]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-11]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-11-12]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2019-07-26]
CHR Extension: (Google Play) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2018-12-11]
CHR Extension: (Save as PDF) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpdjmbiefanbdgnkcikhllpmjnnllbbc [2018-12-11]
CHR Extension: (Numerics Calculator & Converter) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\liglcienpnkhdajdfmnpbgmpjglonipe [2018-12-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Psykopaint) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2018-12-11]
CHR Extension: (Gmail) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-17]
CHR Extension: (Chrome Media Router) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-26]
CHR Profile: C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\System Profile [2019-10-28]
CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-10-09]
CHR HKU\S-1-5-21-622939137-141225199-2558093129-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-10-09]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\79.0.3945.10\remoting_host.exe [74392 2019-10-24] (Google LLC -> Spoločnosť Google Inc.)
S3 FoxitPhantomService; C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\FoxitConnectedPDFService.exe [1658944 2017-10-29] (Foxit Software Incorporated -> Foxit Software Inc.)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [541896 2018-05-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373688 2017-06-12] (Intel(R) pGFX -> Intel Corporation)
R2 NbfcService; C:\Program Files (x86)\NoteBook FanControl\NbfcService.exe [8704 2018-11-03] (StagWare) [File not signed]
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [447784 2007-12-13] (Nero AG -> Nero AG)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [266424 2016-11-04] (Synaptics Incorporated -> Synaptics Incorporated)
R2 VMSWatchdog; C:\Program Files\Luxriot\Luxriot Monitor\VMSWatchdog.exe [675568 2019-04-23] (A&H Software House Inc -> A&H Software House, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ymc; C:\Program Files\Lenovo\YMC\ymc.exe [49032 2016-12-23] (LENOVO -> Lenovo)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AX88772; C:\WINDOWS\System32\drivers\ax88772.sys [111616 2018-09-15] (Microsoft Windows -> ASIX Electronics Corp.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136720 2018-05-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3485696 2018-09-15] (Microsoft Windows -> Intel Corporation)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [81688 2018-03-03] (Insecure.Com LLC -> Insecure.Com LLC.)
R2 NPF; C:\Program Files\iVMS-4200 Station\iVMS-4200\iVMS-4200 Client\npf64.sys [36600 2015-12-16] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 ROCKEYNT; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [36904 2019-10-29] (Feitian Technologies Co., Ltd. -> Feitian Technologies Co., Ltd.)
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [410880 2015-07-03] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3059440 2015-09-10] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [60088 2016-11-04] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [44976 2018-06-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [28128 2017-12-13] (Unified Intents AB -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-10-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [351968 2019-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-10-29] (Microsoft Windows -> Microsoft Corporation)
R1 WinRing0_1_2_0; C:\Program Files (x86)\NoteBook FanControl\WinRing0x64.sys [14544 2019-02-02] (Noriyuki MIYAZAKI -> OpenLibSys.org)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-11-14 22:17 - 2019-11-14 22:19 - 000023366 _____ C:\Users\Pedro\Desktop\FRST.txt
2019-11-14 22:16 - 2019-11-14 22:16 - 002260480 _____ (Farbar) C:\Users\Pedro\Desktop\FRST64.exe
2019-11-14 21:41 - 2019-11-14 21:41 - 007622344 _____ (Malwarebytes) C:\Users\Pedro\Desktop\adwcleaner_7.4.2.exe
2019-11-13 23:27 - 2019-11-13 23:28 - 013912216 _____ C:\Users\Pedro\Downloads\Lexmark_MB2236_UsersGuide_sk.pdf
2019-11-13 06:50 - 2019-11-13 06:50 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-11-13 06:50 - 2019-11-13 06:50 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-11-13 06:50 - 2019-11-13 06:50 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 023455232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 019014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 012960256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 012258816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 007872000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 006934016 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 006547896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 006318328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 005770240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 005608336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 004873216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 004661760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003906560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003872336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003656792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002918200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 002871824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002699976 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002698752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002628112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002348544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001702600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-11-13 06:49 - 2019-11-13 06:49 - 001677808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001486472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001473296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001346216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-11-13 06:49 - 2019-11-13 06:49 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001267240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-11-13 06:49 - 2019-11-13 06:49 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001183504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001024712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000808272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000773208 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000747536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000661264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000642560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000588816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000542320 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000535080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000481280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000474936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-11-13 06:49 - 2019-11-13 06:49 - 000473832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000465416 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000435512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000427832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000262152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-13 06:49 - 2019-11-13 06:49 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-11-13 06:49 - 2019-11-13 06:49 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000112168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000086744 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000047616 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000023768 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000020144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 022137120 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 009667896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 007700696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 007656072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 005575168 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 005573232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 004413936 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 004049920 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 003576832 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002109960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001966096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 001933408 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001668784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001666440 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001644544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001538560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001294792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001054224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 001050112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001049608 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000888560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000862008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000856424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000811536 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000667664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000536320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000514600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000509968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000462352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000450632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000445752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000389408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000385848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000213304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000198968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000193336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000160272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000152896 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000120352 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000087080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000061480 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-11-03 15:53 - 2019-11-03 16:19 - 2160571387 _____ C:\Users\Pedro\Downloads\Tajny-zivot-mazlicku-2- The.secret.life.of.pets.2.2019.1080p.bluray.cz-sk.dabing.mkv
2019-11-01 20:30 - 2019-11-01 21:33 - 3989583137 _____ C:\Users\Pedro\Downloads\Bohemian.Rhapsody.2018.1080p.BluRay.x264.AC3.5.1.CZ.Dabing.mkv
2019-10-30 22:42 - 2019-10-30 23:09 - 2297071945 _____ C:\Users\Pedro\Downloads\Muzi v cernem Globalni hrozba.Men in Black 4.2019.Cz Dabing.1080p.BluRay.mkv
2019-10-30 06:23 - 2019-10-30 06:23 - 3131634466 _____ C:\WINDOWS\MEMORY.DMP
2019-10-29 22:14 - 2019-10-29 22:14 - 000000000 ____D C:\Users\Pedro\AppData\Roaming\ZWSOFT
2019-10-29 22:14 - 2019-10-29 22:14 - 000000000 ____D C:\Users\Pedro\AppData\Local\ZWSOFT
2019-10-29 22:14 - 2019-10-29 22:14 - 000000000 ____D C:\Program Files\Common Files\Macrovision Shared
2019-10-29 22:13 - 2019-10-29 22:13 - 000001355 _____ C:\Users\Public\Desktop\ZWCAD Architecture 2019 Enu.lnk
2019-10-29 22:13 - 2019-10-29 22:13 - 000001355 _____ C:\ProgramData\Desktop\ZWCAD Architecture 2019 Enu.lnk
2019-10-29 22:13 - 2019-10-29 22:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZWSOFT
2019-10-29 22:13 - 2019-10-29 22:13 - 000000000 ____D C:\Program Files\Common Files\ZWSoft Shared
2019-10-29 22:09 - 2019-10-29 22:12 - 000000000 ____D C:\Program Files\ZWSOFT
2019-10-29 22:09 - 2019-10-29 22:09 - 000036904 _____ (Feitian Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\Rockey4.sys
2019-10-29 22:09 - 2019-10-29 22:09 - 000023592 _____ (Feitian Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\Rockey4USB.sys
2019-10-29 22:09 - 2019-10-29 22:09 - 000007680 _____ C:\WINDOWS\system32\Ry4CoInst.dll
2019-10-29 17:55 - 2019-10-29 17:55 - 000000000 ____D C:\Users\Pedro\Downloads\ZWCAD_Architecture_2019_SP2_ENU_Win64bit
2019-10-29 17:53 - 2019-10-29 18:24 - 3088691200 _____ C:\Users\Pedro\Downloads\ZLOBA KRÁLOVNA _ERNÉ MAGIE 2014 BDRip FULLHD DD5.1 CZ dabing.avi
2019-10-27 23:08 - 2019-10-27 23:08 - 000644944 _____ C:\Users\Pedro\Desktop\file_15_1439448517.pdf
2019-10-27 22:05 - 2019-10-27 22:49 - 000054272 _____ C:\Users\Pedro\Desktop\cestovny_prikaz_tuzemsky.xls
2019-10-22 18:46 - 2019-03-28 07:35 - 000087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vcruntime140_clr0400.dll
2019-10-22 18:46 - 2019-03-28 07:35 - 000083768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vcruntime140_clr0400.dll
2019-10-22 18:45 - 2019-03-28 10:11 - 000029232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2019-10-22 18:45 - 2019-03-28 10:11 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100_clr0400.dll
2019-10-22 18:45 - 2019-03-28 10:09 - 000032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2019-10-22 18:45 - 2019-03-28 10:09 - 000017968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100_clr0400.dll
2019-10-22 18:45 - 2019-03-28 07:35 - 000772176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_clr0400.dll
2019-10-22 18:45 - 2019-03-28 07:35 - 000702400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase_clr0400.dll
2019-10-22 18:45 - 2019-03-28 07:35 - 000622832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp140_clr0400.dll
2019-10-22 18:45 - 2019-03-28 07:35 - 000433448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp140_clr0400.dll
2019-10-22 03:54 - 2019-06-08 18:49 - 537141248 _____ C:\Users\Pedro\Downloads\ZWCAD_Architecture_2019_SP2_ENU_Win64bit.iso
2019-10-21 19:04 - 2019-11-01 21:28 - 000000000 ____D C:\Users\Pedro\Downloads\ONE PUNCH MAN
2019-10-15 20:35 - 2019-10-15 21:02 - 2299099323 _____ C:\Users\Pedro\Downloads\Královna Prokletých (2002, CZ+EN Dabing).mkv
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-11-14 22:18 - 2019-01-21 18:38 - 000000000 ____D C:\FRST
2019-11-14 22:07 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-11-14 22:01 - 2019-10-13 15:04 - 000000557 _____ C:\Users\Pedro\Desktop\JRT.txt
2019-11-14 21:47 - 2019-05-10 21:29 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-11-14 21:47 - 2018-12-11 20:27 - 000000000 __SHD C:\Users\Pedro\IntelGraphicsProfiles
2019-11-14 21:45 - 2018-12-28 08:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-11-14 21:44 - 2018-09-15 07:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-11-14 21:33 - 2018-12-13 21:02 - 000000000 ____D C:\Users\Pedro\AppData\LocalLow\Mozilla
2019-11-14 20:44 - 2019-04-09 23:11 - 000050080 _____ C:\WINDOWS\system32\perfh01B.dat
2019-11-14 20:44 - 2019-04-09 23:11 - 000012186 _____ C:\WINDOWS\system32\perfc01B.dat
2019-11-14 20:44 - 2018-12-28 08:43 - 000884446 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-14 20:44 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-11-14 20:41 - 2018-12-28 08:32 - 000000000 ____D C:\Users\Pedro
2019-11-14 20:40 - 2018-12-28 08:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-11-14 19:50 - 2019-01-29 17:03 - 000000000 ____D C:\Users\Pedro\AppData\Roaming\Spotify
2019-11-14 03:10 - 2019-01-29 17:05 - 000000000 ____D C:\Users\Pedro\AppData\Local\Spotify
2019-11-14 03:08 - 2019-01-21 21:04 - 000000000 ____D C:\ProgramData\Unified Remote
2019-11-14 03:06 - 2018-12-12 15:10 - 000000000 ___RD C:\Users\Pedro\3D Objects
2019-11-14 03:06 - 2018-12-11 19:23 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-11-14 03:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-11-14 03:04 - 2018-12-28 08:27 - 005036856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-11-14 03:00 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-11-13 23:58 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-11-13 23:29 - 2018-12-16 10:43 - 000000000 ____D C:\Users\Pedro\Documents\Fax
2019-11-13 20:31 - 2018-12-11 20:09 - 000000000 ____D C:\Users\Pedro\AppData\Roaming\vlc
2019-11-13 06:54 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-11-12 22:59 - 2018-12-12 00:30 - 000748816 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-11-12 22:26 - 2018-12-12 00:28 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-11-12 22:20 - 2018-12-12 00:27 - 128443096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-11-12 22:20 - 2018-12-11 20:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2019-11-11 21:59 - 2018-12-11 19:59 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-11 00:34 - 2019-02-02 13:06 - 000000000 ____D C:\ProgramData\NbfcService
2019-11-05 00:52 - 2019-05-15 15:17 - 000003458 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-05 00:52 - 2019-05-15 15:17 - 000003334 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-05 00:52 - 2018-12-11 19:59 - 000000000 ____D C:\Program Files (x86)\Google
2019-11-03 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-11-02 10:19 - 2018-12-28 08:45 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-622939137-141225199-2558093129-1001
2019-11-02 10:19 - 2018-12-28 08:32 - 000002351 _____ C:\Users\Pedro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-11-02 10:19 - 2018-12-11 19:25 - 000000000 ___RD C:\Users\Pedro\OneDrive
2019-11-01 15:54 - 2019-09-05 19:16 - 000000000 ____D C:\Users\Pedro\Downloads\OUTLANDER
2019-10-30 06:41 - 2018-12-12 15:21 - 000000000 ____D C:\ProgramData\Packages
2019-10-30 06:31 - 2019-02-04 00:47 - 000000000 ____D C:\WINDOWS\Minidump
2019-10-29 05:11 - 2018-12-12 06:15 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-10-28 21:04 - 2019-01-11 19:26 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-10-28 21:04 - 2019-01-11 19:26 - 000000823 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-10-28 21:04 - 2019-01-11 19:26 - 000000823 _____ C:\ProgramData\Desktop\CCleaner.lnk
2019-10-27 22:49 - 2018-12-11 19:23 - 000000000 ____D C:\Users\Pedro\AppData\Local\Packages
==================== Files in the root of some directories ========
2019-10-01 21:27 - 2019-09-05 09:18 - 011902976 _____ () C:\Program Files\BMC CONFIG.exe
2018-12-21 11:33 - 2018-10-25 17:31 - 011427840 _____ () C:\Program Files\BMC-CONFIG-1.exe
2018-12-12 15:47 - 2019-10-05 10:28 - 000000132 _____ () C:\Users\Pedro\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2019-05-03 19:41 - 2019-05-03 19:41 - 000000218 _____ () C:\Users\Pedro\AppData\Local\recently-used.xbel
2018-12-29 23:29 - 2019-02-13 20:22 - 000007603 _____ () C:\Users\Pedro\AppData\Local\Resmon.ResmonCfg
2019-05-03 16:33 - 2019-05-03 16:33 - 000000000 _____ () C:\Users\Pedro\AppData\Local\zenmap.exe.log
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Skontrolovať, vyčistiť, prosím
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Skontrolovať, vyčistiť, prosím
- Přílohy
-
- Addition.rar
- (11.79 KiB) Staženo 73 x
Re: Skontrolovať, vyčistiť, prosím
Potom ADW Cleaner čistenie:
# -------------------------------
# Malwarebytes AdwCleaner 7.4.2.0
# -------------------------------
# Build: 10-21-2019
# Database: 2019-10-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-14-2019
# Duration: 00:00:04
# OS: Windows 10 Home
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
Deleted nladljmabboanhihfkjacnnkgjhnokhj
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1902 octets] - [08/01/2019 08:58:57]
AdwCleaner[C00].txt - [1956 octets] - [08/01/2019 08:59:41]
AdwCleaner[S01].txt - [1384 octets] - [12/01/2019 10:27:57]
AdwCleaner[C01].txt - [1550 octets] - [12/01/2019 10:28:34]
AdwCleaner[S02].txt - [1506 octets] - [16/01/2019 17:23:51]
AdwCleaner[C02].txt - [1672 octets] - [16/01/2019 17:25:21]
AdwCleaner[S03].txt - [1628 octets] - [16/01/2019 17:31:07]
AdwCleaner[S04].txt - [1689 octets] - [17/01/2019 22:15:21]
AdwCleaner[C04].txt - [1855 octets] - [17/01/2019 22:15:55]
AdwCleaner[S05].txt - [1811 octets] - [21/01/2019 18:58:25]
AdwCleaner[C05].txt - [1977 octets] - [21/01/2019 18:59:17]
AdwCleaner[S06].txt - [1953 octets] - [18/03/2019 22:20:42]
AdwCleaner[C06].txt - [2096 octets] - [18/03/2019 22:22:08]
AdwCleaner[S07].txt - [2134 octets] - [12/04/2019 08:42:26]
AdwCleaner[C07].txt - [2257 octets] - [12/04/2019 08:43:47]
AdwCleaner[S08].txt - [2197 octets] - [17/04/2019 20:08:49]
AdwCleaner[C08].txt - [2340 octets] - [17/04/2019 20:09:18]
AdwCleaner[S09].txt - [2319 octets] - [27/04/2019 06:16:50]
AdwCleaner[C09].txt - [2462 octets] - [27/04/2019 06:17:49]
AdwCleaner[S10].txt - [2441 octets] - [09/05/2019 00:13:21]
AdwCleaner[C10].txt - [2584 octets] - [09/05/2019 00:14:45]
AdwCleaner[S11].txt - [2563 octets] - [09/05/2019 16:02:04]
AdwCleaner[C11].txt - [2706 octets] - [09/05/2019 16:08:20]
AdwCleaner[S12].txt - [2685 octets] - [10/05/2019 17:53:36]
AdwCleaner[C12].txt - [2828 octets] - [10/05/2019 17:54:01]
AdwCleaner[S13].txt - [2795 octets] - [27/05/2019 19:15:46]
AdwCleaner[C13].txt - [2958 octets] - [27/05/2019 19:17:15]
AdwCleaner[S14].txt - [2917 octets] - [03/06/2019 18:13:33]
AdwCleaner[C14].txt - [3080 octets] - [03/06/2019 18:14:31]
AdwCleaner[S15].txt - [3039 octets] - [06/06/2019 18:29:10]
AdwCleaner[C15].txt - [3202 octets] - [06/06/2019 18:30:47]
AdwCleaner[S16].txt - [3161 octets] - [13/06/2019 09:48:42]
AdwCleaner[C16].txt - [3324 octets] - [13/06/2019 09:49:12]
AdwCleaner[S17].txt - [3283 octets] - [13/06/2019 10:57:01]
AdwCleaner[S18].txt - [3344 octets] - [20/07/2019 08:53:43]
AdwCleaner[C18].txt - [3507 octets] - [20/07/2019 08:54:13]
AdwCleaner[S19].txt - [3466 octets] - [21/07/2019 12:11:40]
AdwCleaner[S20].txt - [3527 octets] - [08/08/2019 13:03:06]
AdwCleaner[C20].txt - [3690 octets] - [08/08/2019 13:04:26]
AdwCleaner_Debug.log - [88736 octets] - [23/09/2019 18:44:18]
AdwCleaner[S21].txt - [3787 octets] - [23/09/2019 18:44:59]
AdwCleaner[C21].txt - [3952 octets] - [23/09/2019 18:48:29]
AdwCleaner[S22].txt - [3921 octets] - [03/10/2019 22:46:40]
AdwCleaner[C22].txt - [4086 octets] - [03/10/2019 22:47:37]
AdwCleaner[S23].txt - [4043 octets] - [13/10/2019 15:03:40]
AdwCleaner[C23].txt - [4208 octets] - [13/10/2019 15:04:44]
AdwCleaner[S24].txt - [4165 octets] - [29/10/2019 05:14:11]
AdwCleaner[C24].txt - [4330 octets] - [29/10/2019 05:18:55]
AdwCleaner[S25].txt - [4287 octets] - [12/11/2019 22:10:13]
AdwCleaner[C25].txt - [4452 octets] - [12/11/2019 22:18:03]
AdwCleaner[S26].txt - [4409 octets] - [14/11/2019 21:42:26]
AdwCleaner[C26].txt - [4574 octets] - [14/11/2019 21:43:27]
AdwCleaner[S27].txt - [4531 octets] - [14/11/2019 22:31:46]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C27].txt ##########
# -------------------------------
# Malwarebytes AdwCleaner 7.4.2.0
# -------------------------------
# Build: 10-21-2019
# Database: 2019-10-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-14-2019
# Duration: 00:00:04
# OS: Windows 10 Home
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
Deleted nladljmabboanhihfkjacnnkgjhnokhj
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1902 octets] - [08/01/2019 08:58:57]
AdwCleaner[C00].txt - [1956 octets] - [08/01/2019 08:59:41]
AdwCleaner[S01].txt - [1384 octets] - [12/01/2019 10:27:57]
AdwCleaner[C01].txt - [1550 octets] - [12/01/2019 10:28:34]
AdwCleaner[S02].txt - [1506 octets] - [16/01/2019 17:23:51]
AdwCleaner[C02].txt - [1672 octets] - [16/01/2019 17:25:21]
AdwCleaner[S03].txt - [1628 octets] - [16/01/2019 17:31:07]
AdwCleaner[S04].txt - [1689 octets] - [17/01/2019 22:15:21]
AdwCleaner[C04].txt - [1855 octets] - [17/01/2019 22:15:55]
AdwCleaner[S05].txt - [1811 octets] - [21/01/2019 18:58:25]
AdwCleaner[C05].txt - [1977 octets] - [21/01/2019 18:59:17]
AdwCleaner[S06].txt - [1953 octets] - [18/03/2019 22:20:42]
AdwCleaner[C06].txt - [2096 octets] - [18/03/2019 22:22:08]
AdwCleaner[S07].txt - [2134 octets] - [12/04/2019 08:42:26]
AdwCleaner[C07].txt - [2257 octets] - [12/04/2019 08:43:47]
AdwCleaner[S08].txt - [2197 octets] - [17/04/2019 20:08:49]
AdwCleaner[C08].txt - [2340 octets] - [17/04/2019 20:09:18]
AdwCleaner[S09].txt - [2319 octets] - [27/04/2019 06:16:50]
AdwCleaner[C09].txt - [2462 octets] - [27/04/2019 06:17:49]
AdwCleaner[S10].txt - [2441 octets] - [09/05/2019 00:13:21]
AdwCleaner[C10].txt - [2584 octets] - [09/05/2019 00:14:45]
AdwCleaner[S11].txt - [2563 octets] - [09/05/2019 16:02:04]
AdwCleaner[C11].txt - [2706 octets] - [09/05/2019 16:08:20]
AdwCleaner[S12].txt - [2685 octets] - [10/05/2019 17:53:36]
AdwCleaner[C12].txt - [2828 octets] - [10/05/2019 17:54:01]
AdwCleaner[S13].txt - [2795 octets] - [27/05/2019 19:15:46]
AdwCleaner[C13].txt - [2958 octets] - [27/05/2019 19:17:15]
AdwCleaner[S14].txt - [2917 octets] - [03/06/2019 18:13:33]
AdwCleaner[C14].txt - [3080 octets] - [03/06/2019 18:14:31]
AdwCleaner[S15].txt - [3039 octets] - [06/06/2019 18:29:10]
AdwCleaner[C15].txt - [3202 octets] - [06/06/2019 18:30:47]
AdwCleaner[S16].txt - [3161 octets] - [13/06/2019 09:48:42]
AdwCleaner[C16].txt - [3324 octets] - [13/06/2019 09:49:12]
AdwCleaner[S17].txt - [3283 octets] - [13/06/2019 10:57:01]
AdwCleaner[S18].txt - [3344 octets] - [20/07/2019 08:53:43]
AdwCleaner[C18].txt - [3507 octets] - [20/07/2019 08:54:13]
AdwCleaner[S19].txt - [3466 octets] - [21/07/2019 12:11:40]
AdwCleaner[S20].txt - [3527 octets] - [08/08/2019 13:03:06]
AdwCleaner[C20].txt - [3690 octets] - [08/08/2019 13:04:26]
AdwCleaner_Debug.log - [88736 octets] - [23/09/2019 18:44:18]
AdwCleaner[S21].txt - [3787 octets] - [23/09/2019 18:44:59]
AdwCleaner[C21].txt - [3952 octets] - [23/09/2019 18:48:29]
AdwCleaner[S22].txt - [3921 octets] - [03/10/2019 22:46:40]
AdwCleaner[C22].txt - [4086 octets] - [03/10/2019 22:47:37]
AdwCleaner[S23].txt - [4043 octets] - [13/10/2019 15:03:40]
AdwCleaner[C23].txt - [4208 octets] - [13/10/2019 15:04:44]
AdwCleaner[S24].txt - [4165 octets] - [29/10/2019 05:14:11]
AdwCleaner[C24].txt - [4330 octets] - [29/10/2019 05:18:55]
AdwCleaner[S25].txt - [4287 octets] - [12/11/2019 22:10:13]
AdwCleaner[C25].txt - [4452 octets] - [12/11/2019 22:18:03]
AdwCleaner[S26].txt - [4409 octets] - [14/11/2019 21:42:26]
AdwCleaner[C26].txt - [4574 octets] - [14/11/2019 21:43:27]
AdwCleaner[S27].txt - [4531 octets] - [14/11/2019 22:31:46]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C27].txt ##########
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Skontrolovať, vyčistiť, prosím
Zdravím!
Dejte nové logy FRST+Addition.
Dejte nové logy FRST+Addition.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Skontrolovať, vyčistiť, prosím
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 25-11-2019 01
Ran by Pedro (administrator) on DESKTOP-NVJD1LG (LENOVO 20344) (26-11-2019 22:30:31)
Running from C:\Users\Pedro\Desktop
Loaded Profiles: Pedro (Available Profiles: defaultuser0 & Pedro)
Platform: Windows 10 Home Version 1809 17763.864 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(A&H Software House Inc -> A&H Software House, Inc.) C:\Program Files\Luxriot\Luxriot Monitor\VMSWatchdog.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Spoločnosť Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\79.0.3945.10\remoting_host.exe
(Google LLC -> Spoločnosť Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\79.0.3945.10\remoting_host.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\YMC\ymc.exe
(Logitech Inc -> Logitech) C:\ProgramData\LogiShrd\LogiOptions\Software\Current\LogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:\ProgramData\LogiShrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\NisSrv.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(StagWare) [File not signed] C:\Program Files (x86)\NoteBook FanControl\NbfcService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3961528 2016-11-04] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2179208 2019-08-27] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [9309936 2015-09-10] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [47774856 2019-10-24] (Google LLC -> )
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe [1688872 2007-12-13] (Nero AG -> Nero AG)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\Run: [Unified Remote V3] => C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3187384 2017-12-13] (Unified Intents AB -> Unified Intents AB)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\Run: [Spotify] => C:\Users\Pedro\AppData\Roaming\Spotify\Spotify.exe [21141408 2019-11-23] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\MountPoints2: {81b4c8ed-8878-11e9-b424-e8b1fc0cf016} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\Installer\chrmstp.exe [2019-11-19] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {3079691B-2A4C-44D8-AF6F-45E97ECFD909} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {33A01DC2-E3D9-4857-A46B-9CE1B8585E95} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {36640D29-E85B-4262-B733-8EBD10BFDB75} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {5EF62143-5E7B-4D11-8362-A567E09BF1D2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {63AD62E4-9973-4972-9091-47AE22B42F55} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {662DCD39-C11B-47AA-BA0B-449010F553E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-11] (Google Inc -> Google Inc.)
Task: {7D9A14BB-DE3E-4935-AC4F-7C59CFCD9123} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {978B9388-647B-48B6-AEAF-41040AE6DFFD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9C651596-A1CC-468F-9A98-72D135E959DB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {D17FDC10-6084-4D7D-86DC-B4C29A23671E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E484F4EC-E7DC-400A-8D0D-51DCF8855F6A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EB05FDC5-C030-48BC-BA23-0D6AB6D3288E} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3961528 2016-11-04] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {F067FB99-1CA1-4579-B2B1-B5786FD61F15} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe
Task: {F777BDC6-9695-4A67-8E41-B1A90D98B38E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-11] (Google Inc -> Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ac0d6cbe-f5ed-45ea-b2e8-a97d491a4b4e}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-03] (Oracle America, Inc. -> Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2018-03-14] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: knaq84ry.default
FF ProfilePath: C:\Users\Pedro\AppData\Roaming\Mozilla\Firefox\Profiles\knaq84ry.default [2019-11-21]
FF Homepage: Mozilla\Firefox\Profiles\knaq84ry.default -> hxxps://www.google.com/
FF Session Restore: Mozilla\Firefox\Profiles\knaq84ry.default -> is enabled.
FF HKLM\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2017-10-09] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
FF Plugin-x32: Web Components -> C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll [2013-03-04] (HANGZHOU HIKVISION DIGITAL TECHNOLOGY CO.,LTD. -> )
Chrome:
=======
CHR HomePage: Default -> hxxp://google.sk/
CHR DefaultSearchKeyword: Default -> google.sk__
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default [2019-11-26]
CHR Extension: (Prezentácie) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-11]
CHR Extension: (Just Black) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2019-06-05]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2018-12-11]
CHR Extension: (Dokumenty) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-11]
CHR Extension: (Disk Google) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-11]
CHR Extension: (YouTube) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-11]
CHR Extension: (uBlock Origin) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-10-29]
CHR Extension: (Tabuľky) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-11]
CHR Extension: (I don't care about cookies) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2019-11-17]
CHR Extension: (Web Components) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\filcobblndaenakhejinpjdblekilpgn [2018-12-11]
CHR Extension: (Vzdialená plocha Chrome) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-07-20]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-11]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-11-20]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2019-07-26]
CHR Extension: (Google Play) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2018-12-11]
CHR Extension: (Save as PDF) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpdjmbiefanbdgnkcikhllpmjnnllbbc [2018-12-11]
CHR Extension: (Numerics Calculator & Converter) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\liglcienpnkhdajdfmnpbgmpjglonipe [2018-12-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Psykopaint) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2018-12-11]
CHR Extension: (Gmail) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-17]
CHR Extension: (Chrome Media Router) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-26]
CHR Profile: C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\System Profile [2019-10-28]
CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-10-09]
CHR HKU\S-1-5-21-622939137-141225199-2558093129-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-10-09]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\79.0.3945.10\remoting_host.exe [74392 2019-10-24] (Google LLC -> Spoločnosť Google Inc.)
R2 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [144784 2018-04-18] (Canon Inc. -> CANON INC.)
S3 FoxitPhantomService; C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\FoxitConnectedPDFService.exe [1658944 2017-10-29] (Foxit Software Incorporated -> Foxit Software Inc.)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [541896 2018-05-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373688 2017-06-12] (Intel(R) pGFX -> Intel Corporation)
R2 NbfcService; C:\Program Files (x86)\NoteBook FanControl\NbfcService.exe [8704 2018-11-03] (StagWare) [File not signed]
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [447784 2007-12-13] (Nero AG -> Nero AG)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [266424 2016-11-04] (Synaptics Incorporated -> Synaptics Incorporated)
R2 VMSWatchdog; C:\Program Files\Luxriot\Luxriot Monitor\VMSWatchdog.exe [675568 2019-04-23] (A&H Software House Inc -> A&H Software House, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ymc; C:\Program Files\Lenovo\YMC\ymc.exe [49032 2016-12-23] (LENOVO -> Lenovo)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AX88772; C:\WINDOWS\System32\drivers\ax88772.sys [111616 2018-09-15] (Microsoft Windows -> ASIX Electronics Corp.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136720 2018-05-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3485696 2018-09-15] (Microsoft Windows -> Intel Corporation)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [81688 2018-03-03] (Insecure.Com LLC -> Insecure.Com LLC.)
R2 NPF; C:\Program Files\iVMS-4200 Station\iVMS-4200\iVMS-4200 Client\npf64.sys [36600 2015-12-16] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 ROCKEYNT; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [36904 2019-10-29] (Feitian Technologies Co., Ltd. -> Feitian Technologies Co., Ltd.)
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [410880 2015-07-03] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3059440 2015-09-10] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [60088 2016-11-04] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [44976 2018-06-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [28128 2017-12-13] (Unified Intents AB -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-10-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [351968 2019-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-10-29] (Microsoft Windows -> Microsoft Corporation)
R1 WinRing0_1_2_0; C:\Program Files (x86)\NoteBook FanControl\WinRing0x64.sys [14544 2019-02-02] (Noriyuki MIYAZAKI -> OpenLibSys.org)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-11-26 22:30 - 2019-11-26 22:30 - 000000000 ____D C:\Users\Pedro\Desktop\FRST-OlderVersion
2019-11-23 15:05 - 2019-11-23 15:05 - 016603035 _____ C:\Users\Pedro\Downloads\Gorenje 729412.pdf
2019-11-22 17:12 - 2019-11-22 17:44 - 2899440359 _____ C:\Users\Pedro\Downloads\The.Lion.King.2019.1080p.BluRay.H264.AAC-CZ.Dabing.mkv
2019-11-21 22:01 - 2019-11-21 22:02 - 000000000 ____D C:\Users\Pedro\Downloads\Di1610bh160Vista32G108T100
2019-11-21 22:00 - 2019-11-21 22:00 - 028991297 _____ C:\Users\Pedro\Downloads\Di1610bh160Vista32G108T100.zip
2019-11-21 21:10 - 2019-11-21 21:10 - 000001378 _____ C:\Users\Pedro\Desktop\Organizery zoznam vyplne.xlsx – odkaz.lnk
2019-11-20 16:58 - 2019-11-20 16:58 - 000000477 _____ C:\Users\Pedro\Documents\IMG_20191120_0004.txt
2019-11-20 14:52 - 2019-11-20 14:52 - 000002561 _____ C:\Users\Pedro\Documents\IMG_20191120_0002.txt
2019-11-20 14:51 - 2019-11-20 14:52 - 000594755 _____ C:\Users\Pedro\Documents\IMG_20191120_0001.pdf
2019-11-20 14:51 - 2019-11-20 14:51 - 000000000 ____D C:\Users\Pedro\AppData\Roaming\Canon
2019-11-20 14:50 - 2019-11-20 14:50 - 000000000 ___HD C:\Program Files\CanonBJ
2019-11-20 14:50 - 2019-11-20 14:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2019-11-20 14:50 - 2019-11-20 14:50 - 000000000 ____D C:\Program Files (x86)\Canon
2019-11-20 14:50 - 2018-03-12 08:56 - 000355328 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNQ_EXL.dll
2019-11-20 14:50 - 2017-12-04 15:06 - 000089600 _____ C:\WINDOWS\SysWOW64\CNQ1913D.TBL
2019-11-20 14:50 - 2017-11-09 20:11 - 000393256 _____ C:\WINDOWS\SysWOW64\CNQ_537N.DAT
2019-11-20 14:50 - 2008-08-25 18:02 - 000015872 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNHMCA.dll
2019-11-20 14:48 - 2019-11-20 14:49 - 060372128 _____ C:\Users\Pedro\Desktop\sc68-win-lide300-1_00-ea34_2.exe
2019-11-20 14:30 - 2019-11-20 14:52 - 000000000 ___HD C:\ProgramData\CanonIJScan
2019-11-20 14:28 - 2018-03-12 08:56 - 000388608 _____ (CANON INC.) C:\WINDOWS\system32\CNQ_EXL.dll
2019-11-20 14:28 - 2017-12-04 15:06 - 000089600 _____ C:\WINDOWS\system32\CNQ1913D.TBL
2019-11-20 14:28 - 2017-11-09 20:11 - 000393256 _____ C:\WINDOWS\system32\CNQ_537N.DAT
2019-11-20 14:28 - 2017-10-12 19:13 - 000559616 _____ (CANON INC.) C:\WINDOWS\system32\CNQ_EXC.dll
2019-11-20 14:28 - 2017-10-12 19:13 - 000273408 _____ (CANON INC.) C:\WINDOWS\system32\CNQ_EXI.dll
2019-11-20 14:28 - 2008-08-25 18:02 - 000017920 _____ (CANON INC.) C:\WINDOWS\system32\CNHMCA6.dll
2019-11-14 22:17 - 2019-11-26 22:32 - 000026308 _____ C:\Users\Pedro\Desktop\FRST.txt
2019-11-14 22:16 - 2019-11-26 22:30 - 002262016 _____ (Farbar) C:\Users\Pedro\Desktop\FRST64.exe
2019-11-14 21:41 - 2019-11-14 21:41 - 007622344 _____ (Malwarebytes) C:\Users\Pedro\Desktop\adwcleaner_7.4.2.exe
2019-11-13 23:27 - 2019-11-13 23:28 - 013912216 _____ C:\Users\Pedro\Downloads\Lexmark_MB2236_UsersGuide_sk.pdf
2019-11-13 06:50 - 2019-11-13 06:50 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-11-13 06:50 - 2019-11-13 06:50 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-11-13 06:50 - 2019-11-13 06:50 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 023455232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 019014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 012960256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 012258816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 007872000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 006934016 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 006547896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 006318328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 005770240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 005608336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 004873216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 004661760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003906560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003872336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003656792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002918200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 002871824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002699976 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002698752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002628112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002348544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001702600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-11-13 06:49 - 2019-11-13 06:49 - 001677808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001486472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001473296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001346216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-11-13 06:49 - 2019-11-13 06:49 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001267240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-11-13 06:49 - 2019-11-13 06:49 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001183504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001024712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000808272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000773208 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000747536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000661264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000642560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000588816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000542320 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000535080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000481280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000474936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-11-13 06:49 - 2019-11-13 06:49 - 000473832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000465416 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000435512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000427832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000262152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-13 06:49 - 2019-11-13 06:49 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-11-13 06:49 - 2019-11-13 06:49 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000112168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000086744 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000047616 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000023768 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000020144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 022137120 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 009667896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 007700696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 007656072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 005575168 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 005573232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 004413936 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 004049920 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 003576832 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002109960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001966096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 001933408 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001668784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001666440 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001644544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001538560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001294792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001054224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 001050112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001049608 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000888560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000862008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000856424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000811536 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000667664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000536320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000514600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000509968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000462352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000450632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000445752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000389408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000385848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000213304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000198968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000193336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000160272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000152896 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000120352 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000087080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000061480 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-11-03 15:53 - 2019-11-03 16:19 - 2160571387 _____ C:\Users\Pedro\Downloads\Tajny-zivot-mazlicku-2- The.secret.life.of.pets.2.2019.1080p.bluray.cz-sk.dabing.mkv
2019-11-01 20:30 - 2019-11-01 21:33 - 3989583137 _____ C:\Users\Pedro\Downloads\Bohemian.Rhapsody.2018.1080p.BluRay.x264.AC3.5.1.CZ.Dabing.mkv
2019-10-30 22:42 - 2019-10-30 23:09 - 2297071945 _____ C:\Users\Pedro\Downloads\Muzi v cernem Globalni hrozba.Men in Black 4.2019.Cz Dabing.1080p.BluRay.mkv
2019-10-30 06:23 - 2019-10-30 06:23 - 3131634466 _____ C:\WINDOWS\MEMORY.DMP
2019-10-29 22:14 - 2019-10-29 22:14 - 000000000 ____D C:\Users\Pedro\AppData\Roaming\ZWSOFT
2019-10-29 22:14 - 2019-10-29 22:14 - 000000000 ____D C:\Users\Pedro\AppData\Local\ZWSOFT
2019-10-29 22:14 - 2019-10-29 22:14 - 000000000 ____D C:\Program Files\Common Files\Macrovision Shared
2019-10-29 22:13 - 2019-10-29 22:13 - 000001355 _____ C:\Users\Public\Desktop\ZWCAD Architecture 2019 Enu.lnk
2019-10-29 22:13 - 2019-10-29 22:13 - 000001355 _____ C:\ProgramData\Desktop\ZWCAD Architecture 2019 Enu.lnk
2019-10-29 22:13 - 2019-10-29 22:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZWSOFT
2019-10-29 22:13 - 2019-10-29 22:13 - 000000000 ____D C:\Program Files\Common Files\ZWSoft Shared
2019-10-29 22:09 - 2019-10-29 22:12 - 000000000 ____D C:\Program Files\ZWSOFT
2019-10-29 22:09 - 2019-10-29 22:09 - 000036904 _____ (Feitian Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\Rockey4.sys
2019-10-29 22:09 - 2019-10-29 22:09 - 000023592 _____ (Feitian Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\Rockey4USB.sys
2019-10-29 22:09 - 2019-10-29 22:09 - 000007680 _____ C:\WINDOWS\system32\Ry4CoInst.dll
2019-10-29 17:55 - 2019-10-29 17:55 - 000000000 ____D C:\Users\Pedro\Downloads\ZWCAD_Architecture_2019_SP2_ENU_Win64bit
2019-10-29 17:53 - 2019-10-29 18:24 - 3088691200 _____ C:\Users\Pedro\Downloads\ZLOBA KRÁLOVNA _ERNÉ MAGIE 2014 BDRip FULLHD DD5.1 CZ dabing.avi
2019-10-27 23:08 - 2019-10-27 23:08 - 000644944 _____ C:\Users\Pedro\Desktop\file_15_1439448517.pdf
2019-10-27 22:05 - 2019-10-27 22:49 - 000054272 _____ C:\Users\Pedro\Desktop\cestovny_prikaz_tuzemsky.xls
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-11-26 22:31 - 2019-01-21 18:38 - 000000000 ____D C:\FRST
2019-11-26 22:19 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-11-26 19:35 - 2019-10-13 15:04 - 000000557 _____ C:\Users\Pedro\Desktop\JRT.txt
2019-11-26 19:28 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-11-26 19:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-11-26 19:24 - 2019-01-21 21:04 - 000000000 ____D C:\ProgramData\Unified Remote
2019-11-26 19:23 - 2019-05-10 21:29 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-11-26 19:23 - 2018-12-11 20:27 - 000000000 __SHD C:\Users\Pedro\IntelGraphicsProfiles
2019-11-26 19:19 - 2018-12-28 08:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-11-26 19:19 - 2018-09-15 07:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-11-26 19:18 - 2018-12-28 08:32 - 000000000 ____D C:\Users\Pedro
2019-11-26 19:13 - 2019-01-29 17:05 - 000000000 ____D C:\Users\Pedro\AppData\Local\Spotify
2019-11-26 18:53 - 2018-12-28 08:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-11-26 17:52 - 2019-01-29 17:03 - 000000000 ____D C:\Users\Pedro\AppData\Roaming\Spotify
2019-11-26 06:17 - 2018-12-13 21:02 - 000000000 ____D C:\Users\Pedro\AppData\LocalLow\Mozilla
2019-11-25 18:46 - 2018-12-28 08:45 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-622939137-141225199-2558093129-1001
2019-11-25 18:46 - 2018-12-28 08:32 - 000002351 _____ C:\Users\Pedro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-11-25 18:46 - 2018-12-11 19:25 - 000000000 ___RD C:\Users\Pedro\OneDrive
2019-11-25 00:04 - 2019-02-02 13:06 - 000000000 ____D C:\ProgramData\NbfcService
2019-11-21 21:14 - 2018-12-12 15:47 - 000000132 _____ C:\Users\Pedro\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2019-11-21 16:35 - 2019-04-09 23:11 - 000050080 _____ C:\WINDOWS\system32\perfh01B.dat
2019-11-21 16:35 - 2019-04-09 23:11 - 000012186 _____ C:\WINDOWS\system32\perfc01B.dat
2019-11-21 16:35 - 2018-12-28 08:43 - 000884446 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-21 16:35 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-11-20 14:50 - 2018-12-28 08:32 - 000000000 ____D C:\Users\defaultuser0
2019-11-20 14:50 - 2018-09-15 08:33 - 000000000 __RSD C:\WINDOWS\media
2019-11-20 14:35 - 2018-12-11 19:23 - 000000000 ____D C:\Users\Pedro\AppData\Local\Packages
2019-11-20 14:34 - 2018-12-12 15:31 - 000000000 ____D C:\Users\Pedro\AppData\Local\PlaceholderTileLogoFolder
2019-11-19 01:58 - 2018-12-11 19:59 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-14 23:00 - 2018-12-11 21:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2019-11-14 03:06 - 2018-12-12 15:10 - 000000000 ___RD C:\Users\Pedro\3D Objects
2019-11-14 03:06 - 2018-12-11 19:23 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-11-14 03:04 - 2018-12-28 08:27 - 005036856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-11-14 03:00 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-11-13 23:29 - 2018-12-16 10:43 - 000000000 ____D C:\Users\Pedro\Documents\Fax
2019-11-13 20:31 - 2018-12-11 20:09 - 000000000 ____D C:\Users\Pedro\AppData\Roaming\vlc
2019-11-13 06:54 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-11-12 22:59 - 2018-12-12 00:30 - 000748816 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-11-12 22:26 - 2018-12-12 00:28 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-11-12 22:20 - 2018-12-12 00:27 - 128443096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-11-12 22:20 - 2018-12-11 20:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2019-11-05 00:52 - 2019-05-15 15:17 - 000003458 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-05 00:52 - 2019-05-15 15:17 - 000003334 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-05 00:52 - 2018-12-11 19:59 - 000000000 ____D C:\Program Files (x86)\Google
2019-11-03 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-11-01 21:28 - 2019-10-21 19:04 - 000000000 ____D C:\Users\Pedro\Downloads\ONE PUNCH MAN
2019-11-01 15:54 - 2019-09-05 19:16 - 000000000 ____D C:\Users\Pedro\Downloads\OUTLANDER
2019-10-30 06:41 - 2018-12-12 15:21 - 000000000 ____D C:\ProgramData\Packages
2019-10-30 06:31 - 2019-02-04 00:47 - 000000000 ____D C:\WINDOWS\Minidump
2019-10-29 05:11 - 2018-12-12 06:15 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-10-28 21:04 - 2019-01-11 19:26 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-10-28 21:04 - 2019-01-11 19:26 - 000000823 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-10-28 21:04 - 2019-01-11 19:26 - 000000823 _____ C:\ProgramData\Desktop\CCleaner.lnk
==================== Files in the root of some directories ========
2019-10-01 21:27 - 2019-09-05 09:18 - 011902976 _____ () C:\Program Files\BMC CONFIG.exe
2018-12-21 11:33 - 2018-10-25 17:31 - 011427840 _____ () C:\Program Files\BMC-CONFIG-1.exe
2018-12-12 15:47 - 2019-11-21 21:14 - 000000132 _____ () C:\Users\Pedro\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2019-05-03 19:41 - 2019-05-03 19:41 - 000000218 _____ () C:\Users\Pedro\AppData\Local\recently-used.xbel
2018-12-29 23:29 - 2019-02-13 20:22 - 000007603 _____ () C:\Users\Pedro\AppData\Local\Resmon.ResmonCfg
2019-05-03 16:33 - 2019-05-03 16:33 - 000000000 _____ () C:\Users\Pedro\AppData\Local\zenmap.exe.log
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by Pedro (administrator) on DESKTOP-NVJD1LG (LENOVO 20344) (26-11-2019 22:30:31)
Running from C:\Users\Pedro\Desktop
Loaded Profiles: Pedro (Available Profiles: defaultuser0 & Pedro)
Platform: Windows 10 Home Version 1809 17763.864 (X64) Language: Slovenčina (Slovensko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(A&H Software House Inc -> A&H Software House, Inc.) C:\Program Files\Luxriot\Luxriot Monitor\VMSWatchdog.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe
(Flexera Software LLC -> Flexera Software LLC) C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.342\GoogleCrashHandler64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Spoločnosť Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\79.0.3945.10\remoting_host.exe
(Google LLC -> Spoločnosť Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\79.0.3945.10\remoting_host.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\YMC\ymc.exe
(Logitech Inc -> Logitech) C:\ProgramData\LogiShrd\LogiOptions\Software\Current\LogiOverlay.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(Logitech Inc -> Logitech, Inc.) C:\ProgramData\LogiShrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12228.20276.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\NisSrv.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(StagWare) [File not signed] C:\Program Files (x86)\NoteBook FanControl\NbfcService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3961528 2016-11-04] (Synaptics Incorporated -> Synaptics Incorporated)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [2179208 2019-08-27] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [9309936 2015-09-10] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [47774856 2019-10-24] (Google LLC -> )
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] => C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe [1688872 2007-12-13] (Nero AG -> Nero AG)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\Run: [Unified Remote V3] => C:\Program Files (x86)\Unified Remote 3\RemoteServerWin.exe [3187384 2017-12-13] (Unified Intents AB -> Unified Intents AB)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\Run: [Spotify] => C:\Users\Pedro\AppData\Roaming\Spotify\Spotify.exe [21141408 2019-11-23] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\MountPoints2: {81b4c8ed-8878-11e9-b424-e8b1fc0cf016} - "E:\HiSuiteDownLoader.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\Installer\chrmstp.exe [2019-11-19] (Google LLC -> Google LLC)
GroupPolicy: Restriction ? <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {3079691B-2A4C-44D8-AF6F-45E97ECFD909} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {33A01DC2-E3D9-4857-A46B-9CE1B8585E95} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {36640D29-E85B-4262-B733-8EBD10BFDB75} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {5EF62143-5E7B-4D11-8362-A567E09BF1D2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {63AD62E4-9973-4972-9091-47AE22B42F55} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {662DCD39-C11B-47AA-BA0B-449010F553E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-11] (Google Inc -> Google Inc.)
Task: {7D9A14BB-DE3E-4935-AC4F-7C59CFCD9123} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {978B9388-647B-48B6-AEAF-41040AE6DFFD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {9C651596-A1CC-468F-9A98-72D135E959DB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {D17FDC10-6084-4D7D-86DC-B4C29A23671E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {E484F4EC-E7DC-400A-8D0D-51DCF8855F6A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MpCmdRun.exe [469928 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {EB05FDC5-C030-48BC-BA23-0D6AB6D3288E} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3961528 2016-11-04] (Synaptics Incorporated -> Synaptics Incorporated)
Task: {F067FB99-1CA1-4579-B2B1-B5786FD61F15} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe
Task: {F777BDC6-9695-4A67-8E41-B1A90D98B38E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-11] (Google Inc -> Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{ac0d6cbe-f5ed-45ea-b2e8-a97d491a4b4e}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-03] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-03] (Oracle America, Inc. -> Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2018-03-14] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: knaq84ry.default
FF ProfilePath: C:\Users\Pedro\AppData\Roaming\Mozilla\Firefox\Profiles\knaq84ry.default [2019-11-21]
FF Homepage: Mozilla\Firefox\Profiles\knaq84ry.default -> hxxps://www.google.com/
FF Session Restore: Mozilla\Firefox\Profiles\knaq84ry.default -> is enabled.
FF HKLM\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Extension: (Foxit PDF Creator) - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi [2017-10-09] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [FFExtnHTML2PDF@foxitsoftware.com] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\FirefoxAddin\FFExtnHTML2PDF.xpi
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2017-10-18] (Foxit Software Incorporated -> Foxit Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-03] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-05] (Google Inc -> Google LLC)
FF Plugin-x32: Web Components -> C:\Program Files (x86)\Web Components\npWebVideoPlugin.dll [2013-03-04] (HANGZHOU HIKVISION DIGITAL TECHNOLOGY CO.,LTD. -> )
Chrome:
=======
CHR HomePage: Default -> hxxp://google.sk/
CHR DefaultSearchKeyword: Default -> google.sk__
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default [2019-11-26]
CHR Extension: (Prezentácie) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-11]
CHR Extension: (Just Black) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aghfnjkcakhmadgdomlmlhhaocbkloab [2019-06-05]
CHR Extension: (BIODIGITAL HUMAN) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\agoenciogemlojlhccbcpcfflicgnaak [2018-12-11]
CHR Extension: (Dokumenty) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-11]
CHR Extension: (Disk Google) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-11]
CHR Extension: (YouTube) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-11]
CHR Extension: (uBlock Origin) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-10-29]
CHR Extension: (Tabuľky) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-12-11]
CHR Extension: (I don't care about cookies) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\fihnjjcciajhdojfnbdddfaoknhalnja [2019-11-17]
CHR Extension: (Web Components) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\filcobblndaenakhejinpjdblekilpgn [2018-12-11]
CHR Extension: (Vzdialená plocha Chrome) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-07-20]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-11]
CHR Extension: (AdBlock — best ad blocker) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-11-20]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2019-07-26]
CHR Extension: (Google Play) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\komhbcfkdcgmcdoenjcjheifdiabikfi [2018-12-11]
CHR Extension: (Save as PDF) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpdjmbiefanbdgnkcikhllpmjnnllbbc [2018-12-11]
CHR Extension: (Numerics Calculator & Converter) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\liglcienpnkhdajdfmnpbgmpjglonipe [2018-12-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Psykopaint) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil [2018-12-11]
CHR Extension: (Gmail) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-17]
CHR Extension: (Chrome Media Router) - C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-26]
CHR Profile: C:\Users\Pedro\AppData\Local\Google\Chrome\User Data\System Profile [2019-10-28]
CHR HKLM\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-10-09]
CHR HKU\S-1-5-21-622939137-141225199-2558093129-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [cifnddnffldieaamihfkhkdgnbhfmaci] - C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\plugins\Creator\ChromeAddin\ChromeAddin.crx [2017-10-09]
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\79.0.3945.10\remoting_host.exe [74392 2019-10-24] (Google LLC -> Spoločnosť Google Inc.)
R2 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [144784 2018-04-18] (Canon Inc. -> CANON INC.)
S3 FoxitPhantomService; C:\Program Files (x86)\Foxit Software\Foxit PhantomPDF\FoxitConnectedPDFService.exe [1658944 2017-10-29] (Foxit Software Incorporated -> Foxit Software Inc.)
R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [541896 2018-05-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373688 2017-06-12] (Intel(R) pGFX -> Intel Corporation)
R2 NbfcService; C:\Program Files (x86)\NoteBook FanControl\NbfcService.exe [8704 2018-11-03] (StagWare) [File not signed]
S3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [447784 2007-12-13] (Nero AG -> Nero AG)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [266424 2016-11-04] (Synaptics Incorporated -> Synaptics Incorporated)
R2 VMSWatchdog; C:\Program Files\Luxriot\Luxriot Monitor\VMSWatchdog.exe [675568 2019-04-23] (A&H Software House Inc -> A&H Software House, Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\NisSrv.exe [3201616 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1910.4-0\MsMpEng.exe [103168 2019-10-29] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ymc; C:\Program Files\Lenovo\YMC\ymc.exe [49032 2016-12-23] (LENOVO -> Lenovo)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AX88772; C:\WINDOWS\System32\drivers\ax88772.sys [111616 2018-09-15] (Microsoft Windows -> ASIX Electronics Corp.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136720 2018-05-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
S3 kmloop; C:\WINDOWS\System32\drivers\loop.sys [17408 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3485696 2018-09-15] (Microsoft Windows -> Intel Corporation)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [81688 2018-03-03] (Insecure.Com LLC -> Insecure.Com LLC.)
R2 NPF; C:\Program Files\iVMS-4200 Station\iVMS-4200\iVMS-4200 Client\npf64.sys [36600 2015-12-16] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 ROCKEYNT; C:\WINDOWS\system32\DRIVERS\Rockey4.sys [36904 2019-10-29] (Feitian Technologies Co., Ltd. -> Feitian Technologies Co., Ltd.)
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [410880 2015-07-03] (Realtek Semiconductor Corp -> Realsil Semiconductor Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3059440 2015-09-10] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [60088 2016-11-04] (Synaptics Incorporated -> Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tapprotonvpn; C:\WINDOWS\System32\drivers\tapprotonvpn.sys [44976 2018-06-01] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S3 uvhid; C:\WINDOWS\System32\drivers\uvhid.sys [28128 2017-12-13] (Unified Intents AB -> Windows (R) Win 7 DDK provider)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46472 2019-10-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [351968 2019-10-29] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-10-29] (Microsoft Windows -> Microsoft Corporation)
R1 WinRing0_1_2_0; C:\Program Files (x86)\NoteBook FanControl\WinRing0x64.sys [14544 2019-02-02] (Noriyuki MIYAZAKI -> OpenLibSys.org)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-11-26 22:30 - 2019-11-26 22:30 - 000000000 ____D C:\Users\Pedro\Desktop\FRST-OlderVersion
2019-11-23 15:05 - 2019-11-23 15:05 - 016603035 _____ C:\Users\Pedro\Downloads\Gorenje 729412.pdf
2019-11-22 17:12 - 2019-11-22 17:44 - 2899440359 _____ C:\Users\Pedro\Downloads\The.Lion.King.2019.1080p.BluRay.H264.AAC-CZ.Dabing.mkv
2019-11-21 22:01 - 2019-11-21 22:02 - 000000000 ____D C:\Users\Pedro\Downloads\Di1610bh160Vista32G108T100
2019-11-21 22:00 - 2019-11-21 22:00 - 028991297 _____ C:\Users\Pedro\Downloads\Di1610bh160Vista32G108T100.zip
2019-11-21 21:10 - 2019-11-21 21:10 - 000001378 _____ C:\Users\Pedro\Desktop\Organizery zoznam vyplne.xlsx – odkaz.lnk
2019-11-20 16:58 - 2019-11-20 16:58 - 000000477 _____ C:\Users\Pedro\Documents\IMG_20191120_0004.txt
2019-11-20 14:52 - 2019-11-20 14:52 - 000002561 _____ C:\Users\Pedro\Documents\IMG_20191120_0002.txt
2019-11-20 14:51 - 2019-11-20 14:52 - 000594755 _____ C:\Users\Pedro\Documents\IMG_20191120_0001.pdf
2019-11-20 14:51 - 2019-11-20 14:51 - 000000000 ____D C:\Users\Pedro\AppData\Roaming\Canon
2019-11-20 14:50 - 2019-11-20 14:50 - 000000000 ___HD C:\Program Files\CanonBJ
2019-11-20 14:50 - 2019-11-20 14:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2019-11-20 14:50 - 2019-11-20 14:50 - 000000000 ____D C:\Program Files (x86)\Canon
2019-11-20 14:50 - 2018-03-12 08:56 - 000355328 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNQ_EXL.dll
2019-11-20 14:50 - 2017-12-04 15:06 - 000089600 _____ C:\WINDOWS\SysWOW64\CNQ1913D.TBL
2019-11-20 14:50 - 2017-11-09 20:11 - 000393256 _____ C:\WINDOWS\SysWOW64\CNQ_537N.DAT
2019-11-20 14:50 - 2008-08-25 18:02 - 000015872 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNHMCA.dll
2019-11-20 14:48 - 2019-11-20 14:49 - 060372128 _____ C:\Users\Pedro\Desktop\sc68-win-lide300-1_00-ea34_2.exe
2019-11-20 14:30 - 2019-11-20 14:52 - 000000000 ___HD C:\ProgramData\CanonIJScan
2019-11-20 14:28 - 2018-03-12 08:56 - 000388608 _____ (CANON INC.) C:\WINDOWS\system32\CNQ_EXL.dll
2019-11-20 14:28 - 2017-12-04 15:06 - 000089600 _____ C:\WINDOWS\system32\CNQ1913D.TBL
2019-11-20 14:28 - 2017-11-09 20:11 - 000393256 _____ C:\WINDOWS\system32\CNQ_537N.DAT
2019-11-20 14:28 - 2017-10-12 19:13 - 000559616 _____ (CANON INC.) C:\WINDOWS\system32\CNQ_EXC.dll
2019-11-20 14:28 - 2017-10-12 19:13 - 000273408 _____ (CANON INC.) C:\WINDOWS\system32\CNQ_EXI.dll
2019-11-20 14:28 - 2008-08-25 18:02 - 000017920 _____ (CANON INC.) C:\WINDOWS\system32\CNHMCA6.dll
2019-11-14 22:17 - 2019-11-26 22:32 - 000026308 _____ C:\Users\Pedro\Desktop\FRST.txt
2019-11-14 22:16 - 2019-11-26 22:30 - 002262016 _____ (Farbar) C:\Users\Pedro\Desktop\FRST64.exe
2019-11-14 21:41 - 2019-11-14 21:41 - 007622344 _____ (Malwarebytes) C:\Users\Pedro\Desktop\adwcleaner_7.4.2.exe
2019-11-13 23:27 - 2019-11-13 23:28 - 013912216 _____ C:\Users\Pedro\Downloads\Lexmark_MB2236_UsersGuide_sk.pdf
2019-11-13 06:50 - 2019-11-13 06:50 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-11-13 06:50 - 2019-11-13 06:50 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-11-13 06:50 - 2019-11-13 06:50 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 023455232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 019014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 012960256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 012258816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 007872000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 006934016 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 006547896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 006318328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 005770240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 005608336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 004873216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 004661760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003906560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003872336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003656792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002918200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 002871824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002699976 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002698752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002628112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002348544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001702600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-11-13 06:49 - 2019-11-13 06:49 - 001677808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001486472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001473296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001346216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-11-13 06:49 - 2019-11-13 06:49 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001267240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-11-13 06:49 - 2019-11-13 06:49 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001183504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 001024712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000808272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000773208 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000747536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000661264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000642560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000588816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000542320 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000535080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000481280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000474936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-11-13 06:49 - 2019-11-13 06:49 - 000473832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000465416 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000435512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000427832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000262152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-13 06:49 - 2019-11-13 06:49 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-11-13 06:49 - 2019-11-13 06:49 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000112168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2019-11-13 06:49 - 2019-11-13 06:49 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000086744 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000047616 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-11-13 06:49 - 2019-11-13 06:49 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000023768 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2019-11-13 06:49 - 2019-11-13 06:49 - 000020144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 022137120 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 009667896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 007700696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 007656072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 005575168 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 005573232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 004413936 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 004049920 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 003576832 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002109960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001966096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 001933408 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001668784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001666440 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001644544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001538560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001294792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001054224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 001050112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001049608 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000888560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000862008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000856424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000811536 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000667664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000536320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000514600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000509968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000462352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000450632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000445752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000389408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000385848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthA2dp.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000213304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000198968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000193336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000160272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000152896 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000120352 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000087080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-11-13 06:48 - 2019-11-13 06:48 - 000061480 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-11-13 06:48 - 2019-11-13 06:48 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-11-13 06:48 - 2019-11-13 06:48 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-11-03 15:53 - 2019-11-03 16:19 - 2160571387 _____ C:\Users\Pedro\Downloads\Tajny-zivot-mazlicku-2- The.secret.life.of.pets.2.2019.1080p.bluray.cz-sk.dabing.mkv
2019-11-01 20:30 - 2019-11-01 21:33 - 3989583137 _____ C:\Users\Pedro\Downloads\Bohemian.Rhapsody.2018.1080p.BluRay.x264.AC3.5.1.CZ.Dabing.mkv
2019-10-30 22:42 - 2019-10-30 23:09 - 2297071945 _____ C:\Users\Pedro\Downloads\Muzi v cernem Globalni hrozba.Men in Black 4.2019.Cz Dabing.1080p.BluRay.mkv
2019-10-30 06:23 - 2019-10-30 06:23 - 3131634466 _____ C:\WINDOWS\MEMORY.DMP
2019-10-29 22:14 - 2019-10-29 22:14 - 000000000 ____D C:\Users\Pedro\AppData\Roaming\ZWSOFT
2019-10-29 22:14 - 2019-10-29 22:14 - 000000000 ____D C:\Users\Pedro\AppData\Local\ZWSOFT
2019-10-29 22:14 - 2019-10-29 22:14 - 000000000 ____D C:\Program Files\Common Files\Macrovision Shared
2019-10-29 22:13 - 2019-10-29 22:13 - 000001355 _____ C:\Users\Public\Desktop\ZWCAD Architecture 2019 Enu.lnk
2019-10-29 22:13 - 2019-10-29 22:13 - 000001355 _____ C:\ProgramData\Desktop\ZWCAD Architecture 2019 Enu.lnk
2019-10-29 22:13 - 2019-10-29 22:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZWSOFT
2019-10-29 22:13 - 2019-10-29 22:13 - 000000000 ____D C:\Program Files\Common Files\ZWSoft Shared
2019-10-29 22:09 - 2019-10-29 22:12 - 000000000 ____D C:\Program Files\ZWSOFT
2019-10-29 22:09 - 2019-10-29 22:09 - 000036904 _____ (Feitian Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\Rockey4.sys
2019-10-29 22:09 - 2019-10-29 22:09 - 000023592 _____ (Feitian Technologies Co., Ltd.) C:\WINDOWS\system32\Drivers\Rockey4USB.sys
2019-10-29 22:09 - 2019-10-29 22:09 - 000007680 _____ C:\WINDOWS\system32\Ry4CoInst.dll
2019-10-29 17:55 - 2019-10-29 17:55 - 000000000 ____D C:\Users\Pedro\Downloads\ZWCAD_Architecture_2019_SP2_ENU_Win64bit
2019-10-29 17:53 - 2019-10-29 18:24 - 3088691200 _____ C:\Users\Pedro\Downloads\ZLOBA KRÁLOVNA _ERNÉ MAGIE 2014 BDRip FULLHD DD5.1 CZ dabing.avi
2019-10-27 23:08 - 2019-10-27 23:08 - 000644944 _____ C:\Users\Pedro\Desktop\file_15_1439448517.pdf
2019-10-27 22:05 - 2019-10-27 22:49 - 000054272 _____ C:\Users\Pedro\Desktop\cestovny_prikaz_tuzemsky.xls
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-11-26 22:31 - 2019-01-21 18:38 - 000000000 ____D C:\FRST
2019-11-26 22:19 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-11-26 19:35 - 2019-10-13 15:04 - 000000557 _____ C:\Users\Pedro\Desktop\JRT.txt
2019-11-26 19:28 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-11-26 19:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-11-26 19:24 - 2019-01-21 21:04 - 000000000 ____D C:\ProgramData\Unified Remote
2019-11-26 19:23 - 2019-05-10 21:29 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-11-26 19:23 - 2018-12-11 20:27 - 000000000 __SHD C:\Users\Pedro\IntelGraphicsProfiles
2019-11-26 19:19 - 2018-12-28 08:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-11-26 19:19 - 2018-09-15 07:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-11-26 19:18 - 2018-12-28 08:32 - 000000000 ____D C:\Users\Pedro
2019-11-26 19:13 - 2019-01-29 17:05 - 000000000 ____D C:\Users\Pedro\AppData\Local\Spotify
2019-11-26 18:53 - 2018-12-28 08:27 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-11-26 17:52 - 2019-01-29 17:03 - 000000000 ____D C:\Users\Pedro\AppData\Roaming\Spotify
2019-11-26 06:17 - 2018-12-13 21:02 - 000000000 ____D C:\Users\Pedro\AppData\LocalLow\Mozilla
2019-11-25 18:46 - 2018-12-28 08:45 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-622939137-141225199-2558093129-1001
2019-11-25 18:46 - 2018-12-28 08:32 - 000002351 _____ C:\Users\Pedro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-11-25 18:46 - 2018-12-11 19:25 - 000000000 ___RD C:\Users\Pedro\OneDrive
2019-11-25 00:04 - 2019-02-02 13:06 - 000000000 ____D C:\ProgramData\NbfcService
2019-11-21 21:14 - 2018-12-12 15:47 - 000000132 _____ C:\Users\Pedro\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2019-11-21 16:35 - 2019-04-09 23:11 - 000050080 _____ C:\WINDOWS\system32\perfh01B.dat
2019-11-21 16:35 - 2019-04-09 23:11 - 000012186 _____ C:\WINDOWS\system32\perfc01B.dat
2019-11-21 16:35 - 2018-12-28 08:43 - 000884446 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-21 16:35 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-11-20 14:50 - 2018-12-28 08:32 - 000000000 ____D C:\Users\defaultuser0
2019-11-20 14:50 - 2018-09-15 08:33 - 000000000 __RSD C:\WINDOWS\media
2019-11-20 14:35 - 2018-12-11 19:23 - 000000000 ____D C:\Users\Pedro\AppData\Local\Packages
2019-11-20 14:34 - 2018-12-12 15:31 - 000000000 ____D C:\Users\Pedro\AppData\Local\PlaceholderTileLogoFolder
2019-11-19 01:58 - 2018-12-11 19:59 - 000002313 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-14 23:00 - 2018-12-11 21:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2019-11-14 03:06 - 2018-12-12 15:10 - 000000000 ___RD C:\Users\Pedro\3D Objects
2019-11-14 03:06 - 2018-12-11 19:23 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-11-14 03:04 - 2018-12-28 08:27 - 005036856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-11-14 03:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-11-14 03:00 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-11-13 23:29 - 2018-12-16 10:43 - 000000000 ____D C:\Users\Pedro\Documents\Fax
2019-11-13 20:31 - 2018-12-11 20:09 - 000000000 ____D C:\Users\Pedro\AppData\Roaming\vlc
2019-11-13 06:54 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-11-12 22:59 - 2018-12-12 00:30 - 000748816 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-11-12 22:26 - 2018-12-12 00:28 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-11-12 22:20 - 2018-12-12 00:27 - 128443096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-11-12 22:20 - 2018-12-11 20:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2019-11-05 00:52 - 2019-05-15 15:17 - 000003458 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-05 00:52 - 2019-05-15 15:17 - 000003334 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-05 00:52 - 2018-12-11 19:59 - 000000000 ____D C:\Program Files (x86)\Google
2019-11-03 10:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-11-01 21:28 - 2019-10-21 19:04 - 000000000 ____D C:\Users\Pedro\Downloads\ONE PUNCH MAN
2019-11-01 15:54 - 2019-09-05 19:16 - 000000000 ____D C:\Users\Pedro\Downloads\OUTLANDER
2019-10-30 06:41 - 2018-12-12 15:21 - 000000000 ____D C:\ProgramData\Packages
2019-10-30 06:31 - 2019-02-04 00:47 - 000000000 ____D C:\WINDOWS\Minidump
2019-10-29 05:11 - 2018-12-12 06:15 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-10-28 21:04 - 2019-01-11 19:26 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2019-10-28 21:04 - 2019-01-11 19:26 - 000000823 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-10-28 21:04 - 2019-01-11 19:26 - 000000823 _____ C:\ProgramData\Desktop\CCleaner.lnk
==================== Files in the root of some directories ========
2019-10-01 21:27 - 2019-09-05 09:18 - 011902976 _____ () C:\Program Files\BMC CONFIG.exe
2018-12-21 11:33 - 2018-10-25 17:31 - 011427840 _____ () C:\Program Files\BMC-CONFIG-1.exe
2018-12-12 15:47 - 2019-11-21 21:14 - 000000132 _____ () C:\Users\Pedro\AppData\Roaming\Adobe Formát PNG CS5 – předvolby
2019-05-03 19:41 - 2019-05-03 19:41 - 000000218 _____ () C:\Users\Pedro\AppData\Local\recently-used.xbel
2018-12-29 23:29 - 2019-02-13 20:22 - 000007603 _____ () C:\Users\Pedro\AppData\Local\Resmon.ResmonCfg
2019-05-03 16:33 - 2019-05-03 16:33 - 000000000 _____ () C:\Users\Pedro\AppData\Local\zenmap.exe.log
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
- Přílohy
-
- Addition.rar
- (11.78 KiB) Staženo 70 x
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Skontrolovať, vyčistiť, prosím
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\MountPoints2: {81b4c8ed-8878-11e9-b424-e8b1fc0cf016} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction ? <==== ATTENTION
Task: {662DCD39-C11B-47AA-BA0B-449010F553E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-11] (Google Inc -> Google Inc.)
Task: {F777BDC6-9695-4A67-8E41-B1A90D98B38E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-11] (Google Inc -> Google Inc.)
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
HKLM\...\.scr: ZWCAD.SCR.2019 => <==== ATTENTION
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Skontrolovať, vyčistiť, prosím
Fix result of Farbar Recovery Scan Tool (x64) Version: 25-11-2019 01
Ran by Pedro (27-11-2019 16:14:55) Run:3
Running from C:\Users\Pedro\Desktop
Loaded Profiles: Pedro (Available Profiles: defaultuser0 & Pedro)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\MountPoints2: {81b4c8ed-8878-11e9-b424-e8b1fc0cf016} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction ? <==== ATTENTION
Task: {662DCD39-C11B-47AA-BA0B-449010F553E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-11] (Google Inc -> Google Inc.)
Task: {F777BDC6-9695-4A67-8E41-B1A90D98B38E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-11] (Google Inc -> Google Inc.)
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
HKLM\...\.scr: ZWCAD.SCR.2019 => <==== ATTENTION
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKU\S-1-5-21-622939137-141225199-2558093129-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{81b4c8ed-8878-11e9-b424-e8b1fc0cf016} => removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{662DCD39-C11B-47AA-BA0B-449010F553E9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{662DCD39-C11B-47AA-BA0B-449010F553E9}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F777BDC6-9695-4A67-8E41-B1A90D98B38E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F777BDC6-9695-4A67-8E41-B1A90D98B38E}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\nladljmabboanhihfkjacnnkgjhnokhj => removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Classes\.scr\\"Default"="scrfile" => value restored successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 293613639 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 2449534 B
Edge => 36352 B
Chrome => 306674882 B
Firefox => 110621850 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 88388 B
defaultuser0 => 88388 B
Pedro => 118094447 B
RecycleBin => 2340834105 B
EmptyTemp: => 3 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 16:18:29 ====
Ran by Pedro (27-11-2019 16:14:55) Run:3
Running from C:\Users\Pedro\Desktop
Loaded Profiles: Pedro (Available Profiles: defaultuser0 & Pedro)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-622939137-141225199-2558093129-1001\...\MountPoints2: {81b4c8ed-8878-11e9-b424-e8b1fc0cf016} - "E:\HiSuiteDownLoader.exe"
GroupPolicy: Restriction ? <==== ATTENTION
Task: {662DCD39-C11B-47AA-BA0B-449010F553E9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-11] (Google Inc -> Google Inc.)
Task: {F777BDC6-9695-4A67-8E41-B1A90D98B38E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-12-11] (Google Inc -> Google Inc.)
CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj]
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
HKLM\...\.scr: ZWCAD.SCR.2019 => <==== ATTENTION
EmptyTemp:
End
*****************
Processes closed successfully.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKU\S-1-5-21-622939137-141225199-2558093129-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{81b4c8ed-8878-11e9-b424-e8b1fc0cf016} => removed successfully
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{662DCD39-C11B-47AA-BA0B-449010F553E9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{662DCD39-C11B-47AA-BA0B-449010F553E9}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F777BDC6-9695-4A67-8E41-B1A90D98B38E}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F777BDC6-9695-4A67-8E41-B1A90D98B38E}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\nladljmabboanhihfkjacnnkgjhnokhj => removed successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found
HKLM\Software\Classes\.scr\\"Default"="scrfile" => value restored successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10248192 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 293613639 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 2449534 B
Edge => 36352 B
Chrome => 306674882 B
Firefox => 110621850 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 88388 B
defaultuser0 => 88388 B
Pedro => 118094447 B
RecycleBin => 2340834105 B
EmptyTemp: => 3 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 16:18:29 ====
-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Skontrolovať, vyčistiť, prosím
Smazáno, log by již měl být OK.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Skontrolovať, vyčistiť, prosím
Super, vďaka,
ešte by som sa spýtal, či sa dá nejak docieliť natrvalo, aby bol systém rýchlejší ...lebo po prečistením JRT ide ako nový, ale stačí reštart PC a je to zasa naspäť
...Ten JRT asi vypína kopec zbytočných procesov, že? Takže pomohlo by poodstraňovať nepotrebné programy? Alebo sa dá nejak zistiť, ktoré najviac zaberajú procesor / RAM ???
ešte by som sa spýtal, či sa dá nejak docieliť natrvalo, aby bol systém rýchlejší ...lebo po prečistením JRT ide ako nový, ale stačí reštart PC a je to zasa naspäť
...Ten JRT asi vypína kopec zbytočných procesov, že? Takže pomohlo by poodstraňovať nepotrebné programy? Alebo sa dá nejak zistiť, ktoré najviac zaberajú procesor / RAM ???-
Rudy
- Site Admin
- Příspěvky: 118251
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Skontrolovať, vyčistiť, prosím
Zkuste defragmentovat disk.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?