prosím o kontrolu LOGU

[rovercz]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-01-2020
Ran by mikap_000 (administrator) on ROVER-BOOK (LENOVO 20251) (12-01-2020 19:17:10)
Running from C:\Users\mikap_000\Desktop
Loaded Profiles: mikap_000 (Available Profiles: mikap_000)
Platform: Windows 10 Home Version 1803 17134.1130 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Riot Games\Riot Client\RiotClientCrashHandler.exe
(Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(CyberLink -> CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\78.0.3904.7\remoting_host.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\78.0.3904.7\remoting_host.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\stacsv64.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(LENOVO -> Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.895\SSScheduler.exe
(Megaify Software Co.,Ltd. -> Megaify Software Co., Ltd.) C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\mikap_000\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe
(Riot Games, Inc. -> ) C:\Riot Games\League of Legends\LeagueClient.exe
(Riot Games, Inc. -> ) C:\Riot Games\League of Legends\LeagueClientUx.exe
(Riot Games, Inc. -> ) C:\Riot Games\League of Legends\LeagueClientUxRender.exe
(Riot Games, Inc. -> ) C:\Riot Games\League of Legends\LeagueClientUxRender.exe
(Riot Games, Inc. -> ) C:\Riot Games\Riot Client\RiotClientServices.exe
(Riot Games, Inc. -> ) C:\Riot Games\Riot Client\RiotClientServices.exe
(Seznam.cz, a.s. -> ) C:\Users\mikap_000\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Seznam.cz, a.s. -> ) C:\Users\mikap_000\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(ZONER software, a.s. -> ZONER software) C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-19] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [6346464 2013-01-04] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17080376 2013-09-01] (Lenovo (Beijing) Limited -> Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191544 2013-09-01] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA CORPORATION -> NVIDIA Corporation) [File not signed]
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Služba Acronis Scheduler2] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [383624 2015-12-25] (Acronis International GmbH -> Acronis)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-04-24] (IDT, Inc.) [File not signed]
HKLM\...\Run: [DolbyTrayApp] => c:\program files (x86)\Dolby Advanced Audio v2\pcee4.exe -autostart
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-31] (CyberLink -> CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-19] (CyberLink Corp.) [File not signed]
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKLM-x32\...\Run: [PowerDVD17Agent] => C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD17Agent.exe [527400 2017-06-06] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [uTorrent] => C:\Users\mikap_000\AppData\Roaming\uTorrent\uTorrent.exe [1908920 2019-01-27] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [GoogleChromeAutoLaunch_3E7A64667E86F8649D846ED29DF64F3B] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1610928 2019-03-26] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53729824 2015-08-07] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-04-22] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1084688 2016-04-21] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-04-22] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-04-22] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [cz.seznam.software.autoupdate] => C:\Users\mikap_000\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [cz.seznam.software.szndesktop] => C:\Users\mikap_000\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] (Seznam.cz, a.s. -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-11] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll [2013-04-03] (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2018-12-21]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.895\SSScheduler.exe (McAfee, Inc. -> McAfee, Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1171691C-6F55-4520-9A6D-2588554E5112} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {133F0568-DBCA-4571-A56C-0A4B9611706C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {13F3B787-D214-417A-BB58-FA79746A11DA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {1F98693C-E980-4F99-85DC-82E4EDD1993C} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe [1360320 2015-08-17] (LENOVO -> Lenovo)
Task: {254CC30F-920D-4BC4-BDC4-6EE7A7282D72} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
Task: {2B60AD1B-6B94-451A-9451-F041E4FDC8B9} - System32\Tasks\{9AA5BE4B-9E97-4030-8927-102DABADB0C3} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lig ... rror=12002
Task: {2D378E97-DDE4-4425-9DFA-55F4E7F8CEA0} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [269856 2015-08-17] (LENOVO -> Lenovo)
Task: {2E3BC2BB-3A86-49EC-B602-8FAAEE1180F6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3010CAD0-F239-461B-8605-73E27DA5746D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {30A847E4-02BA-468E-A3DE-FF85C4D52FE6} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [148416 2015-08-17] (LENOVO -> )
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {370DB8EF-93B1-4C6A-BCE9-80E6BA72B991} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {37624E04-D9E8-48E5-A1C1-DFA9DFCBF791} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {3C466904-7551-42EA-AC17-75566E562A08} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {3C5B48D0-0A6B-4EF3-B382-31443B50FFF7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {4131E80C-5A7D-408F-8DBC-4B144047E5EB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {512F4B1E-8DFA-4518-ABDF-8418C2A94648} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {52C969DF-4573-45F8-9304-80D55642C4AF} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2436936 2019-03-26] (Overwolf Ltd -> Overwolf LTD)
Task: {563510FD-ED16-4EB9-8916-2F439F3EBD55} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832 2015-08-17] (LENOVO -> Lenovo)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [33280 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
Task: {5C9C98A8-52AF-4CC6-B433-B7EA56D96F82} - System32\Tasks\DriverToolkit Autorun => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe [1303864 2014-04-30] (Megaify Software Co.,Ltd. -> Megaify Software Co., Ltd.)
Task: {64A81424-CCBB-44D5-A8F4-0CA65BF9E230} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {76CC1429-7BF9-4F57-A650-3835DDBFED9A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {7742D1EF-56DD-47ED-AEF6-911EEEB2F6B6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {7A5E3161-31F2-4C37-BA1C-415B4AC1467E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {80DCDC99-EF5D-45DD-9F6B-57E05D3AAAAA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {96D0418B-6192-4FCF-B34A-932F8F8DBC50} - System32\Tasks\OFFICE2013ACT => C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs [133 2012-03-08] () [File not signed] <==== ATTENTION
Task: {97FCCFC7-324F-4ABA-9A59-7A17D4328C00} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {A246B19B-6E57-4FF1-847B-40FFCBFC7D3C} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe [1457720 2019-12-10] (Adobe Inc. -> Adobe)
Task: {ACDAD872-461D-4770-ADB2-482D154BB968} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C642FDDF-9ED3-4E84-A452-FB49687F2657} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CF1F6E9E-F30B-4A19-AAA1-B93C2E5D0F3D} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {DBF24B96-1D1C-4960-BD2B-374112EDDBDB} - \WPD\SqmUpload_S-1-5-21-3565807799-3977009618-1529909285-1002 -> No File <==== ATTENTION
Task: {DC6EE89A-1ABA-41BF-972D-48DC65D050EF} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [148416 2015-08-17] (LENOVO -> )
Task: {DD3DE13F-1462-443F-A50D-47D3110A5092} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {DE0E3B77-D775-4F12-AD2E-1D59BA42019A} - System32\Tasks\{903E628C-AE6B-474D-9E98-27A04F06F1E3} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\mikap_000\Downloads\eduroamczu.exe -d C:\Users\mikap_000\Downloads
Task: {E061D7C2-749D-4ECD-BA67-9A95AEBB55BE} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {EB8EEED1-2E6E-48F2-8FED-8C5A8F61D17E} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-10] (Adobe Inc. -> Adobe)
Task: {EDCB63C2-2769-4DE0-939C-E4E07E2E34E6} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {FD417E67-D733-49FE-8410-7C438F314C8D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Dolby Selector.job => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
Task: C:\WINDOWS\Tasks\DriverToolkit Autorun.job => C:\Program Files (x86)\DriverToolkit\DriverToolkit.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{a080c455-6db8-454c-8070-d1ca196c9888}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{e7832e4e-d06a-4ad8-9558-60171c93e84a}: [DhcpNameServer] 192.168.10.1

Internet Explorer:
==================
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {01AFEE14-6BFD-4BBB-A9B6-79364B6EEC77} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {314845B7-0157-42B9-AF41-12EEAC770848} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {4BAD47C1-6872-4C98-A0D8-70E0CDB05B70} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {76DD3405-B352-4439-9B80-95741AA8529E} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {839115BE-42C1-47B3-98F0-D99866AFF922} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {8C2F0DEA-0CD1-4C6D-9743-36C4718927F8} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {979EC274-B8D9-43DF-B2CA-301B4941383D} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {9F47A68B-8B6B-4CAB-B3AC-F085EBB8AC58} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {E0E91A36-CC0D-455F-9A9C-4DB4BCD6FBDD} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO: STATISTICA Browser Helper -> {990A8747-93BF-4EF7-B72E-94A6884B98C2} -> C:\Program Files\StatSoft\STATISTICA 12\StaBHO.dll [2013-04-02] (StatSoft, Inc.) [File not signed]
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-09-26] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: STATISTICA Browser Helper -> {990A8747-93BF-4EF7-B72E-94A6884B98C2} -> C:\Program Files\StatSoft\STATISTICA 12\Support\StaBHO.dll [2013-04-01] (StatSoft, Inc.) [File not signed]
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-09-26] (Oracle America, Inc. -> Oracle Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [2008-05-23] (Microsoft Corporation) [File not signed]
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Software Sarl -> Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Skype Software Sarl -> Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Skype Software Sarl -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 93fuvypa.default
FF ProfilePath: C:\Users\mikap_000\AppData\Roaming\Mozilla\Firefox\Profiles\93fuvypa.default [2020-01-12]
FF Extension: (Seznam pro Firefox - Esko) - C:\Users\mikap_000\AppData\Roaming\Mozilla\Firefox\Profiles\93fuvypa.default\Extensions\sko-extension@firma.seznam.cz [2017-11-01]
FF Extension: (Flash Game Maximizer) - C:\Users\mikap_000\AppData\Roaming\Mozilla\Firefox\Profiles\93fuvypa.default\Extensions\{258735dc-6743-4805-95fc-f95941fffdad}.xpi [2015-03-22] [Legacy] [not signed]
FF Extension: (Seznam lištička) - C:\Users\mikap_000\AppData\Roaming\Mozilla\Firefox\Profiles\93fuvypa.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-11-01] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_303.dll [2019-12-10] (Adobe Inc. -> )
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_303.dll [2019-12-10] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-09-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2020-01-11] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2020-01-11] (Google LLC -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-17] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3565807799-3977009618-1529909285-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\mikap_000\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-12-05] (Unity Technologies ApS -> Unity Technologies ApS)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR NewTab: Default -> Not-active:"chrome-extension://blmojkbhnkkphngknkmgccmlenfaelkd/speeddial/html/newTab.html", Not-active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTabSwitcher.html"
CHR Notifications: Default -> hxxps://www.facebook.com; hxxps://www.letemsvetemapplem.eu
CHR Profile: C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default [2020-01-12]
CHR Extension: (Dokumenty) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20]
CHR Extension: (Disk Google) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-26]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-10-03]
CHR Extension: (YouTube) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-03]
CHR Extension: (Vyhledávání Google) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-10]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2019-12-10]
CHR Extension: (Gmail) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-06]
CHR Extension: (Chrome Media Router) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-12]
CHR HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd]
CHR HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]

Opera:
=======
OPR Extension: (Shoppy-Up.2.7) - C:\Users\mikap_000\AppData\Roaming\Opera Software\Opera Stable\Extensions\biangfhmbinbnogkjddbfgmablffonfh [2014-12-08]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc. -> Apple Inc.)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\78.0.3904.7\remoting_host.exe [72176 2019-09-08] (Google LLC -> Google Inc.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-19] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-09-18] (Intel Corporation -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-09-18] (Intel Corporation -> Intel Corporation)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272424 2015-08-17] (LENOVO -> Lenovo)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2436936 2019-03-26] (Overwolf Ltd -> Overwolf LTD)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2013-04-24] (IDT, Inc.) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.11.812\McCHSvc.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [95232 2012-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Alcor Micro, Corp.)
R3 L1C; C:\WINDOWS\System32\drivers\L1C63x64.sys [121344 2018-04-12] (Microsoft Windows -> Qualcomm Atheros Co., Ltd.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [8239456 2013-01-04] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [546304 2013-04-24] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45664 2020-01-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [355760 2020-01-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-01-11] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)
R2 {A14A8EF6-B11D-4356-9ECC-4B937E6CC626}; C:\Program Files (x86)\CyberLink\PowerDVD17\Common\NavFilter\000.fcl [38168 2017-06-08] (CyberLink Corp. -> CyberLink Corp.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-12 19:17 - 2020-01-12 19:20 - 000040610 _____ C:\Users\mikap_000\Desktop\FRST.txt
2020-01-12 19:11 - 2020-01-12 19:13 - 002573312 _____ (Farbar) C:\Users\mikap_000\Desktop\FRST64.exe
2020-01-12 18:40 - 2020-01-12 18:40 - 000001681 _____ C:\Users\Public\Desktop\League of Legends.lnk
2020-01-12 18:32 - 2020-01-12 18:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-01-12 18:30 - 2020-01-12 18:30 - 000000000 ____D C:\Users\mikap_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-01-12 18:29 - 2020-01-12 19:03 - 000000000 ____D C:\Users\mikap_000\AppData\Local\Riot Games
2020-01-12 17:38 - 2019-09-01 04:57 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-01-12 17:38 - 2019-09-01 04:57 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-01-12 14:03 - 2020-01-12 14:03 - 013572096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 012500992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-01-12 14:03 - 2020-01-12 14:03 - 003397120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-01-12 14:03 - 2020-01-12 14:03 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 000521216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 025855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 022736384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 022016000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 020402960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 019525632 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 019386368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 013878784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 012835328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 012036096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 009080120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 007991296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 006570576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 006053808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 005821448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 005769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 005662720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004938240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004849664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004789944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004517376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004383232 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004098912 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 003751824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 003687424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 003554304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 003330880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002969600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 002774120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002711352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002571336 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002421776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 002417744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002406912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-01-12 14:02 - 2020-01-12 14:02 - 002379264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002371504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002260928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002206424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-01-12 14:02 - 2020-01-12 14:02 - 002085888 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2020-01-12 14:02 - 2020-01-12 14:02 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2020-01-12 14:02 - 2020-01-12 14:02 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001979960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001947168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001922056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 001862656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001809408 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001805872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001784696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001651040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001644032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001634304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001628704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001585304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001559272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001472000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001459328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-01-12 14:02 - 2020-01-12 14:02 - 001453624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001427768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001380312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001375456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001328440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001299472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001288928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001286528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001260776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 001254712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001188000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001141712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-01-12 14:02 - 2020-01-12 14:02 - 001130776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 001026280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001020280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001003008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000979456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000976896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000917816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2020-01-12 14:02 - 2020-01-12 14:02 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000829752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000799248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000790720 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000785776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000672768 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000665400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000662840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000638264 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000624128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000581256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000576528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000560600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000545808 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000538192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000500752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000494992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000486400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000472576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000470512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000466744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-01-12 14:02 - 2020-01-12 14:02 - 000465832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000433168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000430304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000412696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000402744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000396296 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000357336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000356896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000322576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000286616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000227848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000221016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-01-12 14:02 - 2020-01-12 14:02 - 000210448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000192608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000192312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-01-12 14:02 - 2020-01-12 14:02 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000142352 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000115728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetDriverInstall.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000108560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000106560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000103736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000101400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000091568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000081720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComputerDefaults.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComputerDefaults.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000046592 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 021411976 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 016598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 008627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 007900880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 007447904 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 006979128 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 006594048 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 005627280 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 004852736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 004783104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 004771840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 004527072 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 004055552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 003403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003290584 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003203072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003180080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003091968 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002913792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002810680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002603008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002478152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002468048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002179072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002166272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 002161288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001990056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001960800 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001934808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001920512 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001793472 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001724928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001676800 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001674216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001662480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001658136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001647616 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001641160 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001613096 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001566736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001517480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001400832 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001320640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001224720 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 001222656 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001213264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 001210880 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001193472 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 001047568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 001031696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 001027600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 001023800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2020-01-12 14:01 - 2020-01-12 14:01 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2020-01-12 14:01 - 2020-01-12 14:01 - 000806328 _____ C:\WINDOWS\SysWOW64\locale.nls
2020-01-12 14:01 - 2020-01-12 14:01 - 000806328 _____ C:\WINDOWS\system32\locale.nls
2020-01-12 14:01 - 2020-01-12 14:01 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000795360 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000791352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000786072 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000771384 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000769288 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000767232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000727584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000710240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000705336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000692352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000665432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000611640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000605712 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000604000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000594032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000586680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000573808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000571688 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000568312 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000550512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000536832 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000526512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000514576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000494904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000491208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000490136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000440768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000435728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000435216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000421376 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\system32\curl.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000420984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xbgmengine.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000413200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000402016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000385272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000379432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000374584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000361752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000349216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000323904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000274792 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000249088 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000230200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000227744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000209936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000194352 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000191800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000152104 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000146920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000141312 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000135176 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000133136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000130840 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000129360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000129040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000125504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000117240 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DuCsps.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000095224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000092472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000088016 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000081040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000060216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000058882 _____ C:\WINDOWS\system32\srms.dat
2020-01-12 14:01 - 2020-01-12 14:01 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000046608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\werkernel.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000039032 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000031032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdcpw.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2020-01-12 12:11 - 2020-01-12 14:13 - 000000000 ____D C:\WINDOWS\UpdateAssistant
2020-01-11 09:54 - 2020-01-12 12:07 - 000000000 ____D C:\Program Files\CUAssistant

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-12 19:21 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-12 19:19 - 2014-11-06 00:10 - 000000000 ____D C:\FRST
2020-01-12 18:55 - 2018-05-28 12:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-12 18:33 - 2014-08-30 15:31 - 000000000 ____D C:\ProgramData\Riot Games
2020-01-12 18:32 - 2014-02-04 17:45 - 000000000 ____D C:\Riot Games
2020-01-12 17:57 - 2017-11-01 16:29 - 000000000 ____D C:\Users\mikap_000\AppData\Local\Packages
2020-01-12 17:52 - 2017-01-03 17:13 - 000000000 ____D C:\Users\mikap_000\AppData\Roaming\Seznam.cz
2020-01-12 17:51 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2020-01-12 17:48 - 2016-06-16 16:42 - 000000000 ___RD C:\Users\mikap_000\iCloudDrive
2020-01-12 17:46 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-12 17:46 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-01-12 17:45 - 2015-09-16 19:24 - 000000000 ___RD C:\Users\mikap_000\3D Objects
2020-01-12 17:45 - 2015-08-09 19:44 - 000000000 __SHD C:\Users\mikap_000\IntelGraphicsProfiles
2020-01-12 17:45 - 2014-02-05 08:21 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-01-12 17:40 - 2018-05-28 12:30 - 001689054 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-12 17:40 - 2018-04-12 16:50 - 000716456 _____ C:\WINDOWS\system32\perfh005.dat
2020-01-12 17:40 - 2018-04-12 16:50 - 000144714 _____ C:\WINDOWS\system32\perfc005.dat
2020-01-12 17:37 - 2018-05-28 12:09 - 000414608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-12 17:37 - 2016-09-28 14:30 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-12 17:36 - 2018-05-28 12:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-12 17:36 - 2014-07-17 16:43 - 000000388 _____ C:\WINDOWS\Tasks\DriverToolkit Autorun.job
2020-01-12 17:35 - 2018-04-11 22:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-01-12 17:34 - 2018-04-11 22:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-01-12 17:33 - 2018-04-12 00:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-01-12 17:33 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-12 17:33 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-01-12 17:33 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\Provisioning
2020-01-12 17:33 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-01-12 17:33 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-12 17:20 - 2018-05-28 12:42 - 000004210 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{299DF6CD-4E24-48D6-AD43-3CAE2BF06BD4}
2020-01-12 14:36 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-12 14:07 - 2018-04-12 00:38 - 000017800 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-01-12 13:12 - 2018-07-15 09:37 - 000000000 ____D C:\ProgramData\Packages
2020-01-12 12:38 - 2014-02-04 19:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-12 12:25 - 2014-02-04 19:47 - 129221664 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-11 10:40 - 2018-02-21 17:16 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-01-11 10:38 - 2014-02-04 17:39 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-11 10:38 - 2014-02-04 17:39 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-01-11 10:34 - 2018-05-28 12:42 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-01-11 10:29 - 2015-12-01 18:39 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-01-11 09:59 - 2018-05-28 12:42 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-01-11 09:59 - 2018-05-28 12:42 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-01-11 09:54 - 2018-11-16 09:54 - 000000000 ____D C:\Program Files\rempl
2020-01-11 09:21 - 2018-05-28 12:42 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3565807799-3977009618-1529909285-1002
2020-01-11 09:21 - 2018-05-28 12:16 - 000002429 _____ C:\Users\mikap_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-01-11 09:21 - 2014-05-07 07:03 - 000000000 __RDO C:\Users\mikap_000\OneDrive

==================== Files in the root of some directories ========

2014-11-08 00:55 - 2014-11-08 00:55 - 000029696 _____ () C:\Users\mikap_000\AppData\Local\MSGBOX.EXE

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[rovercz]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-01-2020
Ran by mikap_000 (12-01-2020 19:24:15)
Running from C:\Users\mikap_000\Desktop
Windows 10 Home Version 1803 17134.1130 (X64) (2018-05-28 11:44:05)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3565807799-3977009618-1529909285-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3565807799-3977009618-1529909285-503 - Limited - Disabled)
Guest (S-1-5-21-3565807799-3977009618-1529909285-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3565807799-3977009618-1529909285-1006 - Limited - Enabled)
mikap_000 (S-1-5-21-3565807799-3977009618-1529909285-1002 - Administrator - Enabled) => C:\Users\mikap_000
WDAGUtilityAccount (S-1-5-21-3565807799-3977009618-1529909285-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\uTorrent) (Version: 3.5.5.44994 - BitTorrent Inc.)
Acronis Disk Director (HKLM-x32\...\{AE372858-B1BD-49EF-8308-648322846008}) (Version: 12.0.3270 - Acronis)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.199 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.303 - Adobe)
Age Of Empires 3 CZ verze 1.0 (HKLM-x32\...\{A6502644-790D-4DCB-824F-45C64B22AF4D}_is1) (Version: 1.0 - tomi2k9)
Aktualizace NVIDIA 10.11.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.11.15 - NVIDIA Corporation) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\{073E8A29-B106-4E64-9B06-D8B381077D66}) (Version: 3.1.1245.72250 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.1.1245.72250 - Alcor Micro Corp.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CyberLink PowerDVD 17 (HKLM-x32\...\{D15BFD7F-6BBA-49A7-A6B1-14C00DCA6842}) (Version: 17.0.1808.60 - CyberLink Corp.)
Dash Core (64-bit) (HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Dash Core (64-bit)) (Version: 0.12.3 - Dash Core project)
DriverToolkit version 8.3.0.0 (HKLM-x32\...\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_is1) (Version: 8.3.0.0 - Megaify Software)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Energy Management (HKLM-x32\...\{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.4 - Lenovo) Hidden
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.4 - Lenovo)
Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.4.0 - Ubisoft)
GeForce Experience NvStream Client Components (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC) (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.117 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of Might & Magic III - HD Edition (HKLM-x32\...\Heroes of Might & Magic III - HD Edition_is1) (Version: - )
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
Chrome Remote Desktop Host (HKLM-x32\...\{507238FB-1F1F-4E97-8478-29951A0F7DDD}) (Version: 78.0.3904.7 - Google Inc.)
iCloud (HKLM\...\{ADFDB647-35C0-4254-9EE6-2D9C3B7104BD}) (Version: 5.2.1.69 - Apple Inc.)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6431.0 - IDT)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.710 - Oracle)
League of Legends (HKLM-x32\...\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.6400 - Broadcom Corporation)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10206 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.)
Lenovo PowerDVD10 (HKLM-x32\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5108.52 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5108.52 - CyberLink Corp.)
Lenovo Solution Center (HKLM\...\{E92E1FF1-B188-43FE-BECA-2248E227E67D}) (Version: 2.8.005.00 - Lenovo Group Limited)
Lenovo YouCam (HKLM-x32\...\{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3423 - CyberLink Corp.) Hidden
Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3423 - CyberLink Corp.)
Lenovo_Wireless_Driver (HKLM-x32\...\{5D642A72-8194-4A22-80DA-11FE610CCA8E}) (Version: 6.30.5987 - Lenovo)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.812.1 - McAfee, Inc.)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}) (Version: 2.0.675.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\OneDriveSetup.exe) (Version: 19.222.1110.0006 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Might & Magic Heroes VII (HKLM-x32\...\{54C50013-EF28-4D0A-887F-878723F89EDC}_is1) (Version: 1.0.0.0 - Ubisoft)
NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA Virtual Audio 1.2.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.19 - NVIDIA Corporation)
Ori and the Blind Forest (HKLM-x32\...\Ori and the Blind Forest_is1) (Version: - )
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.127.0.41 - Overwolf Ltd.)
Ovládací panel NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.9109 - CyberLink Corp.)
Pro Evolution Soccer 2015 (HKLM-x32\...\UHJvRXZvbHV0aW9uU29jY2VyMjAxNQ==_is1) (Version: 1 - )
Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.16 - Qualcomm Atheros Communications Inc.)
RICOH_Media_Driver_v2.22.18.01 (HKLM-x32\...\{FE041B02-234C-4AAA-9511-80DF6482A458}) (Version: 2.22.18.01 - RICOH)
Seznam Software (HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\SeznamInstall) (Version: 2.1.32 - Seznam.cz)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 1.6.85 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Sonic Lost World (HKLM-x32\...\Sonic Lost World_is1) (Version: - )
STATISTICA CZ 12 64-bit (HKLM\...\{ED579539-9D37-4600-B763-D450593F501B}) (Version: 12.0.1133.2 - StatSoft, Inc.)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - )
The Walking Dead Epizody 1-5 verze 1.0 (HKLM-x32\...\{65BE85A8-13BB-4B4A-B1AF-EC6054292C00}_is1) (Version: 1.0 - Telltale Games)
TurboFLOORPLAN Dum & Interiér & Zahrada PRO (HKLM-x32\...\InstallShield_{949815AB-D269-4DD3-AB1A-539432BAFC1E}) (Version: 15.1 - IMSIDesign)
Unity Web Player (HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\UnityWebPlayer) (Version: 4.6.1f1 - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
UserGuide (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo) Hidden
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo)
VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: 3.29 - NCH Software)
VirtualDJ Home FREE (HKLM-x32\...\{A6AC699F-8315-40CA-8F70-E917494978AB}) (Version: 7.4 - Atomix Productions)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Wi-Fi Scanner version 3.2.0.114 (HKLM-x32\...\Wi-Fi Scanner_is1) (Version: 3.2.0.114 - LizardSystems)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Driver Package - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
Wondershare Data Recovery(Build 6.5.1.5) (HKLM-x32\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 6.5.1.5 - Wondershare Software Co.,Ltd.)
Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.12 - ZONER software)

Packages:
=========
AccuWeather - Weather for Life -> C:\Program Files\WindowsApps\AccuWeather.AccuWeatherforWindows8_10.0.348.1000_x64__8zz2pj9h1h1d8 [2018-04-09] (AccuWeather) [MS Ad]
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1670.2.0_x86__kgqvnymyfvs32 [2020-01-12] (king.com)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_6.22.8816.0_x86__q4d96b2w5wcc2 [2020-01-12] (Evernote)
Lenovo Cloud Storage by SugarSync -> C:\Program Files\WindowsApps\C59AD0AF.LenovoCloudStorageBySugarSync_1.3.0.889_neutral__m3tnjedffpfhj [2014-02-04] (SugarSync Inc.)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2015-01-24] (Lenovo, INC.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.1910.41.0_x64__k1h2ywk1493x8 [2020-01-12] (LENOVO INC.)
Live TV -> C:\Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716 [2014-02-04] (FilmOn TV Inc.)
McAfee® Central for Lenovo -> C:\Program Files\WindowsApps\McAfeeInc.06.McAfeeSecurityAdvisorforLenovo_5.0.173.1_x64__bq6yxensn79aw [2018-04-04] (McAfee_Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.13393.0_x64__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation) [MS Ad]
Microsoft Průvodce pro telefon -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-02-13] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2020-01-12] (Microsoft Studios) [MS Ad]
Microsoft Telefon -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2018-09-09] (Microsoft Corporation)
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-18] (Microsoft Corporation) [MS Ad]
MSN Gurmánský svět -> C:\Program Files\WindowsApps\Microsoft.BingFoodAndDrink_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-18] (Microsoft Corporation) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.34.13393.0_x64__8wekyb3d8bbwe [2020-01-11] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.34.13393.0_x64__8wekyb3d8bbwe [2020-01-11] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-18] (Microsoft Corporation) [MS Ad]
PowerDVD for Lenovo Idea -> C:\Program Files\WindowsApps\CyberLinkCorp.id.PowerDVDforLenovoIdea_1.1.2618.24808_x86__hgg5mn3xps74a [2014-02-21] (CYBERLINK COM CORPORATION)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2014-05-09] (Zinio LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6722448 2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4222864 2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers1: [$PowerDVD] -> {E72C61D0-C453-42BA-84C9-88AEE3DEE676} => C:\ProgramData\CyberLink\PowerDVD17\OpenWith\PDVD_Shell64.dll [2017-06-06] (CyberLink Corp. -> CyberLink Corp.)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2016-04-22] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32: [msacm.clmp3enc] => C:\Program Files (x86)\Lenovo\Power2Go\CLMP3Enc.ACM [217088 2005-05-14] (CyberLink Corp.) [File not signed]

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\mikap_000\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.htm
Shortcut: C:\Users\mikap_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\mikap_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

==================== Loaded Modules (Whitelisted) =============

2015-01-10 16:25 - 2014-09-09 12:30 - 000603648 _____ () [File not signed] C:\Program Files\Zoner\Photo Studio 17\Program32\SpiderMonkey.dll
2020-01-12 18:39 - 2020-01-12 18:39 - 001230336 _____ () [File not signed] C:\Riot Games\League of Legends\ffmpeg.dll
2020-01-12 18:33 - 2020-01-12 18:33 - 000153088 _____ () [File not signed] C:\Riot Games\Riot Client\libuv.dll
2020-01-12 18:33 - 2020-01-12 18:33 - 000092160 _____ () [File not signed] C:\Riot Games\Riot Client\yaml.dll
2020-01-12 18:33 - 2020-01-12 18:33 - 000106496 _____ () [File not signed] C:\Riot Games\Riot Client\zlib.dll
2020-01-12 18:33 - 2020-01-12 18:33 - 000122880 _____ (hxxps://nghttp2.org/) [File not signed] C:\Riot Games\Riot Client\libnghttp2.dll
2018-06-27 17:34 - 2018-06-27 17:34 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.4053_none_cbf21254470d8752\MFC80U.DLL
2020-01-12 18:33 - 2020-01-12 18:33 - 000334336 _____ (The curl library, hxxps://curl.haxx.se/) [File not signed] C:\Riot Games\Riot Client\libcurl.dll
2020-01-12 18:33 - 2020-01-12 18:33 - 002551296 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Riot Games\Riot Client\libcrypto-1_1.dll
2020-01-12 18:33 - 2020-01-12 18:33 - 000530432 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [File not signed] C:\Riot Games\Riot Client\libssl-1_1.dll
2020-01-12 18:33 - 2020-01-12 18:33 - 000386560 _____ (Yann Collet, Facebook, Inc.) [File not signed] C:\Riot Games\Riot Client\libzstd.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2018-12-21 13:21 - 000000903 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.1 mssplus.mcafee.com

2014-12-01 18:51 - 2017-01-05 21:50 - 000000660 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
18 16 34 71
192.168.173.83 android-ad2b612f3aa51396.mshome.net # 2014 12 1 8 18 14 15 164
192.168.173.131 Machine.mshome.net # 2014 12 1 8 18 38 18 139
192.168.173.1 RoVeR-BOOK.mshome.net # 2019 11 6 30 18 38 18 139

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Lenovo\Bluetooth Software\;C:\Program Files\Lenovo\Bluetooth Software\syswow64;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\mikap_000\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{044a49cf-bea6-4095-9c7b-65f852f00f31}.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run32: => "mobilegeni daemon"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\StartupApproved\StartupFolder: => "hack.vbs"
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\StartupApproved\StartupFolder: => "hack.exe"
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\StartupApproved\Run: => "RGSC"
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\StartupApproved\Run: => "Overwolf"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{77A7436E-D4BB-4FA3-871F-678C302BD741}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\CastingStation.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{B467E0FE-C0BC-41CF-B459-F57E3FC0920F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{F23A73C0-FBD9-4499-9F05-014E2BFAF285}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD17Agent.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{2E3CC03E-10D7-44B4-9595-4C468C697EFF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\Kernel\DMS\CLMSServerPDVD17.exe (CyberLink Corp. -> CyberLink)
FirewallRules: [{4D46D78F-95A1-4C3E-B7DD-8163DAA94BCB}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{9BD7ACDA-D9D6-47C5-B6C6-5C68D0A89963}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{49F95F16-36CB-4B57-8F13-CE7BC1E3F6FF}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{68BEAFED-B654-40E2-82DF-38C2D2C5721F}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [UDP Query User{F54CA06B-6172-49F9-9418-2DE882E32213}C:\program files (x86)\might & magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) C:\program files (x86)\might & magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.)
FirewallRules: [TCP Query User{4BAD5CBD-31A5-4220-B27B-459B7BA54FF8}C:\program files (x86)\might & magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) C:\program files (x86)\might & magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.)
FirewallRules: [UDP Query User{E85F1E55-5348-4628-9B15-A117A0D5C11B}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe No File
FirewallRules: [TCP Query User{91C6921D-C4C9-4211-BB80-9A48DA9CC277}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe No File
FirewallRules: [UDP Query User{52265B85-0FDE-4CAD-84C0-55921286D471}C:\hry\fifa 15\fifa15.exe] => (Allow) C:\hry\fifa 15\fifa15.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [TCP Query User{E40ADF8F-6296-4DA4-B5C0-80A9CEA4E1C0}C:\hry\fifa 15\fifa15.exe] => (Allow) C:\hry\fifa 15\fifa15.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [UDP Query User{FEE045C8-26FC-4F31-9A1F-57A430FD5627}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [TCP Query User{045EB2D7-20E7-4030-BF49-B160F90AD211}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{EA278E32-DA5A-4541-AC40-88BC69F33676}] => (Allow) C:\Hry\Battlefield 4\bf4.exe No File
FirewallRules: [{32595270-4331-49C4-90A3-7B2985CB6FCB}] => (Allow) C:\Hry\Battlefield 4\bf4.exe No File
FirewallRules: [{63266E41-05DD-48FC-B876-FA61735BBAE0}] => (Allow) C:\Hry\Battlefield 4\bf4_x86.exe No File
FirewallRules: [{815C335D-3A6E-45C0-904E-7A1AE4AF91D9}] => (Allow) C:\Hry\Battlefield 4\bf4_x86.exe No File
FirewallRules: [UDP Query User{6ABE23B0-EF79-4708-AA7F-74C2996888C4}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{C5FE7B31-F6D6-47A5-91DB-DC2CCAB2B5A2}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3CF27819-A657-4606-ACE8-B9AB84519650}] => (Allow) C:\Users\mikap_000\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{65DE42C6-6E83-47D6-9A87-CB939F03DFFB}] => (Allow) C:\Users\mikap_000\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{360E120F-FF97-4BE0-BC2E-BB3BB13D1651}] => (Allow) C:\Users\mikap_000\Downloads\utorrent.exe No File
FirewallRules: [{CB6FAE66-E672-4F2A-A0D8-3B9F7B5B5EA3}] => (Allow) C:\Users\mikap_000\Downloads\utorrent.exe No File
FirewallRules: [{FE4E6314-0FF4-4525-81C0-A39AC9C269D0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B8B85283-BA5C-43BF-B3E8-6C162AC1396B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E1064130-27E9-4E31-822F-99E3E952095E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1D24FE00-6618-4AA7-BEB8-23808A09A347}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{577797D7-7F44-4420-89FB-8B21827EECA8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FE1EC0B7-9A5F-4F24-B618-039823B5F9E2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A931894A-3EBD-417B-8D6E-1EBB79719BA0}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe No File
FirewallRules: [{8D738CE3-010C-4CE2-90CB-3927863EC48A}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe No File
FirewallRules: [UDP Query User{6BD3335F-12B1-41FE-97FC-70BDB35B682B}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{293A16BF-2A76-4945-9016-F6E68B70CD8C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D2D57599-AF06-4D8D-8200-71E20932E740}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{623915A2-1742-4C37-813B-B1D79CD4EFCF}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{4EC0B784-66AD-4AB2-9AB6-D1133A63346A}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{F0679DBA-C470-4182-8E65-F26B9A93C6AE}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{E0926A27-663A-4CA1-9A02-E939E6864936}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe No File
FirewallRules: [{37432BCC-7384-4A10-86F4-79E11477A97F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe No File
FirewallRules: [{C5AB9484-D0E0-4836-84EA-C5B4D22C963E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{464E58D3-D088-4DDC-BF2A-FD51A1F97760}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{A25F66AA-CDE2-4B28-B914-55272BCD7E83}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{20749702-A136-4EE4-B828-F6BE76EB8E89}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{3D4900CC-4F3E-462C-B9E0-B8ECF1155F84}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{630116F3-3CE4-4BC7-B57E-1282D024CCC1}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{5227F9AD-AC78-404C-9493-C5FFBEB6C879}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{D2873895-4AC5-4A8E-A60F-6237B6BD5354}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{8263B54E-8C00-4DA4-BE41-CAB44B3C7116}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{134E09F1-B9A9-4346-82F0-9A3ABDBF12BB}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{308E5627-7D3A-4D53-BCB0-CC4650F1B7E3}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{B0983D1B-2E84-4283-B40D-6E2B41EA21D0}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{87FE9CA0-53FC-464A-9887-AEF37776F8D3}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{1ECEBEBA-B331-427B-BDB7-F5A966B57832}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{4548D695-8C5F-403C-A415-EB2376CB4B79}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{E2A03253-9E0E-4672-B779-10445D984A54}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{2B38E0B3-12E7-403F-8561-91111CFA912C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{53FCAA01-F41E-4A38-99D3-67CA529315B5}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{BAF6B2CA-9AAB-4FFB-B4DE-94ADBF788CEF}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{74C23C64-80D5-4AF8-B171-B25C4E1B8728}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{553C80C1-B6A2-44BB-9D1B-1F1F1D447F68}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{472538A4-62D1-4428-B5CF-9AD56A2B3EE0}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{7134383B-3CB9-4753-8104-33F7A16FC14F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{8757183E-5D93-4FD2-97AA-08BE3EE2BAB2}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{93249365-437B-4CA7-961A-B2C8F4948838}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{518F11D8-BAA3-4A6B-A2AC-C8BE1EAFEFAC}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{FBEE11DB-6781-4ABC-85B4-75AA58B5D9B9}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{CD92A1BB-5209-4849-9D10-A4629A19C180}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{D128E5AF-9862-4468-8EF0-0FB3D25A483F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{F4C7FA77-DAEE-4831-805F-ECFE34BF72EF}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{A0E30515-F922-4CF7-94B2-EBD409E7E762}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{8BB98767-5F58-4F59-A508-211AA6CFD8B6}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{2CF7D9F0-D8F9-48CA-8234-79C95EC42BA8}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{A54B4B86-C439-4CF5-9770-624A03D8282E}] => (Allow) C:\Hry\FIFA 14\Game\fifa14.exe No File
FirewallRules: [{8C75C292-693D-4414-8ECE-A382E6404ED5}] => (Allow) C:\Hry\FIFA 14\Game\fifa14.exe No File
FirewallRules: [TCP Query User{D533AD17-B502-4710-BE00-E7D7BA129314}C:\hry\assassins creed iii\ac3sp.exe] => (Allow) C:\hry\assassins creed iii\ac3sp.exe No File
FirewallRules: [UDP Query User{AE1D75DA-3BB7-4C59-9615-DF43F1C3F4FC}C:\hry\assassins creed iii\ac3sp.exe] => (Allow) C:\hry\assassins creed iii\ac3sp.exe No File
FirewallRules: [TCP Query User{302E523C-1FBA-4C68-8CCE-BC3F1314236D}C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe] => (Allow) C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe No File
FirewallRules: [UDP Query User{196623C7-BA05-4358-B732-3D27F58CF4E0}C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe] => (Allow) C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe No File
FirewallRules: [TCP Query User{0C422668-2C55-4022-837B-D53DEBC5DD77}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [UDP Query User{A86A16E2-65BB-4EE9-9CA3-0A9AE7B6F317}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [TCP Query User{C883E993-8A63-44AE-AF3B-E8F07D3EB17B}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [UDP Query User{852C85CA-2E87-414B-B436-F84F72E82EE5}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [{68D90214-4DCD-43D6-8735-262B6206FDD3}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{52816233-F05B-4658-B761-DA07654E2965}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe No File
FirewallRules: [{A6F5A0AC-3937-49C9-8120-094960EF947A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe No File
FirewallRules: [{07225002-2CD8-4619-B918-A8B31CD756C1}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{553D9307-9281-46FB-831B-C12231911934}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{07935924-3540-48FA-A97E-833494945C30}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{72F9A06A-2481-4277-8538-EC9AFF61AC10}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [TCP Query User{CE714CD0-1CBE-4A5C-9D4F-36219F1A0BF1}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe No File
FirewallRules: [UDP Query User{132407A7-E0A5-45E6-9EE4-481D763B6528}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe No File
FirewallRules: [TCP Query User{BCE66D88-836B-4F71-B4CA-9BE8DB694689}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe No File
FirewallRules: [UDP Query User{6EB4F2B9-3621-4B61-BAE3-6AC8EE102E7C}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe No File
FirewallRules: [{88E9FDBB-3603-4D19-8F39-F11D42D8CC8F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe No File
FirewallRules: [{D269C390-54F5-48F2-8FA2-5960144E7682}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe No File
FirewallRules: [TCP Query User{33B99DA3-E83C-43C7-87E9-DA3EB0F7968D}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe (Konami Digital Entertainment Co., Ltd. -> Konami Digital Entertainment Co., Ltd.) [File not signed]
FirewallRules: [UDP Query User{63544B3B-E5E6-4F86-9083-D9ABD75DF6BD}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe (Konami Digital Entertainment Co., Ltd. -> Konami Digital Entertainment Co., Ltd.) [File not signed]
FirewallRules: [{3BB9D6A8-41D2-44BD-BD3A-09C492ED9A67}] => (Allow) C:\Program Files\Zoner\Photo Studio 17\Program32\MediaServer.exe (ZONER software, a.s. -> ZONER software)
FirewallRules: [TCP Query User{06EF3006-C87F-4660-9760-407EDCFFBED5}C:\hry\far cry 4\bin\farcry4.exe] => (Allow) C:\hry\far cry 4\bin\farcry4.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [UDP Query User{D46AD0BA-9E13-4E25-B88A-7BD253B702AF}C:\hry\far cry 4\bin\farcry4.exe] => (Allow) C:\hry\far cry 4\bin\farcry4.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [TCP Query User{D07B6C9C-B291-424C-ADF2-A2C33F00D5E8}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe No File
FirewallRules: [UDP Query User{ACD5E773-B598-4DE9-AFEB-F4487AE50F22}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe No File
FirewallRules: [TCP Query User{CA247CC3-32E3-4869-914F-C7FEBD3D3F93}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe No File
FirewallRules: [UDP Query User{0CA7901C-0A07-4628-9CF3-A9395D9FF363}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe No File
FirewallRules: [{5987C114-24BB-4A30-BA79-17B00D172E20}] => (Allow) C:\Hry\FIFA 15\fifasetup\fifaconfig.exe (Electronic Arts -> Electronic Arts Canada) [File not signed]
FirewallRules: [{EDEEE7B3-5064-44B4-AD9D-910FEE0C724F}] => (Allow) C:\Hry\FIFA 15\fifasetup\fifaconfig.exe (Electronic Arts -> Electronic Arts Canada) [File not signed]
FirewallRules: [TCP Query User{C26A06DC-D067-4388-8AF0-FC477A14954A}C:\hry\fifa 15\fifa15.exe] => (Allow) C:\hry\fifa 15\fifa15.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [UDP Query User{58BF7222-139D-4F0F-92BA-E8FDAB7A1FF0}C:\hry\fifa 15\fifa15.exe] => (Allow) C:\hry\fifa 15\fifa15.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [TCP Query User{483D6AA5-A41B-4EF5-8BD1-1586751ACB09}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{71F69CED-34FE-4A8F-93D0-323EB207EB12}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{EB347833-CA3D-4B58-BFA8-2E42CF39FD12}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{BFA5D559-A501-4478-A7EF-1630E7DDEBD7}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{C319EABD-CCE9-4A7E-AE9A-1E34916AFF0F}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe No File
FirewallRules: [UDP Query User{FECC1690-D712-4488-AD6E-EB16E47CD90A}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe No File
FirewallRules: [{B912A451-596B-48E8-A60A-D38ABA7F837C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FE33A1D6-DF73-4750-A7D7-BEC30903571F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E69C8D41-FC7A-4CA1-AECC-EB9AC71E63F6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{32B98C80-4EF3-401A-8152-7CA71A889F2E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{D60DE801-0E17-4094-981A-43B3E1719682}C:\program files\dashcore\dash-qt.exe] => (Allow) C:\program files\dashcore\dash-qt.exe () [File not signed]
FirewallRules: [UDP Query User{76D9BDE3-8C70-48AE-ABCB-11183CC45312}C:\program files\dashcore\dash-qt.exe] => (Allow) C:\program files\dashcore\dash-qt.exe () [File not signed]
FirewallRules: [{A611D1D7-C35D-4C67-AF9E-C135E8FD068A}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\78.0.3904.7\remoting_host.exe (Google LLC -> Google Inc.)
FirewallRules: [{36B07C54-59B9-48CF-A57F-3A82870AFF3D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

26-07-2019 19:54:37 Windows Update
12-01-2020 12:08:08 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/12/2020 05:48:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: iCloudDrive.exe, verze: 1.5.4.43, časové razítko: 0x5719bb27
Název chybujícího modulu: iCloudDrive_main.dll, verze: 1.5.4.43, časové razítko: 0x5719ff1e
Kód výjimky: 0xc0000005
Posun chyby: 0x000d7c9c
ID chybujícího procesu: 0x2738
Čas spuštění chybující aplikace: 0x01d5c967eff10998
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive_main.dll
ID zprávy: fc362105-96e9-44d9-a853-6bf15625f558
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/12/2020 05:46:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\Logitech\Gaming Software\LWEMon.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (01/12/2020 05:37:53 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1

Error: (01/12/2020 05:37:53 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1

Error: (01/12/2020 05:34:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2100235

Error: (01/12/2020 05:34:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2100235

Error: (01/12/2020 05:34:53 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/12/2020 05:34:37 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2084610


System errors:
=============
Error: (01/12/2020 07:09:47 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 07:08:35 PM) (Source: DCOM) (EventID: 10016) (User: ROVER-BOOK)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli RoVeR-BOOK\mikap_000 (SID: S-1-5-21-3565807799-3977009618-1529909285-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 07:04:06 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 07:03:37 PM) (Source: DCOM) (EventID: 10016) (User: ROVER-BOOK)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli RoVeR-BOOK\mikap_000 (SID: S-1-5-21-3565807799-3977009618-1529909285-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 07:03:23 PM) (Source: DCOM) (EventID: 10016) (User: ROVER-BOOK)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli RoVeR-BOOK\mikap_000 (SID: S-1-5-21-3565807799-3977009618-1529909285-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 06:56:42 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 06:56:07 PM) (Source: DCOM) (EventID: 10016) (User: ROVER-BOOK)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli RoVeR-BOOK\mikap_000 (SID: S-1-5-21-3565807799-3977009618-1529909285-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 05:48:38 PM) (Source: DCOM) (EventID: 10005) (User: ROVER-BOOK)
Description: Služba DCOM zjistila chybu 2 při pokusu o spuštění služby McComponentHostService s argumenty Není k dispozici za účelem spuštění serveru:
{CC6F4D12-8575-4CFF-9455-CF5774AEB13B}


Windows Defender:
===================================
Date: 2020-01-12 18:30:24.933
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Gamehack.F!MSR
ID: 2147743546
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Program Files (x86)\Ubisoft\Heroes of Might & Magic III - HD Edition\steam_api.dll
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: RoVeR-BOOK\mikap_000
Název procesu: C:\Program Files (x86)\Ubisoft\Heroes of Might & Magic III - HD Edition\HOMM3Launcher.exe
Verze podpisu: AV: 1.307.2225.0, AS: 1.307.2225.0, NIS: 1.307.2225.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7

Date: 2020-01-11 10:40:28.753
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {09E32827-5D01-47E4-B966-A9CA677BEE84}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\NETWORK SERVICE

Date: 2019-06-17 18:14:52.465
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {4075FB60-824C-47DD-86E2-A7426B3B7656}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-01-30 16:18:28.535
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {DE675633-A886-4349-A0C1-94D2C9B6AD70}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-01-28 17:37:36.433
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {0274EBD7-F25B-4E19-AD94-1A010DC576C1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-10-03 18:25:40.251
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.299.571.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80240022
Popis chyby :V daném programu nelze zkontrolovat aktualizace definic.

Date: 2019-10-03 18:25:40.250
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.299.571.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80240022
Popis chyby :V daném programu nelze zkontrolovat aktualizace definic.

Date: 2019-10-03 18:20:22.658
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.299.571.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80240022
Popis chyby :V daném programu nelze zkontrolovat aktualizace definic.

Date: 2019-10-03 18:20:22.658
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.299.571.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80240022
Popis chyby :V daném programu nelze zkontrolovat aktualizace definic.

Date: 2019-06-17 15:12:19.439
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.293.2450.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15900.4
Kód chyby: 0x80240016
Popis chyby ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2020-01-12 18:29:29.712
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.107
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.100
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.093
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.088
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.075
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.060
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.031
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO 7ACN24WW 06/25/2013
Motherboard: LENOVO G700
Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 58%
Total physical RAM: 8071.27 MB
Available physical RAM: 3320.82 MB
Total Virtual: 9351.27 MB
Available Virtual: 3923.9 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:888.63 GB) (Free:143.06 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:8.01 GB) NTFS

\\?\Volume{90951cd3-c4c2-484b-ab3a-579c1447dad5}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.63 GB) NTFS
\\?\Volume{439f1f5b-ee41-42bb-9c98-dccf7c3951fd}\ () (Fixed) (Total:0.92 GB) (Free:0.45 GB) NTFS
\\?\Volume{8faf300d-fa55-4657-adda-14ab63918bcb}\ () (Fixed) (Total:0.34 GB) (Free:0.3 GB) NTFS
\\?\Volume{33349003-f225-4d41-aaf8-f7c3e5880667}\ (PBR_DRV) (Fixed) (Total:14.29 GB) (Free:3.15 GB) NTFS
\\?\Volume{748b3896-233c-42b0-894f-93262fdbc873}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: DBBF5953)

Partition: GPT.

==================== End of Addition.txt =======================

[Rudy]

Zdravím!
Spusťte tuto utilitu:

Ulozte na plochu AdwCleaner https://malwarebytes.com/adwcleaner/ nebo http://www.bleepingcomputer.com/download/adwcleaner/

ukoncete vsechny programy
odsouhlaste licencni podmiky (EULA) klikem na Souhlasim
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Skenovat nyni (Scan now), pote na Cisteni a opravy (Clean and Repair)
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\Logs\AdwCleaner[Cxx].txt), jehoz obsah zkopirujte do pristi odpovedi

[rovercz]

# -------------------------------
# Malwarebytes AdwCleaner 8.0.1.0
# -------------------------------
# Build: 12-17-2019
# Database: 2020-01-06.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-12-2020
# Duration: 00:00:32
# OS: Windows 10 Home
# Cleaned: 120
# Failed: 2


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Seznam.cz
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverToolkit
Deleted C:\Users\mikap_000\AppData\Local\DriverToolkit
Not Deleted C:\Program Files (x86)\DriverToolkit
Not Deleted C:\Users\mikap_000\AppData\Roaming\Seznam.cz

***** [ Files ] *****

Deleted C:\END
Deleted C:\Users\mikap_000\Downloads\ReimageRepair.exe
Deleted C:\Windows\Reimage.ini

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\System32\Tasks\DRIVERTOOLKIT AUTORUN
Deleted C:\Windows\Tasks\DRIVERTOOLKIT AUTORUN.JOB

***** [ Registry ] *****

Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1C077256-4A70-42D9-B7ED-1D283CFC1F1D}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1c241c3c-87a0-46bf-8b11-52b9e02bdc20}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2A0C2922-4ED2-41F2-9759-E947F7E1B31F}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2DCFEE17-653E-4909-BAF2-AAC890E988A5}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{31BB440D-C095-4AE4-832-EAA4E027B7EE}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5DB2000D-FDDC-42F7-9EBC-20584AD6FB46}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{607ABCC5-7928-4C80-B68F-98804E6C8333}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F37FE13-37E0-4976-8370-64ACDF7567E0}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{79EB0A00-ABD8-4823-92DF-3F4183B0594}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8D17669E-B94A-4B06-BB53-48C78FDD9B2}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{997F6E44-CCF9-408B-91A3-42B51CA0830}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99E1E362-AC64-468B-8653-531473BFA44F}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9BE831D5-7D43-4FB9-85E5-7139E4D8FD3}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AE5AC503-6F61-4AC7-B0F4-DA849AACA784}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B83E2E08-B065-4CBF-AAC7-60C180DB61C2}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BEF2ECF1-60E8-40B3-8328-92E8DD26265}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C5B5374E-DD9F-453A-A98E-133C6B181B2B}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C9B73486-7E4E-4FD5-939B-829479C36BB5}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E1B99FCF-C6A0-498F-B381-6667ECCF7253}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E43C1025-648F-4424-92F5-8AB378D447A2}
Deleted HKCU\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EB1F85A0-7B9E-4A87-A12C-188AA4D38B2D}
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Crossrider
Deleted HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Installer
Deleted HKCU\Software\DriverToolkit
Deleted HKCU\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.autoupdate
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
Deleted HKCU\Software\Mozilla\NativeMessagingHosts\sznpp_nm
Deleted HKCU\Software\Reimage
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5C9C98A8-52AF-4CC6-B433-B7EA56D96F82}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DRIVERTOOLKIT AUTORUN
Deleted HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|mobilegeni daemon
Deleted HKLM\Software\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Deleted HKLM\Software\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Deleted HKLM\Software\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB}
Deleted HKLM\Software\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted HKLM\Software\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted HKLM\Software\Classes\REI_AxControl.ReiEngine
Deleted HKLM\Software\Classes\REI_AxControl.ReiEngine.1
Deleted HKLM\Software\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|seznam-listicka-distribuce
Deleted HKLM\Software\Reimage
Deleted HKLM\Software\Wow6432Node\\AppDataLow\Software\Crossrider
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\REI_AxControl.DLL
Deleted HKLM\Software\Wow6432Node\\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
Deleted HKLM\Software\Wow6432Node\\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
Deleted HKLM\Software\Wow6432Node\\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|seznam-listicka-distribuce
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_is1
Deleted HKU\.DEFAULT\Software\Mobogenie
Deleted HKU\S-1-5-18\Software\Mobogenie

***** [ Chromium (and derivatives) ] *****

Deleted Seznam doplněk - Esko

***** [ Chromium URLs ] *****

Deleted AVG Secure Search
Deleted AVG Secure Search
Deleted DAEMON Search
Deleted MyStart Search
Deleted MyStart Search

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Preinstalled Software ] *****

Deleted Preinstalled.HPCleanFLC File C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office.lnk
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
Deleted Preinstalled.HPMediaSmart Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{01FB4998-33C4-4431-85ED-079E3EEFE75D}
Deleted Preinstalled.LenovoEnergyManagement Folder C:\Program Files (x86)\LENOVO\ENERGY MANAGEMENT
Deleted Preinstalled.LenovoEnergyManagement Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Energy Management
Deleted Preinstalled.LenovoEnergyManagement Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|EnergyUtility
Deleted Preinstalled.LenovoEnergyManagement Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Energy Management
Deleted Preinstalled.LenovoEnergyManagement Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Run|EnergyUtility
Deleted Preinstalled.LenovoEnergyManagement Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}
Deleted Preinstalled.LenovoEnergyManagement Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{D0956C11-0F60-43FE-99AD-524E833471BB}
Deleted Preinstalled.LenovoPower2Go File C:\Users\mikap_000\Desktop\CyberLink Power2Go.lnk
Deleted Preinstalled.LenovoPower2Go Folder C:\Program Files (x86)\LENOVO\POWER2GO
Deleted Preinstalled.LenovoPower2Go Folder C:\Users\mikap_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LENOVO\POWER2GO
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|UpdateP2GShortCut
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|UpdateP2GShortCut
Deleted Preinstalled.LenovoPower2Go Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{40BF1E83-20EB-11D8-97C5-0009C5020658}
Deleted Preinstalled.LenovoPowerDVD File C:\Users\Public\Desktop\Lenovo PowerDVD 10.lnk
Deleted Preinstalled.LenovoPowerDVD Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|RemoteControl10
Deleted Preinstalled.LenovoPowerDVD Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|RemoteControl10
Deleted Preinstalled.LenovoPowerDVD Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
Deleted Preinstalled.LenovoPowerDVD Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}
Deleted Preinstalled.LenovoSolutionCenter Folder C:\Program Files\LENOVO\LENOVO SOLUTION CENTER
Deleted Preinstalled.LenovoYouCam Folder C:\Program Files (x86)\LENOVO\YOUCAM
Deleted Preinstalled.LenovoYouCam Folder C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LENOVO\YOUCAM
Deleted Preinstalled.LenovoYouCam Registry HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32|YouCam Tray
Deleted Preinstalled.LenovoYouCam Registry HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|YouCam Tray


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [14895 octets] - [12/01/2020 20:00:32]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

[Rudy]

Dejte nové logy FRST+Addition.

[rovercz]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-01-2020
Ran by mikap_000 (administrator) on ROVER-BOOK (LENOVO 20251) (12-01-2020 20:56:32)
Running from C:\Users\mikap_000\Desktop
Loaded Profiles: mikap_000 (Available Profiles: mikap_000)
Platform: Windows 10 Home Version 1803 17134.1130 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\78.0.3904.7\remoting_host.exe
(Google LLC -> Google Inc.) C:\Program Files (x86)\Google\Chrome Remote Desktop\78.0.3904.7\remoting_host.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\stacsv64.exe
(IDT, Inc.) [File not signed] C:\Program Files\IDT\WDM\sttray64.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(McAfee, Inc. -> McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.895\SSScheduler.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\mikap_000\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Realtek Semiconductor Corp -> Realtek semiconductor) C:\Windows\RTFTrack.exe
(ZONER software, a.s. -> ZONER software) C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-19] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [6346464 2013-01-04] (Realtek Semiconductor Corp -> Realtek semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation -> NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA CORPORATION -> NVIDIA Corporation) [File not signed]
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176440 2017-01-19] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Služba Acronis Scheduler2] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [383624 2015-12-25] (Acronis International GmbH -> Acronis)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-04-24] (IDT, Inc.) [File not signed]
HKLM\...\Run: [DolbyTrayApp] => c:\program files (x86)\Dolby Advanced Audio v2\pcee4.exe -autostart
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel® Services Manager -> Intel Corporation)
HKLM-x32\...\Run: [PowerDVD17Agent] => C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD17Agent.exe [527400 2017-06-06] (CyberLink Corp. -> CyberLink Corp.)
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [uTorrent] => C:\Users\mikap_000\AppData\Roaming\uTorrent\uTorrent.exe [1908920 2019-01-27] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [GoogleChromeAutoLaunch_3E7A64667E86F8649D846ED29DF64F3B] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1610928 2019-03-26] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software, a.s. -> ZONER software)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53729824 2015-08-07] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2016-04-22] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [1084688 2016-04-21] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2016-04-22] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Run: [iCloudPhotos] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudPhotos.exe [356664 2016-04-22] (Apple Inc. -> Apple Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-11] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll [2013-04-03] (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2018-12-21]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.895\SSScheduler.exe (McAfee, Inc. -> McAfee, Inc.)

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1171691C-6F55-4520-9A6D-2588554E5112} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {133F0568-DBCA-4571-A56C-0A4B9611706C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {13F3B787-D214-417A-BB58-FA79746A11DA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {1F98693C-E980-4F99-85DC-82E4EDD1993C} - System32\Tasks\Lenovo\LSC\Lenovo Solution Center Notifications => C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
Task: {254CC30F-920D-4BC4-BDC4-6EE7A7282D72} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
Task: {2B60AD1B-6B94-451A-9451-F041E4FDC8B9} - System32\Tasks\{9AA5BE4B-9E97-4030-8927-102DABADB0C3} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lig ... rror=12002
Task: {2D378E97-DDE4-4425-9DFA-55F4E7F8CEA0} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe
Task: {2E3BC2BB-3A86-49EC-B602-8FAAEE1180F6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3010CAD0-F239-461B-8605-73E27DA5746D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {30A847E4-02BA-468E-A3DE-FF85C4D52FE6} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {370DB8EF-93B1-4C6A-BCE9-80E6BA72B991} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {37624E04-D9E8-48E5-A1C1-DFA9DFCBF791} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {3C466904-7551-42EA-AC17-75566E562A08} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {3C5B48D0-0A6B-4EF3-B382-31443B50FFF7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {4131E80C-5A7D-408F-8DBC-4B144047E5EB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.)
Task: {512F4B1E-8DFA-4518-ABDF-8418C2A94648} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {52C969DF-4573-45F8-9304-80D55642C4AF} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2436936 2019-03-26] (Overwolf Ltd -> Overwolf LTD)
Task: {563510FD-ED16-4EB9-8916-2F439F3EBD55} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [16832 2015-08-17] (LENOVO -> Lenovo)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [33280 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
Task: {64A81424-CCBB-44D5-A8F4-0CA65BF9E230} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {76CC1429-7BF9-4F57-A650-3835DDBFED9A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {7742D1EF-56DD-47ED-AEF6-911EEEB2F6B6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {7A5E3161-31F2-4C37-BA1C-415B4AC1467E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {80DCDC99-EF5D-45DD-9F6B-57E05D3AAAAA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {96D0418B-6192-4FCF-B34A-932F8F8DBC50} - System32\Tasks\OFFICE2013ACT => C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs [133 2012-03-08] () [File not signed] <==== ATTENTION
Task: {97FCCFC7-324F-4ABA-9A59-7A17D4328C00} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {A246B19B-6E57-4FF1-847B-40FFCBFC7D3C} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe [1457720 2019-12-10] (Adobe Inc. -> Adobe)
Task: {ACDAD872-461D-4770-ADB2-482D154BB968} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C642FDDF-9ED3-4E84-A452-FB49687F2657} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CF1F6E9E-F30B-4A19-AAA1-B93C2E5D0F3D} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {DBF24B96-1D1C-4960-BD2B-374112EDDBDB} - \WPD\SqmUpload_S-1-5-21-3565807799-3977009618-1529909285-1002 -> No File <==== ATTENTION
Task: {DC6EE89A-1ABA-41BF-972D-48DC65D050EF} - System32\Tasks\Lenovo\LSC\LSCHardwareScanPostpone => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe
Task: {DD3DE13F-1462-443F-A50D-47D3110A5092} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {DE0E3B77-D775-4F12-AD2E-1D59BA42019A} - System32\Tasks\{903E628C-AE6B-474D-9E98-27A04F06F1E3} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\mikap_000\Downloads\eduroamczu.exe -d C:\Users\mikap_000\Downloads
Task: {E061D7C2-749D-4ECD-BA67-9A95AEBB55BE} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => C:\windows\system32\rundll32.exe C:\windows\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {EB8EEED1-2E6E-48F2-8FED-8C5A8F61D17E} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-10] (Adobe Inc. -> Adobe)
Task: {EDCB63C2-2769-4DE0-939C-E4E07E2E34E6} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {FD417E67-D733-49FE-8410-7C438F314C8D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Dolby Selector.job => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{a080c455-6db8-454c-8070-d1ca196c9888}: [DhcpNameServer] 192.168.0.1 0.0.0.0
Tcpip\..\Interfaces\{e7832e4e-d06a-4ad8-9558-60171c93e84a}: [DhcpNameServer] 192.168.10.1

Internet Explorer:
==================
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {01AFEE14-6BFD-4BBB-A9B6-79364B6EEC77} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {314845B7-0157-42B9-AF41-12EEAC770848} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {4BAD47C1-6872-4C98-A0D8-70E0CDB05B70} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {76DD3405-B352-4439-9B80-95741AA8529E} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {839115BE-42C1-47B3-98F0-D99866AFF922} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {8C2F0DEA-0CD1-4C6D-9743-36C4718927F8} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {979EC274-B8D9-43DF-B2CA-301B4941383D} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {9F47A68B-8B6B-4CAB-B3AC-F085EBB8AC58} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002 -> {E0E91A36-CC0D-455F-9A9C-4DB4BCD6FBDD} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO: STATISTICA Browser Helper -> {990A8747-93BF-4EF7-B72E-94A6884B98C2} -> C:\Program Files\StatSoft\STATISTICA 12\StaBHO.dll [2013-04-02] (StatSoft, Inc.) [File not signed]
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-09-26] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: STATISTICA Browser Helper -> {990A8747-93BF-4EF7-B72E-94A6884B98C2} -> C:\Program Files\StatSoft\STATISTICA 12\Support\StaBHO.dll [2013-04-01] (StatSoft, Inc.) [File not signed]
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-09-26] (Oracle America, Inc. -> Oracle Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll [2008-05-23] (Microsoft Corporation) [File not signed]
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Software Sarl -> Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2014-07-14] (Skype Software Sarl -> Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Skype Software Sarl -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 93fuvypa.default
FF ProfilePath: C:\Users\mikap_000\AppData\Roaming\Mozilla\Firefox\Profiles\93fuvypa.default [2020-01-12]
FF Extension: (Seznam pro Firefox - Esko) - C:\Users\mikap_000\AppData\Roaming\Mozilla\Firefox\Profiles\93fuvypa.default\Extensions\sko-extension@firma.seznam.cz [2017-11-01]
FF Extension: (Flash Game Maximizer) - C:\Users\mikap_000\AppData\Roaming\Mozilla\Firefox\Profiles\93fuvypa.default\Extensions\{258735dc-6743-4805-95fc-f95941fffdad}.xpi [2015-03-22] [Legacy] [not signed]
FF Extension: (Seznam lištička) - C:\Users\mikap_000\AppData\Roaming\Mozilla\Firefox\Profiles\93fuvypa.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-11-01] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_303.dll [2019-12-10] (Adobe Inc. -> )
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_303.dll [2019-12-10] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-09-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-09-26] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2020-01-11] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2020-01-11] (Google LLC -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-17] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3565807799-3977009618-1529909285-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\mikap_000\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-12-05] (Unity Technologies ApS -> Unity Technologies ApS)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR NewTab: Default -> Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/speeddial/newTabSwitcher.html", Not-active:"chrome-extension://blmojkbhnkkphngknkmgccmlenfaelkd/speeddial/html/newTab.html"
CHR Notifications: Default -> hxxps://www.facebook.com; hxxps://www.letemsvetemapplem.eu
CHR Profile: C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default [2020-01-12]
CHR Extension: (Dokumenty) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-20]
CHR Extension: (Disk Google) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-26]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2019-10-03]
CHR Extension: (YouTube) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-03]
CHR Extension: (Vyhledávání Google) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-12-10]
CHR Extension: (Seznam doplněk - Esko) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-01-12]
CHR Extension: (Gmail) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-06]
CHR Extension: (Chrome Media Router) - C:\Users\mikap_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-01-12]
CHR HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd]
CHR HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]

Opera:
=======
OPR Extension: (Shoppy-Up.2.7) - C:\Users\mikap_000\AppData\Roaming\Opera Software\Opera Stable\Extensions\biangfhmbinbnogkjddbfgmablffonfh [2014-12-08]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc. -> Apple Inc.)
R2 chromoting; C:\Program Files (x86)\Google\Chrome Remote Desktop\78.0.3904.7\remoting_host.exe [72176 2019-09-08] (Google LLC -> Google Inc.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-19] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel(R) pGFX -> Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-09-18] (Intel Corporation -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-09-18] (Intel Corporation -> Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation -> NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation -> NVIDIA Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2436936 2019-03-26] (Overwolf Ltd -> Overwolf LTD)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2013-04-24] (IDT, Inc.) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-01-11] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [X]
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.11.812\McCHSvc.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem"

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [95232 2012-10-03] (Microsoft Windows Hardware Compatibility Publisher -> Alcor Micro, Corp.)
R3 L1C; C:\WINDOWS\System32\drivers\L1C63x64.sys [121344 2018-04-12] (Microsoft Windows -> Qualcomm Atheros Co., Ltd.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [8239456 2013-01-04] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
R3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt64.sys [546304 2013-04-24] (Microsoft Windows Hardware Compatibility Publisher -> IDT, Inc.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45664 2020-01-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [355760 2020-01-11] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-01-11] (Microsoft Windows -> Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] (CyberLink -> "CyberLink)
R2 {A14A8EF6-B11D-4356-9ECC-4B937E6CC626}; C:\Program Files (x86)\CyberLink\PowerDVD17\Common\NavFilter\000.fcl [38168 2017-06-08] (CyberLink Corp. -> CyberLink Corp.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-12 19:59 - 2020-01-12 19:58 - 008237744 _____ (Malwarebytes) C:\Users\mikap_000\Desktop\adwcleaner_8.0.1.exe
2020-01-12 19:58 - 2020-01-12 19:58 - 008237744 _____ (Malwarebytes) C:\Users\mikap_000\Downloads\adwcleaner_8.0.1.exe
2020-01-12 19:24 - 2020-01-12 19:30 - 000063843 _____ C:\Users\mikap_000\Desktop\Addition.txt
2020-01-12 19:17 - 2020-01-12 20:57 - 000036481 _____ C:\Users\mikap_000\Desktop\FRST.txt
2020-01-12 19:11 - 2020-01-12 19:13 - 002573312 _____ (Farbar) C:\Users\mikap_000\Desktop\FRST64.exe
2020-01-12 18:40 - 2020-01-12 18:40 - 000001681 _____ C:\Users\Public\Desktop\League of Legends.lnk
2020-01-12 18:32 - 2020-01-12 18:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-01-12 18:30 - 2020-01-12 18:30 - 000000000 ____D C:\Users\mikap_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Riot Games
2020-01-12 18:29 - 2020-01-12 19:03 - 000000000 ____D C:\Users\mikap_000\AppData\Local\Riot Games
2020-01-12 17:38 - 2019-09-01 04:57 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-01-12 17:38 - 2019-09-01 04:57 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-01-12 14:03 - 2020-01-12 14:03 - 013572096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 012500992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 004491264 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2020-01-12 14:03 - 2020-01-12 14:03 - 003397120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2020-01-12 14:03 - 2020-01-12 14:03 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 000521216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\DavSyncProvider.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DavSyncProvider.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2020-01-12 14:03 - 2020-01-12 14:03 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 025855488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 022736384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 022016000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 020402960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 019525632 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 019386368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 013878784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 012835328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 012036096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 009080120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 007991296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 006647296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 006570576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 006053808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 005821448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 005769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 005662720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004938240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004849664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004789944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004517376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004404720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004383232 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004175360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 004098912 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 004056064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 003751824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 003687424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 003554304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 003330880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002969600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 002774120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002711352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 002700288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002571336 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002421776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 002417744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002406912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002394960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2020-01-12 14:02 - 2020-01-12 14:02 - 002379264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002371504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002331480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002260928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002258944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 002206424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2020-01-12 14:02 - 2020-01-12 14:02 - 002085888 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2020-01-12 14:02 - 2020-01-12 14:02 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2020-01-12 14:02 - 2020-01-12 14:02 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001979960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001947168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001922056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 001862656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001809408 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001805872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001784696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001651040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001644032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001634304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001628704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001585304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001559272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001472000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001459328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-01-12 14:02 - 2020-01-12 14:02 - 001453624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001427768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001380312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001375456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001328440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001308160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001300480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001299472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001288928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001286528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001260776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 001254712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001235968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001188000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001141712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-01-12 14:02 - 2020-01-12 14:02 - 001130776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001060864 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 001026280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001020280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 001003008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000979456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000976896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000917816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000910336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2020-01-12 14:02 - 2020-01-12 14:02 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000901120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000856576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000829752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000811320 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000799248 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000790720 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000785776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000740864 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000704000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000681472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000672768 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000665400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000662840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000638264 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000627712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000624128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000581256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000576528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000560600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000545808 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000538192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000537600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000500752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000494992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000486400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000485888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000472576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000470512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000466744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-01-12 14:02 - 2020-01-12 14:02 - 000465832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000433168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000430304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000412696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000402744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000396296 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000366592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000357336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000356896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000322576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000286616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000257536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WiFiDisplay.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000227848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000221016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-01-12 14:02 - 2020-01-12 14:02 - 000210448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000192608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000192312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-01-12 14:02 - 2020-01-12 14:02 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enrollmentapi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000142352 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000134656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000129088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfps.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000115728 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BitLockerCsp.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetDriverInstall.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000108560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000106560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000103736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000101400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000091568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000081720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComputerDefaults.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComputerDefaults.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000046592 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll
2020-01-12 14:02 - 2020-01-12 14:02 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2020-01-12 14:02 - 2020-01-12 14:02 - 000039736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2020-01-12 14:02 - 2020-01-12 14:02 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 021411976 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 016598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 008627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 008189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 007900880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 007447904 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 006979128 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 006594048 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 005627280 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 004852736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 004783104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 004771840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 004527072 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 004055552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003614720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 003403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003392000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003290584 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003203072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003180080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 003091968 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002913792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002810680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 002738688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002603008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002478152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002468048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002179072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002166272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 002161288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001990056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001960800 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001934808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001920512 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001793472 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001726264 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001724928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001676800 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001674216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001662480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001658136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001647616 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001641160 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001613096 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001566736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001563648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001517480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001400832 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001320640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001264640 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001224720 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 001222656 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001213264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 001210880 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001193472 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001110016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 001047568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 001031696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 001027600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 001023800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 001023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000930616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000905216 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000885760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000884736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2020-01-12 14:01 - 2020-01-12 14:01 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2020-01-12 14:01 - 2020-01-12 14:01 - 000806328 _____ C:\WINDOWS\SysWOW64\locale.nls
2020-01-12 14:01 - 2020-01-12 14:01 - 000806328 _____ C:\WINDOWS\system32\locale.nls
2020-01-12 14:01 - 2020-01-12 14:01 - 000796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000795360 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000791352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000786072 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000782336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcommdlg.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000771384 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000769288 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000767232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000761344 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000755712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000727584 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000710240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000705336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000692352 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000665432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000629248 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000611640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000605712 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000604000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000594032 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000586680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000582144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000573808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000571688 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000568312 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000550512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000536832 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuietHours.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000526512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000514576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000514560 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000494904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000491208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000490136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000440768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000435728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000435216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000421376 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\system32\curl.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000420984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xbgmengine.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000413200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000402016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000385272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000379432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000374584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000372736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000361752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000349216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000341392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000323904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000318976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000274792 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000249088 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000230200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000227744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000209936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000194352 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000191800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000170296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000152104 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000148288 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000146920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000141312 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000135176 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000133136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000130840 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000129360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000129040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000125504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000117240 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DuCsps.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000095224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000092472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000088016 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000081040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000060216 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000058882 _____ C:\WINDOWS\system32\srms.dat
2020-01-12 14:01 - 2020-01-12 14:01 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000046608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\werkernel.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000039032 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2020-01-12 14:01 - 2020-01-12 14:01 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000031032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdcpw.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2020-01-12 14:01 - 2020-01-12 14:01 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-01-12 14:01 - 2020-01-12 14:01 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2020-01-12 12:11 - 2020-01-12 14:13 - 000000000 ____D C:\WINDOWS\UpdateAssistant
2020-01-11 09:54 - 2020-01-12 12:07 - 000000000 ____D C:\Program Files\CUAssistant

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2020-01-12 20:57 - 2014-11-06 00:10 - 000000000 ____D C:\FRST
2020-01-12 20:56 - 2018-05-28 12:09 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-12 20:56 - 2018-04-12 00:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-12 20:53 - 2018-05-28 12:42 - 000004210 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{299DF6CD-4E24-48D6-AD43-3CAE2BF06BD4}
2020-01-12 20:09 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-01-12 20:09 - 2017-11-01 16:29 - 000000000 ____D C:\Users\mikap_000\AppData\Local\Packages
2020-01-12 20:07 - 2018-05-28 12:30 - 001689054 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-12 20:07 - 2018-04-12 16:50 - 000716456 _____ C:\WINDOWS\system32\perfh005.dat
2020-01-12 20:07 - 2018-04-12 16:50 - 000144714 _____ C:\WINDOWS\system32\perfc005.dat
2020-01-12 20:07 - 2018-04-12 00:36 - 000000000 ____D C:\WINDOWS\INF
2020-01-12 20:05 - 2016-06-16 16:42 - 000000000 ___RD C:\Users\mikap_000\iCloudDrive
2020-01-12 20:04 - 2015-08-09 19:44 - 000000000 __SHD C:\Users\mikap_000\IntelGraphicsProfiles
2020-01-12 20:03 - 2016-09-28 14:30 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-12 20:02 - 2018-05-28 12:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-12 20:02 - 2018-04-11 22:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-01-12 20:01 - 2018-05-28 12:16 - 000000000 ____D C:\Users\mikap_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2020-01-12 20:01 - 2013-09-01 14:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2020-01-12 20:01 - 2013-09-01 14:29 - 000000000 ____D C:\Program Files\Lenovo
2020-01-12 20:01 - 2013-09-01 14:27 - 000000000 ____D C:\Program Files (x86)\Lenovo
2020-01-12 20:00 - 2014-11-06 23:31 - 000000000 ____D C:\AdwCleaner
2020-01-12 18:33 - 2014-08-30 15:31 - 000000000 ____D C:\ProgramData\Riot Games
2020-01-12 18:32 - 2014-02-04 17:45 - 000000000 ____D C:\Riot Games
2020-01-12 17:52 - 2017-01-03 17:13 - 000000000 ____D C:\Users\mikap_000\AppData\Roaming\Seznam.cz
2020-01-12 17:46 - 2018-04-12 00:38 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-12 17:45 - 2015-09-16 19:24 - 000000000 ___RD C:\Users\mikap_000\3D Objects
2020-01-12 17:45 - 2014-02-05 08:21 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-01-12 17:37 - 2018-05-28 12:09 - 000414608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\TextInput
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-01-12 17:34 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-01-12 17:34 - 2018-04-11 22:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-01-12 17:33 - 2018-04-12 00:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-01-12 17:33 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-12 17:33 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\ShellComponents
2020-01-12 17:33 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\Provisioning
2020-01-12 17:33 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-01-12 17:33 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-12 14:36 - 2018-04-12 00:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-12 14:07 - 2018-04-12 00:38 - 000017800 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-01-12 13:12 - 2018-07-15 09:37 - 000000000 ____D C:\ProgramData\Packages
2020-01-12 12:38 - 2014-02-04 19:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-12 12:25 - 2014-02-04 19:47 - 129221664 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-11 10:40 - 2018-02-21 17:16 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-01-11 10:38 - 2014-02-04 17:39 - 000002312 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-11 10:38 - 2014-02-04 17:39 - 000002271 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-01-11 10:34 - 2018-05-28 12:42 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-01-11 10:29 - 2015-12-01 18:39 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-01-11 09:59 - 2018-05-28 12:42 - 000003474 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-01-11 09:59 - 2018-05-28 12:42 - 000003350 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-01-11 09:54 - 2018-11-16 09:54 - 000000000 ____D C:\Program Files\rempl
2020-01-11 09:21 - 2018-05-28 12:42 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3565807799-3977009618-1529909285-1002
2020-01-11 09:21 - 2018-05-28 12:16 - 000002429 _____ C:\Users\mikap_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-01-11 09:21 - 2014-05-07 07:03 - 000000000 __RDO C:\Users\mikap_000\OneDrive

==================== Files in the root of some directories ========

2014-11-08 00:55 - 2014-11-08 00:55 - 000029696 _____ () C:\Users\mikap_000\AppData\Local\MSGBOX.EXE

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================

[rovercz]

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-01-2020
Ran by mikap_000 (12-01-2020 20:59:14)
Running from C:\Users\mikap_000\Desktop
Windows 10 Home Version 1803 17134.1130 (X64) (2018-05-28 11:44:05)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3565807799-3977009618-1529909285-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3565807799-3977009618-1529909285-503 - Limited - Disabled)
Guest (S-1-5-21-3565807799-3977009618-1529909285-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3565807799-3977009618-1529909285-1006 - Limited - Enabled)
mikap_000 (S-1-5-21-3565807799-3977009618-1529909285-1002 - Administrator - Enabled) => C:\Users\mikap_000
WDAGUtilityAccount (S-1-5-21-3565807799-3977009618-1529909285-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\uTorrent) (Version: 3.5.5.44994 - BitTorrent Inc.)
Acronis Disk Director (HKLM-x32\...\{AE372858-B1BD-49EF-8308-648322846008}) (Version: 12.0.3270 - Acronis)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.199 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.303 - Adobe)
Age Of Empires 3 CZ verze 1.0 (HKLM-x32\...\{A6502644-790D-4DCB-824F-45C64B22AF4D}_is1) (Version: 1.0 - tomi2k9)
Aktualizace NVIDIA 10.11.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.11.15 - NVIDIA Corporation) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\{073E8A29-B106-4E64-9B06-D8B381077D66}) (Version: 3.1.1245.72250 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.1.1245.72250 - Alcor Micro Corp.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
CyberLink PowerDVD 17 (HKLM-x32\...\{D15BFD7F-6BBA-49A7-A6B1-14C00DCA6842}) (Version: 17.0.1808.60 - CyberLink Corp.)
Dash Core (64-bit) (HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Dash Core (64-bit)) (Version: 0.12.3 - Dash Core project)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.4.0 - Ubisoft)
GeForce Experience NvStream Client Components (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC) (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.117 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Heroes of Might & Magic III - HD Edition (HKLM-x32\...\Heroes of Might & Magic III - HD Edition_is1) (Version: - )
Chrome Remote Desktop Host (HKLM-x32\...\{507238FB-1F1F-4E97-8478-29951A0F7DDD}) (Version: 78.0.3904.7 - Google Inc.)
iCloud (HKLM\...\{ADFDB647-35C0-4254-9EE6-2D9C3B7104BD}) (Version: 5.2.1.69 - Apple Inc.)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6431.0 - IDT)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
iTunes (HKLM\...\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB}) (Version: 12.5.5.5 - Apple Inc.)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.710 - Oracle)
League of Legends (HKLM-x32\...\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc)
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.6400 - Broadcom Corporation)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10206 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (HKLM\...\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.1219 - CyberLink Corp.)
Lenovo Solution Center (HKLM\...\{E92E1FF1-B188-43FE-BECA-2248E227E67D}) (Version: 2.8.005.00 - Lenovo Group Limited)
Lenovo_Wireless_Driver (HKLM-x32\...\{5D642A72-8194-4A22-80DA-11FE610CCA8E}) (Version: 6.30.5987 - Lenovo)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.812.1 - McAfee, Inc.)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}) (Version: 2.0.675.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{FD052FB9-FE90-4438-B355-15EDC89D8FB1}) (Version: 2.0.673.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\OneDriveSetup.exe) (Version: 19.222.1110.0006 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Might & Magic Heroes VII (HKLM-x32\...\{54C50013-EF28-4D0A-887F-878723F89EDC}_is1) (Version: 1.0.0.0 - Ubisoft)
NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA Virtual Audio 1.2.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.19 - NVIDIA Corporation)
Ori and the Blind Forest (HKLM-x32\...\Ori and the Blind Forest_is1) (Version: - )
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.127.0.41 - Overwolf Ltd.)
Ovládací panel NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.)
PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars)
Pro Evolution Soccer 2015 (HKLM-x32\...\UHJvRXZvbHV0aW9uU29jY2VyMjAxNQ==_is1) (Version: 1 - )
Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.16 - Qualcomm Atheros Communications Inc.)
RICOH_Media_Driver_v2.22.18.01 (HKLM-x32\...\{FE041B02-234C-4AAA-9511-80DF6482A458}) (Version: 2.22.18.01 - RICOH)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 1.6.85 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
STATISTICA CZ 12 64-bit (HKLM\...\{ED579539-9D37-4600-B763-D450593F501B}) (Version: 12.0.1133.2 - StatSoft, Inc.)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - )
The Walking Dead Epizody 1-5 verze 1.0 (HKLM-x32\...\{65BE85A8-13BB-4B4A-B1AF-EC6054292C00}_is1) (Version: 1.0 - Telltale Games)
TurboFLOORPLAN Dum & Interiér & Zahrada PRO (HKLM-x32\...\InstallShield_{949815AB-D269-4DD3-AB1A-539432BAFC1E}) (Version: 15.1 - IMSIDesign)
Unity Web Player (HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\UnityWebPlayer) (Version: 4.6.1f1 - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{3BAE4496-6F6C-4330-A8AA-B93D3D346FA5}) (Version: 2.53.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
UserGuide (HKLM-x32\...\{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo) Hidden
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.9 - Lenovo)
VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: 3.29 - NCH Software)
VirtualDJ Home FREE (HKLM-x32\...\{A6AC699F-8315-40CA-8F70-E917494978AB}) (Version: 7.4 - Atomix Productions)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Wi-Fi Scanner version 3.2.0.114 (HKLM-x32\...\Wi-Fi Scanner_is1) (Version: 3.2.0.114 - LizardSystems)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Driver Package - Lenovo (ACPIVPC) System (06/15/2012 8.1.0.1) (HKLM\...\71BC3FD63F450BA0A957AAECBDB4A000C4F2BE42) (Version: 06/15/2012 8.1.0.1 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733) (HKLM\...\8A223E56FB1ED4F697B54E5BF96F1EB63B512684) (Version: 06/19/2012 10.13.29.733 - Lenovo)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
Wondershare Data Recovery(Build 6.5.1.5) (HKLM-x32\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 6.5.1.5 - Wondershare Software Co.,Ltd.)
Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.12 - ZONER software)

Packages:
=========
AccuWeather - Weather for Life -> C:\Program Files\WindowsApps\AccuWeather.AccuWeatherforWindows8_10.0.348.1000_x64__8zz2pj9h1h1d8 [2018-04-09] (AccuWeather) [MS Ad]
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1670.2.0_x86__kgqvnymyfvs32 [2020-01-12] (king.com)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_6.22.8816.0_x86__q4d96b2w5wcc2 [2020-01-12] (Evernote)
Lenovo Cloud Storage by SugarSync -> C:\Program Files\WindowsApps\C59AD0AF.LenovoCloudStorageBySugarSync_1.3.0.889_neutral__m3tnjedffpfhj [2014-02-04] (SugarSync Inc.)
Lenovo Support -> C:\Program Files\WindowsApps\E046963F.LenovoSupport_2.0.5.0_x86__k1h2ywk1493x8 [2015-01-24] (Lenovo, INC.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.1910.41.0_x64__k1h2ywk1493x8 [2020-01-12] (LENOVO INC.)
Live TV -> C:\Program Files\WindowsApps\FilmOnLiveTVFree.FilmOnLiveTVFree_1.3.6.115_x64__zx03kxexxb716 [2014-02-04] (FilmOn TV Inc.)
McAfee® Central for Lenovo -> C:\Program Files\WindowsApps\McAfeeInc.06.McAfeeSecurityAdvisorforLenovo_5.0.173.1_x64__bq6yxensn79aw [2018-04-04] (McAfee_Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft News -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.13393.0_x64__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation) [MS Ad]
Microsoft Průvodce pro telefon -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-02-13] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2020-01-12] (Microsoft Studios) [MS Ad]
Microsoft Telefon -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2018-09-09] (Microsoft Corporation)
MSN Cestování -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-18] (Microsoft Corporation) [MS Ad]
MSN Money -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.34.13393.0_x64__8wekyb3d8bbwe [2020-01-11] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.34.13393.0_x64__8wekyb3d8bbwe [2020-01-11] (Microsoft Corporation) [MS Ad]
MSN Zdraví a fitness -> C:\Program Files\WindowsApps\Microsoft.BingHealthAndFitness_3.0.4.336_x64__8wekyb3d8bbwe [2015-07-18] (Microsoft Corporation) [MS Ad]
PowerDVD for Lenovo Idea -> C:\Program Files\WindowsApps\CyberLinkCorp.id.PowerDVDforLenovoIdea_1.1.2618.24808_x86__hgg5mn3xps74a [2014-02-21] (CYBERLINK COM CORPORATION)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
Zinio -> C:\Program Files\WindowsApps\ZinioLLC.Zinio_2.1.0.317_x64__0q6dqzpp40p2e [2014-05-09] (Zinio LLC)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\ChromeHTML: -> <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-3565807799-3977009618-1529909285-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6722448 2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4222864 2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers1: [$PowerDVD] -> {E72C61D0-C453-42BA-84C9-88AEE3DEE676} => C:\ProgramData\CyberLink\PowerDVD17\OpenWith\PDVD_Shell64.dll [2017-06-06] (CyberLink Corp. -> CyberLink Corp.)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2016-04-22] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [SugarSync] -> {305BC11B-5175-492B-B569-866547FCDA40} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc. -> SugarSync, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2013-08-22] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Drivers32-x32: [msacm.clmp3enc] => C:\Program Files (x86)\Lenovo\Power2Go\CLMP3Enc.ACM

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\mikap_000\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.htm
Shortcut: C:\Users\mikap_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\mikap_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

==================== Loaded Modules (Whitelisted) =============

2015-01-10 16:25 - 2014-09-09 12:30 - 000603648 _____ () [File not signed] C:\Program Files\Zoner\Photo Studio 17\Program32\SpiderMonkey.dll

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

==================== Association (Whitelisted) =================

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2018-12-21 13:21 - 000000903 _____ C:\WINDOWS\system32\drivers\etc\hosts
0.0.0.1 mssplus.mcafee.com

2014-12-01 18:51 - 2017-01-05 21:50 - 000000660 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
18 16 34 71
192.168.173.83 android-ad2b612f3aa51396.mshome.net # 2014 12 1 8 18 14 15 164
192.168.173.131 Machine.mshome.net # 2014 12 1 8 18 38 18 139
192.168.173.1 RoVeR-BOOK.mshome.net # 2019 11 6 30 18 38 18 139

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Lenovo\Bluetooth Software\;C:\Program Files\Lenovo\Bluetooth Software\syswow64;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\mikap_000\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{044a49cf-bea6-4095-9c7b-65f852f00f31}.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\StartupApproved\StartupFolder: => "hack.vbs"
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\StartupApproved\StartupFolder: => "hack.exe"
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\StartupApproved\Run: => "RGSC"
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\StartupApproved\Run: => "Overwolf"

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{77A7436E-D4BB-4FA3-871F-678C302BD741}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\CastingStation.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{B467E0FE-C0BC-41CF-B459-F57E3FC0920F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{F23A73C0-FBD9-4499-9F05-014E2BFAF285}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD17Agent.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{2E3CC03E-10D7-44B4-9595-4C468C697EFF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\Kernel\DMS\CLMSServerPDVD17.exe (CyberLink Corp. -> CyberLink)
FirewallRules: [{4D46D78F-95A1-4C3E-B7DD-8163DAA94BCB}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{9BD7ACDA-D9D6-47C5-B6C6-5C68D0A89963}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{49F95F16-36CB-4B57-8F13-CE7BC1E3F6FF}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{68BEAFED-B654-40E2-82DF-38C2D2C5721F}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [UDP Query User{F54CA06B-6172-49F9-9418-2DE882E32213}C:\program files (x86)\might & magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) C:\program files (x86)\might & magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.)
FirewallRules: [TCP Query User{4BAD5CBD-31A5-4220-B27B-459B7BA54FF8}C:\program files (x86)\might & magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe] => (Allow) C:\program files (x86)\might & magic heroes vii\binaries\win64\mmh7game-win64-shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.)
FirewallRules: [UDP Query User{E85F1E55-5348-4628-9B15-A117A0D5C11B}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe No File
FirewallRules: [TCP Query User{91C6921D-C4C9-4211-BB80-9A48DA9CC277}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe No File
FirewallRules: [UDP Query User{52265B85-0FDE-4CAD-84C0-55921286D471}C:\hry\fifa 15\fifa15.exe] => (Allow) C:\hry\fifa 15\fifa15.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [TCP Query User{E40ADF8F-6296-4DA4-B5C0-80A9CEA4E1C0}C:\hry\fifa 15\fifa15.exe] => (Allow) C:\hry\fifa 15\fifa15.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [UDP Query User{FEE045C8-26FC-4F31-9A1F-57A430FD5627}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [TCP Query User{045EB2D7-20E7-4030-BF49-B160F90AD211}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{EA278E32-DA5A-4541-AC40-88BC69F33676}] => (Allow) C:\Hry\Battlefield 4\bf4.exe No File
FirewallRules: [{32595270-4331-49C4-90A3-7B2985CB6FCB}] => (Allow) C:\Hry\Battlefield 4\bf4.exe No File
FirewallRules: [{63266E41-05DD-48FC-B876-FA61735BBAE0}] => (Allow) C:\Hry\Battlefield 4\bf4_x86.exe No File
FirewallRules: [{815C335D-3A6E-45C0-904E-7A1AE4AF91D9}] => (Allow) C:\Hry\Battlefield 4\bf4_x86.exe No File
FirewallRules: [UDP Query User{6ABE23B0-EF79-4708-AA7F-74C2996888C4}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{C5FE7B31-F6D6-47A5-91DB-DC2CCAB2B5A2}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3CF27819-A657-4606-ACE8-B9AB84519650}] => (Allow) C:\Users\mikap_000\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{65DE42C6-6E83-47D6-9A87-CB939F03DFFB}] => (Allow) C:\Users\mikap_000\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{360E120F-FF97-4BE0-BC2E-BB3BB13D1651}] => (Allow) C:\Users\mikap_000\Downloads\utorrent.exe No File
FirewallRules: [{CB6FAE66-E672-4F2A-A0D8-3B9F7B5B5EA3}] => (Allow) C:\Users\mikap_000\Downloads\utorrent.exe No File
FirewallRules: [{FE4E6314-0FF4-4525-81C0-A39AC9C269D0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B8B85283-BA5C-43BF-B3E8-6C162AC1396B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E1064130-27E9-4E31-822F-99E3E952095E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1D24FE00-6618-4AA7-BEB8-23808A09A347}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{577797D7-7F44-4420-89FB-8B21827EECA8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FE1EC0B7-9A5F-4F24-B618-039823B5F9E2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A931894A-3EBD-417B-8D6E-1EBB79719BA0}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe No File
FirewallRules: [{8D738CE3-010C-4CE2-90CB-3927863EC48A}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe No File
FirewallRules: [UDP Query User{6BD3335F-12B1-41FE-97FC-70BDB35B682B}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{293A16BF-2A76-4945-9016-F6E68B70CD8C}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D2D57599-AF06-4D8D-8200-71E20932E740}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{623915A2-1742-4C37-813B-B1D79CD4EFCF}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{4EC0B784-66AD-4AB2-9AB6-D1133A63346A}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{F0679DBA-C470-4182-8E65-F26B9A93C6AE}] => (Allow) C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{E0926A27-663A-4CA1-9A02-E939E6864936}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe No File
FirewallRules: [{37432BCC-7384-4A10-86F4-79E11477A97F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe No File
FirewallRules: [{C5AB9484-D0E0-4836-84EA-C5B4D22C963E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{464E58D3-D088-4DDC-BF2A-FD51A1F97760}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{A25F66AA-CDE2-4B28-B914-55272BCD7E83}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{20749702-A136-4EE4-B828-F6BE76EB8E89}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{3D4900CC-4F3E-462C-B9E0-B8ECF1155F84}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{630116F3-3CE4-4BC7-B57E-1282D024CCC1}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{5227F9AD-AC78-404C-9493-C5FFBEB6C879}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{D2873895-4AC5-4A8E-A60F-6237B6BD5354}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{8263B54E-8C00-4DA4-BE41-CAB44B3C7116}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{134E09F1-B9A9-4346-82F0-9A3ABDBF12BB}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{308E5627-7D3A-4D53-BCB0-CC4650F1B7E3}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{B0983D1B-2E84-4283-B40D-6E2B41EA21D0}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{87FE9CA0-53FC-464A-9887-AEF37776F8D3}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{1ECEBEBA-B331-427B-BDB7-F5A966B57832}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{4548D695-8C5F-403C-A415-EB2376CB4B79}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{E2A03253-9E0E-4672-B779-10445D984A54}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{2B38E0B3-12E7-403F-8561-91111CFA912C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{53FCAA01-F41E-4A38-99D3-67CA529315B5}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{BAF6B2CA-9AAB-4FFB-B4DE-94ADBF788CEF}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{74C23C64-80D5-4AF8-B171-B25C4E1B8728}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{553C80C1-B6A2-44BB-9D1B-1F1F1D447F68}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{472538A4-62D1-4428-B5CF-9AD56A2B3EE0}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{7134383B-3CB9-4753-8104-33F7A16FC14F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{8757183E-5D93-4FD2-97AA-08BE3EE2BAB2}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{93249365-437B-4CA7-961A-B2C8F4948838}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{518F11D8-BAA3-4A6B-A2AC-C8BE1EAFEFAC}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{FBEE11DB-6781-4ABC-85B4-75AA58B5D9B9}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{CD92A1BB-5209-4849-9D10-A4629A19C180}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{D128E5AF-9862-4468-8EF0-0FB3D25A483F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{F4C7FA77-DAEE-4831-805F-ECFE34BF72EF}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{A0E30515-F922-4CF7-94B2-EBD409E7E762}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{8BB98767-5F58-4F59-A508-211AA6CFD8B6}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{2CF7D9F0-D8F9-48CA-8234-79C95EC42BA8}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{A54B4B86-C439-4CF5-9770-624A03D8282E}] => (Allow) C:\Hry\FIFA 14\Game\fifa14.exe No File
FirewallRules: [{8C75C292-693D-4414-8ECE-A382E6404ED5}] => (Allow) C:\Hry\FIFA 14\Game\fifa14.exe No File
FirewallRules: [TCP Query User{D533AD17-B502-4710-BE00-E7D7BA129314}C:\hry\assassins creed iii\ac3sp.exe] => (Allow) C:\hry\assassins creed iii\ac3sp.exe No File
FirewallRules: [UDP Query User{AE1D75DA-3BB7-4C59-9615-DF43F1C3F4FC}C:\hry\assassins creed iii\ac3sp.exe] => (Allow) C:\hry\assassins creed iii\ac3sp.exe No File
FirewallRules: [TCP Query User{302E523C-1FBA-4C68-8CCE-BC3F1314236D}C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe] => (Allow) C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe No File
FirewallRules: [UDP Query User{196623C7-BA05-4358-B732-3D27F58CF4E0}C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe] => (Allow) C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe No File
FirewallRules: [TCP Query User{0C422668-2C55-4022-837B-D53DEBC5DD77}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [UDP Query User{A86A16E2-65BB-4EE9-9CA3-0A9AE7B6F317}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [TCP Query User{C883E993-8A63-44AE-AF3B-E8F07D3EB17B}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [UDP Query User{852C85CA-2E87-414B-B436-F84F72E82EE5}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [{68D90214-4DCD-43D6-8735-262B6206FDD3}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{52816233-F05B-4658-B761-DA07654E2965}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe No File
FirewallRules: [{A6F5A0AC-3937-49C9-8120-094960EF947A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe No File
FirewallRules: [{07225002-2CD8-4619-B918-A8B31CD756C1}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{553D9307-9281-46FB-831B-C12231911934}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{07935924-3540-48FA-A97E-833494945C30}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [{72F9A06A-2481-4277-8538-EC9AFF61AC10}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe (Blizzard Entertainment, Inc. -> )
FirewallRules: [TCP Query User{CE714CD0-1CBE-4A5C-9D4F-36219F1A0BF1}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe No File
FirewallRules: [UDP Query User{132407A7-E0A5-45E6-9EE4-481D763B6528}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcher.exe No File
FirewallRules: [TCP Query User{BCE66D88-836B-4F71-B4CA-9BE8DB694689}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe No File
FirewallRules: [UDP Query User{6EB4F2B9-3621-4B61-BAE3-6AC8EE102E7C}C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe] => (Allow) C:\riot games\league of legends\rads\projects\lol_patcher\releases\0.0.0.14\deploy\lolpatcherux.exe No File
FirewallRules: [{88E9FDBB-3603-4D19-8F39-F11D42D8CC8F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe No File
FirewallRules: [{D269C390-54F5-48F2-8FA2-5960144E7682}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe No File
FirewallRules: [TCP Query User{33B99DA3-E83C-43C7-87E9-DA3EB0F7968D}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe (Konami Digital Entertainment Co., Ltd. -> Konami Digital Entertainment Co., Ltd.) [File not signed]
FirewallRules: [UDP Query User{63544B3B-E5E6-4F86-9083-D9ABD75DF6BD}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Allow) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe (Konami Digital Entertainment Co., Ltd. -> Konami Digital Entertainment Co., Ltd.) [File not signed]
FirewallRules: [{3BB9D6A8-41D2-44BD-BD3A-09C492ED9A67}] => (Allow) C:\Program Files\Zoner\Photo Studio 17\Program32\MediaServer.exe (ZONER software, a.s. -> ZONER software)
FirewallRules: [TCP Query User{06EF3006-C87F-4660-9760-407EDCFFBED5}C:\hry\far cry 4\bin\farcry4.exe] => (Allow) C:\hry\far cry 4\bin\farcry4.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [UDP Query User{D46AD0BA-9E13-4E25-B88A-7BD253B702AF}C:\hry\far cry 4\bin\farcry4.exe] => (Allow) C:\hry\far cry 4\bin\farcry4.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft Entertainment)
FirewallRules: [TCP Query User{D07B6C9C-B291-424C-ADF2-A2C33F00D5E8}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe No File
FirewallRules: [UDP Query User{ACD5E773-B598-4DE9-AFEB-F4487AE50F22}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe No File
FirewallRules: [TCP Query User{CA247CC3-32E3-4869-914F-C7FEBD3D3F93}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe No File
FirewallRules: [UDP Query User{0CA7901C-0A07-4628-9CF3-A9395D9FF363}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe No File
FirewallRules: [{5987C114-24BB-4A30-BA79-17B00D172E20}] => (Allow) C:\Hry\FIFA 15\fifasetup\fifaconfig.exe (Electronic Arts -> Electronic Arts Canada) [File not signed]
FirewallRules: [{EDEEE7B3-5064-44B4-AD9D-910FEE0C724F}] => (Allow) C:\Hry\FIFA 15\fifasetup\fifaconfig.exe (Electronic Arts -> Electronic Arts Canada) [File not signed]
FirewallRules: [TCP Query User{C26A06DC-D067-4388-8AF0-FC477A14954A}C:\hry\fifa 15\fifa15.exe] => (Allow) C:\hry\fifa 15\fifa15.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [UDP Query User{58BF7222-139D-4F0F-92BA-E8FDAB7A1FF0}C:\hry\fifa 15\fifa15.exe] => (Allow) C:\hry\fifa 15\fifa15.exe (Electronic Arts -> Electronic Arts)
FirewallRules: [TCP Query User{483D6AA5-A41B-4EF5-8BD1-1586751ACB09}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{71F69CED-34FE-4A8F-93D0-323EB207EB12}C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{EB347833-CA3D-4B58-BFA8-2E42CF39FD12}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe No File
FirewallRules: [UDP Query User{BFA5D559-A501-4478-A7EF-1630E7DDEBD7}C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe] => (Allow) C:\program files (x86)\heroes of the storm\versions\base34846\heroesofthestorm_x64.exe No File
FirewallRules: [TCP Query User{C319EABD-CCE9-4A7E-AE9A-1E34916AFF0F}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe No File
FirewallRules: [UDP Query User{FECC1690-D712-4488-AD6E-EB16E47CD90A}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe No File
FirewallRules: [TCP Query User{D60DE801-0E17-4094-981A-43B3E1719682}C:\program files\dashcore\dash-qt.exe] => (Allow) C:\program files\dashcore\dash-qt.exe () [File not signed]
FirewallRules: [UDP Query User{76D9BDE3-8C70-48AE-ABCB-11183CC45312}C:\program files\dashcore\dash-qt.exe] => (Allow) C:\program files\dashcore\dash-qt.exe () [File not signed]
FirewallRules: [{A611D1D7-C35D-4C67-AF9E-C135E8FD068A}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\78.0.3904.7\remoting_host.exe (Google LLC -> Google Inc.)
FirewallRules: [{36B07C54-59B9-48CF-A57F-3A82870AFF3D}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Restore Points =========================

26-07-2019 19:54:37 Windows Update
12-01-2020 12:08:08 Windows Update

==================== Faulty Device Manager Devices ============


==================== Event log errors: ========================

Application errors:
==================
Error: (01/12/2020 08:05:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: iCloudDrive.exe, verze: 1.5.4.43, časové razítko: 0x5719bb27
Název chybujícího modulu: iCloudDrive_main.dll, verze: 1.5.4.43, časové razítko: 0x5719ff1e
Kód výjimky: 0xc0000005
Posun chyby: 0x000d7c9c
ID chybujícího procesu: 0x2748
Čas spuštění chybující aplikace: 0x01d5c97b30cc7564
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive_main.dll
ID zprávy: 83aaed19-1bb6-43f2-8d1c-018bb8a1bb0b
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/12/2020 08:04:53 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\Logitech\Gaming Software\LWEMon.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (01/12/2020 08:03:38 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1

Error: (01/12/2020 08:03:38 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1

Error: (01/12/2020 05:48:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: iCloudDrive.exe, verze: 1.5.4.43, časové razítko: 0x5719bb27
Název chybujícího modulu: iCloudDrive_main.dll, verze: 1.5.4.43, časové razítko: 0x5719ff1e
Kód výjimky: 0xc0000005
Posun chyby: 0x000d7c9c
ID chybujícího procesu: 0x2738
Čas spuštění chybující aplikace: 0x01d5c967eff10998
Cesta k chybující aplikaci: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
Cesta k chybujícímu modulu: C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive_main.dll
ID zprávy: fc362105-96e9-44d9-a853-6bf15625f558
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (01/12/2020 05:46:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\Logitech\Gaming Software\LWEMon.exe se nezdařilo.
Závislé sestavení Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (01/12/2020 05:37:53 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1

Error: (01/12/2020 05:37:53 PM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1


System errors:
=============
Error: (01/12/2020 08:59:33 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 08:07:51 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscDataProtection
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 08:07:51 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Spuštění pro serverovou aplikaci COM s identifikátorem CLSID
Windows.SecurityCenter.WscBrokerManager
a APPID
Není k dispozici
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 08:05:27 PM) (Source: DCOM) (EventID: 10016) (User: ROVER-BOOK)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli RoVeR-BOOK\mikap_000 (SID: S-1-5-21-3565807799-3977009618-1529909285-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 08:05:09 PM) (Source: DCOM) (EventID: 10016) (User: ROVER-BOOK)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli RoVeR-BOOK\mikap_000 (SID: S-1-5-21-3565807799-3977009618-1529909285-1002) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 08:04:12 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 08:04:12 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (01/12/2020 08:04:07 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.


Windows Defender:
===================================
Date: 2020-01-12 18:30:24.933
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo malware nebo jiný potenciálně nežádoucí software.
Další informace:
https://go.microsoft.com/fwlink/?linkid ... terprise=0
Název: HackTool:Win32/Gamehack.F!MSR
ID: 2147743546
Závažnost: Vysoké
Kategorie: Nástroj
Cesta: file:_C:\Program Files (x86)\Ubisoft\Heroes of Might & Magic III - HD Edition\steam_api.dll
Původ zjišťování: Místní počítač
Typ zjišťování: Konkrétní
Zdroj zjišťování: Ochrana v reálném čase
Uživatel: RoVeR-BOOK\mikap_000
Název procesu: C:\Program Files (x86)\Ubisoft\Heroes of Might & Magic III - HD Edition\HOMM3Launcher.exe
Verze podpisu: AV: 1.307.2225.0, AS: 1.307.2225.0, NIS: 1.307.2225.0
Verze modulu: AM: 1.1.16600.7, NIS: 1.1.16600.7

Date: 2020-01-11 10:40:28.753
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {09E32827-5D01-47E4-B966-A9CA677BEE84}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\NETWORK SERVICE

Date: 2019-06-17 18:14:52.465
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {4075FB60-824C-47DD-86E2-A7426B3B7656}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-01-30 16:18:28.535
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {DE675633-A886-4349-A0C1-94D2C9B6AD70}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-01-28 17:37:36.433
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {0274EBD7-F25B-4E19-AD94-1A010DC576C1}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM

Date: 2019-10-03 18:25:40.251
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.299.571.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80240022
Popis chyby :V daném programu nelze zkontrolovat aktualizace definic.

Date: 2019-10-03 18:25:40.250
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.299.571.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80240022
Popis chyby :V daném programu nelze zkontrolovat aktualizace definic.

Date: 2019-10-03 18:20:22.658
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.299.571.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80240022
Popis chyby :V daném programu nelze zkontrolovat aktualizace definic.

Date: 2019-10-03 18:20:22.658
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.299.571.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16200.1
Kód chyby: 0x80240022
Popis chyby :V daném programu nelze zkontrolovat aktualizace definic.

Date: 2019-06-17 15:12:19.439
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.293.2450.0
Zdroj aktualizace: Server Microsoft Update
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15900.4
Kód chyby: 0x80240016
Popis chyby ři zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.

CodeIntegrity:
===================================

Date: 2020-01-12 18:29:29.712
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.107
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.100
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.093
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.088
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.075
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.060
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

Date: 2020-01-12 18:29:27.031
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

BIOS: LENOVO 7ACN24WW 06/25/2013
Motherboard: LENOVO G700
Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 48%
Total physical RAM: 8071.27 MB
Available physical RAM: 4173.61 MB
Total Virtual: 9351.27 MB
Available Virtual: 5422.29 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:888.63 GB) (Free:151.13 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:15.48 GB) NTFS

\\?\Volume{90951cd3-c4c2-484b-ab3a-579c1447dad5}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.63 GB) NTFS
\\?\Volume{439f1f5b-ee41-42bb-9c98-dccf7c3951fd}\ () (Fixed) (Total:0.92 GB) (Free:0.45 GB) NTFS
\\?\Volume{8faf300d-fa55-4657-adda-14ab63918bcb}\ () (Fixed) (Total:0.34 GB) (Free:0.3 GB) NTFS
\\?\Volume{33349003-f225-4d41-aaf8-f7c3e5880667}\ (PBR_DRV) (Fixed) (Total:14.29 GB) (Free:3.15 GB) NTFS
\\?\Volume{748b3896-233c-42b0-894f-93262fdbc873}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: DBBF5953)

Partition: GPT.

==================== End of Addition.txt =======================

[Rudy]

Otevřte poznámkový blok a zkopírujte do něj:

Start

CloseProcesses:
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\ChromeHTML: -> <==== ATTENTION
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKLM\software\microsoft\Windows\CurrentVersion\FirewallRules: [{49F95F16-36CB-4B57-8F13-CE7BC1E3F6FF}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{68BEAFED-B654-40E2-82DF-38C2D2C5FirewallRules: [{EA278E32-DA5A-4541-AC40-88BC69F33676}] => (Allow) C:\Hry\Battlefield 4\bf4.exe No File
FirewallRules: [{32595270-4331-49C4-90A3-7B2985CB6FCB}] => (Allow) C:\Hry\Battlefield 4\bf4.exe No File
FirewallRules: [{63266E41-05DD-48FC-B876-FA61735BBAE0}] => (Allow) C:\Hry\Battlefield 4\bf4_x86.exe No File
FirewallRules: [{815C335D-3A6E-45C0-904E-7A1AE4AF91D9}] => (Allow) C:\Hry\Battlefield 4\bf4_x86.exe No File
721F}] => (Allow) %systemroot%\system32\alg.exe No FileTelephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{360E120F-FF97-4BE0-BC2E-BB3BB13D1651}] => (Allow) C:\Users\mikap_000\Downloads\utorrent.exe No File
FirewallRules: [{CB6FAE66-E672-4F2A-A0D8-3B9F7B5B5EA3}] => (Allow) C:\Users\mikap_000\Downloads\utorrent.exe No File
FirewallRules: [{A931894A-3EBD-417B-8D6E-1EBB79719BA0}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe No File
FirewallRules: [{8D738CE3-010C-4CE2-90CB-3927863EC48A}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe No File
FirewallRules: [{E0926A27-663A-4CA1-9A02-E939E6864936}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe No File
FirewallRules: [{37432BCC-7384-4A10-86F4-79E11477A97F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe No File
FirewallRules: [{C5AB9484-D0E0-4836-84EA-C5B4D22C963E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{464E58D3-D088-4DDC-BF2A-FD51A1F97760}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{A25F66AA-CDE2-4B28-B914-55272BCD7E83}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{20749702-A136-4EE4-B828-F6BE76EB8E89}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{3D4900CC-4F3E-462C-B9E0-B8ECF1155F84}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{630116F3-3CE4-4BC7-B57E-1282D024CCC1}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{5227F9AD-AC78-404C-9493-C5FFBEB6C879}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{D2873895-4AC5-4A8E-A60F-6237B6BD5354}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{8263B54E-8C00-4DA4-BE41-CAB44B3C7116}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{134E09F1-B9A9-4346-82F0-9A3ABDBF12BB}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{308E5627-7D3A-4D53-BCB0-CC4650F1B7E3}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{B0983D1B-2E84-4283-B40D-6E2B41EA21D0}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{87FE9CA0-53FC-464A-9887-AEF37776F8D3}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{1ECEBEBA-B331-427B-BDB7-F5A966B57832}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{4548D695-8C5F-403C-A415-EB2376CB4B79}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{E2A03253-9E0E-4672-B779-10445D984A54}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{2B38E0B3-12E7-403F-8561-91111CFA912C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{53FCAA01-F41E-4A38-99D3-67CA529315B5}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{BAF6B2CA-9AAB-4FFB-B4DE-94ADBF788CEF}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{74C23C64-80D5-4AF8-B171-B25C4E1B8728}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{553C80C1-B6A2-44BB-9D1B-1F1F1D447F68}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{472538A4-62D1-4428-B5CF-9AD56A2B3EE0}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{7134383B-3CB9-4753-8104-33F7A16FC14F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{8757183E-5D93-4FD2-97AA-08BE3EE2BAB2}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{93249365-437B-4CA7-961A-B2C8F4948838}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{518F11D8-BAA3-4A6B-A2AC-C8BE1EAFEFAC}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{FBEE11DB-6781-4ABC-85B4-75AA58B5D9B9}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{CD92A1BB-5209-4849-9D10-A4629A19C180}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{D128E5AF-9862-4468-8EF0-0FB3D25A483F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{F4C7FA77-DAEE-4831-805F-ECFE34BF72EF}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{A0E30515-F922-4CF7-94B2-EBD409E7E762}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{8BB98767-5F58-4F59-A508-211AA6CFD8B6}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{2CF7D9F0-D8F9-48CA-8234-79C95EC42BA8}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{A54B4B86-C439-4CF5-9770-624A03D8282E}] => (Allow) C:\Hry\FIFA 14\Game\fifa14.exe No File
FirewallRules: [{8C75C292-693D-4414-8ECE-A382E6404ED5}] => (Allow) C:\Hry\FIFA 14\Game\fifa14.exe No File
FirewallRules: [TCP Query User{D533AD17-B502-4710-BE00-E7D7BA129314}C:\hry\assassins creed iii\ac3sp.exe] => (Allow) C:\hry\assassins creed iii\ac3sp.exe No File
FirewallRules: [UDP Query User{AE1D75DA-3BB7-4C59-9615-DF43F1C3F4FC}C:\hry\assassins creed iii\ac3sp.exe] => (Allow) C:\hry\assassins creed iii\ac3sp.exe No File
FirewallRules: [TCP Query User{302E523C-1FBA-4C68-8CCE-BC3F1314236D}C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe] => (Allow) C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe No File
FirewallRules: [UDP Query User{196623C7-BA05-4358-B732-3D27F58CF4E0}C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe] => (Allow) C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe No File
FirewallRules: [TCP Query User{0C422668-2C55-4022-837B-D53DEBC5DD77}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [UDP Query User{A86A16E2-65BB-4EE9-9CA3-0A9AE7B6F317}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [TCP Query User{C883E993-8A63-44AE-AF3B-E8F07D3EB17B}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [UDP Query User{852C85CA-2E87-414B-B436-F84F72E82EE5}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [{68D90214-4DCD-43D6-8735-262B6206FDD3}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{52816233-F05B-4658-B761-DA07654E2965}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe No File
FirewallRules: [{A6F5A0AC-3937-49C9-8120-094960EF947A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe No File
FirewallRules: [{88E9FDBB-3603-4D19-8F39-F11D42D8CC8F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe No File
FirewallRules: [{D269C390-54F5-48F2-8FA2-5960144E7682}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe No File
FirewallRules: [TCP Query User{D07B6C9C-B291-424C-ADF2-A2C33F00D5E8}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe No File
FirewallRules: [UDP Query User{ACD5E773-B598-4DE9-AFEB-F4487AE50F22}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe No File
FirewallRules: [TCP Query User{CA247CC3-32E3-4869-914F-C7FEBD3D3F93}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe No File
FirewallRules: [UDP Query User{0CA7901C-0A07-4628-9CF3-A9395D9FF363}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe No File
FirewallRules: [TCP Query User{C319EABD-CCE9-4A7E-AE9A-1E34916AFF0F}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe No File
FirewallRules: [UDP Query User{FECC1690-D712-4488-AD6E-EB16E47CD90A}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe No File
C:\Program Files (x86)\Ubisoft\Heroes of Might & Magic III - HD Edition\steam_api.dll
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.895\SSScheduler.exe (McAfee, Inc. -> McAfee, Inc.)
C:\Program Files\McAfee Security Scan
Task: {1171691C-6F55-4520-9A6D-2588554E5112} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {133F0568-DBCA-4571-A56C-0A4B9611706C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {13F3B787-D214-417A-BB58-FA79746A11DA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {370DB8EF-93B1-4C6A-BCE9-80E6BA72B991} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {3C466904-7551-42EA-AC17-75566E562A08} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {64A81424-CCBB-44D5-A8F4-0CA65BF9E230} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {76CC1429-7BF9-4F57-A650-3835DDBFED9A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {7742D1EF-56DD-47ED-AEF6-911EEEB2F6B6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {80DCDC99-EF5D-45DD-9F6B-57E05D3AAAAA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {96D0418B-6192-4FCF-B34A-932F8F8DBC50} - System32\Tasks\OFFICE2013ACT => C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs [133 2012-03-08] () [File not signed] <==== ATTENTION
Task: {97FCCFC7-324F-4ABA-9A59-7A17D4328C00} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {CF1F6E9E-F30B-4A19-AAA1-B93C2E5D0F3D} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {DBF24B96-1D1C-4960-BD2B-374112EDDBDB} - \WPD\SqmUpload_S-1-5-21-3565807799-3977009618-1529909285-1002 -> No File <==== ATTENTION
Task: {DD3DE13F-1462-443F-A50D-47D3110A5092} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {EDCB63C2-2769-4DE0-939C-E4E07E2E34E6} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {FD417E67-D733-49FE-8410-7C438F314C8D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {37624E04-D9E8-48E5-A1C1-DFA9DFCBF791} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.11.812\McCHSvc.exe" [X]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

[rovercz]

Fix result of Farbar Recovery Scan Tool (x64) Version: 12-01-2020
Ran by mikap_000 (12-01-2020 22:14:22) Run:1
Running from C:\Users\mikap_000\Desktop
Loaded Profiles: mikap_000 (Available Profiles: mikap_000)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start

CloseProcesses:
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002\...\ChromeHTML: -> <==== ATTENTION
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
HKLM\software\microsoft\Windows\CurrentVersion\FirewallRules: [{49F95F16-36CB-4B57-8F13-CE7BC1E3F6FF}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{68BEAFED-B654-40E2-82DF-38C2D2C5FirewallRules: [{EA278E32-DA5A-4541-AC40-88BC69F33676}] => (Allow) C:\Hry\Battlefield 4\bf4.exe No File
FirewallRules: [{32595270-4331-49C4-90A3-7B2985CB6FCB}] => (Allow) C:\Hry\Battlefield 4\bf4.exe No File
FirewallRules: [{63266E41-05DD-48FC-B876-FA61735BBAE0}] => (Allow) C:\Hry\Battlefield 4\bf4_x86.exe No File
FirewallRules: [{815C335D-3A6E-45C0-904E-7A1AE4AF91D9}] => (Allow) C:\Hry\Battlefield 4\bf4_x86.exe No File
721F}] => (Allow) %systemroot%\system32\alg.exe No FileTelephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{360E120F-FF97-4BE0-BC2E-BB3BB13D1651}] => (Allow) C:\Users\mikap_000\Downloads\utorrent.exe No File
FirewallRules: [{CB6FAE66-E672-4F2A-A0D8-3B9F7B5B5EA3}] => (Allow) C:\Users\mikap_000\Downloads\utorrent.exe No File
FirewallRules: [{A931894A-3EBD-417B-8D6E-1EBB79719BA0}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe No File
FirewallRules: [{8D738CE3-010C-4CE2-90CB-3927863EC48A}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe No File
FirewallRules: [{E0926A27-663A-4CA1-9A02-E939E6864936}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe No File
FirewallRules: [{37432BCC-7384-4A10-86F4-79E11477A97F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe No File
FirewallRules: [{C5AB9484-D0E0-4836-84EA-C5B4D22C963E}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{464E58D3-D088-4DDC-BF2A-FD51A1F97760}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{A25F66AA-CDE2-4B28-B914-55272BCD7E83}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{20749702-A136-4EE4-B828-F6BE76EB8E89}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{3D4900CC-4F3E-462C-B9E0-B8ECF1155F84}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{630116F3-3CE4-4BC7-B57E-1282D024CCC1}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{5227F9AD-AC78-404C-9493-C5FFBEB6C879}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{D2873895-4AC5-4A8E-A60F-6237B6BD5354}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{8263B54E-8C00-4DA4-BE41-CAB44B3C7116}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{134E09F1-B9A9-4346-82F0-9A3ABDBF12BB}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{308E5627-7D3A-4D53-BCB0-CC4650F1B7E3}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{B0983D1B-2E84-4283-B40D-6E2B41EA21D0}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{87FE9CA0-53FC-464A-9887-AEF37776F8D3}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{1ECEBEBA-B331-427B-BDB7-F5A966B57832}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{4548D695-8C5F-403C-A415-EB2376CB4B79}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{E2A03253-9E0E-4672-B779-10445D984A54}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{2B38E0B3-12E7-403F-8561-91111CFA912C}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{53FCAA01-F41E-4A38-99D3-67CA529315B5}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{BAF6B2CA-9AAB-4FFB-B4DE-94ADBF788CEF}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{74C23C64-80D5-4AF8-B171-B25C4E1B8728}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{553C80C1-B6A2-44BB-9D1B-1F1F1D447F68}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{472538A4-62D1-4428-B5CF-9AD56A2B3EE0}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{7134383B-3CB9-4753-8104-33F7A16FC14F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{8757183E-5D93-4FD2-97AA-08BE3EE2BAB2}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{93249365-437B-4CA7-961A-B2C8F4948838}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{518F11D8-BAA3-4A6B-A2AC-C8BE1EAFEFAC}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{FBEE11DB-6781-4ABC-85B4-75AA58B5D9B9}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{CD92A1BB-5209-4849-9D10-A4629A19C180}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{D128E5AF-9862-4468-8EF0-0FB3D25A483F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{F4C7FA77-DAEE-4831-805F-ECFE34BF72EF}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{A0E30515-F922-4CF7-94B2-EBD409E7E762}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{8BB98767-5F58-4F59-A508-211AA6CFD8B6}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{2CF7D9F0-D8F9-48CA-8234-79C95EC42BA8}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe No File
FirewallRules: [{A54B4B86-C439-4CF5-9770-624A03D8282E}] => (Allow) C:\Hry\FIFA 14\Game\fifa14.exe No File
FirewallRules: [{8C75C292-693D-4414-8ECE-A382E6404ED5}] => (Allow) C:\Hry\FIFA 14\Game\fifa14.exe No File
FirewallRules: [TCP Query User{D533AD17-B502-4710-BE00-E7D7BA129314}C:\hry\assassins creed iii\ac3sp.exe] => (Allow) C:\hry\assassins creed iii\ac3sp.exe No File
FirewallRules: [UDP Query User{AE1D75DA-3BB7-4C59-9615-DF43F1C3F4FC}C:\hry\assassins creed iii\ac3sp.exe] => (Allow) C:\hry\assassins creed iii\ac3sp.exe No File
FirewallRules: [TCP Query User{302E523C-1FBA-4C68-8CCE-BC3F1314236D}C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe] => (Allow) C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe No File
FirewallRules: [UDP Query User{196623C7-BA05-4358-B732-3D27F58CF4E0}C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe] => (Allow) C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe No File
FirewallRules: [TCP Query User{0C422668-2C55-4022-837B-D53DEBC5DD77}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [UDP Query User{A86A16E2-65BB-4EE9-9CA3-0A9AE7B6F317}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [TCP Query User{C883E993-8A63-44AE-AF3B-E8F07D3EB17B}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [UDP Query User{852C85CA-2E87-414B-B436-F84F72E82EE5}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe] => (Allow) C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe No File
FirewallRules: [{68D90214-4DCD-43D6-8735-262B6206FDD3}] => (Allow) %systemroot%\system32\alg.exe No File
FirewallRules: [{52816233-F05B-4658-B761-DA07654E2965}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe No File
FirewallRules: [{A6F5A0AC-3937-49C9-8120-094960EF947A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe No File
FirewallRules: [{88E9FDBB-3603-4D19-8F39-F11D42D8CC8F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe No File
FirewallRules: [{D269C390-54F5-48F2-8FA2-5960144E7682}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe No File
FirewallRules: [TCP Query User{D07B6C9C-B291-424C-ADF2-A2C33F00D5E8}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe No File
FirewallRules: [UDP Query User{ACD5E773-B598-4DE9-AFEB-F4487AE50F22}C:\windows\kmsemulator.exe] => (Allow) C:\windows\kmsemulator.exe No File
FirewallRules: [TCP Query User{CA247CC3-32E3-4869-914F-C7FEBD3D3F93}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe No File
FirewallRules: [UDP Query User{0CA7901C-0A07-4628-9CF3-A9395D9FF363}C:\program files (x86)\dying light\dyinglightgame.exe] => (Allow) C:\program files (x86)\dying light\dyinglightgame.exe No File
FirewallRules: [TCP Query User{C319EABD-CCE9-4A7E-AE9A-1E34916AFF0F}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe No File
FirewallRules: [UDP Query User{FECC1690-D712-4488-AD6E-EB16E47CD90A}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe No File
C:\Program Files (x86)\Ubisoft\Heroes of Might & Magic III - HD Edition\steam_api.dll
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.895\SSScheduler.exe (McAfee, Inc. -> McAfee, Inc.)
C:\Program Files\McAfee Security Scan
Task: {1171691C-6F55-4520-9A6D-2588554E5112} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {133F0568-DBCA-4571-A56C-0A4B9611706C} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {13F3B787-D214-417A-BB58-FA79746A11DA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {370DB8EF-93B1-4C6A-BCE9-80E6BA72B991} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {3C466904-7551-42EA-AC17-75566E562A08} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {64A81424-CCBB-44D5-A8F4-0CA65BF9E230} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {76CC1429-7BF9-4F57-A650-3835DDBFED9A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
Task: {7742D1EF-56DD-47ED-AEF6-911EEEB2F6B6} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {80DCDC99-EF5D-45DD-9F6B-57E05D3AAAAA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {96D0418B-6192-4FCF-B34A-932F8F8DBC50} - System32\Tasks\OFFICE2013ACT => C:\ProgramData\Microsoft\Windows\OFFICEICON.vbs [133 2012-03-08] () [File not signed] <==== ATTENTION
Task: {97FCCFC7-324F-4ABA-9A59-7A17D4328C00} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {CF1F6E9E-F30B-4A19-AAA1-B93C2E5D0F3D} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {DBF24B96-1D1C-4960-BD2B-374112EDDBDB} - \WPD\SqmUpload_S-1-5-21-3565807799-3977009618-1529909285-1002 -> No File <==== ATTENTION
Task: {DD3DE13F-1462-443F-A50D-47D3110A5092} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {EDCB63C2-2769-4DE0-939C-E4E07E2E34E6} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {FD417E67-D733-49FE-8410-7C438F314C8D} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {37624E04-D9E8-48E5-A1C1-DFA9DFCBF791} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-27] (Google Inc -> Google Inc.)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.11.812\McCHSvc.exe" [X]
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

EmptyTemp:
End
*****************

Processes closed successfully.
HKU\S-1-5-21-3565807799-3977009618-1529909285-1002_Classes\ChromeHTML => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{49F95F16-36CB-4B57-8F13-CE7BC1E3F6FF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{68BEAFED-B654-40E2-82DF-38C2D2C5FirewallRules: [{EA278E32-DA5A-4541-AC40-88BC69F33676}" => not found
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{32595270-4331-49C4-90A3-7B2985CB6FCB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{63266E41-05DD-48FC-B876-FA61735BBAE0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{815C335D-3A6E-45C0-904E-7A1AE4AF91D9}" => removed successfully
721F}] => (Allow) %systemroot%\system32\alg.exe No FileTelephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{360E120F-FF97-4BE0-BC2E-BB3BB13D1651}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CB6FAE66-E672-4F2A-A0D8-3B9F7B5B5EA3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A931894A-3EBD-417B-8D6E-1EBB79719BA0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8D738CE3-010C-4CE2-90CB-3927863EC48A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E0926A27-663A-4CA1-9A02-E939E6864936}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{37432BCC-7384-4A10-86F4-79E11477A97F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C5AB9484-D0E0-4836-84EA-C5B4D22C963E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{464E58D3-D088-4DDC-BF2A-FD51A1F97760}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A25F66AA-CDE2-4B28-B914-55272BCD7E83}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{20749702-A136-4EE4-B828-F6BE76EB8E89}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{3D4900CC-4F3E-462C-B9E0-B8ECF1155F84}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{630116F3-3CE4-4BC7-B57E-1282D024CCC1}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5227F9AD-AC78-404C-9493-C5FFBEB6C879}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D2873895-4AC5-4A8E-A60F-6237B6BD5354}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8263B54E-8C00-4DA4-BE41-CAB44B3C7116}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{134E09F1-B9A9-4346-82F0-9A3ABDBF12BB}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{308E5627-7D3A-4D53-BCB0-CC4650F1B7E3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B0983D1B-2E84-4283-B40D-6E2B41EA21D0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{87FE9CA0-53FC-464A-9887-AEF37776F8D3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1ECEBEBA-B331-427B-BDB7-F5A966B57832}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4548D695-8C5F-403C-A415-EB2376CB4B79}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{E2A03253-9E0E-4672-B779-10445D984A54}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2B38E0B3-12E7-403F-8561-91111CFA912C}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{53FCAA01-F41E-4A38-99D3-67CA529315B5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{BAF6B2CA-9AAB-4FFB-B4DE-94ADBF788CEF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{74C23C64-80D5-4AF8-B171-B25C4E1B8728}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{553C80C1-B6A2-44BB-9D1B-1F1F1D447F68}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{472538A4-62D1-4428-B5CF-9AD56A2B3EE0}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{7134383B-3CB9-4753-8104-33F7A16FC14F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8757183E-5D93-4FD2-97AA-08BE3EE2BAB2}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{93249365-437B-4CA7-961A-B2C8F4948838}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{518F11D8-BAA3-4A6B-A2AC-C8BE1EAFEFAC}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FBEE11DB-6781-4ABC-85B4-75AA58B5D9B9}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{CD92A1BB-5209-4849-9D10-A4629A19C180}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D128E5AF-9862-4468-8EF0-0FB3D25A483F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F4C7FA77-DAEE-4831-805F-ECFE34BF72EF}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A0E30515-F922-4CF7-94B2-EBD409E7E762}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8BB98767-5F58-4F59-A508-211AA6CFD8B6}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{2CF7D9F0-D8F9-48CA-8234-79C95EC42BA8}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A54B4B86-C439-4CF5-9770-624A03D8282E}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8C75C292-693D-4414-8ECE-A382E6404ED5}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D533AD17-B502-4710-BE00-E7D7BA129314}C:\hry\assassins creed iii\ac3sp.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{AE1D75DA-3BB7-4C59-9615-DF43F1C3F4FC}C:\hry\assassins creed iii\ac3sp.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{302E523C-1FBA-4C68-8CCE-BC3F1314236D}C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{196623C7-BA05-4358-B732-3D27F58CF4E0}C:\users\mikap_000\desktop\heroes 3 complete\heroes3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{0C422668-2C55-4022-837B-D53DEBC5DD77}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{A86A16E2-65BB-4EE9-9CA3-0A9AE7B6F317}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C883E993-8A63-44AE-AF3B-E8F07D3EB17B}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{852C85CA-2E87-414B-B436-F84F72E82EE5}C:\program files (x86)\r.g. mechanics\max payne 3\maxpayne3.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{68D90214-4DCD-43D6-8735-262B6206FDD3}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{52816233-F05B-4658-B761-DA07654E2965}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{A6F5A0AC-3937-49C9-8120-094960EF947A}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{88E9FDBB-3603-4D19-8F39-F11D42D8CC8F}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D269C390-54F5-48F2-8FA2-5960144E7682}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D07B6C9C-B291-424C-ADF2-A2C33F00D5E8}C:\windows\kmsemulator.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{ACD5E773-B598-4DE9-AFEB-F4487AE50F22}C:\windows\kmsemulator.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{CA247CC3-32E3-4869-914F-C7FEBD3D3F93}C:\program files (x86)\dying light\dyinglightgame.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{0CA7901C-0A07-4628-9CF3-A9395D9FF363}C:\program files (x86)\dying light\dyinglightgame.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C319EABD-CCE9-4A7E-AE9A-1E34916AFF0F}C:\program files (x86)\airdroid\airdroid.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{FECC1690-D712-4488-AD6E-EB16E47CD90A}C:\program files (x86)\airdroid\airdroid.exe" => removed successfully
"C:\Program Files (x86)\Ubisoft\Heroes of Might & Magic III - HD Edition\steam_api.dll" => not found
C:\Program Files\McAfee Security Scan\3.11.895\SSScheduler.exe => moved successfully
C:\Program Files\McAfee Security Scan => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1171691C-6F55-4520-9A6D-2588554E5112}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1171691C-6F55-4520-9A6D-2588554E5112}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{133F0568-DBCA-4571-A56C-0A4B9611706C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{133F0568-DBCA-4571-A56C-0A4B9611706C}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{13F3B787-D214-417A-BB58-FA79746A11DA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{13F3B787-D214-417A-BB58-FA79746A11DA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{370DB8EF-93B1-4C6A-BCE9-80E6BA72B991}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{370DB8EF-93B1-4C6A-BCE9-80E6BA72B991}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3C466904-7551-42EA-AC17-75566E562A08}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C466904-7551-42EA-AC17-75566E562A08}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{64A81424-CCBB-44D5-A8F4-0CA65BF9E230}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{64A81424-CCBB-44D5-A8F4-0CA65BF9E230}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{76CC1429-7BF9-4F57-A650-3835DDBFED9A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{76CC1429-7BF9-4F57-A650-3835DDBFED9A}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7742D1EF-56DD-47ED-AEF6-911EEEB2F6B6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7742D1EF-56DD-47ED-AEF6-911EEEB2F6B6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{80DCDC99-EF5D-45DD-9F6B-57E05D3AAAAA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{80DCDC99-EF5D-45DD-9F6B-57E05D3AAAAA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{96D0418B-6192-4FCF-B34A-932F8F8DBC50}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{96D0418B-6192-4FCF-B34A-932F8F8DBC50}" => removed successfully
C:\WINDOWS\System32\Tasks\OFFICE2013ACT => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OFFICE2013ACT" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{97FCCFC7-324F-4ABA-9A59-7A17D4328C00}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{97FCCFC7-324F-4ABA-9A59-7A17D4328C00}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CF1F6E9E-F30B-4A19-AAA1-B93C2E5D0F3D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CF1F6E9E-F30B-4A19-AAA1-B93C2E5D0F3D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DBF24B96-1D1C-4960-BD2B-374112EDDBDB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DBF24B96-1D1C-4960-BD2B-374112EDDBDB}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-3565807799-3977009618-1529909285-1002" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DD3DE13F-1462-443F-A50D-47D3110A5092}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DD3DE13F-1462-443F-A50D-47D3110A5092}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EDCB63C2-2769-4DE0-939C-E4E07E2E34E6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EDCB63C2-2769-4DE0-939C-E4E07E2E34E6}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{FD417E67-D733-49FE-8410-7C438F314C8D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD417E67-D733-49FE-8410-7C438F314C8D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{37624E04-D9E8-48E5-A1C1-DFA9DFCBF791}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37624E04-D9E8-48E5-A1C1-DFA9DFCBF791}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
HKLM\System\CurrentControlSet\Services\McComponentHostService => removed successfully
McComponentHostService => service removed successfully
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA" => not found
"C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore" => not found

=========== EmptyTemp: ==========

BITS transfer queue => 9461760 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 533586681 B
Java, Flash, Steam htmlcache => 2881 B
Windows/system/drivers => 4345518 B
Edge => 100198793 B
Chrome => 422361237 B
Firefox => 14635535 B
Opera => 6933336 B

Temp, IE cache, history, cookies, recent:
Default => 7124 B
Users => 7124 B
ProgramData => 7124 B
Public => 7124 B
systemprofile => 990516303 B
systemprofile32 => 990516303 B
LocalService => 990524301 B
NetworkService => 1005699025 B
mikap_000 => 1502859676 B

RecycleBin => 827 B
EmptyTemp: => 6.1 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 22:18:06 ====

[Rudy]

Smazáno, log by již měl být OK.