Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 11-11-2020
Ran by MB1 (administrator) on MB1-PC (MSI MS-7817) (15-11-2020 13:31:30)
Running from C:\Users\MB1\Desktop
Loaded Profiles: MB1
Platform: Windows 10 Home Version 2004 19041.630 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <4>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\MB1\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
(Shen Zhen Dragon Rise Macro Technology Limited Company -> ) C:\Windows\USB Vibration\7906\USB Gamepad.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109664 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [USB Gamepad] => C:\WINDOWS\USB Vibration\7906\USB Gamepad.exe [796784 2008-12-10] (Shen Zhen Dragon Rise Macro Technology Limited Company -> )
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [EPSON SX110 Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFBE.EXE [223232 2008-09-26] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [54788456 2018-12-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [EPSON SX110 Series (kopie 1)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFBE.EXE [223232 2008-09-26] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON SX110 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMFBE.DLL [108032 2008-08-08] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-12] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{79600897-a531-47f6-b4f2-7abeccb390d1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c857ffc1-b553-400e-9fff-a8705e3f2343}: [DhcpNameServer] 192.168.1.1
Edge:
======
Edge Profile: C:\Users\MB1\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-15]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-11-14] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default [2020-11-15]
CHR DownloadDir: C:\Users\MB1\Desktop
CHR Notifications: Default -> hxxps://aukro.cz; hxxps://www.facebook.com; hxxps://www.mercedesclub.cz
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Extension: (Překladač Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-18]
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-07]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-11-15]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-11-15]
CHR HomePage: Profile 1 -> hxxp://www.seznam.cz/
CHR StartupUrls: Profile 1 -> "hxxp://www.seznam.cz/"
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-25]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-25]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-03]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-25]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-11-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-03]
CHR Extension: (Chrome Media Router) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-19]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2 [2020-11-15]
CHR HomePage: Profile 2 -> hxxps://www.seznam.cz/
CHR StartupUrls: Profile 2 -> "hxxps://www.seznam.cz/"
CHR DefaultSearchURL: Profile 2 -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
CHR DefaultSearchKeyword: Profile 2 -> mcafee
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-08]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\System Profile [2020-11-15]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-09-10] (Adobe Inc. -> Adobe Systems)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8450976 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [360408 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2748520 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [956760 2020-11-13] (McAfee, LLC -> McAfee, LLC)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37152 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206408 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [236112 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195664 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60496 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-07-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175720 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [518664 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109280 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851608 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [470912 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217336 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326928 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 gdrv; C:\WINDOWS\gdrv.sys [25640 2015-12-29] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-15 13:31 - 2020-11-15 13:31 - 000017966 _____ C:\Users\MB1\Desktop\FRST.txt
2020-11-15 13:22 - 2020-11-15 13:22 - 002298368 _____ (Farbar) C:\Users\MB1\Desktop\FRST64.exe
2020-11-15 13:15 - 2020-11-15 13:15 - 000058204 _____ C:\Users\MB1\Desktop\cc_20201115_131510.reg
2020-11-14 20:09 - 2020-11-14 20:09 - 000055396 _____ C:\Users\MB1\Desktop\Atom.pdf
2020-11-14 20:08 - 2020-11-14 20:08 - 000181988 _____ C:\Users\MB1\Desktop\Atom.odt
2020-11-14 16:04 - 2020-11-14 16:04 - 000027689 _____ C:\Users\MB1\Desktop\Řešení.pdf
2020-11-13 14:28 - 2020-11-13 14:28 - 026274304 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 024265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 023452160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 019870720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 018083840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 010840904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 010336904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 008895680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 008235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 008009872 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007990232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007783936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007636448 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007621632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007107584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006422016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006368392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006231040 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006196736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006001208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 005430992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004902400 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004830720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004783840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004752896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004732928 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004629328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 004281856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004277248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004069992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 004008448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003933696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003893248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003869184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003821064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003815936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 003811840 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003779392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 003750400 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003388928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003305984 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003157816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003089920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002983736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 002979840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002942976 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 002850616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 002809776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 002607104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002520056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002477384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002426168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002318848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002268456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002250240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002048000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002024248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002012672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001953792 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001828352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001827648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001751944 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001715200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001695728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001683456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001664160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001649664 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001590784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001590584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001557816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001481216 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001478464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 001449984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001414656 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001391616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001361920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsf3gip.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001352240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001272320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001255424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001239040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_IME.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001238528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001210136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001192096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001128520 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001117328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001097216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001070392 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001025768 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000988000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000983408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000947712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000926720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000904008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000894776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000873272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000867328 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000860672 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000859400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000828432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000805168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000802304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000763392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000763344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000756680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000732448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000713728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000712296 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000705008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000700376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000648712 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntimewindows.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000635840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntime.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000628224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000603448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000598016 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_9.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000546968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000538952 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000534536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000521088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000509792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000502584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-11-13 14:28 - 2020-11-13 14:28 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000489128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000488056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000482120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000459264 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadauthhelper.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000454968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000442168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000423224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000413208 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000410072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000409408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000384512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000382712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AarSvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000288680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000253016 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-11-13 14:28 - 2020-11-13 14:28 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreCommonProxyStub.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000228680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000218936 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskpart.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000201536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000195144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_InkingTypingPrivacy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-11-13 14:28 - 2020-11-13 14:28 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskpart.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\netid.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000180040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertPolEng.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000153912 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcl.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BrowserDeclutter.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertPolEng.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000133448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcl.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000132744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerApi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netid.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbnetlib.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000118600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000117064 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbnetlib.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000104760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PktMon.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManagerApi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000098120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000095048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000092960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcXtrnal.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000070968 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msobjs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msobjs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000061760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\amsi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncobjapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardBi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000042824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\gmsaclient.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gmsaclient.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000024792 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000021320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000020280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000020144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcXtrnal.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsiproxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000009265 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-11-13 14:28 - 2020-11-13 14:28 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 004651032 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-11-13 14:27 - 2020-11-13 14:27 - 003070464 _____ (Microsoft Corporation) C:\WINDOWS\system32\FluencyDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 002648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001819640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001515520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001278464 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001245280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000885248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000820552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_9.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxAPDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxHAPDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000493056 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtCangjieDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtBopomofoDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtHkStrokeDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChsStrokeDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtQuickDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000429712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000423224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpndecoder.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxDecoder.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxinputrouter.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtfDecoder.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000305472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000298808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpnranker.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-11-13 14:27 - 2020-11-13 14:27 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000250176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000195400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\trie.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFFuzzyDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdvancedEmojiDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\VocabRoamingHandler.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxranker.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFSpellcheckDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\HashtagDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtAdvancedDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFAppServiceDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\RuleBasedDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpninputrouter.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsi.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransliterationRanker.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmojiDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\devauthe.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsilog.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000016136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2020-11-13 14:21 - 2020-10-15 04:22 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-11-13 14:21 - 2020-10-15 04:14 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-11-04 12:24 - 2020-11-04 12:30 - 000000000 ____D C:\Users\MB1\Desktop\Nová složka
2020-10-23 09:25 - 2020-10-23 09:25 - 000203673 _____ C:\Users\MB1\Desktop\POTVRZEN___PRO_ZAM__STNANCE__OZP_distributory.pdf
2020-10-20 11:49 - 2020-10-20 11:49 - 000339552 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-10-20 11:49 - 2020-10-20 11:49 - 000217336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-10-20 11:49 - 2020-10-20 11:49 - 000175720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-15 13:31 - 2017-01-21 20:54 - 000000000 ____D C:\FRST
2020-11-15 13:23 - 2020-07-31 20:40 - 001876158 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-11-15 13:23 - 2019-12-07 15:41 - 000781844 _____ C:\WINDOWS\system32\perfh005.dat
2020-11-15 13:23 - 2019-12-07 15:41 - 000172578 _____ C:\WINDOWS\system32\perfc005.dat
2020-11-15 13:23 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-11-15 13:17 - 2020-07-31 20:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-11-15 13:17 - 2020-07-31 20:32 - 000008192 ___SH C:\DumpStack.log.tmp
2020-11-15 13:17 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-11-15 13:17 - 2018-06-21 07:23 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-11-15 13:17 - 2015-12-28 14:23 - 000000000 __SHD C:\Users\MB1\IntelGraphicsProfiles
2020-11-15 13:16 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-11-15 13:16 - 2015-12-29 14:27 - 000000000 ____D C:\ProgramData\AVAST Software
2020-11-15 13:14 - 2020-07-31 07:00 - 000000000 ___DC C:\WINDOWS\Panther
2020-11-15 13:14 - 2018-08-01 08:58 - 000000000 ____D C:\Users\MB1\AppData\Local\CrashDumps
2020-11-15 12:57 - 2020-07-31 20:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-11-14 20:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-11-14 20:27 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-11-14 20:26 - 2020-06-05 07:26 - 000002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-11-14 09:25 - 2020-07-31 20:40 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-11-13 22:00 - 2020-07-31 20:32 - 000427552 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-11-13 20:48 - 2020-07-31 20:40 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3595257899-2210446051-2448867403-1000
2020-11-13 20:48 - 2020-07-31 20:33 - 000002359 _____ C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-11-13 20:47 - 2015-12-28 16:03 - 000000000 ___RD C:\Users\MB1\OneDrive
2020-11-13 14:30 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-11-13 14:27 - 2020-07-31 20:32 - 002876928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-11-12 09:16 - 2020-07-31 20:40 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-12 09:16 - 2020-07-31 20:40 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-11-12 09:16 - 2020-07-31 20:40 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-12 09:16 - 2020-07-31 20:40 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-11-12 09:16 - 2020-07-31 20:40 - 000002220 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-11-12 09:16 - 2020-07-31 20:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2020-11-12 08:32 - 2015-12-28 14:34 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-11 16:22 - 2019-11-01 16:56 - 000001140 _____ C:\Users\MB1\Desktop\Format Factory.lnk
2020-10-26 07:46 - 2020-03-23 11:06 - 000000000 ____D C:\Users\MB1\Desktop\Koronovýuka
2020-10-23 17:04 - 2020-03-15 20:19 - 000000000 ____D C:\ProgramData\Flexibooks 4
2020-10-20 11:49 - 2020-04-18 10:52 - 000518664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-10-20 11:49 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-20 11:49 - 2019-01-14 14:39 - 000236112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-10-20 11:49 - 2019-01-08 06:22 - 000195664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-10-20 11:49 - 2019-01-08 06:22 - 000060496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-10-20 11:49 - 2019-01-08 06:22 - 000037152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-10-20 11:49 - 2018-10-25 10:26 - 000042784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000851608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000470912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000326928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000206408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000109280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000084856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-10-16 19:51 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
==================== Files in the root of some directories ========
2018-06-18 04:54 - 2018-06-18 04:54 - 000029696 _____ () C:\Users\MB1\AppData\Local\MSGBOX.EXE
2017-06-25 09:23 - 2019-03-03 16:04 - 000000774 _____ () C:\Users\MB1\AppData\Local\MZD-AIO-TI.log
2016-03-20 11:45 - 2016-03-20 11:45 - 000000017 _____ () C:\Users\MB1\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-11-2020
Ran by MB1 (15-11-2020 13:32:13)
Running from C:\Users\MB1\Desktop
Windows 10 Home Version 2004 19041.630 (X64) (2020-07-31 19:40:17)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3595257899-2210446051-2448867403-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3595257899-2210446051-2448867403-503 - Limited - Disabled)
Guest (S-1-5-21-3595257899-2210446051-2448867403-501 - Limited - Disabled)
MB1 (S-1-5-21-3595257899-2210446051-2448867403-1000 - Administrator - Enabled) => C:\Users\MB1
WDAGUtilityAccount (S-1-5-21-3595257899-2210446051-2448867403-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.8.2432 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
EBook Codec 1.0.0.1 (HKLM-x32\...\EBook Codec) (Version: 1.0.0.1 - Free Time)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
Epson Software Updater (HKLM-x32\...\{B55DB65D-EF6E-4E04-89D5-B03603BF681B}) (Version: 4.4.5 - SEIKO EPSON CORPORATION)
EPSON SX110 Series Printer Uninstall (HKLM\...\EPSON SX110 Series) (Version: - SEIKO EPSON Corporation)
Flexibooks 4.6.1 (64 bit) (HKLM\...\{D36F5D15-E633-45E7-803B-4FC66F183092}) (Version: 4.6.1 - Fraus Media s.r.o. 2016)
FormatFactory 4.9.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.9.0.0 - Free Time)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.198 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
HappyFoto-Designer 5.4 (HKLM-x32\...\HappyFoto-Designer_is1) (Version: - )
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.0.4.6 - PandoraTV)
LibreOffice 6.3.4.2 (HKLM\...\{191F4D69-B671-4163-BB01-901B89A20D04}) (Version: 6.3.4.2 - The Document Foundation)
Mazda Toolbox (HKLM-x32\...\Mazda Toolbox) (Version: - )
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.69 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.137.99 - )
Microsoft OneDrive (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\OneDriveSetup.exe) (Version: 20.201.1005.0006 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27027 (HKLM-x32\...\{fd9b6070-d13e-45dc-819b-41806bf45b6b}) (Version: 14.16.27027.1 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MZD-AIO-TI 2.8.4 (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\34093d1a-b79c-5bd0-8c69-6049d0980230) (Version: 2.8.4 - Trevelopment)
Prohlížeč Seznam.cz (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Seznam Browser) (Version: - Seznam.cz a.s.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.82.317.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8117 - Realtek Semiconductor Corp.)
SketchUp 2018 (HKLM\...\{73B6B84A-3414-4B1D-8C65-97E6CA9CDF36}) (Version: 18.0.16975 - Trimble, Inc.)
Skype verze 8.36 (HKLM-x32\...\Skype_is1) (Version: 8.36 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
USB Network Joystick (HKLM-x32\...\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}) (Version: V3.70a - )
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.167 - McAfee, LLC)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.70 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_CZ_is1) (Version: 18.0.1.1 - ZONER software)
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-20] (Microsoft Studios) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0 [2020-11-02] (Spotify AB) [Startup Task]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2015-12-28] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-09-25] (Free Time) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-09-25] (Free Time) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Marian - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\MÁMA - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\První uživatel - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2019-09-25 17:52 - 2019-09-25 17:52 - 000305152 _____ (Free Time) [File not signed] C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll
2015-06-23 16:00 - 2015-06-23 16:00 - 000562688 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2015-06-23 16:00 - 2015-06-23 16:00 - 000285696 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`20hfm [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`29hfm [0]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
SearchScopes: HKU\S-1-5-21-3595257899-2210446051-2448867403-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-11-13] (McAfee, LLC -> McAfee, LLC)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-11-13] (McAfee, LLC -> McAfee, LLC)
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxps://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2019-01-04 13:52 - 000000753 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Windows Live\Shared;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "USB Gamepad"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{ED923620-8B29-4F2E-9719-3656B061A4C4}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{CFF627BE-C530-4829-8A85-4FE9AE6DF1E3}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{44DC6C0C-9F43-4B0A-9246-ED4C2F1F1221}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{14E5C94F-3374-4C68-98BF-E964FA21B425}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{5D15FF53-9D78-4DBE-82E6-4AB1E7C732D0}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C5E6D6AC-623F-484F-985C-3320D635358B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{219FC7E8-73C4-483F-AC36-EF817E7AC962}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{DC3A96C0-3E8A-4F42-B74C-C9F82717CB0B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{487131F5-3CB3-416E-B737-E0E90910B7A1}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{673ECCD0-69F7-482D-929D-6E8BE4D1813A}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F6EA039C-049D-4734-BBD1-16F2DBF6216F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{429874FF-B6AD-4039-9D84-559AFA38504B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3BFDE18F-9D9A-4B68-9A91-7A7FB34FFC4C}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{35915BFC-5028-40B6-BDB9-4D758DEEDEAC}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [UDP Query User{FF137622-DE73-45BA-9D65-011D1836E20F}C:\program files (x86)\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\formatfactory\formatfactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{77566F83-77B1-4728-BACF-0324D9EF8604}C:\program files (x86)\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\formatfactory\formatfactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{AACE25B1-EF25-428C-B724-E33A7C5F6A30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{F24F2428-8769-4BA2-BCAE-952E1699C1F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{26A22EFE-D02C-4425-B69C-B68CFB747638}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DB938433-08E0-43BB-AF56-E76948F2007A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{89DF2CCA-67B9-4A96-BE53-0C1C28B1A8AE}] => (Allow) LPort=1900
FirewallRules: [{4FF0D7B9-8E12-4B8B-9E6A-032F6EE85AE3}] => (Allow) LPort=2869
FirewallRules: [{9159E902-1EF2-4F24-A2D5-62ED19A72469}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{72F0EF6A-4612-472C-9CFF-3812B9098141}C:\users\mb1\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mb1\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{B2A3D469-C744-4D44-87FB-0E09A80A7767}C:\users\mb1\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mb1\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{ADA5809E-DD2F-4257-8312-3F25EBFE6D82}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe (ZONER software) [File not signed]
FirewallRules: [{E59FA1FC-7CF7-44CB-BD3C-1F4ED85B1DA9}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe (ZONER software) [File not signed]
FirewallRules: [{3282730B-8CDE-426E-AE49-33CB732F605A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1420BCE5-316E-4150-93E1-A2941C3D0B51}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6872616A-07B4-4F24-9E97-0F364AD99ECF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EEBF5B39-5784-43CF-B698-D30ABA1CF401}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7C301F6C-9D2F-4D04-A7AC-8FA04F544355}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9BEB2A34-8CC7-4893-911B-102AEB452F53}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6147C769-3D06-4E6B-982C-6D2F3D8B1571}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8E8D8EE4-CCDA-4974-A30F-A8CB2E097DE0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7A05DEA0-066E-4B4F-93B3-CA3C08FEAC10}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{733AB6FC-BBA9-4BBF-B58E-7278E5CCF3CC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{28449B0A-DA58-4929-AA1F-0F9FFAF9F85D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{757D540F-BD63-4D10-9431-FC215663D546}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FDB14364-9C11-4BE1-97C2-BB54269F691A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:111.19 GB) (Free:22.85 GB) (21%)
==================== Faulty Device Manager Devices ============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (11/15/2020 12:18:44 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (11/08/2020 12:21:40 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (11/01/2020 12:39:55 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (10/29/2020 11:18:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: UIHost.exe, verze: 4.1.1.159, časové razítko: 0x5f860cd9
Název chybujícího modulu: USER32.dll, verze: 10.0.19041.546, časové razítko: 0x3af2f6a6
Kód výjimky: 0xc000041d
Posun chyby: 0x0000000000013a93
ID chybujícího procesu: 0x139c
Čas spuštění chybující aplikace: 0x01d6adb8c2cb98b2
Cesta k chybující aplikaci: C:\Program Files\McAfee\WebAdvisor\UIHost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\USER32.dll
ID zprávy: 4187cbfe-35dd-4c8e-a02e-40cb4f1441f6
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/29/2020 11:18:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: UIHost.exe, verze: 4.1.1.159, časové razítko: 0x5f860cd9
Název chybujícího modulu: USER32.dll, verze: 10.0.19041.546, časové razítko: 0x3af2f6a6
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000013a93
ID chybujícího procesu: 0x139c
Čas spuštění chybující aplikace: 0x01d6adb8c2cb98b2
Cesta k chybující aplikaci: C:\Program Files\McAfee\WebAdvisor\UIHost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\USER32.dll
ID zprávy: 550b77f5-6177-42b2-9aa0-5cb8fcb2f75e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/25/2020 01:50:39 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (10/18/2020 04:45:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (10/16/2020 07:51:36 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
System errors:
=============
Error: (11/15/2020 01:17:12 PM) (Source: SNMP) (EventID: 1500) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.
Error: (11/15/2020 01:16:38 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Avast Antivirus se po přijetí pokynu pro vypnutí neukončila správně.
Error: (11/15/2020 01:16:01 PM) (Source: DCOM) (EventID: 10010) (User: MB1-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (11/15/2020 01:16:00 PM) (Source: DCOM) (EventID: 10010) (User: MB1-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (11/15/2020 01:15:59 PM) (Source: DCOM) (EventID: 10010) (User: MB1-PC)
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (11/15/2020 01:14:24 PM) (Source: DCOM) (EventID: 10000) (User: MB1-PC)
Description: Nelze spustit server DCOM: {0358B920-0AC7-461F-98F4-58E32CD89148}. Došlo k chybě:
2147942767
při provádění příkazu:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (11/15/2020 12:18:43 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.
Error: (11/15/2020 12:18:41 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk1\DR1 má chybný blok.
CodeIntegrity:
===================================
Date: 2020-11-15 13:33:23.1230000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 13:30:44.5540000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 13:30:33.5230000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 13:29:40.8410000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 13:29:39.1150000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 13:29:07.0250000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 13:28:57.6060000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 13:28:39.0660000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. V1.10 07/10/2018
Motherboard: MSI H81M-P33 (MS-7817)
Processor: Intel(R) Pentium(R) CPU G3260 @ 3.30GHz
Percentage of memory in use: 88%
Total physical RAM: 3974.02 MB
Available physical RAM: 474.13 MB
Total Virtual: 8070.02 MB
Available Virtual: 4280.1 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.19 GB) (Free:22.85 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:698.64 GB) (Free:306.89 GB) NTFS
\\?\Volume{0f50f6c3-ad63-11e5-bd09-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS
\\?\Volume{a25c33b0-0000-0000-0000-80d21b000000}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: A25C33B0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=512 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 698.6 GB) (Disk ID: 980826B8)
Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zpomalené PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Zpomalené PC
Dobry den.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
► Vyšla moja nová kniha BOTNETY! 
Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Zpomalené PC
# -------------------------------
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-09-29.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-15-2020
# Duration: 00:00:04
# OS: Windows 10 Home
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\csastats
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1253 octets] - [17/06/2018 14:48:40]
AdwCleaner[C00].txt - [1419 octets] - [17/06/2018 14:48:59]
AdwCleaner[S01].txt - [1447 octets] - [23/02/2019 20:44:51]
AdwCleaner[S02].txt - [1508 octets] - [23/02/2019 20:51:53]
AdwCleaner[C02].txt - [1634 octets] - [23/02/2019 20:52:03]
AdwCleaner[S03].txt - [1729 octets] - [15/11/2020 17:54:38]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C03].txt ##########
# Malwarebytes AdwCleaner 8.0.8.0
# -------------------------------
# Build: 10-08-2020
# Database: 2020-09-29.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 11-15-2020
# Duration: 00:00:04
# OS: Windows 10 Home
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\csastats
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1253 octets] - [17/06/2018 14:48:40]
AdwCleaner[C00].txt - [1419 octets] - [17/06/2018 14:48:59]
AdwCleaner[S01].txt - [1447 octets] - [23/02/2019 20:44:51]
AdwCleaner[S02].txt - [1508 octets] - [23/02/2019 20:51:53]
AdwCleaner[C02].txt - [1634 octets] - [23/02/2019 20:52:03]
AdwCleaner[S03].txt - [1729 octets] - [15/11/2020 17:54:38]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C03].txt ##########
Re: Zpomalené PC
Poprosim o nove logy FRST + ADDITION.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Zpomalené PC
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-11-2020
Ran by MB1 (administrator) on MB1-PC (MSI MS-7817) (15-11-2020 18:25:34)
Running from C:\Users\MB1\Desktop
Loaded Profiles: MB1
Platform: Windows 10 Home Version 2004 19041.630 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\MB1\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
(Shen Zhen Dragon Rise Macro Technology Limited Company -> ) C:\Windows\USB Vibration\7906\USB Gamepad.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109664 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [USB Gamepad] => C:\WINDOWS\USB Vibration\7906\USB Gamepad.exe [796784 2008-12-10] (Shen Zhen Dragon Rise Macro Technology Limited Company -> )
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [EPSON SX110 Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFBE.EXE [223232 2008-09-26] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [54788456 2018-12-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [EPSON SX110 Series (kopie 1)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFBE.EXE [223232 2008-09-26] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON SX110 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMFBE.DLL [108032 2008-08-08] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-12] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0000A41F-9346-4AAB-8362-FAEE7A5F8CEF} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1B672F1A-3105-4AF5-94BF-FA8201822D61} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4496488 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
Task: {1FD427FA-E73C-4B31-AAE9-99BA2A5EAD7B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {32D7F8AB-3A55-4509-8BD4-AF9827528C17} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {354624B0-D49C-411F-ABF9-786FB959B7B8} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3790A8EA-C80F-4E37-AA2F-FE808A3FEB33} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {3C44E2BA-0F59-4512-8F3E-442664905765} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {3F07ADE2-59D1-495D-A6A2-D6B08A781BFE} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {414E5E8C-9FF8-47E9-A6DC-5539001C67D8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4A0DF130-D07D-4378-8DCF-6FE23BAADE7D} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4EFCAA86-4F7E-4E14-808D-5B2DECE6FC95} - System32\Tasks\{F4DAFCF2-8E64-4568-B281-BC8A904D3AED} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\MB1\Desktop\0\autorun.exe -d C:\Users\MB1\Desktop\0
Task: {539BE57D-1B42-4F47-9E1D-842934CCEF49} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {547B08EF-A8A7-4C17-AB9D-48BC825D4A57} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {56F94551-0180-4801-9912-F0EDC441AD37} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {5A6B6DB7-650A-4AB9-AD44-9ED867DEB9CA} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {5B39C614-7246-45F6-AC1B-1763C84A565E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5FCA8E5E-1932-4697-A52D-C21B5B9D2CD2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {656F79F9-1E4B-4692-BA8E-4ABD71C4FC7A} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {74582C39-B5F6-4F8A-97A5-52555557C0D6} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {74C0142B-A580-4CF4-86C9-AEF235D24711} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {795C4D65-1481-45C2-B9BF-C9D6DFF7E90A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7BF95FB6-051B-4312-9F5F-BA44950C9A83} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7D520FD7-1B6E-4D76-9544-08ABC2194586} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {944B5D16-ECA8-4C86-9289-08B2CAAFDC68} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A51A254F-27C3-44D8-9120-3D46D7FD90D6} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {A593C16C-F836-486A-8D4E-D8BA24093DC3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A7A6B1B9-7906-46D4-B0CE-35E1D760DDAA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AA028E2C-9BC8-4B8C-9100-966A69E7D325} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B08ABFEA-FA57-43E8-A965-E610E6681B71} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B7DFD3E5-F9E1-4E23-B0EC-2EEC3F1EA4AC} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {B9F03631-BC7A-44E3-8885-B99381F0CD7A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-28] (Google Inc -> Google Inc.)
Task: {C27663E1-48FA-4379-B51D-F684C860D7BA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-28] (Google Inc -> Google Inc.)
Task: {C782AF11-4D6D-4D62-B26F-7AA4CC5D4E31} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C79F2687-C570-4A8B-8178-50168D79E8D3} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {D8447909-A77D-4ACA-91E8-329FF80F69F0} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E35EDABA-250E-435C-BA01-A119E1C815EB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-10] (Piriform Ltd -> Piriform Ltd)
Task: {E6FE6004-03DE-4FBA-8DE3-BB5D15A37C59} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {E905B924-D963-4F00-B472-EC618E99EC75} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {EC19DC4D-4052-4B1C-9940-D38311AE9699} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{79600897-a531-47f6-b4f2-7abeccb390d1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c857ffc1-b553-400e-9fff-a8705e3f2343}: [DhcpNameServer] 192.168.1.1
Edge:
======
Edge Profile: C:\Users\MB1\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-15]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-11-14] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default [2020-11-15]
CHR DownloadDir: C:\Users\MB1\Desktop
CHR Notifications: Default -> hxxps://aukro.cz; hxxps://www.facebook.com; hxxps://www.mercedesclub.cz
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Extension: (Překladač Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-18]
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-07]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-11-15]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-11-15]
CHR HomePage: Profile 1 -> hxxp://www.seznam.cz/
CHR StartupUrls: Profile 1 -> "hxxp://www.seznam.cz/"
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-25]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-25]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-03]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-25]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-11-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-03]
CHR Extension: (Chrome Media Router) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-19]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2 [2020-11-15]
CHR Notifications: Profile 2 -> hxxps://www.facebook.com
CHR HomePage: Profile 2 -> hxxps://www.seznam.cz/
CHR StartupUrls: Profile 2 -> "hxxps://www.seznam.cz/"
CHR DefaultSearchURL: Profile 2 -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
CHR DefaultSearchKeyword: Profile 2 -> mcafee
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-08]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\System Profile [2020-11-15]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-09-10] (Adobe Inc. -> Adobe Systems)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8450976 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [360408 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2748520 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [956760 2020-11-13] (McAfee, LLC -> McAfee, LLC)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37152 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206408 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [236112 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195664 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60496 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-07-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175720 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [518664 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109280 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851608 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [470912 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217336 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326928 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 gdrv; C:\WINDOWS\gdrv.sys [25640 2015-12-29] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-15 18:25 - 2020-11-15 18:26 - 000024758 _____ C:\Users\MB1\Desktop\FRST.txt
2020-11-15 18:25 - 2020-11-15 18:25 - 000000000 ____D C:\Users\MB1\Desktop\FRST-OlderVersion
2020-11-15 17:53 - 2020-11-15 17:53 - 008447152 _____ (Malwarebytes) C:\Users\MB1\Desktop\adwcleaner_8.0.8.exe
2020-11-15 13:22 - 2020-11-15 18:25 - 002294784 _____ (Farbar) C:\Users\MB1\Desktop\FRST64.exe
2020-11-15 13:15 - 2020-11-15 13:15 - 000058204 _____ C:\Users\MB1\Desktop\cc_20201115_131510.reg
2020-11-14 20:09 - 2020-11-14 20:09 - 000055396 _____ C:\Users\MB1\Desktop\Atom.pdf
2020-11-14 20:08 - 2020-11-14 20:08 - 000181988 _____ C:\Users\MB1\Desktop\Atom.odt
2020-11-14 16:04 - 2020-11-14 16:04 - 000027689 _____ C:\Users\MB1\Desktop\Řešení.pdf
2020-11-13 14:28 - 2020-11-13 14:28 - 026274304 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 024265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 023452160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 019870720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 018083840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 010840904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 010336904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 008895680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 008235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 008009872 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007990232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007783936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007636448 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007621632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007107584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006422016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006368392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006231040 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006196736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006001208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 005430992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004902400 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004830720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004783840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004752896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004732928 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004629328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 004281856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004277248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004069992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 004008448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003933696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003893248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003869184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003821064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003815936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 003811840 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003779392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 003750400 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003388928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003305984 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003157816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003089920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002983736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 002979840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002942976 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 002850616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 002809776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 002607104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002520056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002477384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002426168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002318848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002268456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002250240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002048000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002024248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002012672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001953792 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001828352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001827648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001751944 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001715200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001695728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001683456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001664160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001649664 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001590784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001590584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001557816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001481216 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001478464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 001449984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001414656 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001391616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001361920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsf3gip.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001352240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001272320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001255424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001239040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_IME.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001238528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001210136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001192096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001128520 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001117328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001097216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001070392 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001025768 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000988000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000983408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000947712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000926720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000904008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000894776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000873272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000867328 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000860672 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000859400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000828432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000805168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000802304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000763392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000763344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000756680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000732448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000713728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000712296 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000705008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000700376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000648712 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntimewindows.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000635840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntime.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000628224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000603448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000598016 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_9.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000546968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000538952 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000534536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000521088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000509792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000502584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-11-13 14:28 - 2020-11-13 14:28 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000489128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000488056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000482120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000459264 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadauthhelper.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000454968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000442168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000423224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000413208 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000410072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000409408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000384512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000382712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AarSvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000288680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000253016 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-11-13 14:28 - 2020-11-13 14:28 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreCommonProxyStub.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000228680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000218936 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskpart.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000201536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000195144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_InkingTypingPrivacy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-11-13 14:28 - 2020-11-13 14:28 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskpart.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\netid.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000180040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertPolEng.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000153912 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcl.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BrowserDeclutter.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertPolEng.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000133448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcl.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000132744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerApi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netid.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbnetlib.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000118600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000117064 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbnetlib.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000104760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PktMon.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManagerApi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000098120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000095048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000092960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcXtrnal.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000070968 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msobjs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msobjs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000061760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\amsi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncobjapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardBi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000042824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\gmsaclient.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gmsaclient.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000024792 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000021320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000020280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000020144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcXtrnal.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsiproxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000009265 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-11-13 14:28 - 2020-11-13 14:28 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 004651032 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-11-13 14:27 - 2020-11-13 14:27 - 003070464 _____ (Microsoft Corporation) C:\WINDOWS\system32\FluencyDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 002648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001819640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001515520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001278464 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001245280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000885248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000820552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_9.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxAPDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxHAPDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000493056 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtCangjieDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtBopomofoDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtHkStrokeDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChsStrokeDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtQuickDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000429712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000423224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpndecoder.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxDecoder.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxinputrouter.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtfDecoder.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000305472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000298808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpnranker.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-11-13 14:27 - 2020-11-13 14:27 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000250176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000195400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\trie.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFFuzzyDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdvancedEmojiDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\VocabRoamingHandler.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxranker.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFSpellcheckDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\HashtagDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtAdvancedDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFAppServiceDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\RuleBasedDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpninputrouter.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsi.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransliterationRanker.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmojiDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\devauthe.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsilog.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000016136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2020-11-13 14:21 - 2020-10-15 04:22 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-11-13 14:21 - 2020-10-15 04:14 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-11-04 12:24 - 2020-11-04 12:30 - 000000000 ____D C:\Users\MB1\Desktop\Nová složka
2020-10-23 09:25 - 2020-10-23 09:25 - 000203673 _____ C:\Users\MB1\Desktop\POTVRZEN___PRO_ZAM__STNANCE__OZP_distributory.pdf
2020-10-20 11:49 - 2020-10-20 11:49 - 000339552 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-10-20 11:49 - 2020-10-20 11:49 - 000217336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-10-20 11:49 - 2020-10-20 11:49 - 000175720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-15 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-11-15 18:25 - 2017-01-21 20:54 - 000000000 ____D C:\FRST
2020-11-15 18:07 - 2020-07-31 20:40 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-15 18:07 - 2020-07-31 20:40 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-11-15 18:07 - 2020-07-31 20:40 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-15 18:07 - 2020-07-31 20:40 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-11-15 18:07 - 2020-07-31 20:40 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3595257899-2210446051-2448867403-1000
2020-11-15 18:07 - 2020-07-31 20:40 - 000002220 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-11-15 18:07 - 2020-07-31 20:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2020-11-15 18:00 - 2020-07-31 20:40 - 001876158 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-11-15 18:00 - 2019-12-07 15:41 - 000781844 _____ C:\WINDOWS\system32\perfh005.dat
2020-11-15 18:00 - 2019-12-07 15:41 - 000172578 _____ C:\WINDOWS\system32\perfc005.dat
2020-11-15 18:00 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-11-15 17:56 - 2020-07-31 20:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-11-15 17:56 - 2020-07-31 20:32 - 000008192 ___SH C:\DumpStack.log.tmp
2020-11-15 17:56 - 2018-06-21 07:23 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-11-15 17:56 - 2015-12-28 14:23 - 000000000 __SHD C:\Users\MB1\IntelGraphicsProfiles
2020-11-15 17:55 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-11-15 17:51 - 2020-07-31 20:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-11-15 13:16 - 2015-12-29 14:27 - 000000000 ____D C:\ProgramData\AVAST Software
2020-11-15 13:14 - 2020-07-31 07:00 - 000000000 ___DC C:\WINDOWS\Panther
2020-11-15 13:14 - 2018-08-01 08:58 - 000000000 ____D C:\Users\MB1\AppData\Local\CrashDumps
2020-11-14 20:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-11-14 20:27 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-11-14 20:26 - 2020-06-05 07:26 - 000002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-11-14 09:25 - 2020-07-31 20:40 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-11-13 22:00 - 2020-07-31 20:32 - 000427552 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-11-13 20:48 - 2020-07-31 20:33 - 000002359 _____ C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-11-13 20:47 - 2015-12-28 16:03 - 000000000 ___RD C:\Users\MB1\OneDrive
2020-11-13 14:30 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-11-13 14:27 - 2020-07-31 20:32 - 002876928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-11-12 08:32 - 2015-12-28 14:34 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-11 16:22 - 2019-11-01 16:56 - 000001140 _____ C:\Users\MB1\Desktop\Format Factory.lnk
2020-10-26 07:46 - 2020-03-23 11:06 - 000000000 ____D C:\Users\MB1\Desktop\Koronovýuka
2020-10-23 17:04 - 2020-03-15 20:19 - 000000000 ____D C:\ProgramData\Flexibooks 4
2020-10-20 11:49 - 2020-04-18 10:52 - 000518664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-10-20 11:49 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-20 11:49 - 2019-01-14 14:39 - 000236112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-10-20 11:49 - 2019-01-08 06:22 - 000195664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-10-20 11:49 - 2019-01-08 06:22 - 000060496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-10-20 11:49 - 2019-01-08 06:22 - 000037152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-10-20 11:49 - 2018-10-25 10:26 - 000042784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000851608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000470912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000326928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000206408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000109280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000084856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-10-16 19:51 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
==================== Files in the root of some directories ========
2018-06-18 04:54 - 2018-06-18 04:54 - 000029696 _____ () C:\Users\MB1\AppData\Local\MSGBOX.EXE
2017-06-25 09:23 - 2019-03-03 16:04 - 000000774 _____ () C:\Users\MB1\AppData\Local\MZD-AIO-TI.log
2016-03-20 11:45 - 2016-03-20 11:45 - 000000017 _____ () C:\Users\MB1\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-11-2020
Ran by MB1 (15-11-2020 18:26:41)
Running from C:\Users\MB1\Desktop
Windows 10 Home Version 2004 19041.630 (X64) (2020-07-31 19:40:17)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3595257899-2210446051-2448867403-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3595257899-2210446051-2448867403-503 - Limited - Disabled)
Guest (S-1-5-21-3595257899-2210446051-2448867403-501 - Limited - Disabled)
MB1 (S-1-5-21-3595257899-2210446051-2448867403-1000 - Administrator - Enabled) => C:\Users\MB1
WDAGUtilityAccount (S-1-5-21-3595257899-2210446051-2448867403-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.8.2432 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
EBook Codec 1.0.0.1 (HKLM-x32\...\EBook Codec) (Version: 1.0.0.1 - Free Time)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
Epson Software Updater (HKLM-x32\...\{B55DB65D-EF6E-4E04-89D5-B03603BF681B}) (Version: 4.4.5 - SEIKO EPSON CORPORATION)
EPSON SX110 Series Printer Uninstall (HKLM\...\EPSON SX110 Series) (Version: - SEIKO EPSON Corporation)
Flexibooks 4.6.1 (64 bit) (HKLM\...\{D36F5D15-E633-45E7-803B-4FC66F183092}) (Version: 4.6.1 - Fraus Media s.r.o. 2016)
FormatFactory 4.9.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.9.0.0 - Free Time)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.198 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
HappyFoto-Designer 5.4 (HKLM-x32\...\HappyFoto-Designer_is1) (Version: - )
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.0.4.6 - PandoraTV)
LibreOffice 6.3.4.2 (HKLM\...\{191F4D69-B671-4163-BB01-901B89A20D04}) (Version: 6.3.4.2 - The Document Foundation)
Mazda Toolbox (HKLM-x32\...\Mazda Toolbox) (Version: - )
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.69 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.137.99 - )
Microsoft OneDrive (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\OneDriveSetup.exe) (Version: 20.201.1005.0006 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27027 (HKLM-x32\...\{fd9b6070-d13e-45dc-819b-41806bf45b6b}) (Version: 14.16.27027.1 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MZD-AIO-TI 2.8.4 (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\34093d1a-b79c-5bd0-8c69-6049d0980230) (Version: 2.8.4 - Trevelopment)
Prohlížeč Seznam.cz (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Seznam Browser) (Version: - Seznam.cz a.s.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.82.317.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8117 - Realtek Semiconductor Corp.)
SketchUp 2018 (HKLM\...\{73B6B84A-3414-4B1D-8C65-97E6CA9CDF36}) (Version: 18.0.16975 - Trimble, Inc.)
Skype verze 8.36 (HKLM-x32\...\Skype_is1) (Version: 8.36 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
USB Network Joystick (HKLM-x32\...\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}) (Version: V3.70a - )
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.167 - McAfee, LLC)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.70 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_CZ_is1) (Version: 18.0.1.1 - ZONER software)
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-20] (Microsoft Studios) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0 [2020-11-02] (Spotify AB) [Startup Task]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2015-12-28] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-09-25] (Free Time) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-09-25] (Free Time) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Marian - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\MÁMA - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\První uživatel - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2019-09-25 17:52 - 2019-09-25 17:52 - 000305152 _____ (Free Time) [File not signed] C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll
2015-06-23 16:00 - 2015-06-23 16:00 - 000562688 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2015-06-23 16:00 - 2015-06-23 16:00 - 000285696 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`20hfm [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`29hfm [0]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
SearchScopes: HKU\S-1-5-21-3595257899-2210446051-2448867403-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-11-13] (McAfee, LLC -> McAfee, LLC)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-11-13] (McAfee, LLC -> McAfee, LLC)
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxps://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2019-01-04 13:52 - 000000753 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Windows Live\Shared;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "USB Gamepad"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{ED923620-8B29-4F2E-9719-3656B061A4C4}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{CFF627BE-C530-4829-8A85-4FE9AE6DF1E3}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{44DC6C0C-9F43-4B0A-9246-ED4C2F1F1221}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{14E5C94F-3374-4C68-98BF-E964FA21B425}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{5D15FF53-9D78-4DBE-82E6-4AB1E7C732D0}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C5E6D6AC-623F-484F-985C-3320D635358B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{219FC7E8-73C4-483F-AC36-EF817E7AC962}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{DC3A96C0-3E8A-4F42-B74C-C9F82717CB0B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{487131F5-3CB3-416E-B737-E0E90910B7A1}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{673ECCD0-69F7-482D-929D-6E8BE4D1813A}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F6EA039C-049D-4734-BBD1-16F2DBF6216F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{429874FF-B6AD-4039-9D84-559AFA38504B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3BFDE18F-9D9A-4B68-9A91-7A7FB34FFC4C}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{35915BFC-5028-40B6-BDB9-4D758DEEDEAC}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [UDP Query User{FF137622-DE73-45BA-9D65-011D1836E20F}C:\program files (x86)\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\formatfactory\formatfactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{77566F83-77B1-4728-BACF-0324D9EF8604}C:\program files (x86)\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\formatfactory\formatfactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{AACE25B1-EF25-428C-B724-E33A7C5F6A30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{F24F2428-8769-4BA2-BCAE-952E1699C1F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{26A22EFE-D02C-4425-B69C-B68CFB747638}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DB938433-08E0-43BB-AF56-E76948F2007A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{89DF2CCA-67B9-4A96-BE53-0C1C28B1A8AE}] => (Allow) LPort=1900
FirewallRules: [{4FF0D7B9-8E12-4B8B-9E6A-032F6EE85AE3}] => (Allow) LPort=2869
FirewallRules: [{9159E902-1EF2-4F24-A2D5-62ED19A72469}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{72F0EF6A-4612-472C-9CFF-3812B9098141}C:\users\mb1\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mb1\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{B2A3D469-C744-4D44-87FB-0E09A80A7767}C:\users\mb1\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mb1\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{ADA5809E-DD2F-4257-8312-3F25EBFE6D82}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe (ZONER software) [File not signed]
FirewallRules: [{E59FA1FC-7CF7-44CB-BD3C-1F4ED85B1DA9}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe (ZONER software) [File not signed]
FirewallRules: [{3282730B-8CDE-426E-AE49-33CB732F605A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1420BCE5-316E-4150-93E1-A2941C3D0B51}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6872616A-07B4-4F24-9E97-0F364AD99ECF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EEBF5B39-5784-43CF-B698-D30ABA1CF401}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7C301F6C-9D2F-4D04-A7AC-8FA04F544355}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9BEB2A34-8CC7-4893-911B-102AEB452F53}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6147C769-3D06-4E6B-982C-6D2F3D8B1571}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8E8D8EE4-CCDA-4974-A30F-A8CB2E097DE0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7A05DEA0-066E-4B4F-93B3-CA3C08FEAC10}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{733AB6FC-BBA9-4BBF-B58E-7278E5CCF3CC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{28449B0A-DA58-4929-AA1F-0F9FFAF9F85D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{757D540F-BD63-4D10-9431-FC215663D546}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FDB14364-9C11-4BE1-97C2-BB54269F691A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:111.19 GB) (Free:22.57 GB) (20%)
==================== Faulty Device Manager Devices ============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (11/15/2020 12:18:44 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (11/08/2020 12:21:40 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (11/01/2020 12:39:55 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (10/29/2020 11:18:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: UIHost.exe, verze: 4.1.1.159, časové razítko: 0x5f860cd9
Název chybujícího modulu: USER32.dll, verze: 10.0.19041.546, časové razítko: 0x3af2f6a6
Kód výjimky: 0xc000041d
Posun chyby: 0x0000000000013a93
ID chybujícího procesu: 0x139c
Čas spuštění chybující aplikace: 0x01d6adb8c2cb98b2
Cesta k chybující aplikaci: C:\Program Files\McAfee\WebAdvisor\UIHost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\USER32.dll
ID zprávy: 4187cbfe-35dd-4c8e-a02e-40cb4f1441f6
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/29/2020 11:18:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: UIHost.exe, verze: 4.1.1.159, časové razítko: 0x5f860cd9
Název chybujícího modulu: USER32.dll, verze: 10.0.19041.546, časové razítko: 0x3af2f6a6
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000013a93
ID chybujícího procesu: 0x139c
Čas spuštění chybující aplikace: 0x01d6adb8c2cb98b2
Cesta k chybující aplikaci: C:\Program Files\McAfee\WebAdvisor\UIHost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\USER32.dll
ID zprávy: 550b77f5-6177-42b2-9aa0-5cb8fcb2f75e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/25/2020 01:50:39 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (10/18/2020 04:45:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (10/16/2020 07:51:36 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
System errors:
=============
Error: (11/15/2020 05:56:08 PM) (Source: SNMP) (EventID: 1500) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.
Error: (11/15/2020 05:55:40 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Avast Antivirus se po přijetí pokynu pro vypnutí neukončila správně.
Error: (11/15/2020 05:55:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Řízení front zpráv byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.
Error: (11/15/2020 05:55:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba SNMP byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (11/15/2020 05:55:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba McAfee WebAdvisor byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1 milisekund: Restartovat službu.
Error: (11/15/2020 05:55:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (11/15/2020 05:55:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba EPSON V3 Service4(01) byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (11/15/2020 05:55:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
CodeIntegrity:
===================================
Date: 2020-11-15 18:24:55.9770000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:52.0570000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:50.9710000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:41.5000000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:40.9370000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:40.5890000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:40.5600000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:36.7890000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. V1.10 07/10/2018
Motherboard: MSI H81M-P33 (MS-7817)
Processor: Intel(R) Pentium(R) CPU G3260 @ 3.30GHz
Percentage of memory in use: 62%
Total physical RAM: 3974.02 MB
Available physical RAM: 1493.34 MB
Total Virtual: 8070.02 MB
Available Virtual: 5427.04 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.19 GB) (Free:22.57 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:698.64 GB) (Free:306.89 GB) NTFS
\\?\Volume{0f50f6c3-ad63-11e5-bd09-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS
\\?\Volume{a25c33b0-0000-0000-0000-80d21b000000}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: A25C33B0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=512 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 698.6 GB) (Disk ID: 980826B8)
Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Ran by MB1 (administrator) on MB1-PC (MSI MS-7817) (15-11-2020 18:25:34)
Running from C:\Users\MB1\Desktop
Loaded Profiles: MB1
Platform: Windows 10 Home Version 2004 19041.630 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe <3>
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [File not signed] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(McAfee, LLC -> McAfee, LLC) C:\Program Files\McAfee\WebAdvisor\uihost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\MB1\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
(Shen Zhen Dragon Rise Macro Technology Limited Company -> ) C:\Windows\USB Vibration\7906\USB Gamepad.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [109664 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9217024 2017-04-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [USB Gamepad] => C:\WINDOWS\USB Vibration\7906\USB Gamepad.exe [796784 2008-12-10] (Shen Zhen Dragon Rise Macro Technology Limited Company -> )
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [EPSON SX110 Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFBE.EXE [223232 2008-09-26] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [54788456 2018-12-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [EPSON SX110 Series (kopie 1)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFBE.EXE [223232 2008-09-26] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\...\Print\Monitors\EPSON SX110 Series 64MonitorBE: C:\WINDOWS\system32\E_ILMFBE.DLL [108032 2008-08-08] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\86.0.4240.198\Installer\chrmstp.exe [2020-11-12] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0000A41F-9346-4AAB-8362-FAEE7A5F8CEF} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1B672F1A-3105-4AF5-94BF-FA8201822D61} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [4496488 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
Task: {1FD427FA-E73C-4B31-AAE9-99BA2A5EAD7B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {32D7F8AB-3A55-4509-8BD4-AF9827528C17} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {354624B0-D49C-411F-ABF9-786FB959B7B8} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3790A8EA-C80F-4E37-AA2F-FE808A3FEB33} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {3C44E2BA-0F59-4512-8F3E-442664905765} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {3F07ADE2-59D1-495D-A6A2-D6B08A781BFE} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {414E5E8C-9FF8-47E9-A6DC-5539001C67D8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4A0DF130-D07D-4378-8DCF-6FE23BAADE7D} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4EFCAA86-4F7E-4E14-808D-5B2DECE6FC95} - System32\Tasks\{F4DAFCF2-8E64-4568-B281-BC8A904D3AED} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\MB1\Desktop\0\autorun.exe -d C:\Users\MB1\Desktop\0
Task: {539BE57D-1B42-4F47-9E1D-842934CCEF49} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {547B08EF-A8A7-4C17-AB9D-48BC825D4A57} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {56F94551-0180-4801-9912-F0EDC441AD37} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1741416 2020-09-17] (Avast Software s.r.o. -> Avast Software)
Task: {5A6B6DB7-650A-4AB9-AD44-9ED867DEB9CA} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {5B39C614-7246-45F6-AC1B-1763C84A565E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5FCA8E5E-1932-4697-A52D-C21B5B9D2CD2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {656F79F9-1E4B-4692-BA8E-4ABD71C4FC7A} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {74582C39-B5F6-4F8A-97A5-52555557C0D6} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {74C0142B-A580-4CF4-86C9-AEF235D24711} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {795C4D65-1481-45C2-B9BF-C9D6DFF7E90A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7BF95FB6-051B-4312-9F5F-BA44950C9A83} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7D520FD7-1B6E-4D76-9544-08ABC2194586} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {944B5D16-ECA8-4C86-9289-08B2CAAFDC68} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A51A254F-27C3-44D8-9120-3D46D7FD90D6} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {A593C16C-F836-486A-8D4E-D8BA24093DC3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A7A6B1B9-7906-46D4-B0CE-35E1D760DDAA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AA028E2C-9BC8-4B8C-9100-966A69E7D325} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B08ABFEA-FA57-43E8-A965-E610E6681B71} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B7DFD3E5-F9E1-4E23-B0EC-2EEC3F1EA4AC} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {B9F03631-BC7A-44E3-8885-B99381F0CD7A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-28] (Google Inc -> Google Inc.)
Task: {C27663E1-48FA-4379-B51D-F684C860D7BA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-28] (Google Inc -> Google Inc.)
Task: {C782AF11-4D6D-4D62-B26F-7AA4CC5D4E31} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C79F2687-C570-4A8B-8178-50168D79E8D3} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {D8447909-A77D-4ACA-91E8-329FF80F69F0} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E35EDABA-250E-435C-BA01-A119E1C815EB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-09-10] (Piriform Ltd -> Piriform Ltd)
Task: {E6FE6004-03DE-4FBA-8DE3-BB5D15A37C59} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {E905B924-D963-4F00-B472-EC618E99EC75} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {EC19DC4D-4052-4B1C-9940-D38311AE9699} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{79600897-a531-47f6-b4f2-7abeccb390d1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c857ffc1-b553-400e-9fff-a8705e3f2343}: [DhcpNameServer] 192.168.1.1
Edge:
======
Edge Profile: C:\Users\MB1\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-15]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-11-14] [UpdateUrl:hxxps://sadownload.mcafee.com/products/SA/Win/xpi/webadvisor/update.json]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default [2020-11-15]
CHR DownloadDir: C:\Users\MB1\Desktop
CHR Notifications: Default -> hxxps://aukro.cz; hxxps://www.facebook.com; hxxps://www.mercedesclub.cz
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Extension: (Překladač Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-18]
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-24]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-07]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-11-15]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-11-15]
CHR HomePage: Profile 1 -> hxxp://www.seznam.cz/
CHR StartupUrls: Profile 1 -> "hxxp://www.seznam.cz/"
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-25]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-25]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-03]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-25]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-11-03]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-03]
CHR Extension: (Chrome Media Router) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-19]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2 [2020-11-15]
CHR Notifications: Profile 2 -> hxxps://www.facebook.com
CHR HomePage: Profile 2 -> hxxps://www.seznam.cz/
CHR StartupUrls: Profile 2 -> "hxxps://www.seznam.cz/"
CHR DefaultSearchURL: Profile 2 -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
CHR DefaultSearchKeyword: Profile 2 -> mcafee
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-22]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-22]
CHR Extension: (Chrome Media Router) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-08]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\System Profile [2020-11-15]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [88136 2019-09-10] (Adobe Inc. -> Adobe Systems)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [8450976 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [360408 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Tools; C:\Program Files\AVAST Software\Avast\aswToolsSvc.exe [2748520 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [58048 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [956760 2020-11-13] (McAfee, LLC -> McAfee, LLC)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37152 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [206408 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [236112 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [195664 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [60496 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16824 2020-07-21] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42784 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175720 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\WINDOWS\System32\drivers\aswNetHub.sys [518664 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [109280 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84856 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [851608 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [470912 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [217336 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [326928 2020-10-20] (Avast Software s.r.o. -> AVAST Software)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
S3 gdrv; C:\WINDOWS\gdrv.sys [25640 2015-12-29] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-15 18:25 - 2020-11-15 18:26 - 000024758 _____ C:\Users\MB1\Desktop\FRST.txt
2020-11-15 18:25 - 2020-11-15 18:25 - 000000000 ____D C:\Users\MB1\Desktop\FRST-OlderVersion
2020-11-15 17:53 - 2020-11-15 17:53 - 008447152 _____ (Malwarebytes) C:\Users\MB1\Desktop\adwcleaner_8.0.8.exe
2020-11-15 13:22 - 2020-11-15 18:25 - 002294784 _____ (Farbar) C:\Users\MB1\Desktop\FRST64.exe
2020-11-15 13:15 - 2020-11-15 13:15 - 000058204 _____ C:\Users\MB1\Desktop\cc_20201115_131510.reg
2020-11-14 20:09 - 2020-11-14 20:09 - 000055396 _____ C:\Users\MB1\Desktop\Atom.pdf
2020-11-14 20:08 - 2020-11-14 20:08 - 000181988 _____ C:\Users\MB1\Desktop\Atom.odt
2020-11-14 16:04 - 2020-11-14 16:04 - 000027689 _____ C:\Users\MB1\Desktop\Řešení.pdf
2020-11-13 14:28 - 2020-11-13 14:28 - 026274304 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 024265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 023452160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 019870720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 018083840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 010840904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 010336904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 008895680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 008235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 008009872 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007990232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007783936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007636448 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007621632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 007107584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006422016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006368392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006231040 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006196736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 006001208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 005833216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 005430992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004902400 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004830720 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004783840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004752896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004732928 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004629328 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 004281856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004277248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 004069992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 004008448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003933696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003893248 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003869184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003821064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003815936 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 003811840 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003779392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 003750400 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003388928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003305984 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003157816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 003089920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002983736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 002979840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002942976 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 002850616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 002809776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 002607104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002520056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002477384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002426168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002318848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002268456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002250240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002048000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002024248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 002012672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001953792 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001828352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001827648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001751944 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001715200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001702392 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001695728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001683456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001664160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001649664 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001590784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001590584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001557816 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MoUsoCoreWorker.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001481216 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001478464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 001449984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001414656 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001391616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001361920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsf3gip.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001352240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001272320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001255424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001239040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_IME.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001238528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001210136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 001192096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001128520 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001117328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001097216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001070392 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001058304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001025768 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 001017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsreg.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000988000 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000983408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000947712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000926720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000904008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000894776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000877056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000874496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000873272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000867328 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000866304 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000860672 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000859400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000828432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000805168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000802304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000763392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000763344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000756680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000732448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000713728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000712296 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000705008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000700376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000659456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000648712 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000645632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntimewindows.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000635840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\agentactivationruntime.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000628224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.ConversationalAgent.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000603448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000598016 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_9.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000586240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000568632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000567296 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000546968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\IESettingSync.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000538952 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000534536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000521088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000509792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000502584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-11-13 14:28 - 2020-11-13 14:28 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDDS.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000489128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000488056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000482120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000459264 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadauthhelper.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000454968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000453632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000442168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SDDS.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000423224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000413696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000413208 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000410072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000409408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000384512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000382712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000363520 _____ C:\WINDOWS\system32\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000363008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000339456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AarSvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000288680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000286720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\framedynos.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000266240 _____ C:\WINDOWS\SysWOW64\Windows.Internal.UI.Shell.WindowTabManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.Ngc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000260800 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000253016 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-11-13 14:28 - 2020-11-13 14:28 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\XamlTileRender.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreCommonProxyStub.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000229376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000228680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000218936 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfp.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskpart.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000201536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000195144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_InkingTypingPrivacy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000190048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-11-13 14:28 - 2020-11-13 14:28 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskpart.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000183296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\netid.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000180040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertPolEng.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.CredentialProvider.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000153912 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcl.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000152576 _____ C:\WINDOWS\system32\EoAExperiences.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BrowserDeclutter.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertPolEng.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000133448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcl.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000132744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerApi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSAssessment.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netid.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbnetlib.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000118600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000117064 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbnetlib.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000104760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PktMon.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManagerApi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000098120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000095048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000092960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcXtrnal.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardDlg.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000070968 _____ (Microsoft Corporation) C:\WINDOWS\system32\GameInput.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msobjs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msobjs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000061760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GameInput.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\amsi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncobjapi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardBi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000042824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\gmsaclient.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2020-11-13 14:28 - 2020-11-13 14:28 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gmsaclient.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000024792 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000021320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000020280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2020-11-13 14:28 - 2020-11-13 14:28 - 000020144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsregtask.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcXtrnal.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsiproxy.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000009265 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2020-11-13 14:28 - 2020-11-13 14:28 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2020-11-13 14:28 - 2020-11-13 14:28 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 004651032 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-11-13 14:27 - 2020-11-13 14:27 - 003070464 _____ (Microsoft Corporation) C:\WINDOWS\system32\FluencyDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 002648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001819640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001515520 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001278464 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001245280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000885248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000820552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_9.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxAPDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxHAPDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000493056 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreCommonProxyStub.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtCangjieDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtBopomofoDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtHkStrokeDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChsStrokeDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtQuickDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000429712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000423224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000388608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000381440 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpndecoder.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChxDecoder.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxinputrouter.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\framedynos.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000319488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtfDecoder.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000305472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000298808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpnranker.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2020-11-13 14:27 - 2020-11-13 14:27 - 000282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiCloudStore.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000250176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000197632 _____ C:\WINDOWS\system32\IHDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000195400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\trie.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFFuzzyDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdvancedEmojiDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\VocabRoamingHandler.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\chxranker.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFSpellcheckDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\HashtagDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChtAdvancedDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTFAppServiceDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\RuleBasedDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\jpninputrouter.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\amsi.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncobjapi.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransliterationRanker.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmojiDS.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\devauthe.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-11-13 14:27 - 2020-11-13 14:27 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsregtask.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsilog.dll
2020-11-13 14:27 - 2020-11-13 14:27 - 000016136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2020-11-13 14:21 - 2020-10-15 04:22 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-11-13 14:21 - 2020-10-15 04:14 - 000391168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-11-04 12:24 - 2020-11-04 12:30 - 000000000 ____D C:\Users\MB1\Desktop\Nová složka
2020-10-23 09:25 - 2020-10-23 09:25 - 000203673 _____ C:\Users\MB1\Desktop\POTVRZEN___PRO_ZAM__STNANCE__OZP_distributory.pdf
2020-10-20 11:49 - 2020-10-20 11:49 - 000339552 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2020-10-20 11:49 - 2020-10-20 11:49 - 000217336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2020-10-20 11:49 - 2020-10-20 11:49 - 000175720 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-11-15 18:26 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-11-15 18:25 - 2017-01-21 20:54 - 000000000 ____D C:\FRST
2020-11-15 18:07 - 2020-07-31 20:40 - 000003512 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-15 18:07 - 2020-07-31 20:40 - 000003400 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-11-15 18:07 - 2020-07-31 20:40 - 000003288 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-11-15 18:07 - 2020-07-31 20:40 - 000003176 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-11-15 18:07 - 2020-07-31 20:40 - 000002862 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3595257899-2210446051-2448867403-1000
2020-11-15 18:07 - 2020-07-31 20:40 - 000002220 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2020-11-15 18:07 - 2020-07-31 20:40 - 000000000 ____D C:\WINDOWS\system32\Tasks\AVAST Software
2020-11-15 18:00 - 2020-07-31 20:40 - 001876158 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-11-15 18:00 - 2019-12-07 15:41 - 000781844 _____ C:\WINDOWS\system32\perfh005.dat
2020-11-15 18:00 - 2019-12-07 15:41 - 000172578 _____ C:\WINDOWS\system32\perfc005.dat
2020-11-15 18:00 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2020-11-15 17:56 - 2020-07-31 20:40 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-11-15 17:56 - 2020-07-31 20:32 - 000008192 ___SH C:\DumpStack.log.tmp
2020-11-15 17:56 - 2018-06-21 07:23 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-11-15 17:56 - 2015-12-28 14:23 - 000000000 __SHD C:\Users\MB1\IntelGraphicsProfiles
2020-11-15 17:55 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-11-15 17:51 - 2020-07-31 20:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-11-15 13:16 - 2015-12-29 14:27 - 000000000 ____D C:\ProgramData\AVAST Software
2020-11-15 13:14 - 2020-07-31 07:00 - 000000000 ___DC C:\WINDOWS\Panther
2020-11-15 13:14 - 2018-08-01 08:58 - 000000000 ____D C:\Users\MB1\AppData\Local\CrashDumps
2020-11-14 20:44 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-11-14 20:27 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-11-14 20:26 - 2020-06-05 07:26 - 000002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-11-14 09:25 - 2020-07-31 20:40 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-11-13 22:00 - 2020-07-31 20:32 - 000427552 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-11-13 21:59 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-11-13 20:48 - 2020-07-31 20:33 - 000002359 _____ C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-11-13 20:47 - 2015-12-28 16:03 - 000000000 ___RD C:\Users\MB1\OneDrive
2020-11-13 14:30 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-11-13 14:27 - 2020-07-31 20:32 - 002876928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2020-11-12 08:32 - 2015-12-28 14:34 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-11-11 16:22 - 2019-11-01 16:56 - 000001140 _____ C:\Users\MB1\Desktop\Format Factory.lnk
2020-10-26 07:46 - 2020-03-23 11:06 - 000000000 ____D C:\Users\MB1\Desktop\Koronovýuka
2020-10-23 17:04 - 2020-03-15 20:19 - 000000000 ____D C:\ProgramData\Flexibooks 4
2020-10-20 11:49 - 2020-04-18 10:52 - 000518664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetHub.sys
2020-10-20 11:49 - 2019-12-07 10:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-20 11:49 - 2019-01-14 14:39 - 000236112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2020-10-20 11:49 - 2019-01-08 06:22 - 000195664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2020-10-20 11:49 - 2019-01-08 06:22 - 000060496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2020-10-20 11:49 - 2019-01-08 06:22 - 000037152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2020-10-20 11:49 - 2018-10-25 10:26 - 000042784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000851608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000470912 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000326928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000206408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000109280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2020-10-20 11:49 - 2018-05-09 15:13 - 000084856 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-10-16 19:51 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-10-16 19:51 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\servicing
==================== Files in the root of some directories ========
2018-06-18 04:54 - 2018-06-18 04:54 - 000029696 _____ () C:\Users\MB1\AppData\Local\MSGBOX.EXE
2017-06-25 09:23 - 2019-03-03 16:04 - 000000774 _____ () C:\Users\MB1\AppData\Local\MZD-AIO-TI.log
2016-03-20 11:45 - 2016-03-20 11:45 - 000000017 _____ () C:\Users\MB1\AppData\Local\resmon.resmoncfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-11-2020
Ran by MB1 (15-11-2020 18:26:41)
Running from C:\Users\MB1\Desktop
Windows 10 Home Version 2004 19041.630 (X64) (2020-07-31 19:40:17)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3595257899-2210446051-2448867403-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3595257899-2210446051-2448867403-503 - Limited - Disabled)
Guest (S-1-5-21-3595257899-2210446051-2448867403-501 - Limited - Disabled)
MB1 (S-1-5-21-3595257899-2210446051-2448867403-1000 - Administrator - Enabled) => C:\Users\MB1
WDAGUtilityAccount (S-1-5-21-3595257899-2210446051-2448867403-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.8.2432 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
EBook Codec 1.0.0.1 (HKLM-x32\...\EBook Codec) (Version: 1.0.0.1 - Free Time)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
Epson Software Updater (HKLM-x32\...\{B55DB65D-EF6E-4E04-89D5-B03603BF681B}) (Version: 4.4.5 - SEIKO EPSON CORPORATION)
EPSON SX110 Series Printer Uninstall (HKLM\...\EPSON SX110 Series) (Version: - SEIKO EPSON Corporation)
Flexibooks 4.6.1 (64 bit) (HKLM\...\{D36F5D15-E633-45E7-803B-4FC66F183092}) (Version: 4.6.1 - Fraus Media s.r.o. 2016)
FormatFactory 4.9.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.9.0.0 - Free Time)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.198 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
HappyFoto-Designer 5.4 (HKLM-x32\...\HappyFoto-Designer_is1) (Version: - )
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.0.4.6 - PandoraTV)
LibreOffice 6.3.4.2 (HKLM\...\{191F4D69-B671-4163-BB01-901B89A20D04}) (Version: 6.3.4.2 - The Document Foundation)
Mazda Toolbox (HKLM-x32\...\Mazda Toolbox) (Version: - )
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.69 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.137.99 - )
Microsoft OneDrive (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\OneDriveSetup.exe) (Version: 20.201.1005.0006 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27027 (HKLM-x32\...\{fd9b6070-d13e-45dc-819b-41806bf45b6b}) (Version: 14.16.27027.1 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MZD-AIO-TI 2.8.4 (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\34093d1a-b79c-5bd0-8c69-6049d0980230) (Version: 2.8.4 - Trevelopment)
Prohlížeč Seznam.cz (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Seznam Browser) (Version: - Seznam.cz a.s.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.82.317.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8117 - Realtek Semiconductor Corp.)
SketchUp 2018 (HKLM\...\{73B6B84A-3414-4B1D-8C65-97E6CA9CDF36}) (Version: 18.0.16975 - Trimble, Inc.)
Skype verze 8.36 (HKLM-x32\...\Skype_is1) (Version: 8.36 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
USB Network Joystick (HKLM-x32\...\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}) (Version: V3.70a - )
WebAdvisor od společnosti McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.167 - McAfee, LLC)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.70 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_CZ_is1) (Version: 18.0.1.1 - ZONER software)
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-20] (Microsoft Studios) [MS Ad]
MSN Sports -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0 [2020-11-02] (Spotify AB) [Startup Task]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2015-12-28] (Microsoft Corporation)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-09-25] (Free Time) [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll [2019-09-25] (Free Time) [File not signed]
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-10-20] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Marian - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\MÁMA - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\První uživatel - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
==================== Loaded Modules (Whitelisted) =============
2019-09-25 17:52 - 2019-09-25 17:52 - 000305152 _____ (Free Time) [File not signed] C:\Program Files (x86)\FormatFactory\ShellEx64_106.dll
2015-06-23 16:00 - 2015-06-23 16:00 - 000562688 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2015-06-23 16:00 - 2015-06-23 16:00 - 000285696 _____ (Intel Corporation) [File not signed] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
==================== Alternate Data Streams (Whitelisted) ========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`20hfm [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`29hfm [0]
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer (Whitelisted) ==========
SearchScopes: HKU\S-1-5-21-3595257899-2210446051-2448867403-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-11-13] (McAfee, LLC -> McAfee, LLC)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-11-13] (McAfee, LLC -> McAfee, LLC)
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxps://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2019-01-04 13:52 - 000000753 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Windows Live\Shared;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
HKLM\...\StartupApproved\Run: => "USB Gamepad"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{ED923620-8B29-4F2E-9719-3656B061A4C4}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{CFF627BE-C530-4829-8A85-4FE9AE6DF1E3}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{44DC6C0C-9F43-4B0A-9246-ED4C2F1F1221}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{14E5C94F-3374-4C68-98BF-E964FA21B425}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{5D15FF53-9D78-4DBE-82E6-4AB1E7C732D0}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C5E6D6AC-623F-484F-985C-3320D635358B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{219FC7E8-73C4-483F-AC36-EF817E7AC962}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{DC3A96C0-3E8A-4F42-B74C-C9F82717CB0B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{487131F5-3CB3-416E-B737-E0E90910B7A1}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{673ECCD0-69F7-482D-929D-6E8BE4D1813A}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F6EA039C-049D-4734-BBD1-16F2DBF6216F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{429874FF-B6AD-4039-9D84-559AFA38504B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3BFDE18F-9D9A-4B68-9A91-7A7FB34FFC4C}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{35915BFC-5028-40B6-BDB9-4D758DEEDEAC}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [UDP Query User{FF137622-DE73-45BA-9D65-011D1836E20F}C:\program files (x86)\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\formatfactory\formatfactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{77566F83-77B1-4728-BACF-0324D9EF8604}C:\program files (x86)\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\formatfactory\formatfactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.)
FirewallRules: [{AACE25B1-EF25-428C-B724-E33A7C5F6A30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{F24F2428-8769-4BA2-BCAE-952E1699C1F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{26A22EFE-D02C-4425-B69C-B68CFB747638}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DB938433-08E0-43BB-AF56-E76948F2007A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{89DF2CCA-67B9-4A96-BE53-0C1C28B1A8AE}] => (Allow) LPort=1900
FirewallRules: [{4FF0D7B9-8E12-4B8B-9E6A-032F6EE85AE3}] => (Allow) LPort=2869
FirewallRules: [{9159E902-1EF2-4F24-A2D5-62ED19A72469}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{72F0EF6A-4612-472C-9CFF-3812B9098141}C:\users\mb1\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mb1\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [TCP Query User{B2A3D469-C744-4D44-87FB-0E09A80A7767}C:\users\mb1\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mb1\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{ADA5809E-DD2F-4257-8312-3F25EBFE6D82}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe (ZONER software) [File not signed]
FirewallRules: [{E59FA1FC-7CF7-44CB-BD3C-1F4ED85B1DA9}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe (ZONER software) [File not signed]
FirewallRules: [{3282730B-8CDE-426E-AE49-33CB732F605A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1420BCE5-316E-4150-93E1-A2941C3D0B51}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6872616A-07B4-4F24-9E97-0F364AD99ECF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EEBF5B39-5784-43CF-B698-D30ABA1CF401}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7C301F6C-9D2F-4D04-A7AC-8FA04F544355}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9BEB2A34-8CC7-4893-911B-102AEB452F53}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{6147C769-3D06-4E6B-982C-6D2F3D8B1571}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8E8D8EE4-CCDA-4974-A30F-A8CB2E097DE0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.145.621.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{7A05DEA0-066E-4B4F-93B3-CA3C08FEAC10}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{733AB6FC-BBA9-4BBF-B58E-7278E5CCF3CC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{28449B0A-DA58-4929-AA1F-0F9FFAF9F85D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{757D540F-BD63-4D10-9431-FC215663D546}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.74.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FDB14364-9C11-4BE1-97C2-BB54269F691A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:111.19 GB) (Free:22.57 GB) (20%)
==================== Faulty Device Manager Devices ============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (11/15/2020 12:18:44 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (11/08/2020 12:21:40 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (11/01/2020 12:39:55 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (10/29/2020 11:18:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: UIHost.exe, verze: 4.1.1.159, časové razítko: 0x5f860cd9
Název chybujícího modulu: USER32.dll, verze: 10.0.19041.546, časové razítko: 0x3af2f6a6
Kód výjimky: 0xc000041d
Posun chyby: 0x0000000000013a93
ID chybujícího procesu: 0x139c
Čas spuštění chybující aplikace: 0x01d6adb8c2cb98b2
Cesta k chybující aplikaci: C:\Program Files\McAfee\WebAdvisor\UIHost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\USER32.dll
ID zprávy: 4187cbfe-35dd-4c8e-a02e-40cb4f1441f6
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/29/2020 11:18:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: UIHost.exe, verze: 4.1.1.159, časové razítko: 0x5f860cd9
Název chybujícího modulu: USER32.dll, verze: 10.0.19041.546, časové razítko: 0x3af2f6a6
Kód výjimky: 0xc0000005
Posun chyby: 0x0000000000013a93
ID chybujícího procesu: 0x139c
Čas spuštění chybující aplikace: 0x01d6adb8c2cb98b2
Cesta k chybující aplikaci: C:\Program Files\McAfee\WebAdvisor\UIHost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\USER32.dll
ID zprávy: 550b77f5-6177-42b2-9aa0-5cb8fcb2f75e
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (10/25/2020 01:50:39 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (10/18/2020 04:45:17 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Optimalizátor úložiště nemohl dokončit opakovat operaci trim na Nový svazek (D:), protože: Požadovaná operace není podporována hardwarem, který zálohuje svazek. (0x8900002A)
Error: (10/16/2020 07:51:36 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} a názvem CEventSystem nelze spustit. [0x8007045b, Probíhá vypnutí systému.
]
System errors:
=============
Error: (11/15/2020 05:56:08 PM) (Source: SNMP) (EventID: 1500) (User: )
Description: The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration.
Error: (11/15/2020 05:55:40 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Avast Antivirus se po přijetí pokynu pro vypnutí neukončila správně.
Error: (11/15/2020 05:55:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Řízení front zpráv byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.
Error: (11/15/2020 05:55:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba SNMP byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.
Error: (11/15/2020 05:55:03 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba McAfee WebAdvisor byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 1 milisekund: Restartovat službu.
Error: (11/15/2020 05:55:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (11/15/2020 05:55:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba EPSON V3 Service4(01) byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (11/15/2020 05:55:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
CodeIntegrity:
===================================
Date: 2020-11-15 18:24:55.9770000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:52.0570000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:50.9710000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:41.5000000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:40.9370000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:40.5890000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:40.5600000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
Date: 2020-11-15 18:24:36.7890000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. V1.10 07/10/2018
Motherboard: MSI H81M-P33 (MS-7817)
Processor: Intel(R) Pentium(R) CPU G3260 @ 3.30GHz
Percentage of memory in use: 62%
Total physical RAM: 3974.02 MB
Available physical RAM: 1493.34 MB
Total Virtual: 8070.02 MB
Available Virtual: 5427.04 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.19 GB) (Free:22.57 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:698.64 GB) (Free:306.89 GB) NTFS
\\?\Volume{0f50f6c3-ad63-11e5-bd09-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS
\\?\Volume{a25c33b0-0000-0000-0000-80d21b000000}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: A25C33B0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=512 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 698.6 GB) (Disk ID: 980826B8)
Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Re: Zpomalené PC
Do poznamkoveho bloku skopirujte obsah dole:
Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
Kód: Vybrat vše
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {0000A41F-9346-4AAB-8362-FAEE7A5F8CEF} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1FD427FA-E73C-4B31-AAE9-99BA2A5EAD7B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {3C44E2BA-0F59-4512-8F3E-442664905765} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {3F07ADE2-59D1-495D-A6A2-D6B08A781BFE} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {4A0DF130-D07D-4378-8DCF-6FE23BAADE7D} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4EFCAA86-4F7E-4E14-808D-5B2DECE6FC95} - System32\Tasks\{F4DAFCF2-8E64-4568-B281-BC8A904D3AED} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\MB1\Desktop\0\autorun.exe -d C:\Users\MB1\Desktop\0
Task: {B9F03631-BC7A-44E3-8885-B99381F0CD7A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-28] (Google Inc -> Google Inc.)
Task: {C27663E1-48FA-4379-B51D-F684C860D7BA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-28] (Google Inc -> Google Inc.)
Task: {EC19DC4D-4052-4B1C-9940-D38311AE9699} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
CHR DefaultSearchURL: Profile 2 -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`20hfm [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`29hfm [0]
SearchScopes: HKU\S-1-5-21-3595257899-2210446051-2448867403-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-11-13] (McAfee, LLC -> McAfee, LLC)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-11-13] (McAfee, LLC -> McAfee, LLC)
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxps://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{89DF2CCA-67B9-4A96-BE53-0C1C28B1A8AE}] => (Allow) LPort=1900
FirewallRules: [{4FF0D7B9-8E12-4B8B-9E6A-032F6EE85AE3}] => (Allow) LPort=2869
EmptyTemp:
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Zpomalené PC
Fix result of Farbar Recovery Scan Tool (x64) Version: 15-11-2020
Ran by MB1 (15-11-2020 19:11:40) Run:2
Running from C:\Users\MB1\Desktop
Loaded Profiles: MB1
Boot Mode: Normal
==============================================
fixlist content:
*****************
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {0000A41F-9346-4AAB-8362-FAEE7A5F8CEF} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1FD427FA-E73C-4B31-AAE9-99BA2A5EAD7B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {3C44E2BA-0F59-4512-8F3E-442664905765} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {3F07ADE2-59D1-495D-A6A2-D6B08A781BFE} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {4A0DF130-D07D-4378-8DCF-6FE23BAADE7D} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4EFCAA86-4F7E-4E14-808D-5B2DECE6FC95} - System32\Tasks\{F4DAFCF2-8E64-4568-B281-BC8A904D3AED} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\MB1\Desktop\0\autorun.exe -d C:\Users\MB1\Desktop\0
Task: {B9F03631-BC7A-44E3-8885-B99381F0CD7A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-28] (Google Inc -> Google Inc.)
Task: {C27663E1-48FA-4379-B51D-F684C860D7BA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-28] (Google Inc -> Google Inc.)
Task: {EC19DC4D-4052-4B1C-9940-D38311AE9699} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
CHR DefaultSearchURL: Profile 2 -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`20hfm [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`29hfm [0]
SearchScopes: HKU\S-1-5-21-3595257899-2210446051-2448867403-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-11-13] (McAfee, LLC -> McAfee, LLC)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-11-13] (McAfee, LLC -> McAfee, LLC)
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxps://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{89DF2CCA-67B9-4A96-BE53-0C1C28B1A8AE}] => (Allow) LPort=1900
FirewallRules: [{4FF0D7B9-8E12-4B8B-9E6A-032F6EE85AE3}] => (Allow) LPort=2869
EmptyTemp:
*****************
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{503739d0-4c5e-4cfd-b3ba-d881334f0df2}" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0000A41F-9346-4AAB-8362-FAEE7A5F8CEF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0000A41F-9346-4AAB-8362-FAEE7A5F8CEF}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\SystemDataProviders" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1FD427FA-E73C-4B31-AAE9-99BA2A5EAD7B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1FD427FA-E73C-4B31-AAE9-99BA2A5EAD7B}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\MobilePC\HotStart => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MobilePC\HotStart" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3C44E2BA-0F59-4512-8F3E-442664905765}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C44E2BA-0F59-4512-8F3E-442664905765}" => removed successfully
C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3F07ADE2-59D1-495D-A6A2-D6B08A781BFE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F07ADE2-59D1-495D-A6A2-D6B08A781BFE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4A0DF130-D07D-4378-8DCF-6FE23BAADE7D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A0DF130-D07D-4378-8DCF-6FE23BAADE7D}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\PvrRecoveryTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4EFCAA86-4F7E-4E14-808D-5B2DECE6FC95}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4EFCAA86-4F7E-4E14-808D-5B2DECE6FC95}" => removed successfully
C:\WINDOWS\System32\Tasks\{F4DAFCF2-8E64-4568-B281-BC8A904D3AED} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F4DAFCF2-8E64-4568-B281-BC8A904D3AED}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B9F03631-BC7A-44E3-8885-B99381F0CD7A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B9F03631-BC7A-44E3-8885-B99381F0CD7A}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C27663E1-48FA-4379-B51D-F684C860D7BA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C27663E1-48FA-4379-B51D-F684C860D7BA}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{EC19DC4D-4052-4B1C-9940-D38311AE9699}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EC19DC4D-4052-4B1C-9940-D38311AE9699}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\GadgetManager" => removed successfully
"Chrome DefaultSearchURL" => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
C:\ProgramData\Reprise => ":wupeogjxlctlfudivq`qsp`20hfm" ADS removed successfully
C:\ProgramData\Reprise => ":wupeogjxlctlfudivq`qsp`29hfm" ADS removed successfully
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => removed successfully
HKLM\Software\Classes\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{62789780-B744-11D0-986B-00609731A21D} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{62789780-B744-11D0-986B-00609731A21D} => removed successfully
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{89DF2CCA-67B9-4A96-BE53-0C1C28B1A8AE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4FF0D7B9-8E12-4B8B-9E6A-032F6EE85AE3}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 15922423 B
Java, Flash, Steam htmlcache => 158531500 B
Windows/system/drivers => 301372 B
Edge => 57856 B
Chrome => 351951111 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 8878 B
NetworkService => 8878 B
MB1 => 5098469 B
DefaultAppPool => 5098469 B
RecycleBin => 110350 B
EmptyTemp: => 522.5 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:12:05 ====
Ran by MB1 (15-11-2020 19:11:40) Run:2
Running from C:\Users\MB1\Desktop
Loaded Profiles: MB1
Boot Mode: Normal
==============================================
fixlist content:
*****************
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {0000A41F-9346-4AAB-8362-FAEE7A5F8CEF} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {1FD427FA-E73C-4B31-AAE9-99BA2A5EAD7B} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {3C44E2BA-0F59-4512-8F3E-442664905765} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
Task: {3F07ADE2-59D1-495D-A6A2-D6B08A781BFE} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {4A0DF130-D07D-4378-8DCF-6FE23BAADE7D} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4EFCAA86-4F7E-4E14-808D-5B2DECE6FC95} - System32\Tasks\{F4DAFCF2-8E64-4568-B281-BC8A904D3AED} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\MB1\Desktop\0\autorun.exe -d C:\Users\MB1\Desktop\0
Task: {B9F03631-BC7A-44E3-8885-B99381F0CD7A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-28] (Google Inc -> Google Inc.)
Task: {C27663E1-48FA-4379-B51D-F684C860D7BA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-12-28] (Google Inc -> Google Inc.)
Task: {EC19DC4D-4052-4B1C-9940-D38311AE9699} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
CHR DefaultSearchURL: Profile 2 -> hxxps://search.yahoo.com/search?fr=mcafee_uninternational&type=E210CZ91105G0&p={searchTerms}
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`20hfm [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`29hfm [0]
SearchScopes: HKU\S-1-5-21-3595257899-2210446051-2448867403-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-11-13] (McAfee, LLC -> McAfee, LLC)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-11-13] (McAfee, LLC -> McAfee, LLC)
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxps://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{89DF2CCA-67B9-4A96-BE53-0C1C28B1A8AE}] => (Allow) LPort=1900
FirewallRules: [{4FF0D7B9-8E12-4B8B-9E6A-032F6EE85AE3}] => (Allow) LPort=2869
EmptyTemp:
*****************
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{503739d0-4c5e-4cfd-b3ba-d881334f0df2}" => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0000A41F-9346-4AAB-8362-FAEE7A5F8CEF}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0000A41F-9346-4AAB-8362-FAEE7A5F8CEF}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\SystemDataProviders" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1FD427FA-E73C-4B31-AAE9-99BA2A5EAD7B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1FD427FA-E73C-4B31-AAE9-99BA2A5EAD7B}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\MobilePC\HotStart => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\MobilePC\HotStart" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{3C44E2BA-0F59-4512-8F3E-442664905765}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C44E2BA-0F59-4512-8F3E-442664905765}" => removed successfully
C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3F07ADE2-59D1-495D-A6A2-D6B08A781BFE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F07ADE2-59D1-495D-A6A2-D6B08A781BFE}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4A0DF130-D07D-4378-8DCF-6FE23BAADE7D}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A0DF130-D07D-4378-8DCF-6FE23BAADE7D}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Media Center\PvrRecoveryTask" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4EFCAA86-4F7E-4E14-808D-5B2DECE6FC95}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4EFCAA86-4F7E-4E14-808D-5B2DECE6FC95}" => removed successfully
C:\WINDOWS\System32\Tasks\{F4DAFCF2-8E64-4568-B281-BC8A904D3AED} => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F4DAFCF2-8E64-4568-B281-BC8A904D3AED}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B9F03631-BC7A-44E3-8885-B99381F0CD7A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B9F03631-BC7A-44E3-8885-B99381F0CD7A}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{C27663E1-48FA-4379-B51D-F684C860D7BA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C27663E1-48FA-4379-B51D-F684C860D7BA}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{EC19DC4D-4052-4B1C-9940-D38311AE9699}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EC19DC4D-4052-4B1C-9940-D38311AE9699}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\SideShow\GadgetManager" => removed successfully
"Chrome DefaultSearchURL" => removed successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
C:\ProgramData\Reprise => ":wupeogjxlctlfudivq`qsp`20hfm" ADS removed successfully
C:\ProgramData\Reprise => ":wupeogjxlctlfudivq`qsp`29hfm" ADS removed successfully
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => removed successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => removed successfully
HKLM\Software\Classes\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} => removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{62789780-B744-11D0-986B-00609731A21D} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{62789780-B744-11D0-986B-00609731A21D} => removed successfully
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{89DF2CCA-67B9-4A96-BE53-0C1C28B1A8AE}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4FF0D7B9-8E12-4B8B-9E6A-032F6EE85AE3}" => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 15922423 B
Java, Flash, Steam htmlcache => 158531500 B
Windows/system/drivers => 301372 B
Edge => 57856 B
Chrome => 351951111 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 8878 B
NetworkService => 8878 B
MB1 => 5098469 B
DefaultAppPool => 5098469 B
RecycleBin => 110350 B
EmptyTemp: => 522.5 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:12:05 ====
Re: Zpomalené PC
Ako je na tom pocitac?
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Zpomalené PC
Určitě lepší. Děkuji moc 
Re: Zpomalené PC
Za malicko, aj na buduce. 
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Přispějete na provoz fóra?