Právě je 25 kvě 2019 21:23

Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Všechny časy jsou v UTC + 1 hodina


Pravidla fóra


Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz



Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 12 ] 
Autor Zpráva
PříspěvekNapsal: 29 led 2019 14:37 
Offline
Návštěvník
Návštěvník

Registrován: 28 led 2019 13:23
Příspěvky: 12
Příloha:
Addition.rar [19.96 KiB]
3 krát
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27.01.2019
Ran by MM (administrator) on PCE-035 (29-01-2019 14:29:56)
Running from C:\Users\PCE-035\Desktop
Loaded Profiles: MM (Available Profiles: MM & DefaultAppPool)
Platform: Windows 10 Pro Version 1809 17763.253 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Cheetah Mobile,Inc.) C:\Program Files (x86)\cmcm\Clean Master\cmcore.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Kerio Technologies Inc.) C:\Program Files (x86)\Kerio\VPN Client\kvpncsvc.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\MsMpEng.exe
(iFunSoft) C:\Program Files (x86)\iFunSoft\iFunSoft Updater\iFunSoftUpdater.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\NisSrv.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Olympus Corporation) C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\OV3Monitor.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Kerio Technologies Inc.) C:\Program Files (x86)\Kerio\VPN Client\kvpncgui.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Cheetah Mobile,Inc.) C:\Program Files (x86)\cmcm\Clean Master\cmtray.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\QtWebEngineProcess.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSDKHelperx64.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\internet explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2174760 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [HPPowerAssistant] => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [3488640 2012-03-14] (Hewlett-Packard Company)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1598144 2018-12-17] (COMODO)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [489472 2010-09-08] (IDT, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [301880 2018-11-15] (Apple Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [713152 2016-05-25] (Autodesk, Inc.)
HKLM-x32\...\Run: [QlbCtrl.exe] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [287800 2010-02-25] ( Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [OV3_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\FirstStart.exe [40400 2017-07-26] (Olympus Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKLM-x32\...\Run: [Kerio Control VPN Client] => C:\Program Files (x86)\Kerio\VPN Client\kvpncgui.exe [2069840 2018-04-04] (Kerio Technologies Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [4090176 2019-01-22] (Dropbox, Inc.)
HKLM-x32\...\Run: [cmsc] => c:\program files (x86)\cmcm\Clean Master\cmtray.exe [1607280 2018-12-04] (Cheetah Mobile,Inc.)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4260040 2018-08-31] (COMODO)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-793827090-3216647719-621277648-1000\...\Run: [OV3_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\OV3Monitor.exe [415696 2017-07-26] (Olympus Corporation)
HKU\S-1-5-21-793827090-3216647719-621277648-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-01-10] (Piriform Software Ltd)
HKU\S-1-5-21-793827090-3216647719-621277648-1000\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software)
HKU\S-1-5-21-793827090-3216647719-621277648-1000\...\Policies\Explorer: []
HKLM\...\Drivers32: [vidc.mjpg] => pvmjpgx40.dll
HKLM\...\Drivers32-x32: [vidc.pDAD] => prodad-codec.dll
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-18] (Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{12314fc2-3841-466f-8c4f-4008a1214a06}: [DhcpNameServer] 10.253.50.1
Tcpip\..\Interfaces\{4774af93-c572-44f7-8519-f6faf8ebaf91}: [DhcpNameServer] 192.168.1.4
Tcpip\..\Interfaces\{957b0d19-368a-4378-aff2-5f3dab5335b4}: [DhcpNameServer] 10.253.50.1
Tcpip\..\Interfaces\{9a1a06b4-a672-4853-8ec5-5ecc999f81d8}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{9a1a06b4-a672-4853-8ec5-5ecc999f81d8}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID= ... 4800662924
HKU\S-1-5-21-793827090-3216647719-621277648-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-793827090-3216647719-621277648-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://www.google.cz/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-793827090-3216647719-621277648-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag ... 3334491&q={searchTerms}
SearchScopes: HKU\S-1-5-21-793827090-3216647719-621277648-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COSP&ptag ... 3334491&q={searchTerms}
SearchScopes: HKU\S-1-5-21-793827090-3216647719-621277648-1000 -> {3050EA28-E5BA-4FEA-B6F1-4A9B299060E0} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-793827090-3216647719-621277648-1000 -> {c2b8e594-d284-ef0b-2c66-48a9c98914bc} URL = hxxp://www.bing.com/search?pc=COSP&ptag ... 3334491&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-10-26] (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-05-25] (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-26] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-11-15] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-05-25] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-05-25] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-05-25] (Google Inc.)
DPF: HKLM-x32 {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} hxxp://catalog.update.microsoft.com/v7/ ... 1761875805
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-29] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-29] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-29] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-29] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 3qew10ss.default-1517823712595
FF ProfilePath: C:\Users\PCE-035\AppData\Roaming\Mozilla\Firefox\Profiles\3qew10ss.default-1517823712595 [2019-01-29]
FF Homepage: Mozilla\Firefox\Profiles\3qew10ss.default-1517823712595 -> hxxp://www.bing.com/?pc=COSP&ptag=D0627 ... =CT3334491
FF NewTab: Mozilla\Firefox\Profiles\3qew10ss.default-1517823712595 -> hxxp://www.bing.com/?pc=COSP&ptag=D0627 ... =CT3334491
FF SearchPlugin: C:\Users\PCE-035\AppData\Roaming\Mozilla\Firefox\Profiles\3qew10ss.default-1517823712595\searchplugins\bing-lavasoft-ff59.xml [2018-06-27]
FF HKLM-x32\...\Firefox\Extensions: [{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}] - C:\Program Files (x86)\RelevantKnowledge\firefox
FF Extension: (RelevantKnowledge) - C:\Program Files (x86)\RelevantKnowledge\firefox [2018-12-19] [Legacy] [not signed]
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-26] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-08-17] (Microsoft Corporation)
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2018-08-17] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://services.srchweb.org/search/{searchTerms}
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://sug.srchweb.org/sug/?s={searchTerms}
CHR Profile: C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default [2019-01-29]
CHR Extension: (Prezentace) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-05]
CHR Extension: (CacheList) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\amhhdbdhoghppijbjfdkiaconkmfbbpa [2018-12-17]
CHR Extension: (Dokumenty) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-05]
CHR Extension: (Disk Google) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-17]
CHR Extension: (YouTube) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-17]
CHR Extension: (Vyhledávání Google) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-17]
CHR Extension: (GPX Downloader) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpamipdfplcigmapcdgckimdgpgjidcl [2018-02-26]
CHR Extension: (Tabulky) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-17]
CHR Extension: (Search with Yahoo) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfmnajccfjnkadbaddekmedahjgblhmn [2018-02-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-17]
CHR Extension: (Gmail) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-17]
CHR Extension: (Chrome Media Router) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-17]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1286672 2016-05-25] (Autodesk Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [85304 2018-10-16] (Apple Inc.)
S4 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
S4 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [348160 2010-04-27] (AVerMedia) [File not signed]
S4 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [397312 2009-12-06] () [File not signed]
S4 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2010-05-07] (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11012768 2019-01-23] (Microsoft Corporation)
R2 cmcore; c:\program files (x86)\cmcm\Clean Master\cmcore.exe [397936 2018-12-04] (Cheetah Mobile,Inc.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [10747264 2018-12-17] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2876096 2018-12-17] (COMODO)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-05] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-05] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-01-22] (Dropbox, Inc.)
R2 iFunSoftUpdaterSvc; C:\Program Files (x86)\iFunSoft\iFunSoft Updater\iFunSoftUpdater.exe [2956472 2018-09-22] (iFunSoft)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1046216 2018-08-31] (COMODO)
R2 KVPNCSvc; C:\Program Files (x86)\Kerio\VPN Client\kvpncsvc.exe [1986896 2018-04-04] (Kerio Technologies Inc.)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-29] (IObit)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5381128 2019-01-16] (Microsoft Corporation)
R2 SNMP; C:\WINDOWS\System32\snmp.exe [53248 2019-01-07] (Microsoft Corporation)
S4 SnugTV Service; C:\Program Files (x86)\SnugTV\SnugTV Station\AMAServer.exe [528384 2010-05-06] (AVerMedia Technologies, Inc.) [File not signed]
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2018-09-15] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\NisSrv.exe [4096976 2019-01-25] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MsMpEng.exe [113992 2019-01-25] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17944 2018-05-23] (COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [44056 2018-05-23] (COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [832032 2018-05-23] (COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [50768 2018-05-23] (COMODO)
S3 FreshIO; C:\Program Files (x86)\FreshDevices\FreshDiagnose\FreshIO.sys [2410 2004-10-26] () [File not signed]
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-02-12] (REALiX(tm))
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [134400 2018-05-23] (COMODO)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-29] (COMODO)
S3 ksapi64; C:\WINDOWS\system32\drivers\ksapi64.sys [89776 2018-12-04] (Kingsoft Corporation)
R3 kvnet; C:\WINDOWS\System32\drivers\kvnet.sys [48552 2018-04-04] (Kerio Technologies Inc.)
S3 VASDeviceDrm; C:\WINDOWS\system32\drivers\vasdDev.sys [1995592 2018-05-04] (ShiningMorning Inc.)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [47616 2018-09-15] (Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46488 2019-01-25] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [343032 2019-01-25] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [63480 2019-01-25] (Microsoft Corporation)
R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x64.sys [288768 2018-09-15] (Marvell)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-29 14:24 - 2019-01-29 14:29 - 000080035 _____ C:\Users\PCE-035\Desktop\Addition.txt
2019-01-29 14:20 - 2019-01-29 14:31 - 000024987 _____ C:\Users\PCE-035\Desktop\FRST.txt
2019-01-29 14:19 - 2019-01-29 14:29 - 000000000 ____D C:\FRST
2019-01-29 14:18 - 2019-01-29 14:18 - 002428416 _____ (Farbar) C:\Users\PCE-035\Desktop\FRST64.exe
2019-01-29 14:15 - 2019-01-28 14:36 - 007320272 _____ (Malwarebytes) C:\Users\PCE-035\Desktop\adwcleaner_7.2.6.0.exe
2019-01-29 14:13 - 2019-01-29 14:13 - 000000279 _____ C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Koš.lnk
2019-01-25 14:05 - 2019-01-26 10:49 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Wise Duplicate Finder
2019-01-25 14:05 - 2019-01-25 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Duplicate Finder
2019-01-25 14:05 - 2019-01-25 14:05 - 000000000 ____D C:\Program Files (x86)\Wise
2019-01-25 14:01 - 2019-01-25 14:02 - 000000000 ___RD C:\Users\PCE-035\Desktop\Vypalování
2019-01-24 09:29 - 2019-01-24 09:30 - 000000000 ___RD C:\Users\PCE-035\Desktop\E-book. PDF
2019-01-24 09:03 - 2019-01-24 09:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-01-23 17:10 - 2019-01-24 09:18 - 000000000 ____D C:\Users\PCE-035\AppData\Local\Deployment
2019-01-23 15:43 - 2019-01-23 15:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2019-01-23 15:43 - 2019-01-23 15:43 - 000000000 ____D C:\Program Files\iPod
2019-01-23 15:41 - 2019-01-23 15:43 - 000000000 ____D C:\Program Files\iTunes
2019-01-22 17:19 - 2019-01-22 17:19 - 000000218 _____ C:\Users\PCE-035\.recently-used.xbel
2019-01-22 17:08 - 2019-01-22 17:08 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torrent Harvester
2019-01-22 17:08 - 2019-01-22 17:08 - 000000000 ____D C:\Program Files (x86)\Torrent Harvester
2019-01-22 17:05 - 2019-01-22 19:20 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\qBittorrent
2019-01-22 17:05 - 2019-01-22 17:06 - 000000000 ____D C:\Users\PCE-035\AppData\Local\qBittorrent
2019-01-22 17:01 - 2019-01-22 17:27 - 000000000 ___RD C:\Users\PCE-035\Desktop\Stahování
2019-01-22 16:57 - 2019-01-22 16:57 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\VitySoft
2019-01-22 16:57 - 2019-01-22 16:57 - 000000000 ____D C:\Users\PCE-035\.objectdb
2019-01-22 16:54 - 2019-01-22 16:54 - 000000000 ____D C:\Program Files (x86)\qBittorrent
2019-01-22 16:47 - 2019-01-22 16:47 - 017403694 _____ C:\Users\PCE-035\Downloads\FreeRapid-0.9u4 (1).zip
2019-01-22 14:14 - 2019-01-22 14:14 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-01-22 14:14 - 2019-01-22 14:14 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-01-22 14:14 - 2019-01-22 14:14 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-01-22 14:14 - 2019-01-22 14:14 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-01-19 20:25 - 2019-01-19 20:25 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Roxio
2019-01-19 20:25 - 2019-01-19 20:25 - 000000000 ____D C:\Users\PCE-035\AppData\Local\Corel
2019-01-18 23:17 - 2019-01-24 09:04 - 000000000 ____D C:\Users\PCE-035\Desktop\Justin Lavash_TP_2019-01-18
2019-01-17 21:13 - 2019-01-17 21:13 - 000000000 ____D C:\Users\PCE-035\AppData\Local\Teta CEWE fotosvet
2019-01-17 21:11 - 2019-01-17 22:10 - 000000000 ____D C:\ProgramData\hps
2019-01-17 10:59 - 2019-01-17 22:10 - 000000000 ____D C:\ProgramData\tmp
2019-01-17 10:59 - 2019-01-17 10:59 - 000001178 _____ C:\Users\Public\Desktop\Teta CEWE fotosvet.lnk
2019-01-17 10:59 - 2019-01-17 10:59 - 000001173 _____ C:\Users\Public\Desktop\CEWE FOTOIMPORTER.lnk
2019-01-17 10:59 - 2019-01-17 10:59 - 000001163 _____ C:\Users\Public\Desktop\CEWE prezentace.lnk
2019-01-17 10:59 - 2019-01-17 10:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Teta CEWE fotosvet
2019-01-17 10:48 - 2019-01-17 10:48 - 000000000 ____D C:\Program Files\Teta CEWE fotosvet
2019-01-16 13:10 - 2019-01-16 13:11 - 000004390 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2019-01-16 13:10 - 2019-01-16 13:10 - 000000000 ___HD C:\VTRoot
2019-01-16 13:09 - 2019-01-16 13:09 - 000003140 _____ C:\WINDOWS\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2019-01-16 11:27 - 2019-01-16 11:27 - 000000000 ____D C:\Users\PCE-035\Documents\WonderFox Soft
2019-01-16 11:25 - 2019-01-16 15:04 - 000000000 ____D C:\Program Files (x86)\WonderFox Soft
2019-01-16 11:15 - 2019-01-02 20:48 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-16 11:15 - 2019-01-02 20:48 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-01-16 10:26 - 2019-01-16 10:26 - 005440016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-01-16 10:26 - 2019-01-16 10:26 - 003550592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-01-16 10:26 - 2019-01-16 10:26 - 002469648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-01-16 10:26 - 2019-01-16 10:26 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-01-16 10:26 - 2019-01-16 10:26 - 001201136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 026806784 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 023440384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 020811776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 019024384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 012858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 012151808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 007857152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 006057984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 003952952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 002986352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000662528 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Pipeline.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000098816 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Broker.dll
2019-01-16 10:24 - 2019-01-16 10:25 - 002275896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 009677352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-16 10:24 - 2019-01-16 10:24 - 007645600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 006544800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-01-16 10:24 - 2019-01-16 10:24 - 003380224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 003338328 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 003270144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 002777432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 002626360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-01-16 10:24 - 2019-01-16 10:24 - 002594872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 002437552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 002186752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 002021584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 001641616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 001602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-16 10:24 - 2019-01-16 10:24 - 001212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 001058848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-01-16 10:24 - 2019-01-16 10:24 - 001050936 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-16 10:24 - 2019-01-16 10:24 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000387384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000178696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-16 10:24 - 2019-01-16 10:24 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000140808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-16 10:24 - 2019-01-16 10:24 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-16 10:24 - 2019-01-16 10:24 - 000047112 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-01-07 21:58 - 2019-01-07 21:58 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-01-07 21:53 - 2019-01-07 21:53 - 000000020 ___SH C:\Users\PCE-035\ntuser.ini
2019-01-07 21:52 - 2019-01-07 21:52 - 000003440 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineUA
2019-01-07 21:52 - 2019-01-07 21:52 - 000002240 _____ C:\WINDOWS\System32\Tasks\IOTransfer SkipUAC (PCE-035)
2019-01-07 21:51 - 2019-01-27 16:27 - 000003352 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-793827090-3216647719-621277648-1000
2019-01-07 21:51 - 2019-01-25 11:12 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-07 21:51 - 2019-01-24 09:27 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-01-07 21:51 - 2019-01-07 21:53 - 000003440 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2019-01-07 21:51 - 2019-01-07 21:53 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-07 21:51 - 2019-01-07 21:53 - 000002280 _____ C:\WINDOWS\System32\Tasks\{A18982D2-2741-4655-B61C-ACA4F9BF2F23}
2019-01-07 21:51 - 2019-01-07 21:52 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-01-07 21:51 - 2019-01-07 21:52 - 000003194 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-01-07 21:51 - 2019-01-07 21:52 - 000002702 _____ C:\WINDOWS\System32\Tasks\GarminUpdaterTask
2019-01-07 21:51 - 2019-01-07 21:52 - 000002288 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-01-07 21:51 - 2019-01-07 21:52 - 000002282 _____ C:\WINDOWS\System32\Tasks\{C56279F7-71BC-4B3C-8758-BBD6026F71AD}
2019-01-07 21:51 - 2019-01-07 21:52 - 000002278 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (PCE-035)
2019-01-07 21:51 - 2019-01-07 21:52 - 000002256 _____ C:\WINDOWS\System32\Tasks\{0D130C74-8ED1-4587-95DE-8064CF12A1F4}
2019-01-07 21:51 - 2019-01-07 21:52 - 000002222 _____ C:\WINDOWS\System32\Tasks\iFreeUp_SkipUac_PCE-035
2019-01-07 21:51 - 2019-01-07 21:51 - 000003354 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1495394118
2019-01-07 21:51 - 2019-01-07 21:51 - 000003216 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2019-01-07 21:51 - 2019-01-07 21:51 - 000003216 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineCore
2019-01-07 21:51 - 2019-01-07 21:51 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\WPD
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\COMODO
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\Apple
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\Abelssoft
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\{6BD68D5F-4E2C-B1DD-386C-00FB53AD52FC}
2019-01-07 21:51 - 2016-01-17 14:45 - 000003074 _____ C:\WINDOWS\System32\Tasks\{7B60B5EC-E669-4B53-A597-FFD2670AC3CC}
2019-01-07 21:51 - 2016-01-17 13:39 - 000003544 _____ C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask
2019-01-07 21:49 - 2019-01-07 21:51 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2019-01-07 21:49 - 2019-01-07 21:51 - 000011433 _____ C:\WINDOWS\diagerr.xml
2019-01-07 21:36 - 2019-01-16 11:21 - 001920462 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-07 21:24 - 2019-01-07 21:24 - 000001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2019-01-07 21:20 - 2019-01-27 16:27 - 000002393 _____ C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-07 21:20 - 2019-01-22 17:19 - 000000000 ____D C:\Users\PCE-035
2019-01-07 21:20 - 2019-01-07 21:33 - 000000000 ____D C:\Users\DefaultAppPool
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Šablony
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Soubory cookie
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Poslední
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Okolní tiskárny
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Okolní síť
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Nabídka Start
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Dokumenty
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Documents\Obrázky
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Documents\Hudba
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Documents\Filmy
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Data aplikací
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\AppData\Local\Data aplikací
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Šablony
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Soubory cookie
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Poslední
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Okolní tiskárny
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Okolní síť
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Nabídka Start
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Dokumenty
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Obrázky
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Hudba
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Filmy
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Data aplikací
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Data aplikací
2019-01-07 21:20 - 2018-09-15 08:29 - 000001105 _____ C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-07 21:17 - 2019-01-07 21:17 - 000000000 ____D C:\ProgramData\USOShared
2019-01-07 21:16 - 2018-09-15 08:28 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-01-07 21:12 - 2019-01-29 13:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-07 21:12 - 2019-01-07 21:28 - 005146944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-01-07 21:11 - 2019-01-19 22:29 - 000000000 ____D C:\Windows.old
2019-01-07 20:30 - 2019-01-07 21:11 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2019-01-07 20:30 - 2019-01-07 20:30 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2019-01-07 20:27 - 2019-01-07 20:29 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2019-01-07 20:20 - 2019-01-07 20:20 - 024617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 019284992 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 007724776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 005113008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 004918784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-01-07 20:20 - 2019-01-07 20:20 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 003566080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-01-07 20:20 - 2019-01-07 20:20 - 002429752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-01-07 20:20 - 2019-01-07 20:20 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-01-07 20:20 - 2019-01-07 20:20 - 001294864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 001289400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 001282432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 001259000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-01-07 20:20 - 2019-01-07 20:20 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2019-01-07 20:20 - 2019-01-07 20:20 - 001073448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 001057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 001024920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000854784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000763032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2019-01-07 20:20 - 2019-01-07 20:20 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2019-01-07 20:20 - 2019-01-07 20:20 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-01-07 20:20 - 2019-01-07 20:20 - 000301096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000241680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 015224832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 006306152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 005585056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 004886016 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 004306432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 003744256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 003730352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 003577856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 003427328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 003108864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 002883584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 002832896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001749504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001675712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001590288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001483264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001476096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001467344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001456736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001279024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2019-01-07 20:19 - 2019-01-07 20:19 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001026992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000964976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000604248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000373768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastingShellExt.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CastingShellExt.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000114344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 022112072 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 005565440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 005312512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 004765184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 004300800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 003983360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 003662336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 003504640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 003379000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 003092480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002927104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002702536 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002689536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002488320 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 002185728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002072384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001863168 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001842600 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001830912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001824768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001797128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001696216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-01-07 20:18 - 2019-01-07 20:18 - 001688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001674688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001672056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001466872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-01-07 20:18 - 2019-01-07 20:18 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001395248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-01-07 20:18 - 2019-01-07 20:18 - 001360696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 001341376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-01-07 20:18 - 2019-01-07 20:18 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001249792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001180760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001177632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-01-07 20:18 - 2019-01-07 20:18 - 001162280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001097312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-01-07 20:18 - 2019-01-07 20:18 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000863752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000836096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000818832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-01-07 20:18 - 2019-01-07 20:18 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000566584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000514112 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-01-07 20:18 - 2019-01-07 20:18 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000252536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-01-07 20:18 - 2019-01-07 20:18 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000175096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000151872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000094224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000091640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 007685016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 006132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 005130752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002988544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002721792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 002654208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002630656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002149352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002085168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001751560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001612808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001520208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001401864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001387496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001315840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001287776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001219584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 001199104 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001051960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000897848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000850960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000828936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000756640 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000752128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000743432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000667152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000660496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000650040 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000649736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000604336 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000582240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000495624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000402576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000306704 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000300024 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000298536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000294072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000193016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000164344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000130088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000114648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000102392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000083472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-01-07 20:07 - 2019-01-07 20:07 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2019-01-07 20:07 - 2019-01-07 20:07 - 000000000 ____D C:\WINDOWS\system32\msmq
2019-01-07 20:07 - 2019-01-07 20:07 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2019-01-07 20:07 - 2019-01-07 20:07 - 000000000 ____D C:\inetpub
2019-01-07 20:05 - 2019-01-07 20:05 - 006347776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 005489664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2019-01-07 20:05 - 2019-01-07 20:05 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2019-01-07 20:04 - 2019-01-07 20:04 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmpsnap.dll
2019-01-07 20:04 - 2019-01-07 20:04 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\evntwin.exe
2019-01-07 20:04 - 2019-01-07 20:04 - 000107882 _____ C:\WINDOWS\system32\mib_ii.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\evntagnt.dll
2019-01-07 20:04 - 2019-01-07 20:04 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmp.exe
2019-01-07 20:04 - 2019-01-07 20:04 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hostmib.dll
2019-01-07 20:04 - 2019-01-07 20:04 - 000048593 _____ C:\WINDOWS\system32\hostmib.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\lmmib2.dll
2019-01-07 20:04 - 2019-01-07 20:04 - 000034317 _____ C:\WINDOWS\system32\msiprip2.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000030448 _____ C:\WINDOWS\system32\mcastmib.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\evntcmd.exe
2019-01-07 20:04 - 2019-01-07 20:04 - 000026236 _____ C:\WINDOWS\system32\wins.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000026100 _____ C:\WINDOWS\system32\lmmib2.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000022462 _____ C:\WINDOWS\system32\rfc2571.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000021271 _____ C:\WINDOWS\system32\http.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64mib.dll
2019-01-07 20:04 - 2019-01-07 20:04 - 000015799 _____ C:\WINDOWS\system32\ipforwd.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000015032 _____ C:\WINDOWS\system32\authserv.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000014032 _____ C:\WINDOWS\system32\accserv.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000013767 _____ C:\WINDOWS\system32\msipbtp.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmpmib.dll
2019-01-07 20:04 - 2019-01-07 20:04 - 000006179 _____ C:\WINDOWS\system32\ftp.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000004597 _____ C:\WINDOWS\system32\dhcp.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000004411 _____ C:\WINDOWS\system32\smi.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000000698 _____ C:\WINDOWS\system32\inetsrv.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000000581 _____ C:\WINDOWS\system32\msft.mib
2019-01-07 20:03 - 2019-01-07 20:03 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-01-07 20:03 - 2019-01-07 20:03 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-01-07 20:03 - 2019-01-07 20:03 - 000000000 ____D C:\Program Files\MSBuild
2019-01-07 20:03 - 2019-01-07 20:03 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-01-07 20:03 - 2019-01-07 20:03 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-01-07 20:01 - 2019-01-07 20:01 - 001167960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-01-07 20:01 - 2019-01-07 20:01 - 000780376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2019-01-07 20:01 - 2019-01-07 20:01 - 000126064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-01-07 20:01 - 2019-01-07 20:01 - 000104560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-01-07 20:01 - 2019-01-07 20:01 - 000036896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2019-01-07 20:01 - 2019-01-07 20:01 - 000035440 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2019-01-07 19:35 - 2019-01-07 19:35 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2019-01-07 18:02 - 2019-01-16 21:42 - 000000000 ___DC C:\WINDOWS\Panther

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-29 13:27 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-29 13:27 - 2018-02-13 21:30 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Mp3tag
2019-01-29 12:57 - 2018-09-05 12:48 - 000000000 ___RD C:\Users\PCE-035\Dropbox
2019-01-29 11:12 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-29 11:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-29 11:12 - 2018-07-11 11:43 - 000000000 ____D C:\ProgramData\Packages
2019-01-29 10:41 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-01-29 10:37 - 2016-01-17 17:44 - 000000000 ____D C:\Program Files\Microsoft Office
2019-01-29 10:06 - 2018-02-12 10:02 - 000000000 ____D C:\ProgramData\ProductData
2019-01-27 17:17 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-01-27 16:27 - 2016-01-17 17:55 - 000000000 ___RD C:\Users\PCE-035\OneDrive
2019-01-26 19:22 - 2018-09-05 12:41 - 000000000 ____D C:\Users\PCE-035\AppData\Local\Dropbox
2019-01-26 11:25 - 2016-01-20 18:20 - 000000000 ____D C:\CC-registry záloha
2019-01-26 10:50 - 2016-01-31 14:47 - 000000000 ____D C:\Garmin
2019-01-25 14:18 - 2018-06-26 11:44 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Audacity
2019-01-25 14:18 - 2017-05-31 20:14 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\GeoGet
2019-01-25 14:18 - 2017-02-11 22:36 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\tixati
2019-01-25 14:18 - 2016-01-20 18:04 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Skype
2019-01-25 14:10 - 2016-01-24 09:35 - 000000000 ___RD C:\Users\PCE-035\Desktop\PC údržba
2019-01-25 14:03 - 2018-02-14 15:01 - 000000000 ___RD C:\Users\PCE-035\Desktop\AUDIO
2019-01-25 13:56 - 2016-01-19 14:53 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Ashampoo
2019-01-25 13:56 - 2016-01-19 14:52 - 000000000 ____D C:\Users\PCE-035\AppData\Local\ashampoo
2019-01-25 13:55 - 2016-01-19 14:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2019-01-25 13:54 - 2016-01-19 14:52 - 000000000 ____D C:\ProgramData\Ashampoo
2019-01-25 13:54 - 2016-01-19 14:52 - 000000000 ____D C:\Program Files (x86)\Ashampoo
2019-01-25 13:52 - 2016-01-19 14:16 - 000000000 ____D C:\Instalace
2019-01-25 11:22 - 2016-01-20 17:25 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Winamp
2019-01-25 11:11 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-01-25 10:30 - 2018-03-16 17:07 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-01-24 09:40 - 2018-12-19 13:51 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\AIMP
2019-01-24 09:17 - 2018-02-05 11:32 - 000000000 ____D C:\Users\PCE-035\AppData\Local\WiFi Guard
2019-01-24 09:06 - 2018-09-05 12:41 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-01-23 22:15 - 2016-08-03 09:44 - 000000000 ____D C:\Users\PCE-035\AppData\Local\ConnectedDevicesPlatform
2019-01-23 17:14 - 2018-02-05 11:32 - 000000956 _____ C:\Users\Public\Desktop\SoftPerfect WiFi Guard.lnk
2019-01-23 17:14 - 2018-02-05 11:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftPerfect WiFi Guard
2019-01-23 17:14 - 2018-02-05 11:32 - 000000000 ____D C:\Program Files\SoftPerfect WiFi Guard
2019-01-23 16:02 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-23 15:51 - 2016-07-06 09:49 - 000000000 ___RD C:\Users\PCE-035\Desktop\Apple
2019-01-23 14:58 - 2018-02-13 21:15 - 000000000 ____D C:\Program Files (x86)\Mp3tag
2019-01-23 14:35 - 2018-11-02 11:04 - 000000000 ____D C:\Program Files (x86)\MP3 My MP3 4.2
2019-01-20 10:47 - 2017-05-24 16:57 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\vlc
2019-01-20 09:12 - 2017-05-24 17:05 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\dvdcss
2019-01-20 09:09 - 2018-08-26 06:09 - 000000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2019-01-20 09:08 - 2018-08-26 06:28 - 000000812 _____ C:\Users\PCE-035\AppData\Roaming\PCE-035.MTBF.txt
2019-01-20 09:08 - 2018-08-26 06:05 - 000000000 ____D C:\Users\PCE-035\AppData\Local\Pinnacle
2019-01-19 21:52 - 2018-08-26 06:47 - 000000000 ____D C:\Users\PCE-035\temp
2019-01-16 21:42 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Downloaded Program Files
2019-01-16 21:42 - 2016-01-17 14:16 - 000000000 ____D C:\Intel
2019-01-16 13:43 - 2018-08-10 15:15 - 000000000 ____D C:\Users\PCE-035\AppData\Local\CrashDumps
2019-01-16 13:43 - 2018-02-09 22:29 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\FreshDiagnose
2019-01-16 13:43 - 2016-05-31 14:40 - 000000000 ____D C:\Users\PCE-035\Documents\GC505TK Zámek Jindřichovice
2019-01-16 11:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\appcompat
2019-01-16 11:21 - 2018-09-15 18:39 - 000783062 _____ C:\WINDOWS\system32\perfh005.dat
2019-01-16 11:21 - 2018-09-15 18:39 - 000172644 _____ C:\WINDOWS\system32\perfc005.dat
2019-01-16 11:08 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-01-16 11:08 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-01-16 11:08 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-01-16 11:08 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-16 10:43 - 2016-03-13 19:55 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-16 10:31 - 2016-03-13 19:55 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-16 10:28 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\servicing
2019-01-16 09:39 - 2016-01-20 17:37 - 000000000 ____D C:\ProgramData\PC Suite
2019-01-13 12:21 - 2016-01-20 21:25 - 000000000 ____D C:\Users\PCE-035\Documents\8_Outdoor
2019-01-13 10:32 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ServiceState
2019-01-13 10:32 - 2017-12-21 02:57 - 000000000 ____D C:\Users\PCE-035\AppData\Local\Packages
2019-01-13 10:28 - 2018-05-22 14:35 - 000000000 ____D C:\Users\PCE-035\AppData\Local\PlaceholderTileLogoFolder
2019-01-13 09:53 - 2018-12-05 09:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2019-01-13 09:53 - 2018-12-05 09:22 - 000000000 ____D C:\Program Files (x86)\Comodo
2019-01-07 21:54 - 2017-12-21 03:27 - 000000000 ___RD C:\Users\PCE-035\3D Objects
2019-01-07 21:54 - 2016-04-27 08:00 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-01-07 21:54 - 2016-01-17 13:39 - 000000000 ___RD C:\Users\PCE-035\Virtual Machines
2019-01-07 21:52 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\windows nt
2019-01-07 21:52 - 2018-09-15 07:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-01-07 21:51 - 2018-09-15 08:33 - 000000000 ___RD C:\Program Files\Windows Defender
2019-01-07 21:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Registration
2019-01-07 21:43 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-01-07 21:40 - 2016-07-01 12:09 - 000023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2019-01-07 21:38 - 2018-09-15 08:33 - 000000000 __RSD C:\WINDOWS\media
2019-01-07 21:32 - 2016-01-17 17:44 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-01-07 21:26 - 2018-12-03 18:08 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Etwok LLC
2019-01-07 21:26 - 2018-09-05 11:33 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iPhone Care Pro
2019-01-07 21:26 - 2018-08-27 14:30 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Golden HTML Editor
2019-01-07 21:26 - 2018-06-25 12:49 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Screamer Radio
2019-01-07 21:26 - 2016-01-31 19:27 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-01-07 21:26 - 2016-01-31 14:56 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Garmin
2019-01-07 21:26 - 2016-01-20 17:48 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
2019-01-07 21:22 - 2017-02-11 22:35 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati
2019-01-07 21:17 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\USOPrivate
2019-01-07 21:16 - 2018-12-04 09:59 - 000001722 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IDT HD Audio.lnk
2019-01-07 21:12 - 2018-09-15 08:31 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2019-01-07 21:11 - 2018-12-04 17:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clean Master
2019-01-07 21:11 - 2018-11-02 11:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MP3 My MP3 4.2
2019-01-07 21:11 - 2018-09-28 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-01-07 21:11 - 2018-09-28 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-01-07 21:11 - 2018-09-25 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IsoBuster
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 __SHD C:\Program Files\Windows Sidebar
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\spool
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\IME
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\schemas
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-07 21:11 - 2018-08-26 06:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 19
2019-01-07 21:11 - 2018-07-20 16:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-01-07 21:11 - 2018-07-11 12:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2019-01-07 21:11 - 2018-06-27 15:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Mp3 Recorder Professional
2019-01-07 21:11 - 2018-06-15 12:02 - 000000000 ____D C:\WINDOWS\system32\MpEngineStore
2019-01-07 21:11 - 2018-06-15 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A Ruler for Windows
2019-01-07 21:11 - 2018-05-26 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2019-01-07 21:11 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2019-01-07 21:11 - 2018-03-31 13:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrimoPDF
2019-01-07 21:11 - 2018-02-14 13:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iFreeUp
2019-01-07 21:11 - 2018-02-12 11:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2019-01-07 21:11 - 2017-05-24 17:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OLYMPUS Digital Camera Updater
2019-01-07 21:11 - 2017-05-24 16:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-01-07 21:11 - 2017-05-18 23:45 - 000000000 ____D C:\Program Files\UNP
2019-01-07 21:11 - 2016-10-03 17:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2019-01-07 21:11 - 2016-09-23 21:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OLYMPUS Viewer 3
2019-01-07 21:11 - 2016-07-14 06:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\alternativaslibres
2019-01-07 21:11 - 2016-07-08 21:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-01-07 21:11 - 2016-01-31 19:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-01-07 21:11 - 2016-01-31 14:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2019-01-07 21:11 - 2016-01-20 18:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2019-01-07 21:11 - 2016-01-19 14:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
2019-01-07 21:11 - 2016-01-17 21:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-01-07 21:11 - 2016-01-17 19:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2019-01-07 21:11 - 2016-01-17 18:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2019-01-07 21:11 - 2016-01-17 18:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2019-01-07 20:59 - 2018-09-15 08:36 - 000000000 ____D C:\WINDOWS\Setup
2019-01-07 20:47 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-01-07 20:46 - 2018-09-15 08:33 - 000000000 __RHD C:\Users\Public\Libraries
2019-01-07 20:32 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-01-07 20:30 - 2018-11-19 15:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kerio
2019-01-07 20:30 - 2018-10-26 20:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\S.A.D
2019-01-07 20:30 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Resources
2019-01-07 20:30 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Help
2019-01-07 20:30 - 2018-08-26 06:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iZotope
2019-01-07 20:30 - 2018-08-11 15:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2019-01-07 20:30 - 2018-05-25 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaHuman
2019-01-07 20:30 - 2018-02-13 20:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jodix
2019-01-07 20:30 - 2018-02-09 22:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreshDevices
2019-01-07 20:30 - 2017-05-21 09:06 - 000000000 ____D C:\Program Files\Synaptics
2019-01-07 20:30 - 2016-09-15 13:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SnugTV
2019-01-07 20:30 - 2016-09-15 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVerMedia
2019-01-07 20:30 - 2016-02-27 20:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LizardSystems
2019-01-07 20:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\et-EE
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-01-07 20:03 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-01-07 20:03 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-01-07 19:58 - 2018-09-15 18:40 - 000000000 ____D C:\WINDOWS\OCR
2019-01-07 19:52 - 2016-08-03 09:21 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2019-01-06 11:50 - 2016-05-31 14:40 - 000000000 ____D C:\Users\PCE-035\Documents\My eBooks
2019-01-06 10:32 - 2016-02-02 18:06 - 000000000 ____D C:\Users\PCE-035\AppData\Local\ElevatedDiagnostics
2019-01-06 10:12 - 2016-02-18 18:20 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Files in the root of some directories =======

2018-12-15 12:07 - 2018-12-15 13:20 - 000000132 _____ () C:\Users\PCE-035\AppData\Roaming\Adobe Formát GIF CS6 – předvolby
2018-08-11 15:36 - 2018-08-11 15:36 - 000099384 _____ () C:\Users\PCE-035\AppData\Roaming\inst.exe
2018-08-26 06:28 - 2019-01-20 09:08 - 000000812 _____ () C:\Users\PCE-035\AppData\Roaming\PCE-035.MTBF.txt
2018-08-11 15:36 - 2018-08-11 15:36 - 000007859 _____ () C:\Users\PCE-035\AppData\Roaming\pcouffin.cat
2018-08-11 15:36 - 2018-08-11 15:36 - 000001167 _____ () C:\Users\PCE-035\AppData\Roaming\pcouffin.inf
2018-08-11 15:36 - 2018-08-11 15:36 - 000000055 _____ () C:\Users\PCE-035\AppData\Roaming\pcouffin.log
2018-08-11 15:36 - 2018-08-11 15:36 - 000082816 _____ (VSO Software) C:\Users\PCE-035\AppData\Roaming\pcouffin.sys
2018-08-10 16:50 - 2018-09-01 09:36 - 000000232 _____ () C:\Users\PCE-035\AppData\Roaming\WB.CFG
2018-11-02 11:06 - 2019-01-23 14:36 - 000016960 ____T (Un4seen Developments) C:\Users\PCE-035\AppData\Roaming\Microsoft\1eaadjc.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000018724 ____T () C:\Users\PCE-035\AppData\Roaming\Microsoft\bass.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000014392 ____T (Un4seen Developments) C:\Users\PCE-035\AppData\Roaming\Microsoft\kfgresk.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000014456 ____T () C:\Users\PCE-035\AppData\Roaming\Microsoft\mjcriu.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000010816 ____T (Un4seen Developments) C:\Users\PCE-035\AppData\Roaming\Microsoft\peaadje.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000028760 ____T ((: JOBnik! :) [Arthur Aminov, ISRAEL]) C:\Users\PCE-035\AppData\Roaming\Microsoft\qwadjb.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000015424 ____T (Un4seen Developments) C:\Users\PCE-035\AppData\Roaming\Microsoft\rsaadjd.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000098872 ____T (Un4seen Developments) C:\Users\PCE-035\AppData\Roaming\Microsoft\~DFK24593193.tmp
2016-01-17 20:09 - 2016-01-17 20:09 - 000000000 _____ () C:\Users\PCE-035\AppData\Local\AtStart.txt
2018-08-26 07:36 - 2018-11-02 12:16 - 000004608 _____ () C:\Users\PCE-035\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-09-05 16:49 - 2016-09-05 16:51 - 000001156 _____ () C:\Users\PCE-035\AppData\Local\digikamrc
2016-01-17 20:09 - 2016-01-17 20:09 - 000000000 _____ () C:\Users\PCE-035\AppData\Local\DSwitch.txt
2016-01-17 20:09 - 2016-01-17 20:09 - 000000000 _____ () C:\Users\PCE-035\AppData\Local\QSwitch.txt
2016-08-23 08:29 - 2016-08-23 08:29 - 000000000 _____ () C:\Users\PCE-035\AppData\Local\{5CC6D5CE-BE43-42EE-8B7A-1706382811E9}

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================


Nahoru
 Profil  
 
PříspěvekNapsal: 29 led 2019 15:05 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1616
Dobry den.

:arrow: Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.


Nahoru
 Profil  
 
PříspěvekNapsal: 29 led 2019 16:07 
Offline
Návštěvník
Návštěvník

Registrován: 28 led 2019 13:23
Příspěvky: 12
# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build: 12-18-2018
# Database: 2019-01-25.2 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-29-2019
# Duration: 00:00:12
# OS: Windows 10 Pro
# Cleaned: 16
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\IObit\Advanced SystemCare
Deleted C:\Program Files (x86)\Common Files\IObit\Advanced SystemCare
Deleted C:\Users\PCE-035\AppData\LocalLow\IObit\Advanced SystemCare
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge
Deleted C:\Program Files (x86)\RelevantKnowledge

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Advanced SystemCare 11
Deleted HKLM\Software\Wow6432Node\IObit\RealTimeProtector
Deleted HKLM\Software\Wow6432Node\IOBIT\ASC
Deleted HKLM\SOFTWARE\CLASSES\LNKFILE\SHELLEX\CONTEXTMENUHANDLERS\Advanced SystemCare
Deleted HKCU\Software\csastats
Deleted HKLM\Software\Wow6432Node\WebDiscoverBrowser
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{c2b8e594-d284-ef0b-2c66-48a9c98914bc}
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Deleted HKCU\Software\PRODUCTSETUP
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

Deleted http://www.bing.com/?pc=COSP&ptag=D0627 ... =CT3334491


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2688 octets] - [29/01/2019 15:59:17]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########


Nahoru
 Profil  
 
PříspěvekNapsal: 29 led 2019 16:12 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1616
Preskenujte pocitac s FRST - navod tu: https://forum.viry.cz/viewtopic.php?f=24&t=132509, skopirujte FRST.log + Addition log sem.

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.


Nahoru
 Profil  
 
PříspěvekNapsal: 29 led 2019 16:30 
Offline
Návštěvník
Návštěvník

Registrován: 28 led 2019 13:23
Příspěvky: 12
==================== End of FRST.txt ============================



==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5 CPU M 430 @ 2.27GHz
Percentage of memory in use: 59%
Total physical RAM: 3887.43 MB
Available physical RAM: 1569.58 MB
Total Virtual: 7855.43 MB
Available Virtual: 4971.6 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:280.99 GB) (Free:89.14 GB) NTFS
Drive d: (HP_RECOVERY) (Fixed) (Total:15 GB) (Free:6.08 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.97 GB) FAT32

\\?\Volume{e1d994b8-bd15-11e5-9a24-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 2A7F894A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=281 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=2 GB) - (Type=0C)

==================== End of Addition.txt ============================


Nahoru
 Profil  
 
PříspěvekNapsal: 29 led 2019 16:36 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1616
Skopirujte sem, prosim, uplne logy.

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.


Nahoru
 Profil  
 
PříspěvekNapsal: 29 led 2019 16:47 
Offline
Návštěvník
Návštěvník

Registrován: 28 led 2019 13:23
Příspěvky: 12
Příloha:
Addition.rar [19.84 KiB]
5 krát
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 27.01.2019
Ran by MM (administrator) on PCE-035 (29-01-2019 16:38:23)
Running from C:\Users\PCE-035\Desktop
Loaded Profiles: MM (Available Profiles: MM & DefaultAppPool)
Platform: Windows 10 Pro Version 1809 17763.253 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Cheetah Mobile,Inc.) C:\Program Files (x86)\cmcm\Clean Master\cmcore.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(iFunSoft) C:\Program Files (x86)\iFunSoft\iFunSoft Updater\iFunSoftUpdater.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\isesrv.exe
(Kerio Technologies Inc.) C:\Program Files (x86)\Kerio\VPN Client\kvpncsvc.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\MsMpEng.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Cheetah Mobile,Inc.) C:\Program Files (x86)\cmcm\Clean Master\cmtray.exe
(IObit) C:\Program Files (x86)\IObit\iFreeUp\iFreeUpMini.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20094.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Olympus Corporation) C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\OV3Monitor.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTray.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Kerio Technologies Inc.) C:\Program Files (x86)\Kerio\VPN Client\kvpncgui.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
(COMODO) C:\Program Files (x86)\Comodo\Internet Security Essentials\vkise.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\NisSrv.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Microsoft Corporation) C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
(Microsoft Corporation) C:\Program Files\internet explorer\iexplore.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe
(The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\QtWebEngineProcess.exe
(Portrait Displays, Inc) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\SDKCOMServer.exe
(Portrait Displays, Inc.) C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdiSDKHelperx64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\Locator.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2174760 2010-06-04] (Synaptics Incorporated)
HKLM\...\Run: [HPPowerAssistant] => C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Main.exe [3488640 2012-03-14] (Hewlett-Packard Company)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1598144 2018-12-17] (COMODO)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [489472 2010-09-08] (IDT, Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [301880 2018-11-15] (Apple Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [713152 2016-05-25] (Autodesk, Inc.)
HKLM-x32\...\Run: [QlbCtrl.exe] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [287800 2010-02-25] ( Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [OV3_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\FirstStart.exe [40400 2017-07-26] (Olympus Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKLM-x32\...\Run: [Kerio Control VPN Client] => C:\Program Files (x86)\Kerio\VPN Client\kvpncgui.exe [2069840 2018-04-04] (Kerio Technologies Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [4090176 2019-01-22] (Dropbox, Inc.)
HKLM-x32\...\Run: [cmsc] => c:\program files (x86)\cmcm\Clean Master\cmtray.exe [1607280 2018-12-04] (Cheetah Mobile,Inc.)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4260040 2018-08-31] (COMODO)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-793827090-3216647719-621277648-1000\...\Run: [OV3_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\OV3Monitor.exe [415696 2017-07-26] (Olympus Corporation)
HKU\S-1-5-21-793827090-3216647719-621277648-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-01-10] (Piriform Software Ltd)
HKU\S-1-5-21-793827090-3216647719-621277648-1000\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 17\Program32\ZPSTRAY.EXE [563416 2015-07-12] (ZONER software)
HKU\S-1-5-21-793827090-3216647719-621277648-1000\...\Policies\Explorer: []
HKLM\...\Drivers32: [vidc.mjpg] => pvmjpgx40.dll
HKLM\...\Drivers32-x32: [vidc.pDAD] => prodad-codec.dll
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-18] (Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{12314fc2-3841-466f-8c4f-4008a1214a06}: [DhcpNameServer] 10.253.50.1
Tcpip\..\Interfaces\{4774af93-c572-44f7-8519-f6faf8ebaf91}: [DhcpNameServer] 192.168.1.4
Tcpip\..\Interfaces\{957b0d19-368a-4378-aff2-5f3dab5335b4}: [DhcpNameServer] 10.253.50.1
Tcpip\..\Interfaces\{9a1a06b4-a672-4853-8ec5-5ecc999f81d8}: [NameServer] 156.154.70.25,156.154.71.25
Tcpip\..\Interfaces\{9a1a06b4-a672-4853-8ec5-5ecc999f81d8}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID= ... 4800662924
HKU\S-1-5-21-793827090-3216647719-621277648-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-793827090-3216647719-621277648-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://www.google.cz/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-793827090-3216647719-621277648-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-793827090-3216647719-621277648-1000 -> {3050EA28-E5BA-4FEA-B6F1-4A9B299060E0} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-10-26] (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-05-25] (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-26] (Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2018-11-15] (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-05-25] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2018-05-25] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2018-05-25] (Google Inc.)
DPF: HKLM-x32 {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} hxxp://catalog.update.microsoft.com/v7/ ... 1761875805
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-29] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-29] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-29] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-24] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-01-29] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 3qew10ss.default-1517823712595
FF ProfilePath: C:\Users\PCE-035\AppData\Roaming\Mozilla\Firefox\Profiles\3qew10ss.default-1517823712595 [2019-01-29]
FF Homepage: Mozilla\Firefox\Profiles\3qew10ss.default-1517823712595 -> hxxps://www.google.com/
FF NewTab: Mozilla\Firefox\Profiles\3qew10ss.default-1517823712595 -> hxxp://www.bing.com/?pc=COSP&ptag=D0627 ... =CT3334491
FF SearchPlugin: C:\Users\PCE-035\AppData\Roaming\Mozilla\Firefox\Profiles\3qew10ss.default-1517823712595\searchplugins\bing-lavasoft-ff59.xml [2018-06-27]
FF HKLM-x32\...\Firefox\Extensions: [{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}] - C:\Program Files (x86)\RelevantKnowledge\firefox => not found
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-26] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-08-17] (Microsoft Corporation)
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2018-08-17] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://services.srchweb.org/search/{searchTerms}
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://sug.srchweb.org/sug/?s={searchTerms}
CHR Profile: C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default [2019-01-29]
CHR Extension: (Prezentace) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-02-05]
CHR Extension: (CacheList) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\amhhdbdhoghppijbjfdkiaconkmfbbpa [2018-12-17]
CHR Extension: (Dokumenty) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-02-05]
CHR Extension: (Disk Google) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-17]
CHR Extension: (YouTube) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-17]
CHR Extension: (Vyhledávání Google) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-17]
CHR Extension: (GPX Downloader) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpamipdfplcigmapcdgckimdgpgjidcl [2018-02-26]
CHR Extension: (Tabulky) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-02-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-12-17]
CHR Extension: (Search with Yahoo) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfmnajccfjnkadbaddekmedahjgblhmn [2018-02-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-12-17]
CHR Extension: (Gmail) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-17]
CHR Extension: (Chrome Media Router) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-17]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1286672 2016-05-25] (Autodesk Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [85304 2018-10-16] (Apple Inc.)
S4 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
S4 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [348160 2010-04-27] (AVerMedia) [File not signed]
S4 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [397312 2009-12-06] () [File not signed]
S4 AVerUpdateServer; C:\Program Files (x86)\AVerMedia\AVerUpdate\AVerUpdateServer.exe [167936 2010-05-07] (AVerMedia TECHNOLOGIES, Inc.) [File not signed]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11012768 2019-01-23] (Microsoft Corporation)
R2 cmcore; c:\program files (x86)\cmcm\Clean Master\cmcore.exe [397936 2018-12-04] (Cheetah Mobile,Inc.)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [10747264 2018-12-17] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2876096 2018-12-17] (COMODO)
S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-05] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-09-05] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-01-22] (Dropbox, Inc.)
R2 iFunSoftUpdaterSvc; C:\Program Files (x86)\iFunSoft\iFunSoft Updater\iFunSoftUpdater.exe [2956472 2018-09-22] (iFunSoft)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1046216 2018-08-31] (COMODO)
R2 KVPNCSvc; C:\Program Files (x86)\Kerio\VPN Client\kvpncsvc.exe [1986896 2018-04-04] (Kerio Technologies Inc.)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-29] (IObit)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5381128 2019-01-16] (Microsoft Corporation)
R2 SNMP; C:\WINDOWS\System32\snmp.exe [53248 2019-01-07] (Microsoft Corporation)
S4 SnugTV Service; C:\Program Files (x86)\SnugTV\SnugTV Station\AMAServer.exe [528384 2010-05-06] (AVerMedia Technologies, Inc.) [File not signed]
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [384512 2018-09-15] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\NisSrv.exe [4096976 2019-01-25] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MsMpEng.exe [113992 2019-01-25] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17944 2018-05-23] (COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [44056 2018-05-23] (COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [832032 2018-05-23] (COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [50768 2018-05-23] (COMODO)
S3 FreshIO; C:\Program Files (x86)\FreshDevices\FreshDiagnose\FreshIO.sys [2410 2004-10-26] () [File not signed]
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-02-12] (REALiX(tm))
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [134400 2018-05-23] (COMODO)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-29] (COMODO)
S3 ksapi64; C:\WINDOWS\system32\drivers\ksapi64.sys [89776 2018-12-04] (Kingsoft Corporation)
R3 kvnet; C:\WINDOWS\System32\drivers\kvnet.sys [48552 2018-04-04] (Kerio Technologies Inc.)
S3 VASDeviceDrm; C:\WINDOWS\system32\drivers\vasdDev.sys [1995592 2018-05-04] (ShiningMorning Inc.)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [47616 2018-09-15] (Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46488 2019-01-25] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [343032 2019-01-25] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [63480 2019-01-25] (Microsoft Corporation)
R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x64.sys [288768 2018-09-15] (Marvell)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-29 16:27 - 2019-01-29 16:39 - 000024327 _____ C:\Users\PCE-035\Desktop\FRST.txt
2019-01-29 16:27 - 2019-01-29 16:27 - 000001210 _____ C:\Users\PCE-035\Desktop\Addition.txt
2019-01-29 15:58 - 2019-01-29 15:59 - 000000000 ____D C:\AdwCleaner
2019-01-29 14:19 - 2019-01-29 16:38 - 000000000 ____D C:\FRST
2019-01-29 14:18 - 2019-01-29 14:18 - 002428416 _____ (Farbar) C:\Users\PCE-035\Desktop\FRST64.exe
2019-01-29 14:15 - 2019-01-28 14:36 - 007320272 _____ (Malwarebytes) C:\Users\PCE-035\Desktop\adwcleaner_7.2.6.0.exe
2019-01-29 14:13 - 2019-01-29 14:13 - 000000279 _____ C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Koš.lnk
2019-01-25 14:05 - 2019-01-26 10:49 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Wise Duplicate Finder
2019-01-25 14:05 - 2019-01-25 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Duplicate Finder
2019-01-25 14:05 - 2019-01-25 14:05 - 000000000 ____D C:\Program Files (x86)\Wise
2019-01-25 14:01 - 2019-01-25 14:02 - 000000000 ___RD C:\Users\PCE-035\Desktop\Vypalování
2019-01-24 09:29 - 2019-01-24 09:30 - 000000000 ___RD C:\Users\PCE-035\Desktop\E-book. PDF
2019-01-24 09:03 - 2019-01-24 09:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-01-23 17:10 - 2019-01-24 09:18 - 000000000 ____D C:\Users\PCE-035\AppData\Local\Deployment
2019-01-23 15:43 - 2019-01-23 15:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2019-01-23 15:43 - 2019-01-23 15:43 - 000000000 ____D C:\Program Files\iPod
2019-01-23 15:41 - 2019-01-23 15:43 - 000000000 ____D C:\Program Files\iTunes
2019-01-22 17:19 - 2019-01-22 17:19 - 000000218 _____ C:\Users\PCE-035\.recently-used.xbel
2019-01-22 17:08 - 2019-01-22 17:08 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Torrent Harvester
2019-01-22 17:08 - 2019-01-22 17:08 - 000000000 ____D C:\Program Files (x86)\Torrent Harvester
2019-01-22 17:05 - 2019-01-22 19:20 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\qBittorrent
2019-01-22 17:05 - 2019-01-22 17:06 - 000000000 ____D C:\Users\PCE-035\AppData\Local\qBittorrent
2019-01-22 17:01 - 2019-01-22 17:27 - 000000000 ___RD C:\Users\PCE-035\Desktop\Stahování
2019-01-22 16:57 - 2019-01-22 16:57 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\VitySoft
2019-01-22 16:57 - 2019-01-22 16:57 - 000000000 ____D C:\Users\PCE-035\.objectdb
2019-01-22 16:54 - 2019-01-22 16:54 - 000000000 ____D C:\Program Files (x86)\qBittorrent
2019-01-22 16:47 - 2019-01-22 16:47 - 017403694 _____ C:\Users\PCE-035\Downloads\FreeRapid-0.9u4 (1).zip
2019-01-22 14:14 - 2019-01-22 14:14 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-01-22 14:14 - 2019-01-22 14:14 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-01-22 14:14 - 2019-01-22 14:14 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-01-22 14:14 - 2019-01-22 14:14 - 000047800 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-01-19 20:25 - 2019-01-19 20:25 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Roxio
2019-01-19 20:25 - 2019-01-19 20:25 - 000000000 ____D C:\Users\PCE-035\AppData\Local\Corel
2019-01-18 23:17 - 2019-01-24 09:04 - 000000000 ____D C:\Users\PCE-035\Desktop\Justin Lavash_TP_2019-01-18
2019-01-17 21:13 - 2019-01-17 21:13 - 000000000 ____D C:\Users\PCE-035\AppData\Local\Teta CEWE fotosvet
2019-01-17 21:11 - 2019-01-17 22:10 - 000000000 ____D C:\ProgramData\hps
2019-01-17 10:59 - 2019-01-17 22:10 - 000000000 ____D C:\ProgramData\tmp
2019-01-17 10:59 - 2019-01-17 10:59 - 000001178 _____ C:\Users\Public\Desktop\Teta CEWE fotosvet.lnk
2019-01-17 10:59 - 2019-01-17 10:59 - 000001173 _____ C:\Users\Public\Desktop\CEWE FOTOIMPORTER.lnk
2019-01-17 10:59 - 2019-01-17 10:59 - 000001163 _____ C:\Users\Public\Desktop\CEWE prezentace.lnk
2019-01-17 10:59 - 2019-01-17 10:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Teta CEWE fotosvet
2019-01-17 10:48 - 2019-01-17 10:48 - 000000000 ____D C:\Program Files\Teta CEWE fotosvet
2019-01-16 13:10 - 2019-01-16 13:11 - 000004390 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2019-01-16 13:10 - 2019-01-16 13:10 - 000000000 ___HD C:\VTRoot
2019-01-16 13:09 - 2019-01-16 13:09 - 000003140 _____ C:\WINDOWS\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2019-01-16 11:27 - 2019-01-16 11:27 - 000000000 ____D C:\Users\PCE-035\Documents\WonderFox Soft
2019-01-16 11:25 - 2019-01-16 15:04 - 000000000 ____D C:\Program Files (x86)\WonderFox Soft
2019-01-16 11:15 - 2019-01-02 20:48 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-16 11:15 - 2019-01-02 20:48 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-01-16 10:26 - 2019-01-16 10:26 - 005440016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-01-16 10:26 - 2019-01-16 10:26 - 003550592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-01-16 10:26 - 2019-01-16 10:26 - 002469648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-01-16 10:26 - 2019-01-16 10:26 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-01-16 10:26 - 2019-01-16 10:26 - 001201136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 026806784 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 023440384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 020811776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 019024384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 012858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 012151808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 007857152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 006057984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 003952952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 002986352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000662528 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Pipeline.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2019-01-16 10:25 - 2019-01-16 10:25 - 000098816 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Broker.dll
2019-01-16 10:24 - 2019-01-16 10:25 - 002275896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 009677352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-16 10:24 - 2019-01-16 10:24 - 007645600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 006544800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-01-16 10:24 - 2019-01-16 10:24 - 003380224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 003338328 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 003270144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 002777432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 002626360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-01-16 10:24 - 2019-01-16 10:24 - 002594872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 002437552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 002186752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 002021584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 001641616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 001602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-16 10:24 - 2019-01-16 10:24 - 001212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 001058848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-01-16 10:24 - 2019-01-16 10:24 - 001050936 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-16 10:24 - 2019-01-16 10:24 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000387384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000178696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-16 10:24 - 2019-01-16 10:24 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-16 10:24 - 2019-01-16 10:24 - 000140808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-16 10:24 - 2019-01-16 10:24 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-16 10:24 - 2019-01-16 10:24 - 000047112 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-01-07 21:58 - 2019-01-07 21:58 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-01-07 21:53 - 2019-01-07 21:53 - 000000020 ___SH C:\Users\PCE-035\ntuser.ini
2019-01-07 21:52 - 2019-01-07 21:52 - 000003440 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineUA
2019-01-07 21:52 - 2019-01-07 21:52 - 000002240 _____ C:\WINDOWS\System32\Tasks\IOTransfer SkipUAC (PCE-035)
2019-01-07 21:51 - 2019-01-29 16:01 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-07 21:51 - 2019-01-27 16:27 - 000003352 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-793827090-3216647719-621277648-1000
2019-01-07 21:51 - 2019-01-24 09:27 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-01-07 21:51 - 2019-01-07 21:53 - 000003440 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2019-01-07 21:51 - 2019-01-07 21:53 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-07 21:51 - 2019-01-07 21:53 - 000002280 _____ C:\WINDOWS\System32\Tasks\{A18982D2-2741-4655-B61C-ACA4F9BF2F23}
2019-01-07 21:51 - 2019-01-07 21:52 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-01-07 21:51 - 2019-01-07 21:52 - 000003194 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2019-01-07 21:51 - 2019-01-07 21:52 - 000002702 _____ C:\WINDOWS\System32\Tasks\GarminUpdaterTask
2019-01-07 21:51 - 2019-01-07 21:52 - 000002288 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-01-07 21:51 - 2019-01-07 21:52 - 000002282 _____ C:\WINDOWS\System32\Tasks\{C56279F7-71BC-4B3C-8758-BBD6026F71AD}
2019-01-07 21:51 - 2019-01-07 21:52 - 000002278 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (PCE-035)
2019-01-07 21:51 - 2019-01-07 21:52 - 000002256 _____ C:\WINDOWS\System32\Tasks\{0D130C74-8ED1-4587-95DE-8064CF12A1F4}
2019-01-07 21:51 - 2019-01-07 21:52 - 000002222 _____ C:\WINDOWS\System32\Tasks\iFreeUp_SkipUac_PCE-035
2019-01-07 21:51 - 2019-01-07 21:51 - 000003354 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1495394118
2019-01-07 21:51 - 2019-01-07 21:51 - 000003216 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2019-01-07 21:51 - 2019-01-07 21:51 - 000003216 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineCore
2019-01-07 21:51 - 2019-01-07 21:51 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\WPD
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\COMODO
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\Apple
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\Abelssoft
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\{6BD68D5F-4E2C-B1DD-386C-00FB53AD52FC}
2019-01-07 21:51 - 2016-01-17 14:45 - 000003074 _____ C:\WINDOWS\System32\Tasks\{7B60B5EC-E669-4B53-A597-FFD2670AC3CC}
2019-01-07 21:51 - 2016-01-17 13:39 - 000003544 _____ C:\WINDOWS\System32\Tasks\CreateChoiceProcessTask
2019-01-07 21:49 - 2019-01-07 21:51 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2019-01-07 21:49 - 2019-01-07 21:51 - 000011433 _____ C:\WINDOWS\diagerr.xml
2019-01-07 21:36 - 2019-01-16 11:21 - 001920462 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-07 21:24 - 2019-01-07 21:24 - 000001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2019-01-07 21:20 - 2019-01-27 16:27 - 000002393 _____ C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-07 21:20 - 2019-01-22 17:19 - 000000000 ____D C:\Users\PCE-035
2019-01-07 21:20 - 2019-01-07 21:33 - 000000000 ____D C:\Users\DefaultAppPool
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Šablony
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Soubory cookie
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Poslední
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Okolní tiskárny
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Okolní síť
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Nabídka Start
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Dokumenty
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Documents\Obrázky
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Documents\Hudba
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Documents\Filmy
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\Data aplikací
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\PCE-035\AppData\Local\Data aplikací
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Šablony
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Soubory cookie
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Poslední
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Okolní tiskárny
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Okolní síť
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Nabídka Start
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Dokumenty
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Obrázky
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Hudba
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Filmy
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\Data aplikací
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-01-07 21:20 - 2019-01-07 21:20 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Data aplikací
2019-01-07 21:20 - 2018-09-15 08:29 - 000001105 _____ C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-07 21:17 - 2019-01-07 21:17 - 000000000 ____D C:\ProgramData\USOShared
2019-01-07 21:16 - 2018-09-15 08:28 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-01-07 21:12 - 2019-01-29 15:56 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-07 21:12 - 2019-01-07 21:28 - 005146944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-01-07 21:11 - 2019-01-19 22:29 - 000000000 ____D C:\Windows.old
2019-01-07 20:30 - 2019-01-07 21:11 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2019-01-07 20:30 - 2019-01-07 20:30 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2019-01-07 20:27 - 2019-01-07 20:29 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2019-01-07 20:20 - 2019-01-07 20:20 - 024617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 019284992 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 007724776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 005113008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 004918784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-01-07 20:20 - 2019-01-07 20:20 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 003566080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-01-07 20:20 - 2019-01-07 20:20 - 002429752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-01-07 20:20 - 2019-01-07 20:20 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-01-07 20:20 - 2019-01-07 20:20 - 001294864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 001289400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 001282432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 001259000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-01-07 20:20 - 2019-01-07 20:20 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2019-01-07 20:20 - 2019-01-07 20:20 - 001073448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 001057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 001024920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000854784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000763032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2019-01-07 20:20 - 2019-01-07 20:20 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2019-01-07 20:20 - 2019-01-07 20:20 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-01-07 20:20 - 2019-01-07 20:20 - 000301096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000241680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2019-01-07 20:20 - 2019-01-07 20:20 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 015224832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 006306152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 005585056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 004886016 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 004306432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 003744256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 003730352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 003577856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 003427328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 003108864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 002883584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 002832896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001749504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001675712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001590288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001483264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001476096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001467344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001456736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001279024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2019-01-07 20:19 - 2019-01-07 20:19 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001026992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 001019392 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000964976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000604248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000373768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2019-01-07 20:19 - 2019-01-07 20:19 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastingShellExt.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CastingShellExt.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000114344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2019-01-07 20:19 - 2019-01-07 20:19 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 022112072 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 005565440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 005312512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 004765184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 004300800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 003983360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 003662336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 003504640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 003379000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 003092480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002927104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002702536 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002689536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002488320 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 002185728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 002072384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001863168 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001842600 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001830912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001824768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001797128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001696216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-01-07 20:18 - 2019-01-07 20:18 - 001688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001674688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001672056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001466872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-01-07 20:18 - 2019-01-07 20:18 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001395248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-01-07 20:18 - 2019-01-07 20:18 - 001360696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 001341376 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-01-07 20:18 - 2019-01-07 20:18 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001249792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001180760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001177632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-01-07 20:18 - 2019-01-07 20:18 - 001162280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001097312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-01-07 20:18 - 2019-01-07 20:18 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001048576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000863752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000836096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000818832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-01-07 20:18 - 2019-01-07 20:18 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000566584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000514112 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-01-07 20:18 - 2019-01-07 20:18 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000252536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-01-07 20:18 - 2019-01-07 20:18 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000175096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000151872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000094224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2019-01-07 20:18 - 2019-01-07 20:18 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000091640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-01-07 20:18 - 2019-01-07 20:18 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 007685016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 006132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 005130752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002988544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002721792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 002654208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002630656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002149352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 002085168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001751560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001612808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001520208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001401864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001387496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001315840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001287776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001219584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 001199104 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 001051960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000897848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000850960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000828936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000817160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000756640 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000752128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000743432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000667152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000660496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000650040 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000649736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000604336 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000582240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000495624 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000406528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000402576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000306704 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000300024 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000298536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000294072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000193016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000164344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000130088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000114648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000102392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000083472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2019-01-07 20:17 - 2019-01-07 20:17 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2019-01-07 20:17 - 2019-01-07 20:17 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-01-07 20:17 - 2019-01-07 20:17 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-01-07 20:07 - 2019-01-07 20:07 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2019-01-07 20:07 - 2019-01-07 20:07 - 000000000 ____D C:\WINDOWS\system32\msmq
2019-01-07 20:07 - 2019-01-07 20:07 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2019-01-07 20:07 - 2019-01-07 20:07 - 000000000 ____D C:\inetpub
2019-01-07 20:05 - 2019-01-07 20:05 - 006347776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 005489664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2019-01-07 20:05 - 2019-01-07 20:05 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2019-01-07 20:05 - 2019-01-07 20:05 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2019-01-07 20:04 - 2019-01-07 20:04 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmpsnap.dll
2019-01-07 20:04 - 2019-01-07 20:04 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\evntwin.exe
2019-01-07 20:04 - 2019-01-07 20:04 - 000107882 _____ C:\WINDOWS\system32\mib_ii.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\evntagnt.dll
2019-01-07 20:04 - 2019-01-07 20:04 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmp.exe
2019-01-07 20:04 - 2019-01-07 20:04 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hostmib.dll
2019-01-07 20:04 - 2019-01-07 20:04 - 000048593 _____ C:\WINDOWS\system32\hostmib.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\lmmib2.dll
2019-01-07 20:04 - 2019-01-07 20:04 - 000034317 _____ C:\WINDOWS\system32\msiprip2.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000030448 _____ C:\WINDOWS\system32\mcastmib.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\evntcmd.exe
2019-01-07 20:04 - 2019-01-07 20:04 - 000026236 _____ C:\WINDOWS\system32\wins.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000026100 _____ C:\WINDOWS\system32\lmmib2.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000022462 _____ C:\WINDOWS\system32\rfc2571.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000021271 _____ C:\WINDOWS\system32\http.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64mib.dll
2019-01-07 20:04 - 2019-01-07 20:04 - 000015799 _____ C:\WINDOWS\system32\ipforwd.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000015032 _____ C:\WINDOWS\system32\authserv.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000014032 _____ C:\WINDOWS\system32\accserv.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000013767 _____ C:\WINDOWS\system32\msipbtp.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmpmib.dll
2019-01-07 20:04 - 2019-01-07 20:04 - 000006179 _____ C:\WINDOWS\system32\ftp.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000004597 _____ C:\WINDOWS\system32\dhcp.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000004411 _____ C:\WINDOWS\system32\smi.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000000698 _____ C:\WINDOWS\system32\inetsrv.mib
2019-01-07 20:04 - 2019-01-07 20:04 - 000000581 _____ C:\WINDOWS\system32\msft.mib
2019-01-07 20:03 - 2019-01-07 20:03 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-01-07 20:03 - 2019-01-07 20:03 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-01-07 20:03 - 2019-01-07 20:03 - 000000000 ____D C:\Program Files\MSBuild
2019-01-07 20:03 - 2019-01-07 20:03 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-01-07 20:03 - 2019-01-07 20:03 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-01-07 20:01 - 2019-01-07 20:01 - 001167960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-01-07 20:01 - 2019-01-07 20:01 - 000780376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2019-01-07 20:01 - 2019-01-07 20:01 - 000126064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-01-07 20:01 - 2019-01-07 20:01 - 000104560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-01-07 20:01 - 2019-01-07 20:01 - 000036896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2019-01-07 20:01 - 2019-01-07 20:01 - 000035440 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2019-01-07 19:35 - 2019-01-07 19:35 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2019-01-07 18:02 - 2019-01-16 21:42 - 000000000 ___DC C:\WINDOWS\Panther

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-29 16:15 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-29 16:06 - 2018-09-05 12:48 - 000000000 ___RD C:\Users\PCE-035\Dropbox
2019-01-29 16:02 - 2018-02-12 10:02 - 000000000 ____D C:\ProgramData\ProductData
2019-01-29 16:00 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-01-29 15:59 - 2018-02-12 10:01 - 000000000 ____D C:\Users\PCE-035\AppData\LocalLow\IObit
2019-01-29 13:27 - 2018-02-13 21:30 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Mp3tag
2019-01-29 11:12 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-29 11:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-29 11:12 - 2018-07-11 11:43 - 000000000 ____D C:\ProgramData\Packages
2019-01-29 10:41 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-01-29 10:37 - 2016-01-17 17:44 - 000000000 ____D C:\Program Files\Microsoft Office
2019-01-27 17:17 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-01-27 16:27 - 2016-01-17 17:55 - 000000000 ___RD C:\Users\PCE-035\OneDrive
2019-01-26 19:22 - 2018-09-05 12:41 - 000000000 ____D C:\Users\PCE-035\AppData\Local\Dropbox
2019-01-26 11:25 - 2016-01-20 18:20 - 000000000 ____D C:\CC-registry záloha
2019-01-26 10:50 - 2016-01-31 14:47 - 000000000 ____D C:\Garmin
2019-01-25 14:18 - 2018-06-26 11:44 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Audacity
2019-01-25 14:18 - 2017-05-31 20:14 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\GeoGet
2019-01-25 14:18 - 2017-02-11 22:36 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\tixati
2019-01-25 14:18 - 2016-01-20 18:04 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Skype
2019-01-25 14:10 - 2016-01-24 09:35 - 000000000 ___RD C:\Users\PCE-035\Desktop\PC údržba
2019-01-25 14:03 - 2018-02-14 15:01 - 000000000 ___RD C:\Users\PCE-035\Desktop\AUDIO
2019-01-25 13:56 - 2016-01-19 14:53 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Ashampoo
2019-01-25 13:56 - 2016-01-19 14:52 - 000000000 ____D C:\Users\PCE-035\AppData\Local\ashampoo
2019-01-25 13:55 - 2016-01-19 14:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2019-01-25 13:54 - 2016-01-19 14:52 - 000000000 ____D C:\ProgramData\Ashampoo
2019-01-25 13:54 - 2016-01-19 14:52 - 000000000 ____D C:\Program Files (x86)\Ashampoo
2019-01-25 13:52 - 2016-01-19 14:16 - 000000000 ____D C:\Instalace
2019-01-25 11:22 - 2016-01-20 17:25 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Winamp
2019-01-25 10:30 - 2018-03-16 17:07 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-01-24 09:40 - 2018-12-19 13:51 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\AIMP
2019-01-24 09:17 - 2018-02-05 11:32 - 000000000 ____D C:\Users\PCE-035\AppData\Local\WiFi Guard
2019-01-24 09:06 - 2018-09-05 12:41 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-01-23 22:15 - 2016-08-03 09:44 - 000000000 ____D C:\Users\PCE-035\AppData\Local\ConnectedDevicesPlatform
2019-01-23 17:14 - 2018-02-05 11:32 - 000000956 _____ C:\Users\Public\Desktop\SoftPerfect WiFi Guard.lnk
2019-01-23 17:14 - 2018-02-05 11:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoftPerfect WiFi Guard
2019-01-23 17:14 - 2018-02-05 11:32 - 000000000 ____D C:\Program Files\SoftPerfect WiFi Guard
2019-01-23 16:02 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-23 15:51 - 2016-07-06 09:49 - 000000000 ___RD C:\Users\PCE-035\Desktop\Apple
2019-01-23 14:58 - 2018-02-13 21:15 - 000000000 ____D C:\Program Files (x86)\Mp3tag
2019-01-23 14:35 - 2018-11-02 11:04 - 000000000 ____D C:\Program Files (x86)\MP3 My MP3 4.2
2019-01-20 10:47 - 2017-05-24 16:57 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\vlc
2019-01-20 09:12 - 2017-05-24 17:05 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\dvdcss
2019-01-20 09:09 - 2018-08-26 06:09 - 000000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2019-01-20 09:08 - 2018-08-26 06:28 - 000000812 _____ C:\Users\PCE-035\AppData\Roaming\PCE-035.MTBF.txt
2019-01-20 09:08 - 2018-08-26 06:05 - 000000000 ____D C:\Users\PCE-035\AppData\Local\Pinnacle
2019-01-19 21:52 - 2018-08-26 06:47 - 000000000 ____D C:\Users\PCE-035\temp
2019-01-16 21:42 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Downloaded Program Files
2019-01-16 21:42 - 2016-01-17 14:16 - 000000000 ____D C:\Intel
2019-01-16 13:43 - 2018-08-10 15:15 - 000000000 ____D C:\Users\PCE-035\AppData\Local\CrashDumps
2019-01-16 13:43 - 2018-02-09 22:29 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\FreshDiagnose
2019-01-16 13:43 - 2016-05-31 14:40 - 000000000 ____D C:\Users\PCE-035\Documents\GC505TK Zámek Jindřichovice
2019-01-16 11:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\appcompat
2019-01-16 11:21 - 2018-09-15 18:39 - 000783062 _____ C:\WINDOWS\system32\perfh005.dat
2019-01-16 11:21 - 2018-09-15 18:39 - 000172644 _____ C:\WINDOWS\system32\perfc005.dat
2019-01-16 11:08 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-01-16 11:08 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-01-16 11:08 - 2018-09-15 18:40 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-01-16 11:08 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-16 10:43 - 2016-03-13 19:55 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-16 10:31 - 2016-03-13 19:55 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-16 10:28 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\servicing
2019-01-16 09:39 - 2016-01-20 17:37 - 000000000 ____D C:\ProgramData\PC Suite
2019-01-13 12:21 - 2016-01-20 21:25 - 000000000 ____D C:\Users\PCE-035\Documents\8_Outdoor
2019-01-13 10:32 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ServiceState
2019-01-13 10:32 - 2017-12-21 02:57 - 000000000 ____D C:\Users\PCE-035\AppData\Local\Packages
2019-01-13 10:28 - 2018-05-22 14:35 - 000000000 ____D C:\Users\PCE-035\AppData\Local\PlaceholderTileLogoFolder
2019-01-13 09:53 - 2018-12-05 09:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2019-01-13 09:53 - 2018-12-05 09:22 - 000000000 ____D C:\Program Files (x86)\Comodo
2019-01-07 21:54 - 2017-12-21 03:27 - 000000000 ___RD C:\Users\PCE-035\3D Objects
2019-01-07 21:54 - 2016-04-27 08:00 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-01-07 21:54 - 2016-01-17 13:39 - 000000000 ___RD C:\Users\PCE-035\Virtual Machines
2019-01-07 21:52 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\windows nt
2019-01-07 21:52 - 2018-09-15 07:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-01-07 21:51 - 2018-09-15 08:33 - 000000000 ___RD C:\Program Files\Windows Defender
2019-01-07 21:48 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Registration
2019-01-07 21:43 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-01-07 21:40 - 2016-07-01 12:09 - 000023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2019-01-07 21:38 - 2018-09-15 08:33 - 000000000 __RSD C:\WINDOWS\media
2019-01-07 21:32 - 2016-01-17 17:44 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-01-07 21:26 - 2018-12-03 18:08 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Etwok LLC
2019-01-07 21:26 - 2018-09-05 11:33 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iPhone Care Pro
2019-01-07 21:26 - 2018-08-27 14:30 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Golden HTML Editor
2019-01-07 21:26 - 2018-06-25 12:49 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Screamer Radio
2019-01-07 21:26 - 2016-01-31 19:27 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-01-07 21:26 - 2016-01-31 14:56 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Garmin
2019-01-07 21:26 - 2016-01-20 17:48 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ICQ
2019-01-07 21:22 - 2017-02-11 22:35 - 000000000 ____D C:\Users\PCE-035\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tixati
2019-01-07 21:17 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\USOPrivate
2019-01-07 21:16 - 2018-12-04 09:59 - 000001722 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IDT HD Audio.lnk
2019-01-07 21:12 - 2018-09-15 08:31 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2019-01-07 21:11 - 2018-12-04 17:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Clean Master
2019-01-07 21:11 - 2018-11-02 11:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MP3 My MP3 4.2
2019-01-07 21:11 - 2018-09-28 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-01-07 21:11 - 2018-09-28 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office
2019-01-07 21:11 - 2018-09-25 13:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IsoBuster
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 __SHD C:\Program Files\Windows Sidebar
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\spool
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\IME
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\schemas
2019-01-07 21:11 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-07 21:11 - 2018-08-26 06:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 19
2019-01-07 21:11 - 2018-07-20 16:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-01-07 21:11 - 2018-07-11 12:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kodi
2019-01-07 21:11 - 2018-06-27 15:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Super Mp3 Recorder Professional
2019-01-07 21:11 - 2018-06-15 12:02 - 000000000 ____D C:\WINDOWS\system32\MpEngineStore
2019-01-07 21:11 - 2018-06-15 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\A Ruler for Windows
2019-01-07 21:11 - 2018-05-26 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2019-01-07 21:11 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2019-01-07 21:11 - 2018-03-31 13:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrimoPDF
2019-01-07 21:11 - 2018-02-14 13:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iFreeUp
2019-01-07 21:11 - 2018-02-12 11:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2019-01-07 21:11 - 2017-05-24 17:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OLYMPUS Digital Camera Updater
2019-01-07 21:11 - 2017-05-24 16:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-01-07 21:11 - 2017-05-18 23:45 - 000000000 ____D C:\Program Files\UNP
2019-01-07 21:11 - 2016-10-03 17:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2019-01-07 21:11 - 2016-09-23 21:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OLYMPUS Viewer 3
2019-01-07 21:11 - 2016-07-14 06:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\alternativaslibres
2019-01-07 21:11 - 2016-07-08 21:38 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-01-07 21:11 - 2016-01-31 19:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-01-07 21:11 - 2016-01-31 14:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2019-01-07 21:11 - 2016-01-20 18:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView
2019-01-07 21:11 - 2016-01-19 14:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
2019-01-07 21:11 - 2016-01-17 21:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-01-07 21:11 - 2016-01-17 19:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Productivity and Tools
2019-01-07 21:11 - 2016-01-17 18:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2019-01-07 21:11 - 2016-01-17 18:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KMSpico
2019-01-07 20:59 - 2018-09-15 08:36 - 000000000 ____D C:\WINDOWS\Setup
2019-01-07 20:47 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-01-07 20:46 - 2018-09-15 08:33 - 000000000 __RHD C:\Users\Public\Libraries
2019-01-07 20:32 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-01-07 20:30 - 2018-11-19 15:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kerio
2019-01-07 20:30 - 2018-10-26 20:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\S.A.D
2019-01-07 20:30 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Resources
2019-01-07 20:30 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Help
2019-01-07 20:30 - 2018-08-26 06:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iZotope
2019-01-07 20:30 - 2018-08-11 15:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2019-01-07 20:30 - 2018-05-25 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaHuman
2019-01-07 20:30 - 2018-02-13 20:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jodix
2019-01-07 20:30 - 2018-02-09 22:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreshDevices
2019-01-07 20:30 - 2017-05-21 09:06 - 000000000 ____D C:\Program Files\Synaptics
2019-01-07 20:30 - 2016-09-15 13:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SnugTV
2019-01-07 20:30 - 2016-09-15 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVerMedia
2019-01-07 20:30 - 2016-02-27 20:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LizardSystems
2019-01-07 20:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-01-07 20:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\et-EE
2019-01-07 20:05 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-01-07 20:03 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-01-07 20:03 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-01-07 19:58 - 2018-09-15 18:40 - 000000000 ____D C:\WINDOWS\OCR
2019-01-07 19:52 - 2016-08-03 09:21 - 000000000 ____H C:\$WINRE_BACKUP_PARTITION.MARKER
2019-01-06 11:50 - 2016-05-31 14:40 - 000000000 ____D C:\Users\PCE-035\Documents\My eBooks
2019-01-06 10:32 - 2016-02-02 18:06 - 000000000 ____D C:\Users\PCE-035\AppData\Local\ElevatedDiagnostics
2019-01-06 10:12 - 2016-02-18 18:20 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Files in the root of some directories =======

2018-12-15 12:07 - 2018-12-15 13:20 - 000000132 _____ () C:\Users\PCE-035\AppData\Roaming\Adobe Formát GIF CS6 – předvolby
2018-08-11 15:36 - 2018-08-11 15:36 - 000099384 _____ () C:\Users\PCE-035\AppData\Roaming\inst.exe
2018-08-26 06:28 - 2019-01-20 09:08 - 000000812 _____ () C:\Users\PCE-035\AppData\Roaming\PCE-035.MTBF.txt
2018-08-11 15:36 - 2018-08-11 15:36 - 000007859 _____ () C:\Users\PCE-035\AppData\Roaming\pcouffin.cat
2018-08-11 15:36 - 2018-08-11 15:36 - 000001167 _____ () C:\Users\PCE-035\AppData\Roaming\pcouffin.inf
2018-08-11 15:36 - 2018-08-11 15:36 - 000000055 _____ () C:\Users\PCE-035\AppData\Roaming\pcouffin.log
2018-08-11 15:36 - 2018-08-11 15:36 - 000082816 _____ (VSO Software) C:\Users\PCE-035\AppData\Roaming\pcouffin.sys
2018-08-10 16:50 - 2018-09-01 09:36 - 000000232 _____ () C:\Users\PCE-035\AppData\Roaming\WB.CFG
2018-11-02 11:06 - 2019-01-23 14:36 - 000016960 ____T (Un4seen Developments) C:\Users\PCE-035\AppData\Roaming\Microsoft\1eaadjc.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000018724 ____T () C:\Users\PCE-035\AppData\Roaming\Microsoft\bass.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000014392 ____T (Un4seen Developments) C:\Users\PCE-035\AppData\Roaming\Microsoft\kfgresk.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000014456 ____T () C:\Users\PCE-035\AppData\Roaming\Microsoft\mjcriu.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000010816 ____T (Un4seen Developments) C:\Users\PCE-035\AppData\Roaming\Microsoft\peaadje.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000028760 ____T ((: JOBnik! :) [Arthur Aminov, ISRAEL]) C:\Users\PCE-035\AppData\Roaming\Microsoft\qwadjb.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000015424 ____T (Un4seen Developments) C:\Users\PCE-035\AppData\Roaming\Microsoft\rsaadjd.dll
2018-11-02 11:06 - 2019-01-23 14:36 - 000098872 ____T (Un4seen Developments) C:\Users\PCE-035\AppData\Roaming\Microsoft\~DFK24593193.tmp
2016-01-17 20:09 - 2016-01-17 20:09 - 000000000 _____ () C:\Users\PCE-035\AppData\Local\AtStart.txt
2018-08-26 07:36 - 2018-11-02 12:16 - 000004608 _____ () C:\Users\PCE-035\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-09-05 16:49 - 2016-09-05 16:51 - 000001156 _____ () C:\Users\PCE-035\AppData\Local\digikamrc
2016-01-17 20:09 - 2016-01-17 20:09 - 000000000 _____ () C:\Users\PCE-035\AppData\Local\DSwitch.txt
2016-01-17 20:09 - 2016-01-17 20:09 - 000000000 _____ () C:\Users\PCE-035\AppData\Local\QSwitch.txt
2016-08-23 08:29 - 2016-08-23 08:29 - 000000000 _____ () C:\Users\PCE-035\AppData\Local\{5CC6D5CE-BE43-42EE-8B7A-1706382811E9}

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================


Nahoru
 Profil  
 
PříspěvekNapsal: 29 led 2019 17:38 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1616
Do poznamkoveho bloku skopirujte obsah dole:

Kód:
CloseProcesses:
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(IObit) C:\Program Files (x86)\IObit\iFreeUp\iFreeUpMini.exe
C:\Program Files\Common Files\Avast Software
C:\Program Files (x86)\IObit
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-793827090-3216647719-621277648-1000\...\Policies\Explorer: []
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-793827090-3216647719-621277648-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF NewTab: Mozilla\Firefox\Profiles\3qew10ss.default-1517823712595 -> hxxp://www.bing.com/?pc=COSP&ptag=D0627 ... =CT3334491
FF HKLM-x32\...\Firefox\Extensions: [{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}] - C:\Program Files (x86)\RelevantKnowledge\firefox => not found
CHR DefaultSearchURL: Default -> hxxps://services.srchweb.org/search/{searchTerms}
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://sug.srchweb.org/sug/?s={searchTerms}
CHR Extension: (Search with Yahoo) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfmnajccfjnkadbaddekmedahjgblhmn [2018-02-26]
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-29] (IObit)
U3 idsvc; no ImagePath
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-01-07 21:51 - 2019-01-07 21:51 - 000003216 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineCore
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-01-07 21:51 - 2019-01-07 21:53 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-07 21:52 - 2019-01-07 21:52 - 000003440 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineUA
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> No File
Task: {074AFBA7-DE6E-4FC4-ACB8-30D1828DCAC5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-17] (Google Inc.)
Task: {37799D79-F172-4BB7-94AB-47D740BBC664} - System32\Tasks\{0D130C74-8ED1-4587-95DE-8064CF12A1F4} => C:\Windows\system32\pcalua.exe -a C:\Instalace\wifisistr\Setup.Exe -d C:\Instalace\wifisistr
Task: {37E31668-B69E-41B9-963F-7C3B0023E4EA} - System32\Tasks\iFreeUp_SkipUac_PCE-035 => C:\Program Files (x86)\IObit\iFreeUp\iFreeUp.exe [2016-09-30] (IObit)
2019-01-07 21:51 - 2019-01-07 21:52 - 000002222 _____ C:\WINDOWS\System32\Tasks\iFreeUp_SkipUac_PCE-035
Task: {3C65B2B4-E9BA-44AF-A4F7-1A22334F0032} - System32\Tasks\{7B60B5EC-E669-4B53-A597-FFD2670AC3CC} => C:\Windows\system32\pcalua.exe -a C:\install\sp50377.exe -d C:\install
Task: {4004A015-6090-4BF9-9E9D-F037FED87A1D} - System32\Tasks\SafeZone scheduled Autoupdate 1495394118 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {5282D1C0-F7D3-4436-8206-1C286A309DE5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2019-01-23] (AVAST Software)
Task: {604ECFFE-5A1D-4ECD-9C8E-101B76479036} - System32\Tasks\IOTransfer SkipUAC (PCE-035) => C:\Program Files (x86)\IOTransfer\IOT\IOTransfer.exe
2019-01-07 21:52 - 2019-01-07 21:52 - 000002240 _____ C:\WINDOWS\System32\Tasks\IOTransfer SkipUAC (PCE-035)
Task: {71F3595D-2B1F-44DC-BE6C-FCE88D4251D6} - System32\Tasks\{C56279F7-71BC-4B3C-8758-BBD6026F71AD} => "c:\program files\internet explorer\iexplore.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=7.6.0.103&LastError=404
Task: {7B46C9C7-6BD7-4820-AB1E-3A4BF23F5DF9} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {7C7921FE-DCF1-4789-AA1D-AE29DEEC960F} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {B1E1B1C6-AFF5-42E7-9800-69C2B5635D32} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {BD5CA9BC-BDE5-466E-B0E4-CA5773902DEA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-17] (Google Inc.)
Task: {F6F94463-F600-4191-8F90-EA27CB81BBBC} - System32\Tasks\{A18982D2-2741-4655-B61C-ACA4F9BF2F23} => C:\Windows\system32\pcalua.exe -a "C:\Instalace\wifisistr (1)\Setup.Exe" -d "C:\Instalace\wifisistr (1)"
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`29hfm [0]
AlternateDataStreams: C:\ProgramData\TEMP:5F64C164 [246]
IE trusted site: HKU\S-1-5-21-793827090-3216647719-621277648-1000\...\garmin.com -> hxxps://www.my.garmin.com
HKU\S-1-5-21-793827090-3216647719-621277648-1000\Control Panel\Desktop\\Wallpaper ->
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{17619D52-BFBA-4ADD-B64A-8F37CAA5B75B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
FirewallRules: [{0B57938F-503D-4921-9B8F-663A7A5B6D4B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
FirewallRules: [{1B167439-40D4-4D29-AEA4-3844D94C13E7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc.)
FirewallRules: [{D9A37059-5751-4217-8368-26506346D5CE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc.)



Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.


Nahoru
 Profil  
 
PříspěvekNapsal: 29 led 2019 17:55 
Offline
Návštěvník
Návštěvník

Registrován: 28 led 2019 13:23
Příspěvky: 12
Fix result of Farbar Recovery Scan Tool (x64) Version: 27.01.2019
Ran by MM (29-01-2019 17:45:08) Run:1
Running from C:\Users\PCE-035\Desktop
Loaded Profiles: MM (Available Profiles: MM & DefaultAppPool)
Boot Mode: Normal
==============================================

fixlist content:
*****************
CloseProcesses:
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(IObit) C:\Program Files (x86)\IObit\iFreeUp\iFreeUpMini.exe
C:\Program Files\Common Files\Avast Software
C:\Program Files (x86)\IObit
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-793827090-3216647719-621277648-1000\...\Policies\Explorer: []
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\S-1-5-21-793827090-3216647719-621277648-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF NewTab: Mozilla\Firefox\Profiles\3qew10ss.default-1517823712595 -> hxxp://www.bing.com/?pc=COSP&ptag=D0627 ... =CT3334491
FF HKLM-x32\...\Firefox\Extensions: [{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}] - C:\Program Files (x86)\RelevantKnowledge\firefox => not found
CHR DefaultSearchURL: Default -> hxxps://services.srchweb.org/search/{searchTerms}
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://sug.srchweb.org/sug/?s={searchTerms}
CHR Extension: (Search with Yahoo) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfmnajccfjnkadbaddekmedahjgblhmn [2018-02-26]
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-07-29] (IObit)
U3 idsvc; no ImagePath
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-01-16 10:24 - 2019-01-16 10:24 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-01-07 21:51 - 2019-01-07 21:51 - 000003216 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineCore
2019-01-07 21:51 - 2019-01-07 21:51 - 000000000 ____D C:\WINDOWS\System32\Tasks\Avast Software
2019-01-07 21:51 - 2019-01-07 21:53 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-07 21:52 - 2019-01-07 21:52 - 000003440 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineUA
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
Task: {074AFBA7-DE6E-4FC4-ACB8-30D1828DCAC5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-17] (Google Inc.)
Task: {37799D79-F172-4BB7-94AB-47D740BBC664} - System32\Tasks\{0D130C74-8ED1-4587-95DE-8064CF12A1F4} => C:\Windows\system32\pcalua.exe -a C:\Instalace\wifisistr\Setup.Exe -d C:\Instalace\wifisistr
Task: {37E31668-B69E-41B9-963F-7C3B0023E4EA} - System32\Tasks\iFreeUp_SkipUac_PCE-035 => C:\Program Files (x86)\IObit\iFreeUp\iFreeUp.exe [2016-09-30] (IObit)
2019-01-07 21:51 - 2019-01-07 21:52 - 000002222 _____ C:\WINDOWS\System32\Tasks\iFreeUp_SkipUac_PCE-035
Task: {3C65B2B4-E9BA-44AF-A4F7-1A22334F0032} - System32\Tasks\{7B60B5EC-E669-4B53-A597-FFD2670AC3CC} => C:\Windows\system32\pcalua.exe -a C:\install\sp50377.exe -d C:\install
Task: {4004A015-6090-4BF9-9E9D-F037FED87A1D} - System32\Tasks\SafeZone scheduled Autoupdate 1495394118 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {5282D1C0-F7D3-4436-8206-1C286A309DE5} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2019-01-23] (AVAST Software)
Task: {604ECFFE-5A1D-4ECD-9C8E-101B76479036} - System32\Tasks\IOTransfer SkipUAC (PCE-035) => C:\Program Files (x86)\IOTransfer\IOT\IOTransfer.exe
2019-01-07 21:52 - 2019-01-07 21:52 - 000002240 _____ C:\WINDOWS\System32\Tasks\IOTransfer SkipUAC (PCE-035)
Task: {71F3595D-2B1F-44DC-BE6C-FCE88D4251D6} - System32\Tasks\{C56279F7-71BC-4B3C-8758-BBD6026F71AD} => "c:\program files\internet explorer\iexplore.exe" hxxp://www.skype.com/go/downloading?sou ... tError=404
Task: {7B46C9C7-6BD7-4820-AB1E-3A4BF23F5DF9} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {7C7921FE-DCF1-4789-AA1D-AE29DEEC960F} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
Task: {B1E1B1C6-AFF5-42E7-9800-69C2B5635D32} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {BD5CA9BC-BDE5-466E-B0E4-CA5773902DEA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-17] (Google Inc.)
Task: {F6F94463-F600-4191-8F90-EA27CB81BBBC} - System32\Tasks\{A18982D2-2741-4655-B61C-ACA4F9BF2F23} => C:\Windows\system32\pcalua.exe -a "C:\Instalace\wifisistr (1)\Setup.Exe" -d "C:\Instalace\wifisistr (1)"
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0]
AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`29hfm [0]
AlternateDataStreams: C:\ProgramData\TEMP:5F64C164 [246]
IE trusted site: HKU\S-1-5-21-793827090-3216647719-621277648-1000\...\garmin.com -> hxxps://www.my.garmin.com
HKU\S-1-5-21-793827090-3216647719-621277648-1000\Control Panel\Desktop\\Wallpaper ->
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
FirewallRules: [{17619D52-BFBA-4ADD-B64A-8F37CAA5B75B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
FirewallRules: [{0B57938F-503D-4921-9B8F-663A7A5B6D4B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
FirewallRules: [{1B167439-40D4-4D29-AEA4-3844D94C13E7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc.)
FirewallRules: [{D9A37059-5751-4217-8368-26506346D5CE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc.)
*****************

Processes closed successfully.
C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe => No running process found
C:\Program Files (x86)\IObit\iFreeUp\iFreeUpMini.exe => No running process found
C:\Program Files\Common Files\Avast Software => moved successfully
C:\Program Files (x86)\IObit => moved successfully
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched" => removed successfully
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION => restored successfully
"HKU\S-1-5-21-793827090-3216647719-621277648-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{503739d0-4c5e-4cfd-b3ba-d881334f0df2}" => removed successfully
HKLM\Software\Classes\CLSID\{503739d0-4c5e-4cfd-b3ba-d881334f0df2} => not found
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Error setting value.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
"HKU\S-1-5-21-793827090-3216647719-621277648-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully
"Firefox newtab" => removed successfully
"HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{C7AE725D-FA5C-4027-BB4C-787EF9F8248A}" => removed successfully
"Chrome DefaultSearchURL" => removed successfully
"Chrome DefaultSearchKeyword" => removed successfully
"Chrome DefaultSuggestURL" => removed successfully
CHR Extension: (Search with Yahoo) - C:\Users\PCE-035\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfmnajccfjnkadbaddekmedahjgblhmn [2018-02-26] => Error: No automatic fix found for this entry.
HKLM\System\CurrentControlSet\Services\LiveUpdateSvc => removed successfully
LiveUpdateSvc => service removed successfully
HKLM\System\CurrentControlSet\Services\idsvc => removed successfully
idsvc => service removed successfully
C:\WINDOWS\system32\DrtmAuth8.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth7.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth6.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth5.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth4.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth3.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth2.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth1.bin => moved successfully
C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineCore => moved successfully
C:\WINDOWS\System32\Tasks\Avast Software => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineUA => moved successfully
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00asw => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{074AFBA7-DE6E-4FC4-ACB8-30D1828DCAC5}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{074AFBA7-DE6E-4FC4-ACB8-30D1828DCAC5}" => removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{37799D79-F172-4BB7-94AB-47D740BBC664}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37799D79-F172-4BB7-94AB-47D740BBC664}" => removed successfully
C:\WINDOWS\System32\Tasks\{0D130C74-8ED1-4587-95DE-8064CF12A1F4} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0D130C74-8ED1-4587-95DE-8064CF12A1F4}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{37E31668-B69E-41B9-963F-7C3B0023E4EA}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37E31668-B69E-41B9-963F-7C3B0023E4EA}" => removed successfully
C:\WINDOWS\System32\Tasks\iFreeUp_SkipUac_PCE-035 => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\iFreeUp_SkipUac_PCE-035" => removed successfully
"C:\WINDOWS\System32\Tasks\iFreeUp_SkipUac_PCE-035" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3C65B2B4-E9BA-44AF-A4F7-1A22334F0032}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3C65B2B4-E9BA-44AF-A4F7-1A22334F0032}" => removed successfully
C:\WINDOWS\System32\Tasks\{7B60B5EC-E669-4B53-A597-FFD2670AC3CC} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7B60B5EC-E669-4B53-A597-FFD2670AC3CC}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{4004A015-6090-4BF9-9E9D-F037FED87A1D}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4004A015-6090-4BF9-9E9D-F037FED87A1D}" => removed successfully
C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1495394118 => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SafeZone scheduled Autoupdate 1495394118" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{5282D1C0-F7D3-4436-8206-1C286A309DE5}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5282D1C0-F7D3-4436-8206-1C286A309DE5}" => removed successfully
"C:\WINDOWS\System32\Tasks\Avast Software\Overseer" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Avast Software\Overseer" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{604ECFFE-5A1D-4ECD-9C8E-101B76479036}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{604ECFFE-5A1D-4ECD-9C8E-101B76479036}" => removed successfully
C:\WINDOWS\System32\Tasks\IOTransfer SkipUAC (PCE-035) => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\IOTransfer SkipUAC (PCE-035)" => removed successfully
"C:\WINDOWS\System32\Tasks\IOTransfer SkipUAC (PCE-035)" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{71F3595D-2B1F-44DC-BE6C-FCE88D4251D6}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{71F3595D-2B1F-44DC-BE6C-FCE88D4251D6}" => removed successfully
C:\WINDOWS\System32\Tasks\{C56279F7-71BC-4B3C-8758-BBD6026F71AD} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C56279F7-71BC-4B3C-8758-BBD6026F71AD}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7B46C9C7-6BD7-4820-AB1E-3A4BF23F5DF9}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7B46C9C7-6BD7-4820-AB1E-3A4BF23F5DF9}" => removed successfully
"C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineUA" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AvastUpdateTaskMachineUA" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7C7921FE-DCF1-4789-AA1D-AE29DEEC960F}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7C7921FE-DCF1-4789-AA1D-AE29DEEC960F}" => removed successfully
"C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineCore" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AvastUpdateTaskMachineCore" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B1E1B1C6-AFF5-42E7-9800-69C2B5635D32}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B1E1B1C6-AFF5-42E7-9800-69C2B5635D32}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BD5CA9BC-BDE5-466E-B0E4-CA5773902DEA}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BD5CA9BC-BDE5-466E-B0E4-CA5773902DEA}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F6F94463-F600-4191-8F90-EA27CB81BBBC}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F6F94463-F600-4191-8F90-EA27CB81BBBC}" => removed successfully
C:\WINDOWS\System32\Tasks\{A18982D2-2741-4655-B61C-ACA4F9BF2F23} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A18982D2-2741-4655-B61C-ACA4F9BF2F23}" => removed successfully
C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => moved successfully
C:\ProgramData\Reprise => ":wupeogjxlctlfudivq`qsp`28hfm" ADS removed successfully
C:\ProgramData\Reprise => ":wupeogjxlctlfudivq`qsp`29hfm" ADS removed successfully
C:\ProgramData\TEMP => ":5F64C164" ADS removed successfully
HKU\S-1-5-21-793827090-3216647719-621277648-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\garmin.com => removed successfully
HKU\S-1-5-21-793827090-3216647719-621277648-1000\Control Panel\Desktop\\Wallpaper -> => Error: No automatic fix found for this entry.
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File) => Error: No automatic fix found for this entry.
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{17619D52-BFBA-4ADD-B64A-8F37CAA5B75B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0B57938F-503D-4921-9B8F-663A7A5B6D4B}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{1B167439-40D4-4D29-AEA4-3844D94C13E7}" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{D9A37059-5751-4217-8368-26506346D5CE}" => removed successfully


The system needed a reboot.

==== End of Fixlog 17:47:12 ====


Nahoru
 Profil  
 
PříspěvekNapsal: 29 led 2019 18:08 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1616
Super, ako je na tom pocitac?

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.


Nahoru
 Profil  
 
PříspěvekNapsal: 29 led 2019 18:24 
Offline
Návštěvník
Návštěvník

Registrován: 28 led 2019 13:23
Příspěvky: 12
Děkuji, ntb je svižnější. Miloš


Nahoru
 Profil  
 
PříspěvekNapsal: 29 led 2019 18:26 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1616
Nemate zac :]]

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.


Nahoru
 Profil  
 
Zobrazit příspěvky za předchozí:  Seřadit podle  
Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 12 ] 

Všechny časy jsou v UTC + 1 hodina


Kdo je online

Uživatelé procházející toto fórum: Žádní registrovaní uživatelé


Nemůžete zakládat nová témata v tomto fóru
Nemůžete odpovídat v tomto fóru
Nemůžete upravovat své příspěvky v tomto fóru
Nemůžete mazat své příspěvky v tomto fóru
Nemůžete přikládat soubory v tomto fóru

Hledat:
Přejít na:  
Založeno na phpBB® Forum Software © phpBB Group
Český překlad – phpBB.cz
Přispějete na provoz fóra?
>