VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Prosim o kontrolu logu z notebooku

https://forum.viry.cz:443/viewtopic.php?t=155786

Stránka 1 z 1

Prosim o kontrolu logu z notebooku

Napsal: 08 dub 2019 10:29
od marstep
Dobrý den,

prosím o kontrolu logu z ntb na malware.
Dekuji.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
Ran by Administrator (administrator) on N059011 (08-04-2019 11:01:41)
Running from D:\
Loaded Profiles: Administrator (Available Profiles: svarck & Administrator)
Platform: Windows 10 Pro Version 1809 17763.379 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

Failed to access process -> csrss.exe
Failed to access process -> csrss.exe
Failed to access process -> WUDFHost.exe
Failed to access process -> fontdrvhost.exe
Failed to access process -> WUDFHost.exe
Failed to access process -> WUDFHost.exe
(Sophos Ltd -> SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ibmpmsvc.exe
(Lenovo -> Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Lenovo -> Lenovo.) C:\Windows\System32\LITSSvc.exe
Failed to access process -> WUDFHost.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_acb3edda7b82982f\igfxCUIService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Sophos Limited -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
Failed to access process -> wlanext.exe
Failed to access process -> conhost.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\SC\CAM\bin\cam.exe
(Lenovo -> Lenovo.) C:\Windows\System32\ApsInsSvc.exe
(CA, Inc. -> CA Inc.) C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin\CSAMPmux.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\SysWOW64\Lenovo\PowerMgr\EasyResume.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_acb3edda7b82982f\IntelCpHDCPSvc.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\DSM\Bin\hmAgent.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Sophos Limited -> Sophos Limited) C:\Program Files\Sophos\Sophos Network Threat Protection\bin\SntpService.exe
(Sophos Limited -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
(Sophos Limited -> Sophos Limited) C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe
(Sophos Limited -> Sophos Limited) C:\Program Files (x86)\Sophos\Remote Management System\ManagementAgentNT.exe
(Sophos Limited -> Sophos Limited) C:\Program Files\Sophos\Clean\SophosClean.exe
(Sophos Limited -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
(Lenovo -> Lenovo) C:\ProgramData\Lenovo\ImController\Plugins\ThinkIntelligentSensingPackage\x86\SSSvc.exe
(Sophos Limited -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
(Sophos Limited -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos System Protection\ssp.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\fn.inf_amd64_7ed9406f9c73fd1f\driver\tphkload.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Windows\System32\DriverStore\FileRepository\wtabletserviceisd.inf_amd64_b329da652cac1281\WTabletServiceISD.exe
(Sophos Limited -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_filter.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Sophos Limited -> Sophos Limited) C:\Program Files (x86)\Common Files\Sophos\Web Intelligence\swi_fc.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\DSM\Bin\CAF.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_acb3edda7b82982f\IntelCpHeciSvc.exe
Failed to access process -> WmiPrvSE.exe
Failed to access process -> unsecapp.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\DSM\Bin\cfsmsmd.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\DSM\Bin\ccnfAgent.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\DSM\Bin\cfnotsrvd.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\DSM\Bin\cfProcessManager.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\DSM\Bin\ccsmagtd.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\DSM\Bin\rcHost.exe
(Sophos Limited -> Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Anti-Virus\sdcservice.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\DSM\Bin\amswmagt.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\DSM\Bin\enum64process64.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\DSM\Bin\cfFTPlugin.exe
(Intel(R) Software Development Products -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_10d045798a3d667e\aesm_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Trust Services -> Intel(R) Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
Failed to access process -> csrss.exe
Failed to access process -> dwm.exe
Failed to access process -> fontdrvhost.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\DSM\Bin\rcUtilCmd.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\Intel\DPTF\dptf_helper.exe
(ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.) C:\Windows\System32\ETDCtrl.exe
(Sophos Ltd -> SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
(Wacom Technology Corporation -> Wacom Technology, Corp.) C:\Windows\System32\DriverStore\FileRepository\wtabletserviceisd.inf_amd64_b329da652cac1281\WTabletServiceISD.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN36CD~1.INF\driver\tposd.exe
(Lenovo -> Lenovo Group Limited) C:\Windows\System32\DriverStore\FileRepository\FN36CD~1.INF\driver\shtctky.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_acb3edda7b82982f\igfxEM.exe
(Lenovo -> Lenovo) C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_acb3edda7b82982f\igfxext.exe
(Sophos Limited -> Sophos Limited) C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe
(Cisco Systems, Inc. -> Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(CA, Inc. -> CA, Inc.) C:\Program Files (x86)\CA\DSM\Bin\cfSysTray.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
Failed to access process -> WUDFHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(D-Link Corporation -> D-Link Corportation) C:\Program Files (x86)\D-Link Connection Manager\WirelessModem.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Lenovo -> Lenovo.) C:\Windows\System32\LPlatSvc.exe
(Lenovo -> Lenovo) C:\ProgramData\Lenovo\ImController\Plugins\ThinkIntelligentSensingPackage\x86\UserSSCtrl.exe
(Sophos Limited -> Sophos Limited) C:\Program Files (x86)\Sophos\Remote Management System\RouterNT.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [Sophos AutoUpdate Monitor] => C:\Program Files (x86)\Sophos\AutoUpdate\almon.exe [1517632 2018-07-16] (Sophos Limited -> Sophos Limited)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1321984 2018-07-30] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
HKLM-x32\...\Run: [CAF_SystemTray] => C:\Program Files (x86)\CA\DSM\bin\cfSysTray.exe [111008 2017-09-08] (CA, Inc. -> CA, Inc.)
HKLM-x32\...\Run: [DsmSxplog] => C:\Program Files (x86)\CA\DSM\Bin\sxpstub.exe [17312 2017-09-08] (CA, Inc. -> CA, Inc.)
HKLM\...\Policies\Explorer: [NoPublishingWizard] 1
HKLM\...\Policies\Explorer: [NoWebServices] 1
HKLM\...\Policies\Explorer: [NoMSAppLogo5ChannelNotify] 1
HKU\S-1-5-21-906916545-1188199951-3551692139-500\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-906916545-1188199951-3551692139-500\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Administrator\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-906916545-1188199951-3551692139-500\...\MountPoints2: {0cb1bd71-43fe-11e9-adf6-1856801636a8} - "E:\.\StartModem.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\Installer\chrmstp.exe [2019-03-22] (Google LLC -> Google Inc.)
AppInit_DLLs: C:\PROGRA~2\Sophos\SOPHOS~2\SOPHOS~2.DLL => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\sophos_detoured_x64.dll [235928 2019-01-17] (Sophos Limited -> Sophos Limited)
AppInit_DLLs-x32: C:\PROGRA~2\Sophos\SOPHOS~2\SOPHOS~1.DLL => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\sophos_detoured.dll [207864 2019-01-17] (Sophos Limited -> Sophos Limited)
AppInit_DLLs-x32: ,C:\PROGRA~2\Sophos\SOPHOS~2\\SOPHOS~1.DLL => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\\sophos_detoured.dll [207864 2019-01-17] (Sophos Limited -> Sophos Limited)
GroupPolicy: Restriction ? <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 1 <==== ATTENTION (Restriction - ProxySettings)
Tcpip\..\Interfaces\{2236cb3a-b567-4103-a8e3-0f22e98d2b53}: [NameServer] 93.153.117.49 93.153.117.17
Tcpip\..\Interfaces\{2b35f093-9753-4cbb-b971-7e7419cfcdd3}: [DhcpNameServer] 172.168.127.2
Tcpip\..\Interfaces\{42acd08f-9cca-4f62-a5b3-62c625b85110}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{b6a4c9c1-bbab-468a-a26d-639638eb2db0}: [DhcpNameServer] 10.51.2.20 10.1.250.101
Tcpip\..\Interfaces\{c37f9d77-7047-4e41-9ffe-4217a1eacf10}: [NameServer] 93.153.117.49 93.153.117.17
Tcpip\..\Interfaces\{f33ec59a-5b59-4e3d-97d4-a19d5373689f}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION
HKU\S-1-5-21-906916545-1188199951-3551692139-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-906916545-1188199951-3551692139-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-906916545-1188199951-3551692139-500\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com/
SearchScopes: HKU\S-1-5-21-906916545-1188199951-3551692139-500 -> DefaultScope {EFD677CD-5265-43E8-BE8B-F512056E3249} URL =
SearchScopes: HKU\S-1-5-21-906916545-1188199951-3551692139-500 -> {EFD677CD-5265-43E8-BE8B-F512056E3249} URL =
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-30] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-30] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-18] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

Chrome:
=======
CHR Profile: C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default [2019-03-25]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AESMService; C:\WINDOWS\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_10d045798a3d667e\aesm_service.exe [3367272 2018-11-28] (Intel(R) Software Development Products -> Intel Corporation)
R2 ApsInsSvc; C:\WINDOWS\System32\ApsInsSvc.exe [150784 2018-03-26] (Lenovo -> Lenovo.)
R2 CA-MessageQueuing; C:\Program Files (x86)\CA\SC\CAM\bin\cam.exe [186296 2016-08-03] (CA, Inc. -> CA, Inc.)
R2 CA-SAM-Pmux; C:\Program Files (x86)\CA\SC\Csam\SockAdapter\bin\csampmux.exe [186296 2015-09-17] (CA, Inc. -> CA Inc.)
R2 caf; C:\Program Files (x86)\CA\DSM\bin\caf.exe [353696 2017-09-08] (CA, Inc. -> CA, Inc.)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [197120 2017-07-13] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
R2 esifsvc; C:\WINDOWS\System32\Intel\DPTF\esif_uf.exe [1699368 2018-01-30] (Intel(R) pGFX -> Intel Corporation)
R2 ETDService; C:\WINDOWS\System32\ETDService.exe [244888 2018-11-04] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.)
R2 hmAgent; C:\Program Files (x86)\CA\DSM\bin\hmAgent.exe [213920 2017-09-08] (CA, Inc. -> CA, Inc.)
R2 hmpalertsvc; C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe [4680048 2019-03-04] (Sophos Ltd -> SurfRight B.V.)
R2 ImControllerService; C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [71336 2019-01-07] (Lenovo -> Lenovo Group Ltd.)
R3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [760008 2018-04-12] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [720072 2018-04-12] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [218176 2018-06-13] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 Lenovo Instant On; C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\EasyResume.exe [2351504 2018-11-06] (Lenovo -> Lenovo Group Limited)
R2 LITSSVC; C:\WINDOWS\System32\LITSSvc.exe [920976 2018-11-16] (Lenovo -> Lenovo.)
R2 LPlatSvc; C:\WINDOWS\System32\LPlatSvc.exe [773944 2018-09-12] (Lenovo -> Lenovo.)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [265824 2018-06-25] (Intel Corporation -> )
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324544 2018-03-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 SAVAdminService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe [251984 2019-01-17] (Sophos Limited -> Sophos Limited)
R2 SAVService; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe [225000 2019-01-17] (Sophos Limited -> Sophos Limited)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5381128 2019-03-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SntpService; C:\Program Files\Sophos\Sophos Network Threat Protection\bin\SntpService.exe [901248 2019-01-17] (Sophos Limited -> Sophos Limited)
R2 Sophos Agent; C:\Program Files (x86)\Sophos\Remote Management System\ManagementAgentNT.exe [414064 2019-01-17] (Sophos Limited -> Sophos Limited)
R2 Sophos AutoUpdate Service; C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe [775696 2018-07-16] (Sophos Limited -> Sophos Limited)
R2 Sophos Clean Service; C:\Program Files\Sophos\Clean\SophosClean.exe [11844752 2017-10-05] (Sophos Limited -> Sophos Limited)
R3 Sophos Device Control Service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\sdcservice.exe [549224 2019-01-17] (Sophos Limited -> Sophos Limited)
R2 Sophos Web Control Service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe [360040 2019-01-17] (Sophos Limited -> Sophos Limited)
R2 sophossps; C:\Program Files (x86)\Sophos\Sophos System Protection\ssp.exe [2499872 2019-01-17] (Sophos Limited -> Sophos Limited)
R2 SSSvc; C:\ProgramData\Lenovo\ImController\Plugins\ThinkIntelligentSensingPackage\x86\SSSvc.exe [146200 2018-07-20] (Lenovo -> Lenovo)
R2 swi_filter; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_filter.exe [475384 2019-01-17] (Sophos Limited -> Sophos Limited)
R2 swi_service; C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe [3621480 2019-01-17] (Sophos Limited -> Sophos Limited)
R2 TPHKLOAD; C:\WINDOWS\System32\DriverStore\FileRepository\fn.inf_amd64_7ed9406f9c73fd1f\driver\TPHKLOAD.exe [424320 2018-11-05] (Lenovo -> Lenovo Group Limited)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2019-01-07] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2019-01-07] (Microsoft Corporation -> Microsoft Corporation)
R2 WTabletServiceISD; C:\WINDOWS\System32\DriverStore\FileRepository\wtabletserviceisd.inf_amd64_b329da652cac1281\WTabletServiceISD.exe [4110160 2018-07-19] (Wacom Technology Corporation -> Wacom Technology, Corp.)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3848800 2018-06-25] (Intel Corporation -> Intel® Corporation)
R2 Sophos Message Router; "C:\Program Files (x86)\Sophos\Remote Management System\RouterNT.exe" -service -name Router -ORBListenEndpoints iiop://:8193/ssl_port=8194 [X] <==== ATTENTION

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 bmfilter; C:\WINDOWS\System32\drivers\qcusbfilter.sys [35840 2018-04-11] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 bmusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [242688 2018-04-11] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 bmusbwwan; C:\WINDOWS\System32\drivers\qcusbwwan.sys [478720 2018-04-11] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [74696 2017-11-28] (Intel Corporation -> Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [70088 2017-11-28] (Intel Corporation -> Intel Corporation)
R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [383432 2017-11-28] (Intel Corporation -> Intel Corporation)
R3 etdhsa; C:\WINDOWS\System32\drivers\ETDHSA.sys [30872 2018-11-04] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronics Corp.)
R3 ETDMiniPTP; C:\WINDOWS\System32\drivers\ETDMiniPTP.sys [27800 2018-11-04] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
R3 ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [33416 2018-11-04] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
R3 HID_PCI; C:\WINDOWS\System32\drivers\HID_PCI.sys [33952 2017-11-11] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel)
R1 hmpalert; C:\WINDOWS\system32\drivers\hmpalert.sys [306272 2019-03-04] (Sophos Limited -> SurfRight B.V.)
R3 ibtusb; C:\WINDOWS\System32\drivers\ibtusb.sys [192008 2017-10-20] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 ISH; C:\WINDOWS\System32\drivers\ISH.sys [155288 2017-11-11] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel)
R3 ISH_BusDriver; C:\WINDOWS\System32\drivers\ISH_BusDriver.sys [89752 2017-11-11] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel)
R3 Netwtw06; C:\WINDOWS\System32\drivers\Netwtw06.sys [8814104 2018-06-30] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R0 PMDRVS; C:\WINDOWS\System32\drivers\pmdrvs.sys [41272 2018-09-12] (Lenovo -> Lenovo.)
R3 rcSmCard; C:\WINDOWS\System32\drivers\rcSmCard.sys [43872 2017-08-20] (CA, Inc. -> CA, Inc.)
R1 rcVidCap; C:\WINDOWS\System32\drivers\rcVidMpt.sys [20832 2017-08-20] (CA, Inc. -> CA, Inc.)
R3 RTSPER; C:\WINDOWS\System32\drivers\RtsPer.sys [887240 2018-06-11] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
R1 SAVOnAccess; C:\WINDOWS\System32\DRIVERS\savonaccess.sys [204328 2019-01-17] (Sophos Limited -> Sophos Limited)
S3 sdcfilter; C:\WINDOWS\system32\DRIVERS\sdcfilter.sys [38144 2019-01-17] (Sophos Limited -> Sophos Limited)
R2 sntp; C:\WINDOWS\system32\DRIVERS\sntp.sys [116144 2019-01-17] (Sophos Limited -> Sophos Limited)
R0 Sophos Endpoint Defense; C:\WINDOWS\System32\DRIVERS\SophosED.sys [210040 2019-01-17] (Sophos Limited -> Sophos Limited)
S4 SophosBootDriver; C:\WINDOWS\system32\DRIVERS\SophosBootDriver.sys [45840 2019-01-17] (Sophos Limited -> Sophos Limited)
R1 swi_callout; C:\WINDOWS\system32\DRIVERS\swi_callout.sys [47760 2019-01-17] (Sophos Limited -> Sophos Limited)
R1 SynaMetSMI; C:\WINDOWS\System32\drivers\SynaSmi.sys [39696 2018-07-25] (Synaptics Inc. -> Windows (R) Win 7 DDK provider)
R3 TPS65988; C:\WINDOWS\System32\drivers\TPS65988.sys [47584 2018-01-02] (FPT USA Corp. -> )
S3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [24576 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 vpnva; C:\WINDOWS\System32\drivers\vpnva64-6.sys [73616 2018-07-30] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
R3 WacHIDRouterISD; C:\WINDOWS\System32\drivers\WacHIDRouterISD.sys [85440 2018-07-18] (Wacom Technology Corporation -> Wacom Technology, Corp.)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46680 2019-01-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [330936 2019-01-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2019-01-07] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-08 10:53 - 2019-04-08 11:01 - 000000000 ____D C:\FRST
2019-04-08 10:39 - 2019-04-08 10:39 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache
2019-04-08 10:21 - 2019-04-08 10:21 - 000000000 ___HD C:\Users\Administrator\MicrosoftEdgeBackups
2019-04-08 09:12 - 2019-04-08 09:12 - 000000000 ____D C:\Users\Administrator\AppData\Local\PeerDistRepub
2019-04-08 08:59 - 2019-04-08 08:59 - 000000000 ____D C:\Users\Administrator\AppData\Local\Sophos
2019-04-08 07:27 - 2019-04-08 07:27 - 000000000 ____D C:\Users\svarck.N059011\AppData\Local\Sophos
2019-04-07 01:36 - 2019-04-07 01:36 - 000000000 ___HD C:\Users\svarck.N059011\MicrosoftEdgeBackups
2019-03-27 21:09 - 2019-03-27 21:09 - 000000000 ____D C:\Users\svarck.N059011\AppData\Local\PlaceholderTileLogoFolder
2019-03-25 12:53 - 2019-03-25 12:53 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2019-03-25 12:49 - 2019-03-25 12:49 - 000000000 ____D C:\Users\svarck.N059011\AppData\Local\Comms
2019-03-25 12:49 - 2019-03-25 12:49 - 000000000 ____D C:\Users\svarck.N059011\.cisco
2019-03-25 11:15 - 2019-03-25 11:15 - 000000000 ____D C:\Users\svarck.N059011\AppData\Roaming\CA
2019-03-25 11:07 - 2019-03-27 21:17 - 000003364 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-906916545-1188199951-3551692139-1009
2019-03-25 11:07 - 2019-03-27 21:17 - 000002395 _____ C:\Users\svarck.N059011\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-03-25 11:07 - 2019-03-27 21:17 - 000000000 ___RD C:\Users\svarck.N059011\OneDrive
2019-03-25 11:06 - 2019-03-25 11:06 - 000001446 _____ C:\Users\svarck.N059011\Desktop\Microsoft Edge.lnk
2019-03-25 11:05 - 2019-04-07 01:36 - 000000000 ____D C:\Users\svarck.N059011
2019-03-25 11:05 - 2019-03-27 21:20 - 000000000 ____D C:\Users\svarck.N059011\AppData\Local\Google
2019-03-25 11:05 - 2019-03-25 12:52 - 000000000 ____D C:\Users\svarck.N059011\AppData\Local\Packages
2019-03-25 11:05 - 2019-03-25 11:06 - 000000000 ____D C:\Users\svarck.N059011\AppData\Local\Intel
2019-03-25 11:05 - 2019-03-25 11:05 - 000000020 ___SH C:\Users\svarck.N059011\ntuser.ini
2019-03-25 11:05 - 2019-03-25 11:05 - 000000000 ___RD C:\Users\svarck.N059011\3D Objects
2019-03-25 11:05 - 2019-03-25 11:05 - 000000000 ____D C:\Users\svarck.N059011\AppData\Roaming\Intel
2019-03-25 11:05 - 2019-03-25 11:05 - 000000000 ____D C:\Users\svarck.N059011\AppData\Roaming\Adobe
2019-03-25 11:05 - 2019-03-25 11:05 - 000000000 ____D C:\Users\svarck.N059011\AppData\Local\Publishers
2019-03-25 11:05 - 2019-03-25 11:05 - 000000000 ____D C:\Users\svarck.N059011\AppData\Local\MicrosoftEdge
2019-03-25 11:05 - 2019-03-25 11:05 - 000000000 ____D C:\Users\svarck.N059011\AppData\Local\Lenovo
2019-03-25 11:05 - 2019-03-25 11:05 - 000000000 ____D C:\Users\svarck.N059011\AppData\Local\ConnectedDevicesPlatform
2019-03-25 11:05 - 2019-03-11 08:50 - 000000000 ____D C:\Users\svarck.N059011\AppData\Local\Microsoft Help
2019-03-15 20:03 - 2019-03-15 20:03 - 000000000 ___HD C:\Users\svarck\MicrosoftEdgeBackups
2019-03-15 08:16 - 2019-03-15 08:16 - 000000000 ____D C:\Users\svarck\AppData\Roaming\CA
2019-03-15 08:15 - 2019-03-15 08:15 - 026810368 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 024616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 020814848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 019284480 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 019023872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 012151296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 008875008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 007897088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 007882240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 006069760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 005436184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 004920832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 004689408 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 003923456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 003744256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 003566080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 003551408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 002752360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 002323688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 002278240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001969152 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001782272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001332224 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001294856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001289192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001258808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-03-15 08:15 - 2019-03-15 08:15 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001131520 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001077912 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 001072720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000866152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000793088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000732160 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCacheProvider.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000573440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfh264enc.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-03-15 08:15 - 2019-03-15 08:15 - 000480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000421688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSh.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDistSh.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-03-15 08:15 - 2019-03-15 08:15 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2019-03-15 08:15 - 2019-03-15 08:15 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MbbCx.sys
2019-03-15 08:15 - 2019-03-15 08:15 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCleaner.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDist.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDist.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2019-03-15 08:15 - 2019-03-15 08:15 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2019-03-15 08:15 - 2019-03-15 08:15 - 000000000 ____D C:\Users\svarck\AppData\Roaming\ČÚZK
2019-03-15 08:14 - 2019-03-15 08:15 - 023440896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 022114960 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 015224320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 012857856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 009683256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 009670656 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 007688088 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 007647256 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 007556392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 007251456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 006548168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 006440960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 005915936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 005588184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 005566464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 005296640 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 004883968 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 004588744 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 003983360 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 003761664 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 003729808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 003660288 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 003652656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 003504128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 003427840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 003399168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 003382272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 003378488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 003108864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002926904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 002871312 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 002842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002776712 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002766648 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002720768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 002700792 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002689536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002637312 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 002630656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002626360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 002488320 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 002447360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002437344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002275680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002199864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002187776 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002141184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002073240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002044416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002021584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002013696 _____ C:\WINDOWS\system32\rdpnano.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 002001408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001969464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 001931264 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001893888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001860608 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001844448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001760768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001751352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001742104 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001711616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001701376 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001697744 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-03-15 08:14 - 2019-03-15 08:14 - 001672704 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001644048 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001612600 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001604096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001590072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001572176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001563336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001522488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001481488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001479480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001468440 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 001457544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001403920 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001360696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 001341880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-03-15 08:14 - 2019-03-15 08:14 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001296576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001272552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdrecordcpu.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001259320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 001221944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 001208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001199104 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001191512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001179168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 001177088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001176064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 001098128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001078072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001072640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001056272 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001054200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001047040 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001043256 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 001022616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 001001472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2019-03-15 08:14 - 2019-03-15 08:14 - 000981816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000918032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2019-03-15 08:14 - 2019-03-15 08:14 - 000902144 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000895048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000888320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000888120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000871792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000865568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000860160 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-03-15 08:14 - 2019-03-15 08:14 - 000850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000836096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000833064 _____ C:\WINDOWS\system32\InputHost.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000831288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000817464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000808464 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000790328 _____ (Microsoft Corporation) C:\WINDOWS\system32\upshared.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000775168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000772408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000764216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000762880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000760832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000757664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000745984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000743224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000741888 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000735760 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000726416 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000723968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000655160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000652824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000651576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000649528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000649272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000646632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000619832 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000605496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000604336 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000591832 _____ C:\WINDOWS\SysWOW64\InputHost.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000549376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-03-15 08:14 - 2019-03-15 08:14 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000511800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000508216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000505656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsound.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000484976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000479232 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000474936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-03-15 08:14 - 2019-03-15 08:14 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000460304 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000449368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000444728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000419128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-03-15 08:14 - 2019-03-15 08:14 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000404792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000395064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000386872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000367616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageHandlers.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000355360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000336744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000330464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000322576 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000300344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000279376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000272648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdwriter.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000271360 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000264192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000262456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000246584 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ptpprov.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbio.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngctasks.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000174392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AppvVemgr.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000169784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000156984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000147256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000138960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataUsageLiveTileTask.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbio.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000115152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000090424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000071184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismp6.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-03-15 08:14 - 2019-03-15 08:14 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureBioSysprep.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-03-15 08:14 - 2019-03-15 08:14 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rfxvmt.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-03-15 08:14 - 2019-03-15 08:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-03-15 08:14 - 2019-03-15 08:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-03-15 08:14 - 2019-03-15 08:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-03-15 08:14 - 2019-03-15 08:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-03-15 08:14 - 2019-03-15 08:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-03-15 08:14 - 2019-03-15 08:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-03-15 08:14 - 2019-03-15 08:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-03-15 08:14 - 2019-03-15 08:14 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-03-11 15:40 - 2019-03-11 15:40 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-03-11 15:40 - 2019-03-11 15:40 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-03-11 15:40 - 2019-03-11 15:40 - 000000000 ____D C:\Program Files\MSBuild
2019-03-11 15:40 - 2019-03-11 15:40 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-03-11 15:40 - 2019-03-11 15:40 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-03-11 15:39 - 2019-03-11 15:39 - 000780376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2019-03-11 15:39 - 2019-03-11 15:39 - 000126064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-03-11 15:39 - 2019-03-11 15:39 - 000104560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-03-11 15:39 - 2019-03-11 15:39 - 000036896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2019-03-11 15:38 - 2019-03-11 15:38 - 001167960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-03-11 15:38 - 2019-03-11 15:38 - 000035440 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2019-03-11 09:02 - 2019-03-11 09:02 - 007724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-03-11 09:02 - 2019-03-11 09:02 - 005112792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-03-11 09:02 - 2019-03-11 09:02 - 003601920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2019-03-11 09:02 - 2019-03-11 09:02 - 001282640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2019-03-11 09:02 - 2019-03-11 09:02 - 000762272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2019-03-11 09:02 - 2019-03-11 09:02 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2019-03-11 09:02 - 2019-03-11 09:02 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 005561856 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 005527552 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 005205464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 004991096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 004702704 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 004627456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 004526080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 004298752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 004019200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 002992640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 002392576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 002149368 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 002085376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001700880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001671864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001533440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001467560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001446400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001271608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001209360 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001168384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 001010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000982576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000970256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\assignedaccessmanagersvc.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000864056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000822448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000800256 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000765960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000752136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-03-11 09:01 - 2019-03-11 09:01 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000651304 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000629576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000617984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessManager.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000612368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-03-11 09:01 - 2019-03-11 09:01 - 000588304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-03-11 09:01 - 2019-03-11 09:01 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-03-11 09:01 - 2019-03-11 09:01 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000522312 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000496872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-03-11 09:01 - 2019-03-11 09:01 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000408800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000375544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000298296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2019-03-11 09:01 - 2019-03-11 09:01 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000276488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTF.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MTF.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2019-03-11 09:01 - 2019-03-11 09:01 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000148480 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000146888 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000132104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-03-11 09:01 - 2019-03-11 09:01 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000121872 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2019-03-11 09:01 - 2019-03-11 09:01 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000114856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000097592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2019-03-11 09:01 - 2019-03-11 09:01 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlahc.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\PktMon.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000091424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\nslookup.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2019-03-11 09:01 - 2019-03-11 09:01 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nslookup.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2019-03-11 09:01 - 2019-03-11 09:01 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo-overrides.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000047136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2019-03-11 09:01 - 2019-03-11 09:01 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2019-03-11 09:01 - 2019-03-11 09:01 - 000000072 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2019-03-11 08:53 - 2019-03-11 15:40 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2019-03-11 08:53 - 2019-03-11 15:40 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2019-03-11 08:53 - 2019-03-11 15:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2019-03-11 08:50 - 2019-03-11 08:50 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2019-03-11 08:50 - 2019-03-11 08:50 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2019-03-11 08:25 - 2019-03-11 08:25 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\CA
2019-03-11 08:18 - 2019-04-08 10:22 - 000003376 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-906916545-1188199951-3551692139-500
2019-03-11 08:18 - 2019-04-08 10:22 - 000002392 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-03-11 08:18 - 2019-04-08 10:22 - 000000000 ___RD C:\Users\Administrator\OneDrive
2019-03-11 08:18 - 2019-03-11 08:18 - 000000000 ____D C:\Users\Administrator\AppData\Local\Comms

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-04-08 11:01 - 2019-01-17 12:23 - 000000000 ____D C:\WINDOWS\CryptoGuard
2019-04-08 10:53 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-08 10:49 - 2019-01-17 12:23 - 000000000 ____D C:\ProgramData\HitmanPro.Alert
2019-04-08 10:22 - 2019-01-07 14:00 - 001703228 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-04-08 10:22 - 2018-09-15 19:39 - 000723162 _____ C:\WINDOWS\system32\perfh005.dat
2019-04-08 10:22 - 2018-09-15 19:39 - 000147126 _____ C:\WINDOWS\system32\perfc005.dat
2019-04-08 10:22 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-04-08 10:21 - 2019-03-06 09:32 - 000000000 ____D C:\Users\Administrator\AppData\Local\MicrosoftEdge
2019-04-08 10:21 - 2019-03-06 09:31 - 000000000 ____D C:\Users\Administrator
2019-04-08 10:17 - 2019-01-07 13:54 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-04-08 08:58 - 2019-03-06 09:31 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2019-04-07 01:45 - 2019-01-07 13:57 - 000003700 _____ C:\WINDOWS\System32\Tasks\Lenovo Power Management Driver PnP Task
2019-04-07 01:44 - 2019-01-07 13:57 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-04-07 01:44 - 2018-09-15 08:09 - 002097152 _____ C:\WINDOWS\system32\config\BBI
2019-04-06 08:09 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-06 08:09 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-04-03 19:38 - 2019-01-18 11:08 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-04-03 19:38 - 2019-01-18 11:08 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-03-30 13:23 - 2019-01-18 11:01 - 000003470 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-30 13:23 - 2019-01-18 11:01 - 000003346 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-25 12:53 - 2019-01-24 13:32 - 000000000 ____D C:\Users\svarck\AppData\Local\Packages
2019-03-25 12:52 - 2019-01-24 13:32 - 000000000 __SHD C:\Users\svarck\IntelGraphicsProfiles
2019-03-25 11:05 - 2018-04-17 21:03 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-03-25 10:41 - 2019-01-07 14:05 - 000000000 ____D C:\ProgramData\Packages
2019-03-25 10:40 - 2019-03-06 09:31 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2019-03-25 10:39 - 2019-03-06 09:31 - 000000000 ___RD C:\Users\Administrator\3D Objects
2019-03-24 08:40 - 2019-01-24 13:32 - 000000000 ____D C:\Users\svarck\AppData\Local\Google
2019-03-22 19:36 - 2019-01-18 11:02 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-22 19:36 - 2019-01-18 11:02 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-03-16 21:04 - 2019-01-24 13:34 - 000003362 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1388532468-407250429-270368766-20718
2019-03-16 21:04 - 2019-01-24 13:34 - 000000000 ___RD C:\Users\svarck\OneDrive
2019-03-16 21:04 - 2019-01-24 13:32 - 000002397 _____ C:\Users\svarck\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-03-16 20:57 - 2019-01-07 13:57 - 000000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2019-03-15 22:24 - 2019-01-17 12:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2019-03-15 20:03 - 2019-01-24 13:32 - 000000000 ____D C:\Users\svarck
2019-03-15 08:43 - 2019-01-17 12:09 - 000000120 _____ C:\WINDOWS\system32\config\netlogon.ftl
2019-03-15 08:20 - 2019-01-24 13:32 - 000000000 ___RD C:\Users\svarck\3D Objects
2019-03-15 08:19 - 2019-01-07 13:54 - 000455512 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-03-15 08:19 - 2019-01-07 10:44 - 000197016 __RSH C:\ProgramData\ntuser.pol
2019-03-15 08:17 - 2018-09-15 19:40 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-03-15 08:17 - 2018-09-15 09:33 - 000000000 ___RD C:\Program Files\Windows Defender
2019-03-15 08:17 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-03-15 08:17 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-03-15 08:17 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-03-15 08:17 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-03-15 08:17 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-03-15 08:17 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-03-15 08:15 - 2019-01-24 13:32 - 000056972 __RSH C:\Users\svarck\ntuser.pol
2019-03-15 08:14 - 2019-01-07 13:57 - 002865152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-03-14 09:02 - 2019-01-07 11:43 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-03-14 09:00 - 2019-01-07 11:43 - 127411920 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-03-11 15:40 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-03-11 15:40 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-03-11 15:35 - 2018-09-15 09:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-03-11 14:37 - 2019-01-18 09:00 - 000000000 ____D C:\temp
2019-03-11 09:07 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-03-11 09:07 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-03-11 09:07 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-03-11 09:07 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-03-11 09:07 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-03-11 08:56 - 2018-04-12 01:38 - 000000167 _____ C:\WINDOWS\win.ini
2019-03-11 08:27 - 2019-02-01 14:00 - 000003366 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1388532468-407250429-270368766-5055
2019-03-11 08:21 - 2019-03-06 09:31 - 000000000 ____D C:\Users\Administrator\AppData\Local\Lenovo

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17.03.2019
Ran by Administrator (08-04-2019 11:02:31)
Running from D:\
Windows 10 Pro Version 1809 17763.379 (X64) (2019-01-07 11:57:35)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-906916545-1188199951-3551692139-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-906916545-1188199951-3551692139-503 - Limited - Disabled)
Guest (S-1-5-21-906916545-1188199951-3551692139-501 - Limited - Disabled)
SophosSAUN059011aaa (S-1-5-21-906916545-1188199951-3551692139-1002 - Limited - Enabled)
svarck (S-1-5-21-906916545-1188199951-3551692139-1009 - Limited - Enabled) => C:\Users\svarck.N059011
WDAGUtilityAccount (S-1-5-21-906916545-1188199951-3551692139-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Sophos Anti-Virus (Enabled - Up to date) {FFADE7EA-DC92-4602-D6B2-626CD3450A0F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Sophos Anti-Virus (Enabled - Up to date) {44CC060E-FAA8-498C-EC02-591EA8C240B2}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated)
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{0459ef97-6cc2-4a78-a664-516669c498e2}) (Version: 20.70.0.0u - Intel Corporation)
CA DSM Agent + Asset Management plugin (English only Edition) (HKLM-x32\...\{624FA386-3A39-4EBF-9CB9-C2B484D78B29}) (Version: 14.0.2000.255 - CA, Inc.)
CA DSM Agent + Basic Inventory plugin (English only Edition) (HKLM-x32\...\{501C99B9-1644-4FC2-833B-E675572F8929}) (Version: 14.0.2000.255 - CA, Inc.)
CA DSM Agent + Remote Control plugin (English only Edition) (HKLM-x32\...\{84288555-A79E-4ABD-BA53-219C4D2CA20B}) (Version: 14.0.2000.255 - CA, Inc.)
CA DSM Agent + Software Delivery plugin (English only Edition) (HKLM-x32\...\{62ADA55C-1B98-431F-8618-CDF3CE4CFEEC}) (Version: 14.0.2000.255 - CA, Inc.)
CA Secure Socket Adapter (HKLM-x32\...\{25CCFBFE-BDE1-43F8-B078-C9AC89B21AF2}) (Version: 2.4.0 - CA, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.6.02074 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{8C55E3DF-0F0A-4D1F-AC90-9763BD18136D}) (Version: 4.6.02074 - Cisco Systems, Inc.) Hidden
D-Link Connection Manager v2.0.4WW (HKLM-x32\...\Broad Mobi HSPA Modem Normal Version_is1) (Version: - D-Link Corporation)
Dolby Audio X2 Windows API SDK (HKLM\...\{F994125B-7BF5-4A38-A569-82833CEB24DC}) (Version: 0.8.4.83 - Dolby Laboratories, Inc.) Hidden
Dolby Audio X2 Windows APP (HKLM\...\{4A02DCED-C2B0-4DD3-87BD-7D8E68D6AF3C}) (Version: 0.8.6.75 - Dolby Laboratories, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.86 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
HitmanPro.Alert 3 (managed by Sophos) (HKLM\...\HitmanPro.Alert) (Version: 3.7.10.768 - SurfRight B.V.) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{44ded3eb-1686-46a6-9770-fd79096c29f7}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1824.12.0.1140 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 24.20.100.6286 - Intel Corporation) Hidden
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.213.1 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{3b132227-4567-48a1-9f85-0d0dad4346ee}) (Version: 1.49.213.1 - Intel Corporation) Hidden
Lenovo Nastavení pera Service (HKLM\...\ISD Tablet Driver) (Version: 7.5.1.37 - Wacom Technology Corp.)
Lenovo Settings - Power (HKLM-x32\...\{A6CFC34A-56EE-4AF5-8C49-995F59E6A160}) (Version: 2.00.000 - Lenovo) Hidden
Microsoft Office Standard 2010 (HKLM-x32\...\Office14.STANDARD) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-906916545-1188199951-3551692139-500\...\OneDriveSetup.exe) (Version: 19.033.0218.0011 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Sophos Anti-Virus (HKLM-x32\...\{C4EDC7DA-3AF8-4E99-ACAC-4C1A70F88CFB}) (Version: 10.8.2.334 - Sophos Limited)
Sophos AutoUpdate (HKLM-x32\...\{AFBCA1B9-496C-4AE6-98AE-3EA1CFF65C54}) (Version: 5.14.36 - Sophos Limited)
Sophos Clean (HKLM\...\SophosClean) (Version: 3.7.21.105 - Sophos Limited)
Sophos Endpoint Defense (HKLM\...\Sophos Endpoint Defense) (Version: 1.0.7.2 - Sophos Limited)
Sophos Exploit Prevention (HKLM\...\{866151B2-E14E-40E0-B6D9-64B1D428F5CB}) (Version: 3.7.10.302 - Sophos Limited)
Sophos Network Threat Protection (HKLM\...\{66967E5F-43E8-4402-87A4-04685EE5C2CB}) (Version: 1.2.2.50 - Sophos Limited)
Sophos Remote Management System (HKLM-x32\...\{FED1005D-CBC8-45D5-A288-FFC7BB304121}) (Version: 4.1.1 - Sophos Limited)
Sophos System Protection (HKLM-x32\...\{1093B57D-A613-47F3-90CF-0FD5C5DCFFE6}) (Version: 1.3.1 - Sophos Limited)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0-2) (Version: 1.1.70.0 - LunarG, Inc.) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-906916545-1188199951-3551692139-500_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
ContextMenuHandlers1: [SavShellExt] -> {A3A1D8A1-006D-4B93-BA27-6F6B4C9C4F1D} => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavShellExtX64.dll [2019-01-17] (Sophos Limited -> Sophos Limited)
ContextMenuHandlers2: [SavShellExt] -> {A3A1D8A1-006D-4B93-BA27-6F6B4C9C4F1D} => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavShellExtX64.dll [2019-01-17] (Sophos Limited -> Sophos Limited)
ContextMenuHandlers4: [SavShellExt] -> {A3A1D8A1-006D-4B93-BA27-6F6B4C9C4F1D} => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavShellExtX64.dll [2019-01-17] (Sophos Limited -> Sophos Limited)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_acb3edda7b82982f\igfxDTCM.dll [2018-10-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [SavShellExt] -> {A3A1D8A1-006D-4B93-BA27-6F6B4C9C4F1D} => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavShellExtX64.dll [2019-01-17] (Sophos Limited -> Sophos Limited)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {125F5719-ECB5-49B5-9844-4801F7CDBC8D} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe (Lenovo -> Lenovo Group Ltd.)
Task: {14FDDFFF-8DBA-4673-B1A1-CFEA9EE97B0F} - System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\WINDOWS\system32\gpupdate.exe (Microsoft Windows -> Microsoft Corporation)
Task: {1590B1CB-09F0-4E51-8002-D74E259E13A7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {2714236E-8D81-4FC9-9D42-696028920D08} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {2C3001FA-A7FA-422F-9D66-E5B6B0CFEB73} - System32\Tasks\Lenovo Power Management Driver PnP Task => C:\WINDOWS\System32\ibmpmsvc.exe (Lenovo -> Lenovo.)
Task: {567DB067-C1EA-405F-B44E-ECC548AA3570} - System32\Tasks\Lenovo\Power Manager\Background monitor => C:\Windows\SysWOW64\Lenovo\PowerMgr\PowerMgr.exe (Lenovo -> Lenovo)
Task: {6CFCBEC2-714F-4EB8-8536-64C72AA7B8EE} - System32\Tasks\Lenovo\Lenovo ITS Task => C:\WINDOWS\System32\LITSSvc.exe (Lenovo -> Lenovo.)
Task: {78017048-B48C-46CD-8B12-A22A368A6D2F} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {7DC6499E-8F20-4789-9A22-9CF050EAA5B9} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {921B1B52-A0AD-449B-AABC-203BBF957C44} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {A4C24C32-32B2-4063-8592-894135E6D39E} - System32\Tasks\S-1-5-21-906916545-1188199951-3551692139-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {A8DEDE41-EBAE-4876-93A5-6D1EDF195EC1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {AA1E429E-364D-46D3-8F33-32A6E5D655C5} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\632085d3-bc30-45d5-86eb-3818b8600aae => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (Lenovo -> Lenovo Group Ltd.)
Task: {AB1CB375-EBC4-403A-BB28-EB2628880063} - System32\Tasks\Pravidelny_stredecni_sken_NTB => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\BackgroundScanClient.exe (Sophos Limited -> Sophos Limited)
Task: {B1D2AE1E-9BC0-432E-AFF9-A3967CFE488A} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\c53aadfa-2261-4ffd-b1be-b5a941977944 => C:\Program Files\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe (Lenovo -> Lenovo Group Ltd.)
Task: {B4B55B68-CB1D-4450-972B-939D3B781E17} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {D65B9062-BE00-451C-B4AE-5F685A44613E} - System32\Tasks\Lenovo\Lenovo ITS PnP Task => C:\WINDOWS\System32\LITSSvc.exe (Lenovo -> Lenovo.)
Task: {D6FAFA33-1A23-494A-92D6-C6D20256E5A9} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {D989ED8F-043F-45A0-9D88-0D0C879311E6} - System32\Tasks\Lenovo\Power Manager\Uninstall task => C:\WINDOWS\SysWOW64\Lenovo\PowerMgr\PowerMgrInst.exe (Lenovo -> )
Task: {E1B25F00-5FBC-4316-B428-2AA9FFEC5FC8} - System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\WINDOWS\system32\gpupdate.exe (Microsoft Windows -> Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Pravidelny_stredecni_sken_NTB.job => C:\Program Files (x86)\Sophos\Sophos Anti-Virus\BackgroundScanClient.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2005-02-16 09:13 - 2005-02-16 09:13 - 000348160 ____R (Microsoft Corporation) [File not signed] C:\Program Files (x86)\CA\DSM\Bin\MSVCR71.dll
2019-03-15 21:54 - 2018-08-12 21:29 - 001255424 _____ (Robert Simpson, et al.) [File not signed] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\x86\SQLite.Interop.dll
2019-01-08 02:21 - 2018-04-11 10:34 - 000209920 _____ () [File not signed] C:\Program Files (x86)\D-Link Connection Manager\Style\BMII.cj
2019-01-08 02:21 - 2018-07-10 13:01 - 001605632 _____ (D-Link Corportation) [File not signed] C:\Program Files (x86)\D-Link Connection Manager\Dll\UIConnection.dll
2019-01-08 02:21 - 2018-07-10 13:01 - 002027520 _____ (D-Link Corportation) [File not signed] C:\Program Files (x86)\D-Link Connection Manager\Dll\UIMessage.dll
2019-01-08 02:21 - 2018-07-10 13:01 - 001859584 _____ (D-Link Corportation) [File not signed] C:\Program Files (x86)\D-Link Connection Manager\Dll\UIPhonebook.dll
2019-01-08 02:21 - 2018-07-10 13:01 - 001683456 _____ (D-Link Corportation) [File not signed] C:\Program Files (x86)\D-Link Connection Manager\Dll\UIUssd.dll
2019-01-08 02:21 - 2018-07-10 12:59 - 002220032 _____ (D-Link Corportation) [File not signed] C:\Program Files (x86)\D-Link Connection Manager\Dll\UISetting.dll
2019-01-08 02:21 - 2018-07-10 12:59 - 001953792 _____ (D-Link Corportation) [File not signed] C:\Program Files (x86)\D-Link Connection Manager\Dll\UIStatisticsMap.dll
2019-01-08 02:21 - 2018-07-10 12:58 - 000409600 _____ (D-Link Corportation) [File not signed] C:\Program Files (x86)\D-Link Connection Manager\Dll\ControlCore.dll

==================== Alternate Data Streams (Whitelisted) =========

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SAVService => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SAVService => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SntpService => ""="service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2018-04-12 01:38 - 2018-04-12 01:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\CA\SC\CAWIN\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;%CSAM_SOCKADAPTER%bin;%CSAM_SOCKADAPTER%bin64;C:\Program Files (x86)\CA\DSM\bin;C:\Program Files (x86)\CA\SC\CBB\;C:\PROGRA~2\CA\SC\CAM\bin
HKU\S-1-5-21-906916545-1188199951-3551692139-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 93.153.117.49 - 93.153.117.17
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{5137BE1B-0772-4B77-AD46-2D243A4A32AD}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{B07A07B6-21D0-465E-86AF-8EAB3116E593}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{B13CFC8E-34FF-42B1-9758-08A0F945DD4B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11425.20202.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Restore Points =========================

06-03-2019 09:33:21 Installed CA Secure Socket Adapter.
11-03-2019 08:49:23 Windows Update
14-03-2019 08:59:57 Windows Update
08-04-2019 09:45:59 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/08/2019 10:59:22 AM) (Source: Sophos Message Router) (EventID: 8005) (User: NT AUTHORITY)
Description: DNS lookup failure trying to resolve the following addresses: s200521,s200521.katastr.int.%%3

Error: (04/08/2019 10:55:22 AM) (Source: DSM) (EventID: 1000) (User: )
Description: Caf encountered an error: Failed to register with scalability server S059511. The host name or address specified could not be resolved.

Error: (04/08/2019 10:54:37 AM) (Source: DSM) (EventID: 1000) (User: )
Description: Caf encountered an error: Failed to register with scalability server S059511. The host name or address specified could not be resolved.

Error: (04/08/2019 10:33:48 AM) (Source: DSM) (EventID: 1000) (User: )
Description: Caf encountered an error: Failed to register with scalability server S059511. The host name or address specified could not be resolved.

Error: (04/08/2019 10:33:21 AM) (Source: DSM) (EventID: 1000) (User: )
Description: Caf encountered an error: Failed to register with scalability server S059511. The host name or address specified could not be resolved.

Error: (04/08/2019 10:25:22 AM) (Source: Sophos Message Router) (EventID: 8005) (User: NT AUTHORITY)
Description: DNS lookup failure trying to resolve the following addresses: s200521,s200521.katastr.int.%%3

Error: (04/08/2019 10:20:59 AM) (Source: DSM) (EventID: 1000) (User: )
Description: Caf encountered an error: Failed to register with scalability server S059511. The host name or address specified could not be resolved.

Error: (04/08/2019 10:20:23 AM) (Source: DSM) (EventID: 1000) (User: )
Description: Caf encountered an error: Failed to register with scalability server S059511. The host name or address specified could not be resolved.


System errors:
=============
Error: (04/08/2019 10:52:35 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Sophos Message Router byla nečekaně ukončena. Stalo se to 92 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (04/08/2019 10:50:39 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Sophos Message Router byla nečekaně ukončena. Stalo se to 91 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (04/08/2019 10:48:44 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Sophos Message Router byla nečekaně ukončena. Stalo se to 90 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (04/08/2019 10:46:48 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Sophos Message Router byla nečekaně ukončena. Stalo se to 89 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (04/08/2019 10:44:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Sophos Message Router byla nečekaně ukončena. Stalo se to 88 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (04/08/2019 10:42:57 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Sophos Message Router byla nečekaně ukončena. Stalo se to 87 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (04/08/2019 10:41:21 AM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: NT AUTHORITY)
Description: Kontrola šifrovaného svazku: Informace o svazku E: nelze přečíst.

Error: (04/08/2019 10:41:20 AM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: NT AUTHORITY)
Description: Kontrola šifrovaného svazku: Informace o svazku E: nelze přečíst.


Windows Defender:
===================================
Date: 2019-01-31 08:15:25.784
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.283.2404.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15500.2
Kód chyby: 0x80072efd
Popis chyby :Spojení se serverem nebylo navázáno.

Date: 2019-01-31 08:15:25.783
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.283.2404.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15500.2
Kód chyby: 0x80072efd
Popis chyby :Spojení se serverem nebylo navázáno.

Date: 2019-01-31 08:15:25.783
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.283.2404.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15500.2
Kód chyby: 0x80072efd
Popis chyby :Spojení se serverem nebylo navázáno.

Date: 2019-01-31 08:15:22.570
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.283.2404.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15500.2
Kód chyby: 0x80072efd
Popis chyby :Spojení se serverem nebylo navázáno.

Date: 2019-01-31 08:15:22.568
Description:
Prohledávání Antivirová ochrana v programu Windows Defender zjistilo chybu při pokusu o aktualizaci podpisů.
Nová verze podpisu:
Předchozí verze podpisu: 1.283.2404.0
Zdroj aktualizace: Centrum společnosti Microsoft pro ochranu před škodlivým softwarem
Typ podpisu: Antispywarový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\NETWORK SERVICE
Aktuální verze modulu:
Předchozí verze modulu: 1.1.15500.2
Kód chyby: 0x80072efd
Popis chyby :Spojení se serverem nebylo navázáno.

CodeIntegrity:
===================================

Date: 2019-03-06 08:35:32.941
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\cfig50wnt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-06 08:35:32.806
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\cfig50wnt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-06 08:35:32.714
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\cfig50wnt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-06 08:35:32.555
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\cfig50wnt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-06 08:35:32.417
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\cfig50wnt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-06 08:35:32.329
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\cfig50wnt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-06 08:35:11.953
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\cfig50wnt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-03-06 08:35:11.791
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\cfig50wnt.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-8250U CPU @ 1.60GHz
Percentage of memory in use: 43%
Total physical RAM: 8051.04 MB
Available physical RAM: 4551.2 MB
Total Virtual: 9331.04 MB
Available Virtual: 5387.67 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:237.23 GB) (Free:187.13 GB) NTFS
Drive d: () (Removable) (Total:0.48 GB) (Free:0.4 GB) FAT32

\\?\Volume{bbb3cf98-3173-4583-be40-a61e58f97131}\ (WinRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.53 GB) NTFS
\\?\Volume{1d281e30-6bf8-4c06-a608-fddf3d6dd085}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 09AB5532)

Partition: GPT.

========================================================
Disk: 1 (Protective MBR) (Size: 489 MB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================

Re: Prosim o kontrolu logu z notebooku

Napsal: 09 dub 2019 15:27
od Conder
Ahoj :)

:arrow: Stiahni AdwCleaner: https://toolslib.net/downloads/finish/1/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Skenovat nyni (Scan now) a pockaj na dokoncenie
  • Nechaj zaskrtnute vsetky nalezy
  • Klikni na Cisteni a opravy (Clean and Repair) a potvrd restart PC teraz
  • Po restartovani PC sa otvori AdwCleaner, klikni na Zobrazit soubor protokolu
  • Otvori sa log, jeho obsah sem skopiruj

Re: Prosim o kontrolu logu z notebooku

Napsal: 15 dub 2019 12:35
od marstep
Ahoj,

díky za odkaz, mezitím jsem ntb preinstaloval a log z AdwCleaneru je tak cisty, poteboval jsem ho, presto dik. Anonymnihacker otravoval s maily, ze zverejni video, chtel jsem mit vetsi jistotu, ze zna jen email.

Re: Prosim o kontrolu logu z notebooku

Napsal: 15 dub 2019 14:05
od Conder
OK, aj to je riesenie :) Inak taketo e-maily su typicky podvodny a vydieracsky email, ktory sa u nas rozsiril v poslednej dobe.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz