Dobrý den,
prosím o kontrolu logu, jinak problémy žádné.
Mirajs Z.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-02-2020 02
Ran by miraj (administrator) on DESKTOP-7KBAA0Q (05-02-2020 21:57:21)
Running from C:\Users\miraj\OneDrive\Plocha
Loaded Profiles: miraj (Available Profiles: miraj)
Platform: Windows 10 Pro Version 1909 18363.628 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Acronis International GmbH -> ) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe
(DESlock Limited -> DESlock Limited.) C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eOppFrame.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.442\GoogleCrashHandler64.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportHelper.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe
(Lamantine Software a.s. -> ESET) C:\Program Files\ESET\ESET Password Manager\pwm.exe
(Lamantine Software a.s. -> ESET) C:\Program Files\ESET\ESET Password Manager\pwmNMHost.exe
(Lamantine Software a.s. -> ESET) C:\Program Files\ESET\ESET Password Manager\pwmUIAManager.exe
(Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spNMHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.36.6003.0_x64__8wekyb3d8bbwe\GameBarFT.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Tonec Inc. -> Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Tonec Inc. -> Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942864 2016-10-13] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [183088 2019-12-17] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [snpstd3] => C:\Windows\vsnpstd3.exe [843776 2006-09-18] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [588360 2017-06-22] (Acronis International GmbH -> )
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [425864 2017-02-14] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5118656 2017-06-22] (Acronis International GmbH -> )
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1313408 2017-07-05] (Canon Inc. -> CANON INC.)
HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\...\Run: [EsetPasswordManager] => C:\Program Files\ESET\ESET Password Manager\pwm.exe [116464 2019-11-29] (Lamantine Software a.s. -> ESET)
HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4168560 2020-02-01] (Tonec Inc. -> Tonec Inc.)
HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3288016 2019-12-16] (Valve -> Valve Corporation)
HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\...\Run: [CanonImageDisplay] => [X]
HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\...\RunOnce: [Application Restart #0] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --notification-launch-id=0|2|Default|0|chrome-extension://kdipccigkncpkgbleooabnbbhpbgabjg/|kdipccigkncpkgbleooabnbbhpbgabjg-ede05213-41ed-4dbd-8079-74d61dfca414 --flag-switches-begin --flag-switches-end --enable-audio-service-sandbox --restore-last-session
HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\ssText3d.scr [221184 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-28] (Google LLC -> Google LLC)
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1DDE6AD2-DE24-4D0F-9601-66FB76C33A53} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {4F878E3C-FA53-44CF-8285-0C66944C8273} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {64AB789F-7C49-4999-B31A-C98EB97E5003} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-08-13] (Google Inc -> Google LLC)
Task: {7A566317-5ECE-4519-9DB3-7B21B2482AB6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-08-13] (Google Inc -> Google LLC)
Task: {BE158E97-2871-4381-914C-AA529E2EBE51} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {BF4B6F48-9AE4-4112-96C6-B9D0F5475669} - System32\Tasks\{8B431E16-6F3C-4C46-920B-AA658B0CEA2C} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://www.skype.com/go/downloading?source=lig ... rror=12007
Task: {C9975A73-8E3B-4F0E-B01A-0022706CCB31} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {D3279C56-AF82-43F7-8985-8FE57E7AC7B8} - System32\Tasks\GoogleUpdateTaskMachineCore1d5b4b0e8c3f063 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156456 2019-08-13] (Google Inc -> Google LLC)
Task: {D96D5418-BC21-486D-80CD-50069143297E} - System32\Tasks\AutoPico Daily Restart => E:\NAŠE [Argument = DATA\Tátova složka\Offisy\Microsoft Office Professional Plus 2016\ALL MS OFFICE WINDOWS PERNAMEN ACTIVATOR!\ALL MS OFFICE WINDOWS PERNAMEN ACTIVATOR!\AutoPico.exe /silent]
Task: {E28D978D-7F06-4DF2-BE51-DDD9C40BB86A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {E90CCC57-779F-48E2-B3B3-911C662FCBC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{5273a4d0-6d34-4e93-9aad-0c10b3761b8d}: [DhcpNameServer] 213.46.172.37 213.46.172.36
Internet Explorer:
==================
HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2019-12-19] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2019-12-17] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge Extension: (IDM Integration Module) -> EdgeExtension_TonecIncIDMIntegrationModule_e7b5mm5d3r6v2 => C:\Program Files\WindowsApps\TonecInc.IDMIntegrationModule_6.36.3.0_neutral__e7b5mm5d3r6v2 [2020-01-30]
FireFox:
========
FF HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\miraj\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\miraj\AppData\Roaming\IDM\idmmzcc5 [2019-05-27] [Legacy] [not signed]
FF HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2017-10-17] (CANON INC.) [File not signed]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-10-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-12-02] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\miraj\AppData\Local\Google\Chrome\User Data\Default [2020-02-05]
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/","hxxps://www.seznam.cz/"
CHR Extension: (Disk Google) - C:\Users\miraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-05-26]
CHR Extension: (IBM Security Rapport) - C:\Users\miraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2020-02-03]
CHR Extension: (YouTube) - C:\Users\miraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-05-26]
CHR Extension: (Sticky Password - správce hesel) - C:\Users\miraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnfdmghkeppfadphbnkjcicejfepnbfe [2019-10-09]
CHR Extension: (Adblock Plus - free ad blocker) - C:\Users\miraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-02-04]
CHR Extension: (ESET Password Manager extension) - C:\Users\miraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdipccigkncpkgbleooabnbbhpbgabjg [2020-01-02]
CHR Extension: (IDM Integration Module) - C:\Users\miraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2020-02-05]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\miraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-09]
CHR Extension: (Gmail) - C:\Users\miraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-26]
CHR Extension: (Chrome Media Router) - C:\Users\miraj\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-17]
CHR Profile: C:\Users\miraj\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-02-03]
CHR Profile: C:\Users\miraj\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-03]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-02-02]
CHR HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2020-02-02]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 CIJSRegister; C:\Program Files (x86)\Canon\IJ Scan Utility\SETEVENT.exe [144464 2015-02-19] (Canon Inc. -> CANON INC.)
R2 dlpsrv; C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe [542400 2019-10-02] (DESlock Limited -> DESlock Limited.)
R2 ekrn; C:\Program Files\ESET\ESET Security\ekrn.exe [2245488 2019-12-17] (ESET, spol. s r.o. -> ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Security\ekrn.exe [2245488 2019-12-17] (ESET, spol. s r.o. -> ESET)
R2 mmsminisrv; C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe [4795288 2017-02-13] (Acronis International GmbH -> Acronis International GmbH)
R2 mobile_backup_server; C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe [2908352 2017-01-06] (Acronis International GmbH -> Acronis International GmbH)
R2 mobile_backup_status_server; C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe [1617520 2017-06-22] (Acronis International GmbH -> )
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [3001632 2019-10-06] (IBM -> IBM Corp.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\NisSrv.exe [3630832 2019-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\MsMpEng.exe [103168 2019-09-24] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 DLMFENC; C:\Windows\System32\DRIVERS\DLMFENC.sys [174152 2019-10-02] (DESlock Limited -> DESlock Ltd.)
R0 DLPCRYPT; C:\Windows\System32\DRIVERS\dlpcrypt.sys [121728 2019-10-02] (DESlock Limited -> DESlock Ltd.)
R0 dlpvdisk; C:\Windows\System32\DRIVERS\dlpvdisk.sys [98296 2019-10-02] (DESlock Limited -> DESlock Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [149944 2019-11-05] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [103264 2019-11-05] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15800 2019-06-06] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [189512 2019-11-05] (ESET, spol. s r.o. -> ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [50712 2019-11-05] (ESET, spol. s r.o. -> ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [79744 2019-12-17] (ESET, spol. s r.o. -> ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [116696 2019-12-17] (ESET, spol. s r.o. -> ESET)
R0 file_tracker; C:\Windows\System32\DRIVERS\file_tracker.sys [378712 2019-08-15] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R3 MTsensor; C:\Windows\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] (ASUSTeK Computer Inc. -> )
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_db678424d2641c3d\nvlddmkm.sys [22094728 2019-10-04] (NVIDIA Corporation -> NVIDIA Corporation)
S1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [429112 2019-10-06] (IBM -> IBM Corp.)
S1 RapportCerberus_1950099; c:\programdata\trusteer\rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1950099.sys [1466824 2020-01-31] (IBM -> IBM Corp.)
S1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [542112 2019-10-06] (IBM -> IBM Corp.)
S0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [395384 2019-10-06] (IBM -> IBM Corp.)
S0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [445240 2019-10-06] (IBM -> IBM Corp.)
S1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [560568 2019-10-06] (IBM -> IBM Corp.)
R3 SNPSTD3; C:\Windows\system32\DRIVERS\snpstd3.sys [10475648 2006-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Sonix Co. Ltd.)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1310552 2019-08-15] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R2 tib_mounter; C:\Windows\system32\DRIVERS\tib_mounter.sys [213336 2019-08-15] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 tnd; C:\Windows\system32\DRIVERS\tnd.sys [690520 2019-08-15] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
R0 VDLPToken2; C:\Windows\System32\DRIVERS\vdlptkn2.sys [135672 2019-10-02] (DESlock Limited -> DESlock Ltd.)
R2 virtual_file; C:\Windows\System32\DRIVERS\virtual_file.sys [324952 2019-08-15] (ACRONIS INTERNATIONAL GMBH -> Acronis International GmbH)
S3 WdBoot; C:\Windows\system32\drivers\wd\WdBoot.sys [46472 2019-09-24] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\wd\WdFilter.sys [346336 2019-09-24] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [53984 2019-09-24] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-05 21:57 - 2020-02-05 21:57 - 000000000 ____D C:\FRST
2020-02-05 20:57 - 2020-02-05 20:57 - 007084897 _____ C:\Users\miraj\Downloads\DK_MAPA_2020_WEB.pdf
2020-02-05 20:50 - 2020-02-05 20:50 - 005045167 _____ C:\Users\miraj\Downloads\MAPA_ZPK_20200101.pdf
2020-02-05 20:50 - 2020-02-05 20:50 - 000273970 _____ C:\Users\miraj\Downloads\MYTO_SEZNAM_ZPK_2020_WEB.pdf
2020-02-02 03:07 - 2018-12-20 12:05 - 000229296 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
2020-01-31 14:38 - 2019-10-06 18:35 - 000445240 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportKE64.sys
2020-01-31 14:38 - 2019-10-06 18:35 - 000395384 _____ (IBM Corp.) C:\Windows\system32\Drivers\RapportHades64.sys
2020-01-31 14:37 - 2020-01-31 14:37 - 000000000 ____D C:\Users\miraj\AppData\Roaming\Mozilla
2020-01-31 14:37 - 2020-01-31 14:37 - 000000000 ____D C:\Users\miraj\AppData\Local\Trusteer
2020-01-31 14:37 - 2020-01-31 14:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ochrana koncového bodu Trusteer
2020-01-31 14:37 - 2020-01-31 14:37 - 000000000 ____D C:\Program Files (x86)\Trusteer
2020-01-31 14:36 - 2020-01-31 14:36 - 000000000 ____D C:\ProgramData\Trusteer
2020-01-30 20:02 - 2020-01-30 20:02 - 000001130 ____H C:\ProgramData\Plocha\Revo Uninstaller Pro.lnk
2020-01-30 20:02 - 2020-01-30 20:02 - 000000000 ____D C:\Users\miraj\AppData\Local\VS Revo Group
2020-01-30 20:02 - 2020-01-30 20:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2020-01-30 20:02 - 2020-01-30 20:02 - 000000000 ____D C:\Program Files\VS Revo Group
2020-01-30 20:02 - 2016-12-21 14:52 - 000040240 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2020-01-29 18:57 - 2020-01-29 18:57 - 025444352 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 022635008 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 019812864 _____ (Microsoft Corporation) C:\Windows\system32\HologramWorld.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 018026496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 007754240 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 007600656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 007259648 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 006516648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 006285312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 006083832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 005914112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 005764664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 005112320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 004856832 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 004348616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 003967888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 003819008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 003243080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 002801152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2020-01-29 18:57 - 2020-01-29 18:57 - 002773776 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 002703872 _____ (Microsoft Corporation) C:\Windows\system32\WebRuntimeManager.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 002584008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 002493928 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 002314952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 002260176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 002225160 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 002084576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 002032128 _____ C:\Windows\system32\rdpnano.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001916744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001858560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001835128 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001693184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001610752 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001541632 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 001489064 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001417760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001412096 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001399304 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 001283592 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2020-01-29 18:57 - 2020-01-29 18:57 - 001283584 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001214976 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001154448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001151816 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001105776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001097216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001083392 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 001073168 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 001000960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Mirage.Internal.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000928120 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000923136 _____ (Microsoft Corporation) C:\Windows\system32\EdgeManager.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000913408 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000895488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000892488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000890368 _____ (Microsoft Corporation) C:\Windows\system32\HolographicExtensions.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000864256 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000852480 _____ (Microsoft Corporation) C:\Windows\system32\ieproxy.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000828216 _____ (Microsoft Corporation) C:\Windows\system32\AppVClient.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000805888 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000788992 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000783480 _____ (Microsoft Corporation) C:\Windows\system32\tcblaunch.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000768488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000749568 _____ (Microsoft Corporation) C:\Windows\system32\FrameServer.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000704512 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.FileExplorer.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Mirage.Internal.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000679160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000673080 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000667136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000667136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EdgeManager.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000623104 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000610816 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000599552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActivationManager.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000587064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000568120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000521728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.System.Launcher.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000512000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000510768 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000500736 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2020-01-29 18:57 - 2020-01-29 18:57 - 000497152 _____ (Microsoft Corporation) C:\Windows\system32\werui.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000490496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.FileExplorer.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000486912 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000476672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000469504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000453432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000450048 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000443904 _____ (Microsoft Corporation) C:\Windows\system32\edgeIso.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000441072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.MediaControl.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werui.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000421376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2020-01-29 18:57 - 2020-01-29 18:57 - 000407040 _____ (Microsoft Corporation) C:\Windows\system32\DispBroker.Desktop.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000404912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000399360 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000375504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieproxy.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000366416 _____ (Microsoft Corporation) C:\Windows\system32\mfsensorgroup.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgeIso.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000324608 _____ (Microsoft Corporation) C:\Windows\system32\FSClient.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32k.sys
2020-01-29 18:57 - 2020-01-29 18:57 - 000311096 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthAgent.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000308736 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000307712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000300392 _____ (Microsoft Corporation) C:\Windows\system32\skci.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000251904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000228864 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000227840 _____ (Microsoft Corporation) C:\Windows\system32\IndexedDbLegacy.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000226816 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000224768 _____ (Microsoft Corporation) C:\Windows\system32\DWWIN.EXE
2020-01-29 18:57 - 2020-01-29 18:57 - 000217600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000210744 _____ (Microsoft Corporation) C:\Windows\system32\tcbloader.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000199480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000193592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\weretw.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000190464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regapi.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000190256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWWIN.EXE
2020-01-29 18:57 - 2020-01-29 18:57 - 000183808 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngOnline.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IndexedDbLegacy.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000174392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AppvVemgr.sys
2020-01-29 18:57 - 2020-01-29 18:57 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000153912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AppvVfs.sys
2020-01-29 18:57 - 2020-01-29 18:57 - 000143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SpatialAudioLicenseSrv.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000138040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\AppVStrm.sys
2020-01-29 18:57 - 2020-01-29 18:57 - 000123392 _____ (Microsoft Corporation) C:\Windows\system32\wercplsupport.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000119808 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000119296 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000112128 _____ (Microsoft Corporation) C:\Windows\system32\NetDriverInstall.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000107832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000106808 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthProxyStub.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000099712 _____ (Microsoft Corporation) C:\Windows\system32\FsIso.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\compstui.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000095232 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000093704 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000089328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32u.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000084496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hvservice.sys
2020-01-29 18:57 - 2020-01-29 18:57 - 000080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetDriverInstall.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000072816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\findnetprinters.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\iemigplugin.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\printui.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iemigplugin.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000063288 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthHost.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000059221 _____ C:\Windows\system32\srms.dat
2020-01-29 18:57 - 2020-01-29 18:57 - 000053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findnetprinters.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\npmproxy.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000042512 _____ (Microsoft Corporation) C:\Windows\system32\SysResetErr.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcicda.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\nlmproxy.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciwave.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciseq.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000021304 _____ (Microsoft Corporation) C:\Windows\system32\kdhvcom.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000019768 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\nlmsprep.dll
2020-01-29 18:57 - 2020-01-29 18:57 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000013824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2020-01-29 18:57 - 2020-01-29 18:57 - 000000315 _____ C:\Windows\system32\DrtmAuth9.bin
2020-01-29 18:57 - 2020-01-29 18:57 - 000000315 _____ C:\Windows\system32\DrtmAuth8.bin
2020-01-29 18:57 - 2020-01-29 18:57 - 000000315 _____ C:\Windows\system32\DrtmAuth7.bin
2020-01-29 18:57 - 2020-01-29 18:57 - 000000315 _____ C:\Windows\system32\DrtmAuth6.bin
2020-01-29 18:57 - 2020-01-29 18:57 - 000000315 _____ C:\Windows\system32\DrtmAuth5.bin
2020-01-29 18:57 - 2020-01-29 18:57 - 000000315 _____ C:\Windows\system32\DrtmAuth4.bin
2020-01-29 18:57 - 2020-01-29 18:57 - 000000315 _____ C:\Windows\system32\DrtmAuth3.bin
2020-01-29 18:57 - 2020-01-29 18:57 - 000000315 _____ C:\Windows\system32\DrtmAuth2.bin
2020-01-29 18:57 - 2020-01-29 18:57 - 000000315 _____ C:\Windows\system32\DrtmAuth12.bin
2020-01-29 18:57 - 2020-01-29 18:57 - 000000315 _____ C:\Windows\system32\DrtmAuth11.bin
2020-01-29 18:57 - 2020-01-29 18:57 - 000000315 _____ C:\Windows\system32\DrtmAuth10.bin
2020-01-29 18:57 - 2020-01-29 18:57 - 000000315 _____ C:\Windows\system32\DrtmAuth1.bin
2020-01-29 18:56 - 2020-01-29 18:56 - 009926968 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 007905208 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 007263992 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 006435840 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 006231200 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 006167552 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 004615376 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 004470784 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 004005888 _____ (Microsoft Corporation) C:\Windows\system32\EdgeContent.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 003729408 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 003703296 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 003591184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 003550208 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 003372440 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 003110400 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 002988552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 002766088 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 002284544 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 002125904 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 002071552 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 001942016 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 001841152 _____ C:\Windows\system32\TextInputMethodFormatter.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 001757096 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2020-01-29 18:56 - 2020-01-29 18:56 - 001748480 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 001743672 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 001726480 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 001602560 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 001512320 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 001480192 _____ (Microsoft Corporation) C:\Windows\system32\usocoreworker.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 001413912 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 001394168 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 001372160 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 001366128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2020-01-29 18:56 - 2020-01-29 18:56 - 001300280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 001182232 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 001170960 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 001149712 _____ (Microsoft Corporation) C:\Windows\system32\ApplyTrustOffline.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 001083904 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 001051448 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 001027000 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000974336 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000949248 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthSSO.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000916480 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000891736 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000875144 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000874512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 000824848 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000803840 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000750080 _____ (Microsoft Corporation) C:\Windows\system32\ActivationManager.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000747320 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000737280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.System.Launcher.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000735744 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000732200 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_StorageSense.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000727040 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntime.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000716288 _____ (Microsoft Corporation) C:\Windows\system32\agentactivationruntimewindows.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000661816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 000642008 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000637968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 000637440 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000617784 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000605184 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 000598528 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000589592 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 000558592 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Notifications.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 000545432 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.MediaControl.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000536064 _____ (Microsoft Corporation) C:\Windows\system32\usosvc.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000518184 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 000516096 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 000477496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2020-01-29 18:56 - 2020-01-29 18:56 - 000467648 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000465208 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\cloudAP.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000459896 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 000456192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000441144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 000437776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 000435200 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000416056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 000415808 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000355840 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicSvc.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000350720 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_SpeechPrivacy.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000324616 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000296760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\DeviceDirectoryClient.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000285184 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicCapsule.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000282112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.AppDefaults.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000281088 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_CapabilityAccess.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000259984 _____ (Microsoft Corporation) C:\Windows\system32\logoncli.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\UpdateDeploymentProvider.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000250880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 000248064 _____ (Microsoft Corporation) C:\Windows\system32\weretw.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000225280 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000221200 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 000209920 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000203776 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000201728 _____ (Microsoft Corporation) C:\Windows\system32\AppXApplicabilityBlob.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000197632 _____ (Microsoft Corporation) C:\Windows\system32\Win32CompatibilityAppraiserCSP.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000194064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 000187392 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000184832 _____ (Microsoft Corporation) C:\Windows\system32\AarSvc.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000169472 _____ (Microsoft Corporation) C:\Windows\system32\SpatialAudioLicenseSrv.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 000155648 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_AppExecutionAlias.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000151552 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_BackgroundApps.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000143160 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000135168 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000127064 _____ (Microsoft Corporation) C:\Windows\system32\win32u.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationControlCSP.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000117264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bindflt.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 000107008 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingExperienceMEM.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 000089912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2020-01-29 18:56 - 2020-01-29 18:56 - 000089088 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicAgent.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 000088352 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\EditBufferTestHook.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000084992 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthSystray.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\CustomInstallExec.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 000071480 _____ (Microsoft Corporation) C:\Windows\system32\win32appinventorycsp.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000069120 _____ (Microsoft Corporation) C:\Windows\system32\UsoClient.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000057856 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\audioresourceregistrar.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\mcicda.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000047208 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2020-01-29 18:56 - 2020-01-29 18:56 - 000044544 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000041472 _____ (Microsoft Corporation) C:\Windows\system32\WordBreakers.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\mciwave.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\WaaSMedicPS.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000027648 _____ (Microsoft Corporation) C:\Windows\system32\lstelemetry.dll
2020-01-29 18:56 - 2020-01-29 18:56 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\bindflt.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 025900032 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 019849216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 008012800 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 007016448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 003263488 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 002870784 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 002716672 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2020-01-28 10:54 - 2020-01-28 10:54 - 002561536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 002473976 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 002305536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 001985928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 001835008 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 001697280 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 001664896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 001655880 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 001458688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 001330952 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 001106944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 001098720 _____ (Microsoft Corporation) C:\Windows\system32\DolbyDecMFT.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 001020032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000921600 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000896512 _____ (Microsoft Corporation) C:\Windows\system32\MdmDiagnostics.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000852480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000851456 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2020-01-28 10:54 - 2020-01-28 10:54 - 000842752 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000689664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000678712 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000673792 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000671232 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000670720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2020-01-28 10:54 - 2020-01-28 10:54 - 000646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Management.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000571392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaaut.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000542496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000432256 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2020-01-28 10:54 - 2020-01-28 10:54 - 000400696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2020-01-28 10:54 - 2020-01-28 10:54 - 000392192 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000379392 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000368128 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000363840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000336384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2020-01-28 10:54 - 2020-01-28 10:54 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\DiagnosticLogCSP.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000321536 _____ (Microsoft Corporation) C:\Windows\system32\sti.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\ConhostV1.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000271872 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000240640 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2020-01-28 10:54 - 2020-01-28 10:54 - 000233472 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000232448 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sti.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000211968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2020-01-28 10:54 - 2020-01-28 10:54 - 000206336 _____ (Microsoft Corporation) C:\Windows\system32\sti_ci.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000204800 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000162696 _____ (Microsoft Corporation) C:\Windows\system32\dmcmnutils.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000148992 _____ (Microsoft Corporation) C:\Windows\system32\MDMAppInstaller.exe
2020-01-28 10:54 - 2020-01-28 10:54 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000145920 _____ (Microsoft Corporation) C:\Windows\system32\wiadss.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000132096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tsusbhub.sys
2020-01-28 10:54 - 2020-01-28 10:54 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000127520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmcmnutils.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\cryptcatsvc.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000120320 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadss.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000102400 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000097280 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000090624 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000088576 _____ (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000084480 _____ (Microsoft Corporation) C:\Windows\system32\enterpriseresourcemanager.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2020-01-28 10:54 - 2020-01-28 10:54 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\enterpriseresourcemanager.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000066048 _____ (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000049152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2020-01-28 10:54 - 2020-01-28 10:54 - 000046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000033792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000018432 _____ (Microsoft Corporation) C:\Windows\system32\wiatrace.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiatrace.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\DMAlertListener.ProxyStub.dll
2020-01-28 10:54 - 2020-01-28 10:54 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-28 10:45 - 2019-12-10 06:15 - 000492544 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2020-01-28 10:45 - 2019-12-10 05:59 - 000390656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-02-05 21:48 - 2019-05-27 08:53 - 000000000 ____D C:\Users\miraj\AppData\Roaming\DMCache
2020-02-05 21:44 - 2019-05-26 18:21 - 000000000 ____D C:\Users\miraj\AppData\Local\Packages
2020-02-05 21:44 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-02-05 21:44 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\AppReadiness
2020-02-05 21:40 - 2019-05-26 18:12 - 000000000 ____D C:\Windows\system32\SleepStudy
2020-02-05 21:37 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-02-05 16:09 - 2019-05-27 09:19 - 000000000 ____D C:\Users\miraj\AppData\Roaming\vlc
2020-02-05 16:05 - 2019-05-27 09:17 - 000000924 ____H C:\ProgramData\Plocha\VLC media player.lnk
2020-02-05 13:03 - 2019-12-17 15:58 - 000003380 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore1d5b4b0e8c3f063
2020-02-05 13:03 - 2019-08-13 08:53 - 000003474 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-02-04 17:57 - 2019-05-26 18:27 - 000000000 ___SD C:\Users\miraj\OneDrive\Dokumenty\Password Manager
2020-02-04 17:42 - 2019-05-26 18:23 - 001694516 _____ C:\Windows\system32\PerfStringBackup.INI
2020-02-04 17:42 - 2019-03-19 12:57 - 000717152 _____ C:\Windows\system32\perfh005.dat
2020-02-04 17:42 - 2019-03-19 12:57 - 000145232 _____ C:\Windows\system32\perfc005.dat
2020-02-04 17:42 - 2019-03-19 05:50 - 000000000 ____D C:\Windows\INF
2020-02-04 17:35 - 2019-05-27 08:53 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager
2020-02-04 17:35 - 2019-05-26 18:23 - 000000000 ____D C:\ProgramData\NVIDIA
2020-02-04 17:35 - 2019-05-26 18:12 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-02-04 17:35 - 2019-03-19 05:37 - 000524288 _____ C:\Windows\system32\config\BBI
2020-02-04 17:34 - 2019-05-27 08:53 - 000000000 ____D C:\Users\miraj\AppData\Roaming\IDM
2020-01-29 19:07 - 2019-05-26 18:21 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-01-29 19:07 - 2019-05-26 18:21 - 000000000 ___RD C:\Users\miraj\3D Objects
2020-01-29 19:06 - 2019-05-26 18:12 - 000436040 _____ C:\Windows\system32\FNTCACHE.DAT
2020-01-29 19:05 - 2019-03-19 05:52 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2020-01-29 19:05 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\SystemResources
2020-01-29 19:05 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2020-01-29 19:05 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2020-01-29 19:05 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\ShellExperiences
2020-01-29 19:05 - 2019-03-19 05:52 - 000000000 ____D C:\Windows\bcastdvr
2020-01-29 19:03 - 2019-03-19 05:37 - 000000000 ____D C:\Windows\CbsTemp
2020-01-28 15:25 - 2019-08-13 08:53 - 000002309 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-28 15:25 - 2019-08-13 08:53 - 000002268 ____H C:\ProgramData\Plocha\Google Chrome.lnk
2020-01-28 11:12 - 2019-03-19 05:52 - 000000000 ___SD C:\Windows\system32\UNP
2020-01-28 11:11 - 2019-05-26 18:31 - 000000000 ____D C:\Windows\system32\MRT
2020-01-28 11:06 - 2019-05-26 18:31 - 120202352 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-01-28 10:59 - 2019-03-19 05:49 - 000000167 _____ C:\Windows\win.ini
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-02-2020 02
Ran by miraj (05-02-2020 21:59:41)
Running from C:\Users\miraj\OneDrive\Plocha
Windows 10 Pro Version 1909 18363.628 (X64) (2019-05-26 17:16:55)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1226529067-3913842748-2578413227-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1226529067-3913842748-2578413227-503 - Limited - Disabled)
Guest (S-1-5-21-1226529067-3913842748-2578413227-501 - Limited - Disabled)
miraj (S-1-5-21-1226529067-3913842748-2578413227-1001 - Administrator - Enabled) => C:\Users\miraj
WDAGUtilityAccount (S-1-5-21-1226529067-3913842748-2578413227-504 - Limited - Disabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
FW: ESET Firewall (Enabled) {B066057A-E576-007C-D591-56C163D3B33B}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acronis True Image (HKLM-x32\...\{3FB8B185-7EBB-4E02-9038-DBF328954435}) (Version: 20.0.8058 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{3FB8B185-7EBB-4E02-9038-DBF328954435}Visible) (Version: 20.0.8058 - Acronis)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.021.20061 - Adobe Systems Incorporated)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.1.0 - Canon Inc.)
Canon MG5700 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5700_series) (Version: 1.00 - Canon Inc.)
Canon MG5700 series On-screen Manual (HKLM-x32\...\Canon MG5700 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
ESET Premium Line Encryption (HKLM\...\{9A6F6D1F-CEBC-4338-87EC-D7F208CFCED1}) (Version: 1.0.19 - ESET) Hidden
ESET Security (HKLM\...\{0813F772-F554-4DA9-9CEA-ABCE6321BDFD}) (Version: 13.0.24.0 - ESET, spol. s r.o.)
Free Hide Folder (HKLM-x32\...\Free Hide Folder) (Version: - )
Google Earth Pro (HKLM\...\{70A0F34E-564B-4F93-ADD6-3BAEC6E44075}) (Version: 7.3.2.5776 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Hard Disk Sentinel PRO (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: 5.40 - Janos Mathe)
Icon Creator (HKLM-x32\...\{EF4376E4-14B7-46DC-A143-4B8E7676C4AC}) (Version: 1.0.0 - CodeWonders)
iDeer Blu-ray Player (HKLM-x32\...\iDeer Blu-ray Player) (Version: 1.11.7.2128 - iDeerApp Software Inc.)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
Microsoft Office Professional Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Nástroje kontroly pravopisu pro Microsoft Office 2016 – čeština (HKLM\...\{90160000-001F-0405-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2016 - slovenčina (HKLM\...\{90160000-001F-041B-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 432.00 - NVIDIA Corporation)
Ochrana koncového bodu Trusteer (HKLM-x32\...\Rapport_msi) (Version: 3.5.1950.120 - Trusteer)
Ovládací panel NVIDIA 432.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 432.00 - NVIDIA Corporation) Hidden
Rapport (HKLM-x32\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.1950.120 - Trusteer) Hidden
Registrace uživatele zařízení Canon MG5700 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG5700 series) (Version: - Canon Inc.)
Revo Uninstaller Pro 4.2.3 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.2.3 - VS Revo Group, Ltd.)
Skype verze 8.49 (HKLM-x32\...\Skype_is1) (Version: 8.49 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sticky Password 8.2.3.24 (HKLM-x32\...\Sticky Password_is1) (Version: 8.2 - Lamantine Software)
Update for Skype for Business 2016 (KB4484213) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{697E3A3C-324C-4BE3-BDF5-EF2DFA57AA9A}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484213) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{697E3A3C-324C-4BE3-BDF5-EF2DFA57AA9A}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484213) 64-Bit Edition (HKLM\...\{90160000-012B-0405-1000-0000000FF1CE}_Office16.PROPLUS_{697E3A3C-324C-4BE3-BDF5-EF2DFA57AA9A}) (Version: - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Packages:
=========
Doplněk pro Fotky -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-08-27] (Microsoft Corporation)
IDM Integration Module -> C:\Program Files\WindowsApps\TonecInc.IDMIntegrationModule_6.36.3.0_neutral__e7b5mm5d3r6v2 [2020-01-30] (Tonec FZE)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-05-27] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-05-27] (Microsoft Corporation) [MS Ad]
MSN Počasí -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.)
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2017-03-02] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ESD Shell Icon Overlay Identifier] -> {AF106685-9C86-48AF-8524-8F485C459E17} => C:\Program Files\ESET\ESET Secure Data\esdovrly.dll [2019-10-02] (DESlock Limited -> DESlock Limited)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> No File
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-12-17] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-12-17] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> No File
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => -> No File
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2019-10-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> No File
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2019-12-17] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2019-03-29] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
==================== Loaded Modules (Whitelisted) =============
2018-07-18 15:27 - 2018-07-18 15:27 - 000747520 _____ () [File not signed] C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
2020-01-28 10:32 - 2019-11-14 16:49 - 001398272 _____ () [File not signed] C:\Program Files\ESET\ESET Password Manager\DLLs\_hashlib.pyd
2019-05-27 10:00 - 2005-06-09 00:02 - 000119808 _____ (SEIKO EPSON CORPORATION) [File not signed] C:\Windows\System32\E_ILMACE.DLL
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\miraj\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: AdobeARMservice => 2
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "snpstd3"
HKLM\...\StartupApproved\Run: => "EPSON Stylus DX3800"
HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\...\StartupApproved\Run: => "IDMan"
HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1226529067-3913842748-2578413227-1001\...\StartupApproved\Run: => "Steam"
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{51F901E1-15A1-49E2-97CF-922881AA9DA3}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{69345804-0ACC-4191-8964-B09369321229}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{51EA9771-CB55-44D5-84EB-E6F7EB46F5EC}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EF9E8DAA-A20F-4EEB-8F70-5C027F8D765E}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{074C6C79-0BD3-48FD-B475-69DD7243636B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8FFC1443-1AA0-4100-BAAE-F5440582F59C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A17A2534-DE50-4C91-BF62-ED59A80D530C}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> )
FirewallRules: [{F82B3DC5-A995-4F14-88F3-0A9EA8996803}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{9FF87C8D-A046-45A5-98FA-061B9FBC1C45}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{99C8DA80-AD90-4A59-B6B1-A4F906096E9D}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{6E301FB3-CCCE-44B6-9D25-AF15F776017F}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{D5432DEB-4DC2-4C6F-B7F6-6DDCFA94364C}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{935DB4FF-6A12-43B9-9779-2C5ABDB1031B}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{D54EA59B-7AD8-48BE-9AC1-8AFFE334DDD4}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{9629514D-67C1-49B8-B08D-BC03EEA3D6C8}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> )
FirewallRules: [{5CAC3F10-3B21-4CF2-B01A-29DA69A37742}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{91257BFD-5D77-429E-AB28-9BCADE7DF4D4}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> )
FirewallRules: [{DFCDF0AA-BFCC-41CD-B87A-AB8F31291EE1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DC65E491-1D9F-467F-A56A-03C4DF95DFAC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7FFDA075-6F97-42A1-B420-F684807F393C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8BDA724D-E8A6-4489-9F4C-E3D1F3ED1A60}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{92FB3374-1FDB-4DC2-B7E4-8445573939B9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{62CE181D-A388-42FD-A3D2-7B11202B93FB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{ED110B68-53BD-472C-B900-11E68DD0270E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lara Croft GO\Lara Croft GO.exe () [File not signed]
FirewallRules: [{9C999B08-AA53-402F-BE92-6BFA6BAB5C8D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Lara Croft GO\Lara Croft GO.exe () [File not signed]
FirewallRules: [{FEB3D8E3-0451-48A5-A4F0-397CEDE34011}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{63142C1F-52DD-4275-97E8-1D5EB41FF356}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{3472DF60-6A4D-45AA-BDF7-CE1C7DB308BC}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [{5D49B1F3-9A2B-416A-815F-92E785C79265}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [{2C6FC6B8-EFCB-46B5-AECB-2FCB55B41270}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:111.79 GB) (Free:61.44 GB) (55%)
==================== Faulty Device Manager Devices ============
==================== Event log errors: ========================
Application errors:
==================
Error: (02/05/2020 09:52:03 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1020) (User: NT AUTHORITY)
Description: Velikost požadované vyrovnávací paměti je větší než velikost vyrovnávací paměti předané do funkce Collect knihovny DLL rozšiřitelných čítačů C:\Windows\System32\perfts.dll pro službu LSM. Velikost dané vyrovnávací paměti: 28744; požadovaná velikost: 31936.
Error: (02/05/2020 01:29:47 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4062
Error: (02/05/2020 01:29:47 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4062
Error: (02/05/2020 01:29:47 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (02/05/2020 01:29:45 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2093
Error: (02/05/2020 01:29:45 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2093
Error: (02/05/2020 01:29:45 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (02/05/2020 08:46:20 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4172
System errors:
=============
Error: (02/04/2020 12:13:39 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: NT AUTHORITY)
Description: Připojení správce filtrů ke svazku \Device\HarddiskVolume22 se nezdařilo. Tento svazek nebude až do restartování k dispozici pro filtrování. Konečný stav: 0xc03a001c.
Error: (01/30/2020 07:12:43 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7KBAA0Q)
Description: Server {1EF75F33-893B-4E8F-9655-C3D602BA4897} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/30/2020 07:12:43 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7KBAA0Q)
Description: Server {1EF75F33-893B-4E8F-9655-C3D602BA4897} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/30/2020 07:12:43 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7KBAA0Q)
Description: Server {1EF75F33-893B-4E8F-9655-C3D602BA4897} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/30/2020 07:12:43 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7KBAA0Q)
Description: Server {1EF75F33-893B-4E8F-9655-C3D602BA4897} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/30/2020 07:12:42 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7KBAA0Q)
Description: Server {1EF75F33-893B-4E8F-9655-C3D602BA4897} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/30/2020 07:12:42 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7KBAA0Q)
Description: Server {1EF75F33-893B-4E8F-9655-C3D602BA4897} se v daném časovém limitu neregistroval u služby DCOM.
Error: (01/30/2020 07:12:42 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-7KBAA0Q)
Description: Server {1EF75F33-893B-4E8F-9655-C3D602BA4897} se v daném časovém limitu neregistroval u služby DCOM.
Windows Defender:
===================================
Date: 2019-09-01 19:19:21.893
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {B25F6FF5-9683-4447-8D2C-EF0B56992478}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-09-01 17:13:11.650
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {8C91D4D0-93E8-421C-93A1-9A026DED152B}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-09-01 17:02:52.842
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {E1CF9CA1-28B5-4557-AFB3-96A62BE39D06}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-08-30 15:43:26.928
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {4490A22F-1972-47A0-9739-8F9E24A1CD83}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-08-30 14:44:39.625
Description:
Prohledávání Antivirová ochrana v programu Windows Defender bylo zastaveno před dokončením.
ID prohledávání: {339169C1-D79A-4811-8528-8BA58C9A61C6}
Typ prohledávání: Antimalwarový program
Parametry prohledávání: Rychlé prohledávání
Uživatel: NT AUTHORITY\SYSTEM
Date: 2019-09-24 10:14:53.351
Description:
Funkce Ochrana v reálném čase u prohledávání Antivirová ochrana v programu Windows Defender zjistila chybu a došlo k jejímu selhání.
Funkce: Monitorování chování
Kód chyby: 0x80508023
Popis chyby: Program nenašel na tomto zařízení malware ani jiný potenciálně nevyžádaný software.
Důvod: Antimalwarové bezpečnostní informace přestaly z neznámých důvodů fungovat. V některých případech se tento problém dá vyřešit restartováním služby.
Date: 2019-09-24 10:10:01.220
Description:
Antivirová ochrana v programu Windows Defender narazil na chybu při pokusu o aktualizaci bezpečnostních informací.
Nová verze bezpečnostních informací:
Předchozí verze bezpečnostních informací: 1.301.301.0
Zdroj aktualizace: Server Microsoft Update
Typ bezpečnostních informací: Antivirový program
Typ aktualizace: Úplné
Uživatel: NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu: 1.1.16300.1
Kód chyby: 0x8024001e
Popis chyby: Při zjišťování aktualizací došlo k neočekávaným potížím. Informace o instalaci nebo řešení potíží s aktualizacemi naleznete v nápovědě a podpoře.
CodeIntegrity:
===================================
Date: 2020-02-05 21:59:35.832
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-02-05 21:59:35.830
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-02-05 21:59:35.765
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-02-05 21:59:35.763
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-02-05 21:59:35.746
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-02-05 21:59:35.743
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2020-02-05 21:59:01.765
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2020-02-05 21:59:01.762
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1402 05/13/2010
Motherboard: ASUSTeK Computer INC. M3N78-AM
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 6000+
Percentage of memory in use: 70%
Total physical RAM: 4095.23 MB
Available physical RAM: 1210.9 MB
Total Virtual: 4799.23 MB
Available Virtual: 660 MB
==================== Drives ================================
Drive c: (Woknousy) (Fixed) (Total:111.79 GB) (Free:61.44 GB) NTFS
Drive d: (Windows) (Fixed) (Total:288.32 GB) (Free:288.2 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (Naše DATA) (Fixed) (Total:465.76 GB) (Free:152.77 GB) NTFS
Drive f: (Disk Z) (Fixed) (Total:9.77 GB) (Free:5.9 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: 9AF3C623)
Partition 1: (Active) - (Size=288.3 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=9.8 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 1DED93DC)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (Size: 111.8 GB) (Disk ID: 8D95BDC3)
Partition 1: (Not Active) - (Size=111.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivka - prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Preventivka - prosím o kontrolu logu
ahoj,
log je OK
doporucujem trochu zvacsit virtualnu pamat napr. na 6000MB
log je OK
doporucujem trochu zvacsit virtualnu pamat napr. na 6000MB
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Preventivka - prosím o kontrolu logu
Děkuji za zhodnocení logu.JaRon píše:ahoj,
log je OK
doporucujem trochu zvacsit virtualnu pamat napr. na 6000MB
Nevím ale jaké hodnoty přesně nastavit, viz příloha.
počáteční velikost / největší velikost ???
Re: Preventivka - prosím o kontrolu logu
doporucujem nastavit rovnaku hodnotu min/max na 6000MB
"necvici" to zbytocne s diskom
"necvici" to zbytocne s diskom
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?