Právě je 14 říj 2019 05:58

Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Všechny časy jsou v UTC + 1 hodina


Pravidla fóra


Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz



Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 12 ] 
Autor Zpráva
 Předmět příspěvku: Prosím o kontrolu
PříspěvekNapsal: 16 úno 2019 23:55 
Offline
Návštěvník
Návštěvník

Registrován: 23 říj 2006 18:56
Příspěvky: 70
Dobrý den, prosím o kontrolu logu. Synátor si dnes "hrál" s počítačem, asi tuším co dělal, vyskočilo mi to nějaké upozornění na microsoft toolkit a neco dalšího, tak bych se všeho rád zbavil a měl jistotu, že v počítači není nic škodlivého. Děkuji moc.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16.02.2019 01
Ran by David (administrator) on LAPTOP-FURA4EBM (16-02-2019 23:42:25)
Running from C:\Users\David\Desktop
Loaded Profiles: defaultuser0 & David (Available Profiles: defaultuser0 & David)
Platform: Windows 10 Home Version 1809 17763.316 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(COMODO) C:\Program Files\COMODO\COMODO Internet Security\upd7C.tmp
(AMD) C:\Windows\System32\atiesrxx.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(COMODO) C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20388.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12093.3.37141.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Microsoft Corporation) C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8843784 2016-08-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1598144 2018-12-17] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-09-19] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6627720 2016-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [705784 2016-06-20] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [vdcss] => C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe [8511152 2018-03-14] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4251336 2018-10-10] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Winlogon: [Userinit]
HKU\S-1-5-21-1976776874-1411867160-1571642719-1000\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_pepper.exe [1456128 2018-12-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\Installer\chrmstp.exe [2019-02-16] (Google LLC -> Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Audio Switch.lnk [2016-09-21]
ShortcutTarget: HP Audio Switch.lnk -> C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitchLC.vbs ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{b27bbdbf-4c81-4eb1-9829-66bf96021acc}: [DhcpNameServer] 213.46.172.36 213.46.172.37

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HCTE
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
SearchScopes: HKLM -> {6A895CCA-1F48-4584-95B4-017D2CEED056} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKLM-x32 -> {6A895CCA-1F48-4584-95B4-017D2CEED056} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1976776874-1411867160-1571642719-1001 -> {6A895CCA-1F48-4584-95B4-017D2CEED056} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
BHO: IeUrlFilter Class -> {2DD257A3-5028-41AE-A1E7-A12F76A08893} -> C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho64.dll [2018-03-14] (Comodo Security Solutions, Inc. -> COMODO)
BHO-x32: IeUrlFilter Class -> {2DD257A3-5028-41AE-A1E7-A12F76A08893} -> C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho32.dll [2018-03-14] (Comodo Security Solutions, Inc. -> COMODO)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2017-10-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2018-12-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-10-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL [2017-10-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
Edge Extension: (Translator pro Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2019-02-01]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2017-10-28] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-09-19] (Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL [2017-10-28] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-09-19] (Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\Default [2019-02-16]
CHR Extension: (Prezentace) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-29]
CHR Extension: (Dokumenty) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-29]
CHR Extension: (Disk Google) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-30]
CHR Extension: (YouTube) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-30]
CHR Extension: (uBlock Origin) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-02-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-30]
CHR Extension: (Gmail) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-16]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [138752 2016-07-27] () [File not signed]
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [269824 2016-08-12] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3058392 2017-12-12] (Microsoft Corporation -> Microsoft Corporation)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [10736912 2019-02-11] (Comodo Security Solutions, Inc. -> COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2876096 2018-12-17] (Comodo Security Solutions, Inc. -> COMODO)
R2 csssrv; C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe [4199600 2018-03-14] (Comodo Security Solutions, Inc. -> COMODO)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-20] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-20] (Dropbox, Inc -> Dropbox, Inc.)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1419424 2016-07-05] (Intel(R) Software -> Intel Corporation)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [894976 2016-08-04] (HP Inc.) [File not signed]
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [631800 2016-06-20] (HP Inc. -> HP Inc.)
R2 ibtsiva; C:\WINDOWS\System32\ibtsiva.exe [541896 2018-07-06] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370792 2018-10-26] (Intel Corporation -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [974632 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044680 2018-10-10] (Comodo Security Solutions, Inc. -> COMODO)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-05-25] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [265864 2018-03-19] (Intel Corporation -> )
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2016-03-23] (CyberLink Corp. -> CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [314624 2016-08-12] (Realtek Semiconductor Corp -> Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3848328 2018-03-19] (Intel Corporation -> Intel® Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [26711040 2016-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [500736 2016-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17944 2018-05-23] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
R1 cmdcss; C:\WINDOWS\system32\drivers\cmdcss.sys [125000 2018-02-28] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [44056 2018-05-23] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [832032 2018-05-23] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [50768 2018-05-23] (Comodo Security Solutions, Inc. -> COMODO)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52208 2016-07-05] (Intel(R) Software -> Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260080 2016-07-05] (Intel(R) Software -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136128 2017-12-06] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [134400 2018-05-23] (Comodo Security Solutions, Inc. -> COMODO)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO)
R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [8623128 2018-04-04] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [935168 2016-02-25] (Realtek Semiconductor Corp -> Realtek )
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [55384 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46680 2019-02-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [330936 2019-02-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2019-02-16] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35360 2018-09-13] (HP Inc. -> HP)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-16 23:42 - 2019-02-16 23:43 - 000022405 _____ C:\Users\David\Desktop\FRST.txt
2019-02-16 23:42 - 2019-02-16 23:42 - 000000000 ____D C:\FRST
2019-02-16 23:40 - 2019-02-16 23:40 - 002434560 _____ (Farbar) C:\Users\David\Desktop\FRST64.exe
2019-02-16 23:35 - 2019-02-16 23:35 - 019341880 _____ (Piriform Software Ltd) C:\Users\David\Downloads\ccsetup552 (1).exe
2019-02-16 23:35 - 2019-02-16 23:35 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-02-16 23:34 - 2019-02-16 23:34 - 019341880 _____ (Piriform Software Ltd) C:\Users\David\Downloads\ccsetup552.exe
2019-02-16 23:31 - 2019-02-16 23:32 - 007316688 _____ (Malwarebytes) C:\Users\David\Downloads\adwcleaner_7.2.7.0.exe
2019-02-16 11:31 - 2019-02-01 23:31 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-02-16 11:31 - 2019-02-01 23:31 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-02-16 11:06 - 2019-02-16 11:06 - 000003710 _____ C:\WINDOWS\System32\Tasks\OInstall
2019-02-16 11:06 - 2017-03-11 01:34 - 012269328 _____ C:\WINDOWS\OInstall.exe
2019-02-16 10:50 - 2019-02-16 11:30 - 000000414 _____ C:\WINDOWS\Tasks\Updater_Online_Application.job
2019-02-16 10:50 - 2019-02-16 11:30 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G6.job
2019-02-16 10:50 - 2019-02-16 11:30 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G5.job
2019-02-16 10:50 - 2019-02-16 11:30 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G4.job
2019-02-16 10:50 - 2019-02-16 11:30 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G3.job
2019-02-16 10:50 - 2019-02-16 11:30 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G2.job
2019-02-16 10:50 - 2019-02-16 11:30 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G1.job
2019-02-16 10:50 - 2019-02-16 10:52 - 000000000 ____D C:\Program Files (x86)\LetsSee!
2019-02-16 10:50 - 2019-02-16 10:50 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2019-02-16 10:50 - 2019-02-16 10:50 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2019-02-16 10:50 - 2019-02-16 10:50 - 000003308 _____ C:\WINDOWS\System32\Tasks\Updater_Online_Application
2019-02-16 10:50 - 2019-02-16 10:50 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G6
2019-02-16 10:50 - 2019-02-16 10:50 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G5
2019-02-16 10:50 - 2019-02-16 10:50 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G4
2019-02-16 10:50 - 2019-02-16 10:50 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G3
2019-02-16 10:50 - 2019-02-16 10:50 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G2
2019-02-16 10:50 - 2019-02-16 10:50 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G1
2019-02-16 10:50 - 2019-02-16 10:50 - 000000000 ____D C:\Users\David\AppData\Roaming\Microleaves
2019-02-16 10:50 - 2019-02-16 10:50 - 000000000 ____D C:\Users\David\AppData\Local\AdvinstAnalytics
2019-02-16 10:50 - 2019-02-16 10:50 - 000000000 ____D C:\ProgramData\4OA9OD2I0MAFZ4LMJEV8
2019-02-16 10:50 - 2019-02-16 10:50 - 000000000 ____D C:\Program Files (x86)\Microleaves
2019-02-16 10:43 - 2019-02-16 10:49 - 000003638 _____ C:\WINDOWS\System32\Tasks\PPI Update
2019-02-16 10:43 - 2019-02-16 10:44 - 000000000 ____D C:\Program Files (x86)\Microsoft Toolkit Final
2019-02-16 08:19 - 2019-02-16 08:19 - 007724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 005440008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 005112792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 002469648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 002278448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 001289192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 001282640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 001259024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-02-16 08:19 - 2019-02-16 08:19 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 000762272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 000421904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 026807296 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 023439360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 022111856 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 020812288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 019284480 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 019023872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 015224832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 009683984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 008875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 007897088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 007645600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 006540424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 006070272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 005584864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 005565952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 005527552 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 005205464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004885504 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004702704 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004688896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004627456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 004526080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004298752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004019200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 003922944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 003662336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 003386368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002927120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 002776920 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002702528 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002626592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002488320 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 002437552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002392576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002275888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002187264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002072728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001969680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001700864 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001696936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-02-16 08:18 - 2019-02-16 08:18 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001671864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001604096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001533440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001467560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001467384 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001446400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001341584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-02-16 08:18 - 2019-02-16 08:18 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001309184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001271608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001178344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 001168384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001054200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 001050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000982032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000887808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000864056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000800256 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000726208 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000652320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000649272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000588304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000522312 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000496872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000475152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-02-16 08:18 - 2019-02-16 08:18 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000277536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000262672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000146888 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000121872 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000097592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlahc.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\PktMon.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000091424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\nslookup.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nslookup.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 005561856 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 004991096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 002992640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 002766136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 002721280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 002149368 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 002085376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 002021584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 001975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 001700880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 001331744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 001221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 001209360 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 001050936 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000982576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000970256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000865784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000850968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000822448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000806560 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-02-16 08:17 - 2019-02-16 08:17 - 000806560 _____ C:\WINDOWS\system32\locale.nls
2019-02-16 08:17 - 2019-02-16 08:17 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000765960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000752136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000741888 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000651304 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000629576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000612368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000604552 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000419128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000408800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000387384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000375544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000353488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000298296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000276488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTF.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000203280 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MTF.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000157192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000148480 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000132104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000114856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000090424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo-overrides.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000047136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000072 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2019-01-30 21:08 - 2018-05-23 06:06 - 000017944 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdboot.sys
2019-01-23 18:32 - 2019-01-23 18:32 - 000298651 _____ C:\Users\David\Desktop\legíny_lidl.pdf
2019-01-19 23:33 - 2019-01-19 23:33 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-01-19 23:32 - 2019-02-16 11:36 - 001841644 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-19 23:31 - 2019-02-16 11:30 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-19 23:31 - 2019-02-16 08:11 - 000004008 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2019-01-19 23:31 - 2019-02-16 08:11 - 000003776 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2019-01-19 23:31 - 2019-02-09 21:36 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1976776874-1411867160-1571642719-1001
2019-01-19 23:31 - 2019-01-28 21:50 - 000003140 _____ C:\WINDOWS\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2019-01-19 23:31 - 2019-01-19 23:31 - 000003830 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-01-19 23:31 - 2019-01-19 23:31 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-01-19 23:31 - 2019-01-19 23:31 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-19 23:31 - 2019-01-19 23:31 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-01-19 23:31 - 2019-01-19 23:31 - 000003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2019-01-19 23:31 - 2019-01-19 23:31 - 000002526 _____ C:\WINDOWS\System32\Tasks\AutoKMS
2019-01-19 23:31 - 2019-01-19 23:31 - 000002262 _____ C:\WINDOWS\System32\Tasks\DropboxOEM
2019-01-19 23:31 - 2019-01-19 23:31 - 000002252 _____ C:\WINDOWS\System32\Tasks\HPJumpStartProvider
2019-01-19 23:31 - 2019-01-19 23:31 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-01-19 23:31 - 2019-01-19 23:31 - 000000020 ___SH C:\Users\David\ntuser.ini
2019-01-19 23:31 - 2019-01-19 23:31 - 000000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2019-01-19 23:31 - 2019-01-19 23:31 - 000000000 ____D C:\WINDOWS\System32\Tasks\COMODO
2019-01-19 23:30 - 2019-01-19 23:31 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2019-01-19 23:30 - 2019-01-19 23:31 - 000011433 _____ C:\WINDOWS\diagerr.xml
2019-01-19 23:24 - 2019-01-19 23:24 - 000001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2019-01-19 23:23 - 2019-02-09 21:36 - 000002398 _____ C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-19 23:23 - 2019-01-19 23:31 - 000000000 ____D C:\Users\David
2019-01-19 23:23 - 2019-01-19 23:27 - 000000000 ____D C:\Users\defaultuser0
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Šablony
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Soubory cookie
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Poslední
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Okolní tiskárny
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Okolní síť
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Nabídka Start
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Dokumenty
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Documents\Obrázky
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Documents\Hudba
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Documents\Filmy
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Data aplikací
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\AppData\Local\Data aplikací
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Šablony
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Soubory cookie
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Poslední
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Okolní tiskárny
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Okolní síť
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Nabídka Start
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Dokumenty
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Documents\Obrázky
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Documents\Hudba
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Documents\Filmy
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Data aplikací
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\AppData\Local\Data aplikací
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 ____D C:\ProgramData\USOShared
2019-01-19 23:23 - 2018-09-15 08:29 - 000001105 _____ C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-19 23:22 - 2019-01-19 23:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2019-01-19 23:22 - 2019-01-19 23:22 - 000000000 ____D C:\Program Files\ATI Technologies
2019-01-19 23:22 - 2019-01-19 23:22 - 000000000 ____D C:\Program Files (x86)\AMD
2019-01-19 23:22 - 2018-09-15 08:28 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-01-19 23:21 - 2019-02-16 23:11 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-19 23:21 - 2019-02-16 11:30 - 000541416 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-01-19 23:12 - 2019-01-19 23:20 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2019-01-19 23:11 - 2019-01-19 23:12 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2019-01-19 23:11 - 2019-01-19 23:11 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2019-01-19 23:09 - 2019-01-19 23:09 - 024617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 012151808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 004918784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-01-19 23:09 - 2019-01-19 23:09 - 003952952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 003566080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-01-19 23:09 - 2019-01-19 23:09 - 002986352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 002429752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-01-19 23:09 - 2019-01-19 23:09 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-01-19 23:09 - 2019-01-19 23:09 - 001749504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 001294864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2019-01-19 23:09 - 2019-01-19 23:09 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2019-01-19 23:09 - 2019-01-19 23:09 - 001073448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 001057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 001024920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000854784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000662528 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Pipeline.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2019-01-19 23:09 - 2019-01-19 23:09 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2019-01-19 23:09 - 2019-01-19 23:09 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000301096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000241680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CastingShellExt.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000098816 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Broker.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 012858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 007685016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 006306152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 006132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 005312512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 005130752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 003730352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 003504640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 003427328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 003379000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 003338328 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 003270144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 003108864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 003092480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002832896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002654208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002630656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002594872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002185728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001863168 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001842600 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001830912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001824768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001797128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001675712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001590288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001520208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001476096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001456736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001395248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 001387496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001360696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 001315840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001287776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001279024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001249792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 001212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001199104 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001180760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001162280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001051960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 001026992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000964976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000897848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000863752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000836096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000818832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000756640 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000660496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000604248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000582240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000566584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000514112 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000402576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000373768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000306704 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000300024 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000294072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000252536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000178696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000175096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000164344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000151872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastingShellExt.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000140808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000114344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000102392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000094224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000083472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-01-19 23:07 - 2019-01-19 23:07 - 000000000 ____D C:\inetpub
2019-01-19 23:06 - 2019-01-19 23:06 - 001167960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000780376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000126064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000104560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2019-01-19 23:06 - 2019-01-19 23:06 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2019-01-19 23:06 - 2019-01-19 23:06 - 000036896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2019-01-19 23:06 - 2019-01-19 23:06 - 000035440 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2019-01-19 23:06 - 2019-01-19 23:06 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-01-19 23:06 - 2019-01-19 23:06 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-01-19 23:06 - 2019-01-19 23:06 - 000000000 ____D C:\Program Files\MSBuild
2019-01-19 23:06 - 2019-01-19 23:06 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-01-19 23:06 - 2019-01-19 23:06 - 000000000 ____D C:\Program Files (x86)\MSBuild

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-16 23:40 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-02-16 23:37 - 2017-07-01 23:01 - 000000000 ____D C:\Users\David\Desktop\záloha registru
2019-02-16 23:36 - 2019-01-12 23:29 - 000000000 ___DC C:\WINDOWS\Panther
2019-02-16 23:36 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-02-16 23:35 - 2017-07-15 08:47 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-02-16 23:35 - 2017-07-15 08:47 - 000000000 ____D C:\Program Files\CCleaner
2019-02-16 23:35 - 2017-03-30 19:58 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2019-02-16 11:42 - 2017-03-30 22:11 - 000000000 ____D C:\Users\David\AppData\Roaming\vlc
2019-02-16 11:36 - 2018-09-15 18:32 - 000753610 _____ C:\WINDOWS\system32\perfh005.dat
2019-02-16 11:36 - 2018-09-15 18:32 - 000163034 _____ C:\WINDOWS\system32\perfc005.dat
2019-02-16 11:31 - 2018-01-01 16:51 - 000000000 ___RD C:\Users\David\3D Objects
2019-02-16 11:31 - 2017-09-24 18:05 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-02-16 11:31 - 2017-03-20 19:36 - 000000000 __SHD C:\Users\David\IntelGraphicsProfiles
2019-02-16 11:31 - 2016-07-29 13:33 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-02-16 11:30 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-02-16 11:30 - 2017-08-20 16:05 - 029974084 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2019-02-16 11:30 - 2016-09-21 10:17 - 000000948 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2019-02-16 11:30 - 2016-09-21 10:17 - 000000944 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-02-16 11:29 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-02-16 11:28 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-02-16 10:36 - 2018-09-15 08:33 - 000000000 ___RD C:\Program Files\Windows Defender
2019-02-16 10:36 - 2018-06-30 21:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-02-16 10:27 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-02-16 10:26 - 2018-09-15 07:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-02-16 10:26 - 2017-04-01 20:23 - 000592616 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-02-16 08:20 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\servicing
2019-02-16 08:15 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-02-16 08:12 - 2017-03-20 19:50 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-02-16 08:12 - 2017-03-20 19:50 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-02-16 08:11 - 2017-04-01 22:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-02-12 22:04 - 2017-04-01 22:18 - 129330784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-02-09 21:36 - 2017-03-20 19:38 - 000000000 ___RD C:\Users\David\OneDrive
2019-02-08 21:36 - 2018-06-30 21:35 - 000000000 ____D C:\ProgramData\Packages
2019-01-30 21:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ServiceState
2019-01-30 21:08 - 2018-09-15 08:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-01-30 20:55 - 2017-10-02 19:16 - 000000000 ____D C:\ProgramData\AMD
2019-01-28 21:56 - 2018-03-23 21:16 - 000002191 _____ C:\Users\Public\Desktop\Comodo Secure Shopping.lnk
2019-01-28 21:56 - 2017-03-30 19:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2019-01-26 21:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\appcompat
2019-01-26 21:34 - 2018-04-10 14:34 - 000000000 ____D C:\Users\David\AppData\Local\PlaceholderTileLogoFolder
2019-01-26 21:34 - 2018-01-01 16:36 - 000000000 ____D C:\Users\David\AppData\Local\Packages
2019-01-19 23:31 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\windows nt
2019-01-19 23:31 - 2017-03-20 19:36 - 000000000 ____D C:\Users\David\AppData\Local\ConnectedDevicesPlatform
2019-01-19 23:30 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Registration
2019-01-19 23:28 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-01-19 23:27 - 2017-09-24 18:13 - 000023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2019-01-19 23:25 - 2017-08-20 16:59 - 000000000 ____D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-01-19 23:24 - 2018-01-01 16:37 - 000000000 ____D C:\Users\defaultuser0\AppData\Local\Packages
2019-01-19 23:23 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\USOPrivate
2019-01-19 23:22 - 2017-09-24 18:05 - 000033119 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2019-01-19 23:22 - 2017-09-24 18:05 - 000001851 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DTS Audio Control.lnk
2019-01-19 23:22 - 2017-09-24 18:05 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2019-01-19 23:22 - 2017-09-24 18:05 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2019-01-19 23:22 - 2017-09-24 18:05 - 000000000 ____D C:\AMD
2019-01-19 23:22 - 2016-11-08 13:07 - 000000000 ____D C:\Intel
2019-01-19 23:20 - 2018-09-15 08:36 - 000000000 ____D C:\WINDOWS\Setup
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\spool
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-01-19 23:20 - 2018-09-15 08:31 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2019-01-19 23:20 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2019-01-19 23:20 - 2018-02-25 18:49 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2019-01-19 23:20 - 2017-10-28 17:13 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2019-01-19 23:20 - 2017-10-28 17:11 - 000000000 ____D C:\WINDOWS\SHELLNEW
2019-01-19 23:20 - 2017-10-28 10:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2019-01-19 23:20 - 2017-09-24 18:05 - 000000000 ____D C:\Program Files\Intel
2019-01-19 23:20 - 2017-09-24 18:05 - 000000000 ____D C:\Program Files\AMD
2019-01-19 23:20 - 2017-09-24 18:04 - 000000000 ____D C:\Program Files (x86)\Intel
2019-01-19 23:20 - 2017-08-20 16:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-01-19 23:20 - 2017-07-15 08:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-01-19 23:20 - 2017-05-10 21:12 - 000000000 ____D C:\Program Files\UNP
2019-01-19 23:20 - 2017-03-30 20:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-01-19 23:20 - 2016-11-08 13:11 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2019-01-19 23:20 - 2016-09-21 10:15 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2019-01-19 23:15 - 2018-09-15 08:33 - 000000000 __RHD C:\Users\Public\Libraries
2019-01-19 23:15 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-01-19 23:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-01-19 23:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2019-01-19 23:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Resources
2019-01-19 23:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Help
2019-01-19 23:12 - 2017-09-24 18:05 - 000000000 ____D C:\WINDOWS\system32\SRSLabs
2019-01-19 23:12 - 2017-09-24 18:05 - 000000000 ____D C:\Program Files\Synaptics
2019-01-19 23:12 - 2017-09-24 18:05 - 000000000 ____D C:\Program Files\Realtek
2019-01-19 23:09 - 2018-09-15 18:34 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-01-19 23:09 - 2018-09-15 18:34 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-01-19 23:09 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\et-EE
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-01-18 21:16 - 2018-11-16 21:16 - 000000000 ____D C:\Program Files\rempl

==================== Files in the root of some directories =======

2019-02-16 10:50 - 2019-02-16 10:50 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2019-02-16 10:50 - 2019-02-16 10:50 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2018-03-04 13:44 - 2018-03-28 13:52 - 000003072 _____ () C:\Users\David\AppData\Roaming\Kvalitní fotky Designer Prefsv3
2018-10-08 20:19 - 2018-12-25 13:06 - 000001480 _____ () C:\Users\David\AppData\Local\Adobe Uložit pro web 13.0 Prefs

Some files in TEMP:
====================
2019-02-16 10:52 - 2019-02-16 10:50 - 000099887 _____ () C:\Users\David\AppData\Local\Temp\Uninstall.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================


Přílohy:
Addition.rar [12.05 KiB]
19 krát
Nahoru
 Profil  
 
 Předmět příspěvku: Re: Prosím o kontrolu
PříspěvekNapsal: 17 úno 2019 09:48 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1724
Dobry den.

:arrow: Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Prosím o kontrolu
PříspěvekNapsal: 17 úno 2019 13:14 
Offline
Návštěvník
Návštěvník

Registrován: 23 říj 2006 18:56
Příspěvky: 70
Dobrý den,

provedl jsem a vkládám log:

# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-02-15.6 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 02-17-2019
# Duration: 00:00:02
# OS: Windows 10 Home
# Cleaned: 51
# Failed: 0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted C:\Program Files (x86)\Microleaves
Deleted C:\Users\David\AppData\Roaming\Microleaves
Deleted C:\Windows\Installer\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
Deleted C:\Program Files (x86)\LetsSee!

***** [ Files ] *****

Deleted C:\Windows\Installer\SOURCEHASH{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted C:\Windows\Tasks\Online Application V2G5.job
Deleted C:\Windows\System32\Tasks\Online Application V2G5
Deleted C:\Windows\Tasks\Online Application V2G4.job
Deleted C:\Windows\System32\Tasks\Online Application V2G4
Deleted C:\Windows\Tasks\Online Application V2G6.job
Deleted C:\Windows\System32\Tasks\Online Application V2G6
Deleted C:\Windows\System32\Tasks\PPI Update
Deleted C:\Windows\Tasks\Online Application V2G2.job
Deleted C:\Windows\System32\Tasks\Online Application V2G2
Deleted C:\Windows\Tasks\Online Application V2G3.job
Deleted C:\Windows\System32\Tasks\Online Application V2G3
Deleted C:\Windows\Tasks\Online Application V2G1.job
Deleted C:\Windows\System32\Tasks\Online Application V2G1
Deleted C:\Windows\Tasks\Updater_Online_Application.job
Deleted C:\Windows\System32\Tasks\Updater_Online_Application

***** [ Registry ] *****

Deleted HKLM\Software\Wow6432Node\Microleaves
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8B77A0CC-D6D4-46EB-A9B2-29235991E493}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8B77A0CC-D6D4-46EB-A9B2-29235991E493}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G5
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6AF40FD1-296B-4971-A4EA-B38F582E75EF}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6AF40FD1-296B-4971-A4EA-B38F582E75EF}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G4
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A019E807-E0D8-4A07-AFE9-651D0F90227D}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A019E807-E0D8-4A07-AFE9-651D0F90227D}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G6
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A1ECBF44-E41F-4814-BF0F-20D1CCBE6D8F}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1ECBF44-E41F-4814-BF0F-20D1CCBE6D8F}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PPI Update
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D8E0A879-DE38-4510-B477-8371CF1519C2}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D8E0A879-DE38-4510-B477-8371CF1519C2}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G2
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EF6A90DB-8E6E-4CA7-8098-0BF905B152CC}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EF6A90DB-8E6E-4CA7-8098-0BF905B152CC}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G3
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{293A74E0-DD2F-4511-87AC-8231EA4B6FB8}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{293A74E0-DD2F-4511-87AC-8231EA4B6FB8}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Online Application V2G1
Deleted HKU\S-1-5-18\Software\Caphyon\Advanced Updater\{F039D4A9-14D3-4425-A4FA-F2F9D5B0E014}
Deleted HKU\.DEFAULT\Software\Caphyon\Advanced Updater\{F039D4A9-14D3-4425-A4FA-F2F9D5B0E014}
Deleted HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}
Deleted HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\436F6625D7B77354DBCD89DDC6CFAB1A
Deleted HKLM\Software\Classes\Installer\Products\436F6625D7B77354DBCD89DDC6CFAB1A
Deleted HKLM\Software\Classes\Installer\Features\436F6625D7B77354DBCD89DDC6CFAB1A
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{062F9B30-CB3A-40E8-B411-A86BEB8EFE16}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{062F9B30-CB3A-40E8-B411-A86BEB8EFE16}
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Updater_Online_Application

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [6958 octets] - [16/02/2019 23:47:50]
AdwCleaner[S01].txt - [7019 octets] - [17/02/2019 13:07:19]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ##########


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Prosím o kontrolu
PříspěvekNapsal: 17 úno 2019 13:20 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1724
Preskenujte pocitac s FRST - navod tu: https://forum.viry.cz/viewtopic.php?f=24&t=132509, skopirujte FRST.log + Addition log sem.

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Prosím o kontrolu
PříspěvekNapsal: 17 úno 2019 20:12 
Offline
Návštěvník
Návštěvník

Registrován: 23 říj 2006 18:56
Příspěvky: 70
FRST níže a Addition v příloze:


Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.02.2019
Ran by David (administrator) on LAPTOP-FURA4EBM (17-02-2019 20:03:36)
Running from C:\Users\David\Desktop
Loaded Profiles: David (Available Profiles: defaultuser0 & David)
Platform: Windows 10 Home Version 1809 17763.316 (X64) Language: Čeština (Česko)
Default browser: Edge
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(COMODO) C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.180.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20388.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12093.3.37141.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(COMODO) C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(HP Inc.) C:\Program Files\HPCommRecovery\HPCommRecovery.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(CyberLink) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP Inc.) C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitch.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8843784 2016-08-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [COMODO Autostart {D5EFF3B3-E126-4AF6-BCE9-852A72129E10}] => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe [1598144 2018-12-17] (Comodo Security Solutions, Inc. -> COMODO)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-09-19] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe [6627720 2016-07-27] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [705784 2016-06-20] (HP Inc. -> HP Inc.)
HKLM-x32\...\Run: [vdcss] => C:\Program Files (x86)\COMODO\COMODO Secure Shopping\vdcss.exe [8511152 2018-03-14] (Comodo Security Solutions, Inc. -> COMODO)
HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exe [4251336 2018-10-10] (Comodo Security Solutions, Inc. -> COMODO)
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-01-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\Installer\chrmstp.exe [2019-02-16] (Google LLC -> Google Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Audio Switch.lnk [2016-09-21]
ShortcutTarget: HP Audio Switch.lnk -> C:\Program Files (x86)\HP\HPAudioSwitch\HPAudioSwitchLC.vbs ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{b27bbdbf-4c81-4eb1-9829-66bf96021acc}: [DhcpNameServer] 213.46.172.36 213.46.172.37

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HCTE
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
SearchScopes: HKLM -> {6A895CCA-1F48-4584-95B4-017D2CEED056} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKLM-x32 -> {6A895CCA-1F48-4584-95B4-017D2CEED056} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1976776874-1411867160-1571642719-1001 -> {6A895CCA-1F48-4584-95B4-017D2CEED056} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
BHO: IeUrlFilter Class -> {2DD257A3-5028-41AE-A1E7-A12F76A08893} -> C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho64.dll [2018-03-14] (Comodo Security Solutions, Inc. -> COMODO)
BHO-x32: IeUrlFilter Class -> {2DD257A3-5028-41AE-A1E7-A12F76A08893} -> C:\Program Files (x86)\COMODO\COMODO Secure Shopping\cssbho32.dll [2018-03-14] (Comodo Security Solutions, Inc. -> COMODO)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2017-10-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2018-12-26] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-10-28] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL [2017-10-28] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
Edge Extension: (Translator pro Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2019-02-01]

FireFox:
========
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2017-10-28] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-09-19] (Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL [2017-10-28] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-17] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-09-19] (Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\Default [2019-02-17]
CHR Extension: (Prezentace) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-29]
CHR Extension: (Dokumenty) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-29]
CHR Extension: (Disk Google) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-30]
CHR Extension: (YouTube) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-30]
CHR Extension: (uBlock Origin) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-02-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-30]
CHR Extension: (Gmail) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-30]
CHR Extension: (Chrome Media Router) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-17]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [138752 2016-07-27] () [File not signed]
R2 AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [269824 2016-08-12] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3058392 2017-12-12] (Microsoft Corporation -> Microsoft Corporation)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [10736912 2019-02-11] (Comodo Security Solutions, Inc. -> COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2876096 2018-12-17] (Comodo Security Solutions, Inc. -> COMODO)
R2 csssrv; C:\Program Files (x86)\COMODO\COMODO Secure Shopping\csssrv64.exe [4199600 2018-03-14] (Comodo Security Solutions, Inc. -> COMODO)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-20] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-03-20] (Dropbox, Inc -> Dropbox, Inc.)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1419424 2016-07-05] (Intel(R) Software -> Intel Corporation)
R2 HP Comm Recover; C:\Program Files\HPCommRecovery\HPCommRecovery.exe [894976 2016-08-04] (HP Inc.) [File not signed]
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [631800 2016-06-20] (HP Inc. -> HP Inc.)
R2 ibtsiva; C:\WINDOWS\System32\ibtsiva.exe [541896 2018-07-06] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370792 2018-10-26] (Intel Corporation -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [974632 2016-02-19] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
R2 isesrv; C:\Program Files (x86)\COMODO\Internet Security Essentials\isesrv.exe [1044680 2018-10-10] (Comodo Security Solutions, Inc. -> COMODO)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [209184 2016-05-25] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [265864 2018-03-19] (Intel Corporation -> )
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [614664 2016-03-23] (CyberLink Corp. -> CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [314624 2016-08-12] (Realtek Semiconductor Corp -> Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\NisSrv.exe [3880120 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1812.3-0\MsMpEng.exe [114208 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3848328 2018-03-19] (Intel Corporation -> Intel® Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [26711040 2016-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [500736 2016-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S0 cmdboot; C:\WINDOWS\System32\DRIVERS\cmdboot.sys [17944 2018-05-23] (Microsoft Windows Early Launch Anti-malware Publisher -> COMODO)
R1 cmdcss; C:\WINDOWS\system32\drivers\cmdcss.sys [125000 2018-02-28] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmderd; C:\WINDOWS\System32\DRIVERS\cmderd.sys [44056 2018-05-23] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdGuard; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [832032 2018-05-23] (Comodo Security Solutions, Inc. -> COMODO)
R1 cmdhlp; C:\WINDOWS\system32\DRIVERS\cmdhlp.sys [50768 2018-05-23] (Comodo Security Solutions, Inc. -> COMODO)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52208 2016-07-05] (Intel(R) Software -> Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260080 2016-07-05] (Intel(R) Software -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [136128 2017-12-06] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R1 inspect; C:\WINDOWS\system32\DRIVERS\inspect.sys [134400 2018-05-23] (Comodo Security Solutions, Inc. -> COMODO)
R1 isedrv; C:\WINDOWS\system32\drivers\isedrv.sys [63256 2018-08-29] (Comodo Security Solutions, Inc. -> COMODO)
R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [8623128 2018-04-04] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [935168 2016-02-25] (Realtek Semiconductor Corp -> Realtek )
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [55384 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
S3 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46680 2019-02-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [330936 2019-02-16] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [62136 2019-02-16] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35360 2018-09-13] (HP Inc. -> HP)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-17 20:03 - 2019-02-17 20:03 - 000000000 ____D C:\Users\David\Desktop\FRST-OlderVersion
2019-02-17 13:08 - 2019-02-17 13:08 - 007316688 _____ (Malwarebytes) C:\Users\David\Downloads\adwcleaner_7.2.7.0.exe
2019-02-16 23:55 - 2019-02-16 23:55 - 000012338 _____ C:\Users\David\Desktop\Addition.rar
2019-02-16 23:47 - 2019-02-17 13:10 - 000000000 ____D C:\AdwCleaner
2019-02-16 23:44 - 2019-02-16 23:45 - 000051989 _____ C:\Users\David\Desktop\Addition.txt
2019-02-16 23:42 - 2019-02-17 20:04 - 000022338 _____ C:\Users\David\Desktop\FRST.txt
2019-02-16 23:42 - 2019-02-17 20:03 - 000000000 ____D C:\FRST
2019-02-16 23:40 - 2019-02-17 20:03 - 002434560 _____ (Farbar) C:\Users\David\Desktop\FRST64.exe
2019-02-16 23:35 - 2019-02-16 23:35 - 019341880 _____ (Piriform Software Ltd) C:\Users\David\Downloads\ccsetup552 (1).exe
2019-02-16 23:35 - 2019-02-16 23:35 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-02-16 23:34 - 2019-02-16 23:34 - 019341880 _____ (Piriform Software Ltd) C:\Users\David\Downloads\ccsetup552.exe
2019-02-16 23:31 - 2019-02-16 23:32 - 007316688 _____ (Malwarebytes) C:\Users\David\Desktop\adwcleaner_7.2.7.0.exe
2019-02-16 11:31 - 2019-02-01 23:31 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-02-16 11:31 - 2019-02-01 23:31 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-02-16 11:06 - 2019-02-16 11:06 - 000003710 _____ C:\WINDOWS\System32\Tasks\OInstall
2019-02-16 10:50 - 2019-02-16 10:50 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2019-02-16 10:50 - 2019-02-16 10:50 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2019-02-16 10:50 - 2019-02-16 10:50 - 000000000 ____D C:\Users\David\AppData\Local\AdvinstAnalytics
2019-02-16 10:50 - 2019-02-16 10:50 - 000000000 ____D C:\ProgramData\4OA9OD2I0MAFZ4LMJEV8
2019-02-16 10:43 - 2019-02-16 10:44 - 000000000 ____D C:\Program Files (x86)\Microsoft Toolkit Final
2019-02-16 08:19 - 2019-02-16 08:19 - 007724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 005440008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 005112792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 002469648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 002278448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 001289192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 001282640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 001259024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-02-16 08:19 - 2019-02-16 08:19 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 000762272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 000421904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2019-02-16 08:19 - 2019-02-16 08:19 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 026807296 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 023439360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 022111856 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 020812288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 019284480 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 019023872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 015224832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 009683984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 008875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 007897088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 007645600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 006540424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 006070272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 005584864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 005565952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 005527552 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 005205464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004885504 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004702704 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004688896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004627456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 004526080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004298752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 004019200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 003922944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 003662336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 003386368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002927120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 002776920 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002702528 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002626592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002488320 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 002437552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002392576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002275888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002187264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 002072728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001969680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001700864 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001696936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-02-16 08:18 - 2019-02-16 08:18 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001671864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001604096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001533440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001467560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001467384 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001446400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001341584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-02-16 08:18 - 2019-02-16 08:18 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001309184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001271608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001178344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 001168384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001054200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 001050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 001010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000982032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000887808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000864056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000800256 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000726208 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000652320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000649272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000588304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000522312 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000496872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000475152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-02-16 08:18 - 2019-02-16 08:18 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000277536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000262672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000146888 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000121872 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000097592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlahc.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\PktMon.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000091424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\nslookup.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nslookup.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2019-02-16 08:18 - 2019-02-16 08:18 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-02-16 08:18 - 2019-02-16 08:18 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2019-02-16 08:18 - 2019-02-16 08:18 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 005561856 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 004991096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 002992640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 002766136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 002721280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 002149368 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 002085376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 002021584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 001975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 001700880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 001331744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 001221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 001209360 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 001050936 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000982576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000970256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000865784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000850968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000822448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000806560 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-02-16 08:17 - 2019-02-16 08:17 - 000806560 _____ C:\WINDOWS\system32\locale.nls
2019-02-16 08:17 - 2019-02-16 08:17 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000765960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000752136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000741888 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000651304 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000629576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000612368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000604552 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000419128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000408800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000387384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000375544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000353488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000298296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000276488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTF.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000203280 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MTF.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000157192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000148480 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000132104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000114856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000090424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo-overrides.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000047136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-02-16 08:17 - 2019-02-16 08:17 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-02-16 08:17 - 2019-02-16 08:17 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000072 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2019-01-30 21:08 - 2018-05-23 06:06 - 000017944 _____ (COMODO) C:\WINDOWS\system32\Drivers\cmdboot.sys
2019-01-23 18:32 - 2019-01-23 18:32 - 000298651 _____ C:\Users\David\Desktop\legíny_lidl.pdf
2019-01-19 23:33 - 2019-01-19 23:33 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-01-19 23:32 - 2019-02-17 13:15 - 001841644 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-19 23:31 - 2019-02-17 13:10 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-19 23:31 - 2019-02-16 08:11 - 000004008 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2019-01-19 23:31 - 2019-02-16 08:11 - 000003776 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2019-01-19 23:31 - 2019-02-09 21:36 - 000003378 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1976776874-1411867160-1571642719-1001
2019-01-19 23:31 - 2019-01-28 21:50 - 000003140 _____ C:\WINDOWS\System32\Tasks\{31DDBD37-5DB7-4030-8064-10B0CAA806C3}
2019-01-19 23:31 - 2019-01-19 23:31 - 000003830 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2019-01-19 23:31 - 2019-01-19 23:31 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-01-19 23:31 - 2019-01-19 23:31 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-19 23:31 - 2019-01-19 23:31 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-01-19 23:31 - 2019-01-19 23:31 - 000003118 _____ C:\WINDOWS\System32\Tasks\Intel PTT EK Recertification
2019-01-19 23:31 - 2019-01-19 23:31 - 000002526 _____ C:\WINDOWS\System32\Tasks\AutoKMS
2019-01-19 23:31 - 2019-01-19 23:31 - 000002262 _____ C:\WINDOWS\System32\Tasks\DropboxOEM
2019-01-19 23:31 - 2019-01-19 23:31 - 000002252 _____ C:\WINDOWS\System32\Tasks\HPJumpStartProvider
2019-01-19 23:31 - 2019-01-19 23:31 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-01-19 23:31 - 2019-01-19 23:31 - 000000020 ___SH C:\Users\David\ntuser.ini
2019-01-19 23:31 - 2019-01-19 23:31 - 000000000 ____D C:\WINDOWS\System32\Tasks\Hewlett-Packard
2019-01-19 23:31 - 2019-01-19 23:31 - 000000000 ____D C:\WINDOWS\System32\Tasks\COMODO
2019-01-19 23:30 - 2019-01-19 23:31 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2019-01-19 23:30 - 2019-01-19 23:31 - 000011433 _____ C:\WINDOWS\diagerr.xml
2019-01-19 23:24 - 2019-01-19 23:24 - 000001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2019-01-19 23:23 - 2019-02-17 00:19 - 000000000 ____D C:\Users\David
2019-01-19 23:23 - 2019-02-09 21:36 - 000002398 _____ C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-19 23:23 - 2019-01-19 23:27 - 000000000 ____D C:\Users\defaultuser0
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Šablony
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Soubory cookie
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Poslední
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Okolní tiskárny
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Okolní síť
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Nabídka Start
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Dokumenty
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Documents\Obrázky
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Documents\Hudba
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Documents\Filmy
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\Data aplikací
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\defaultuser0\AppData\Local\Data aplikací
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Šablony
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Soubory cookie
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Poslední
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Okolní tiskárny
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Okolní síť
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Nabídka Start
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Dokumenty
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Documents\Obrázky
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Documents\Hudba
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Documents\Filmy
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\Data aplikací
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 _SHDL C:\Users\David\AppData\Local\Data aplikací
2019-01-19 23:23 - 2019-01-19 23:23 - 000000000 ____D C:\ProgramData\USOShared
2019-01-19 23:23 - 2018-09-15 08:29 - 000001105 _____ C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-19 23:22 - 2019-01-19 23:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings
2019-01-19 23:22 - 2019-01-19 23:22 - 000000000 ____D C:\Program Files\ATI Technologies
2019-01-19 23:22 - 2019-01-19 23:22 - 000000000 ____D C:\Program Files (x86)\AMD
2019-01-19 23:22 - 2018-09-15 08:28 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-01-19 23:21 - 2019-02-17 19:42 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-19 23:21 - 2019-02-16 11:30 - 000541416 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-01-19 23:12 - 2019-01-19 23:20 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2019-01-19 23:11 - 2019-01-19 23:12 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2019-01-19 23:11 - 2019-01-19 23:11 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2019-01-19 23:09 - 2019-01-19 23:09 - 024617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 012151808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 004918784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-01-19 23:09 - 2019-01-19 23:09 - 003952952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 003566080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-01-19 23:09 - 2019-01-19 23:09 - 002986352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 002429752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-01-19 23:09 - 2019-01-19 23:09 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-01-19 23:09 - 2019-01-19 23:09 - 001749504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 001294864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2019-01-19 23:09 - 2019-01-19 23:09 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2019-01-19 23:09 - 2019-01-19 23:09 - 001073448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 001057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 001024920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000854784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000662528 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Pipeline.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2019-01-19 23:09 - 2019-01-19 23:09 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2019-01-19 23:09 - 2019-01-19 23:09 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000301096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000241680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CastingShellExt.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000098816 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Broker.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2019-01-19 23:09 - 2019-01-19 23:09 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 012858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 007685016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 006306152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 006132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 005312512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 005130752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 003730352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 003504640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 003427328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 003379000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 003338328 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 003270144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 003108864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 003092480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002832896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002654208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002630656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002594872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002185728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001863168 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001842600 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001830912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001824768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001797128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001675712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001590288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001520208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001476096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001456736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001395248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 001387496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001360696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 001315840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001287776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001279024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001249792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 001212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001199104 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001180760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001162280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001051960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 001026992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000964976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000897848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000863752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000836096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000818832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000756640 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000660496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000604248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000582240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000566584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000514112 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000402576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000373768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000306704 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000300024 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000294072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000252536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000178696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000175096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000164344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000151872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastingShellExt.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000140808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000114344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000102392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000094224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000083472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2019-01-19 23:08 - 2019-01-19 23:08 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2019-01-19 23:08 - 2019-01-19 23:08 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-01-19 23:08 - 2019-01-19 23:08 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-01-19 23:07 - 2019-01-19 23:07 - 000000000 ____D C:\inetpub
2019-01-19 23:06 - 2019-01-19 23:06 - 001167960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000780376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000126064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000104560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2019-01-19 23:06 - 2019-01-19 23:06 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2019-01-19 23:06 - 2019-01-19 23:06 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2019-01-19 23:06 - 2019-01-19 23:06 - 000036896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2019-01-19 23:06 - 2019-01-19 23:06 - 000035440 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2019-01-19 23:06 - 2019-01-19 23:06 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-01-19 23:06 - 2019-01-19 23:06 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-01-19 23:06 - 2019-01-19 23:06 - 000000000 ____D C:\Program Files\MSBuild
2019-01-19 23:06 - 2019-01-19 23:06 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-01-19 23:06 - 2019-01-19 23:06 - 000000000 ____D C:\Program Files (x86)\MSBuild

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-17 20:04 - 2017-03-30 19:58 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2019-02-17 19:52 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-02-17 13:15 - 2018-09-15 18:32 - 000753610 _____ C:\WINDOWS\system32\perfh005.dat
2019-02-17 13:15 - 2018-09-15 18:32 - 000163034 _____ C:\WINDOWS\system32\perfc005.dat
2019-02-17 13:15 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-02-17 13:11 - 2017-09-24 18:05 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-02-17 13:11 - 2017-03-20 19:36 - 000000000 __SHD C:\Users\David\IntelGraphicsProfiles
2019-02-17 13:10 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-02-17 00:19 - 2017-08-20 16:05 - 029974084 _____ C:\WINDOWS\system32\Drivers\fvstore.dat
2019-02-17 00:01 - 2017-07-15 08:47 - 000000000 ____D C:\Program Files\CCleaner
2019-02-16 23:37 - 2017-07-01 23:01 - 000000000 ____D C:\Users\David\Desktop\záloha registru
2019-02-16 23:36 - 2019-01-12 23:29 - 000000000 ___DC C:\WINDOWS\Panther
2019-02-16 23:35 - 2017-07-15 08:47 - 000000870 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-02-16 11:42 - 2017-03-30 22:11 - 000000000 ____D C:\Users\David\AppData\Roaming\vlc
2019-02-16 11:31 - 2018-01-01 16:51 - 000000000 ___RD C:\Users\David\3D Objects
2019-02-16 11:31 - 2016-07-29 13:33 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-02-16 11:30 - 2016-09-21 10:17 - 000000948 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2019-02-16 11:30 - 2016-09-21 10:17 - 000000944 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-02-16 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-02-16 11:29 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-02-16 11:28 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-02-16 10:36 - 2018-09-15 08:33 - 000000000 ___RD C:\Program Files\Windows Defender
2019-02-16 10:36 - 2018-06-30 21:18 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-02-16 10:27 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-02-16 10:26 - 2018-09-15 07:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-02-16 10:26 - 2017-04-01 20:23 - 000592616 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2019-02-16 08:20 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\servicing
2019-02-16 08:15 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-02-16 08:12 - 2017-03-20 19:50 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-02-16 08:12 - 2017-03-20 19:50 - 000002267 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-02-16 08:11 - 2017-04-01 22:18 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-02-12 22:04 - 2017-04-01 22:18 - 129330784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-02-09 21:36 - 2017-03-20 19:38 - 000000000 ___RD C:\Users\David\OneDrive
2019-02-08 21:36 - 2018-06-30 21:35 - 000000000 ____D C:\ProgramData\Packages
2019-01-30 21:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ServiceState
2019-01-30 21:08 - 2018-09-15 08:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-01-30 20:55 - 2017-10-02 19:16 - 000000000 ____D C:\ProgramData\AMD
2019-01-28 21:56 - 2018-03-23 21:16 - 000002191 _____ C:\Users\Public\Desktop\Comodo Secure Shopping.lnk
2019-01-28 21:56 - 2017-03-30 19:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2019-01-26 21:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\appcompat
2019-01-26 21:34 - 2018-04-10 14:34 - 000000000 ____D C:\Users\David\AppData\Local\PlaceholderTileLogoFolder
2019-01-26 21:34 - 2018-01-01 16:36 - 000000000 ____D C:\Users\David\AppData\Local\Packages
2019-01-19 23:31 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\windows nt
2019-01-19 23:31 - 2017-03-20 19:36 - 000000000 ____D C:\Users\David\AppData\Local\ConnectedDevicesPlatform
2019-01-19 23:30 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Registration
2019-01-19 23:28 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-01-19 23:27 - 2017-09-24 18:13 - 000023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2019-01-19 23:25 - 2017-08-20 16:59 - 000000000 ____D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-01-19 23:24 - 2018-01-01 16:37 - 000000000 ____D C:\Users\defaultuser0\AppData\Local\Packages
2019-01-19 23:23 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\USOPrivate
2019-01-19 23:22 - 2017-09-24 18:05 - 000033119 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip
2019-01-19 23:22 - 2017-09-24 18:05 - 000001851 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DTS Audio Control.lnk
2019-01-19 23:22 - 2017-09-24 18:05 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2019-01-19 23:22 - 2017-09-24 18:05 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2019-01-19 23:22 - 2017-09-24 18:05 - 000000000 ____D C:\AMD
2019-01-19 23:22 - 2016-11-08 13:07 - 000000000 ____D C:\Intel
2019-01-19 23:20 - 2018-09-15 08:36 - 000000000 ____D C:\WINDOWS\Setup
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\spool
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-01-19 23:20 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-01-19 23:20 - 2018-09-15 08:31 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2019-01-19 23:20 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2019-01-19 23:20 - 2018-02-25 18:49 - 000000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2019-01-19 23:20 - 2017-10-28 17:13 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nástroje Microsoft Office 2016
2019-01-19 23:20 - 2017-10-28 17:11 - 000000000 ____D C:\WINDOWS\SHELLNEW
2019-01-19 23:20 - 2017-10-28 10:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2019-01-19 23:20 - 2017-09-24 18:05 - 000000000 ____D C:\Program Files\Intel
2019-01-19 23:20 - 2017-09-24 18:05 - 000000000 ____D C:\Program Files\AMD
2019-01-19 23:20 - 2017-09-24 18:04 - 000000000 ____D C:\Program Files (x86)\Intel
2019-01-19 23:20 - 2017-08-20 16:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-01-19 23:20 - 2017-07-15 08:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-01-19 23:20 - 2017-05-10 21:12 - 000000000 ____D C:\Program Files\UNP
2019-01-19 23:20 - 2017-03-30 20:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-01-19 23:20 - 2016-11-08 13:11 - 000000000 ___HD C:\WINDOWS\system32\WLANProfiles
2019-01-19 23:20 - 2016-09-21 10:15 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2019-01-19 23:15 - 2018-09-15 08:33 - 000000000 __RHD C:\Users\Public\Libraries
2019-01-19 23:15 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-01-19 23:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-01-19 23:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2019-01-19 23:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Resources
2019-01-19 23:12 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Help
2019-01-19 23:12 - 2017-09-24 18:05 - 000000000 ____D C:\WINDOWS\system32\SRSLabs
2019-01-19 23:12 - 2017-09-24 18:05 - 000000000 ____D C:\Program Files\Synaptics
2019-01-19 23:12 - 2017-09-24 18:05 - 000000000 ____D C:\Program Files\Realtek
2019-01-19 23:09 - 2018-09-15 18:34 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-01-19 23:09 - 2018-09-15 18:34 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-01-19 23:09 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\et-EE
2019-01-19 23:06 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-01-18 21:16 - 2018-11-16 21:16 - 000000000 ____D C:\Program Files\rempl

==================== Files in the root of some directories =======

2019-02-16 10:50 - 2019-02-16 10:50 - 000137168 _____ (Mozilla Foundation) C:\ProgramData\mozglue.dll
2019-02-16 10:50 - 2019-02-16 10:50 - 001246160 _____ (Mozilla Foundation) C:\ProgramData\nss3.dll
2018-03-04 13:44 - 2018-03-28 13:52 - 000003072 _____ () C:\Users\David\AppData\Roaming\Kvalitní fotky Designer Prefsv3
2018-10-08 20:19 - 2018-12-25 13:06 - 000001480 _____ () C:\Users\David\AppData\Local\Adobe Uložit pro web 13.0 Prefs

Some files in TEMP:
====================
2019-02-16 10:52 - 2019-02-16 10:50 - 000099887 _____ () C:\Users\David\AppData\Local\Temp\Uninstall.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================


Přílohy:
Addition.rar [11.92 KiB]
13 krát
Nahoru
 Profil  
 
 Předmět příspěvku: Re: Prosím o kontrolu
PříspěvekNapsal: 17 úno 2019 22:03 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1724
Do poznamkoveho bloku skopirujte obsah dole:

Kód:
C:\WINDOWS\OInstall.exe
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HCTE
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
SearchScopes: HKLM -> {6A895CCA-1F48-4584-95B4-017D2CEED056} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKLM-x32 -> {6A895CCA-1F48-4584-95B4-017D2CEED056} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1976776874-1411867160-1571642719-1001 -> {6A895CCA-1F48-4584-95B4-017D2CEED056} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-01-19 23:31 - 2019-01-19 23:31 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-19 23:31 - 2019-01-19 23:31 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-01-19 23:31 - 2019-01-19 23:31 - 000002526 _____ C:\WINDOWS\System32\Tasks\AutoKMS
2019-02-17 13:11 - 2017-09-24 18:05 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-01-19 23:22 - 2017-09-24 18:05 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2019-02-16 10:52 - 2019-02-16 10:50 - 000099887 _____ () C:\Users\David\AppData\Local\Temp\Uninstall.exe
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> No File
Task: {6EDFE4F0-46EA-4B9C-B93A-1F1C24BB07F8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {7BCF3E4D-4514-4B2D-BDFB-6F1BBD2A846B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {B4D0579B-4BB7-4F94-9884-BC773F3E90AC} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {BB4DAC4E-C5F8-4C35-8AF2-4545E58F09CC} - System32\Tasks\OInstall => C:\WINDOWS\OInstall.exe

EmptyTemp:



Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Prosím o kontrolu
PříspěvekNapsal: 19 úno 2019 19:54 
Offline
Návštěvník
Návštěvník

Registrován: 23 říj 2006 18:56
Příspěvky: 70
Dobrý večer,
vkládám log:

Fix result of Farbar Recovery Scan Tool (x64) Version: 18.02.2019
Ran by David (19-02-2019 19:48:48) Run:1
Running from C:\Users\David\Desktop
Loaded Profiles: David (Available Profiles: defaultuser0 & David)
Boot Mode: Normal
==============================================

fixlist content:
*****************
C:\WINDOWS\OInstall.exe
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com?pc=HCTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=HCTE
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.bing.com?pc=HCTE
SearchScopes: HKLM -> {6A895CCA-1F48-4584-95B4-017D2CEED056} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKLM-x32 -> {6A895CCA-1F48-4584-95B4-017D2CEED056} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1976776874-1411867160-1571642719-1001 -> {6A895CCA-1F48-4584-95B4-017D2CEED056} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_i ... -keywords={searchTerms}
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-02-16 08:17 - 2019-02-16 08:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-01-19 23:31 - 2019-01-19 23:31 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-19 23:31 - 2019-01-19 23:31 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-01-19 23:31 - 2019-01-19 23:31 - 000002526 _____ C:\WINDOWS\System32\Tasks\AutoKMS
2019-02-17 13:11 - 2017-09-24 18:05 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-01-19 23:22 - 2017-09-24 18:05 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2019-02-16 10:52 - 2019-02-16 10:50 - 000099887 _____ () C:\Users\David\AppData\Local\Temp\Uninstall.exe
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
Task: {6EDFE4F0-46EA-4B9C-B93A-1F1C24BB07F8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {7BCF3E4D-4514-4B2D-BDFB-6F1BBD2A846B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {B4D0579B-4BB7-4F94-9884-BC773F3E90AC} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {BB4DAC4E-C5F8-4C35-8AF2-4545E58F09CC} - System32\Tasks\OInstall => C:\WINDOWS\OInstall.exe

EmptyTemp:
*****************

"C:\WINDOWS\OInstall.exe" => not found
HKLM\Software\\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page" => removed successfully
"HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL" => removed successfully
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A895CCA-1F48-4584-95B4-017D2CEED056} => removed successfully
HKLM\Software\Classes\CLSID\{6A895CCA-1F48-4584-95B4-017D2CEED056} => not found
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{6A895CCA-1F48-4584-95B4-017D2CEED056} => removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{6A895CCA-1F48-4584-95B4-017D2CEED056} => not found
HKU\S-1-5-21-1976776874-1411867160-1571642719-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A895CCA-1F48-4584-95B4-017D2CEED056} => removed successfully
HKLM\Software\Classes\CLSID\{6A895CCA-1F48-4584-95B4-017D2CEED056} => not found
C:\WINDOWS\system32\DrtmAuth8.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth7.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth6.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth5.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth4.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth3.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth2.bin => moved successfully
C:\WINDOWS\system32\DrtmAuth1.bin => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
C:\WINDOWS\System32\Tasks\AutoKMS => moved successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat => moved successfully
C:\Users\David\AppData\Local\Temp\Uninstall.exe => moved successfully
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => removed successfully
HKLM\Software\Classes\CLSID\{3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6EDFE4F0-46EA-4B9C-B93A-1F1C24BB07F8}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6EDFE4F0-46EA-4B9C-B93A-1F1C24BB07F8}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{7BCF3E4D-4514-4B2D-BDFB-6F1BBD2A846B}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7BCF3E4D-4514-4B2D-BDFB-6F1BBD2A846B}" => removed successfully
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B4D0579B-4BB7-4F94-9884-BC773F3E90AC}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B4D0579B-4BB7-4F94-9884-BC773F3E90AC}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\UNP\RunCampaignManager" => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BB4DAC4E-C5F8-4C35-8AF2-4545E58F09CC}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BB4DAC4E-C5F8-4C35-8AF2-4545E58F09CC}" => removed successfully
C:\WINDOWS\System32\Tasks\OInstall => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OInstall" => removed successfully

=========== EmptyTemp: ==========

BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 18977842 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 4170159 B
Edge => 58723 B
Chrome => 574672152 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 6656 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4512 B
LocalService => 0 B
NetworkService => 0 B
NetworkService => 0 B
defaultuser0 => 6656 B
David => 5114533 B

RecycleBin => 12438 B
EmptyTemp: => 585.1 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 19:49:55 ====


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Prosím o kontrolu
PříspěvekNapsal: 20 úno 2019 07:57 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1724
ako je na tom pocitac

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Prosím o kontrolu
PříspěvekNapsal: 20 úno 2019 20:58 
Offline
Návštěvník
Návštěvník

Registrován: 23 říj 2006 18:56
Příspěvky: 70
Já bych řekl, že ok, akorát teda mi ještě včera comodo nahlásilo detekci něčeho ve složce Microsoft Toolkit a dalo to do karantény. Tak jsem tu složku dohledal a celou ji smazal, tak jen jestli tím jsem to vyřešil a už ani z ní by nemělo v počítači nic být a je tedy čistý?

Moc děkuju za pomoc.


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Prosím o kontrolu
PříspěvekNapsal: 20 úno 2019 22:02 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1724
povedal by som , ze pc je ok

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Prosím o kontrolu
PříspěvekNapsal: 23 úno 2019 10:21 
Offline
Návštěvník
Návštěvník

Registrován: 23 říj 2006 18:56
Příspěvky: 70
Dobře, moc děkuju za pomoc!


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Prosím o kontrolu
PříspěvekNapsal: 23 úno 2019 11:48 
Offline
Rádce
Rádce
Uživatelský avatar

Registrován: 27 dub 2008 10:34
Příspěvky: 1724
nematee zac :)

_________________
¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­¯­­­
---
Obrázek Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << Obrázek
----
Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
Háveťárna - UPLOAD Malwaru: >> upload <<
---
Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.

Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky


Nahoru
 Profil  
 
Zobrazit příspěvky za předchozí:  Seřadit podle  
Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 12 ] 

Všechny časy jsou v UTC + 1 hodina


Kdo je online

Uživatelé procházející toto fórum: Žádní registrovaní uživatelé


Nemůžete zakládat nová témata v tomto fóru
Nemůžete odpovídat v tomto fóru
Nemůžete upravovat své příspěvky v tomto fóru
Nemůžete mazat své příspěvky v tomto fóru
Nemůžete přikládat soubory v tomto fóru

Hledat:
Přejít na:  
Založeno na phpBB® Forum Software © phpBB Group
Český překlad – phpBB.cz
Přispějete na provoz fóra?