Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Prosím o kontrolu PC

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Zamčeno
Zpráva
Autor
mana008
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 23 črc 2007 11:54

Prosím o kontrolu PC

#1 Příspěvek od mana008 »

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20.02.2019 02
Ran by MB1 (administrator) on MB1-PC (23-02-2019 13:12:40)
Running from C:\Users\MB1\Desktop
Loaded Profiles: MB1 (Available Profiles: MB1 & DefaultAppPool)
Platform: Windows 10 Home Version 1809 17763.316 (X64) Language: Čeština (Česko)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\System32\snmp.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software) C:\Program Files (x86)\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler64.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
() C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20453.0_x64__8wekyb3d8bbwe\YourPhone.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Windows\USB Vibration\7906\USB Gamepad.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM...\Run: [SecurityHealth] => C:\WINDOWS\system32\SecurityHealthSystray.exe [83968 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [259976 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
HKLM...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-07] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32...\Run: [USB Gamepad] => C:\WINDOWS\USB Vibration\7906\USB Gamepad.exe [796784 2008-12-10] (Shen Zhen Dragon Rise Macro Technology Limited Company -> )
HKLM-x32...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [259976 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [EPSON SX110 Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFBE.EXE [223232 2008-09-26] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [54788456 2018-12-11] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [18630056 2018-09-10] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\PhotoScreensaver.scr [570880 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32-x32: [vidc.XVID] => xvidvfw.dll
HKLM\...\Drivers32-x32: [VIDC.VP80] => vp8vfw.dll
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\Installer\chrmstp.exe [2019-02-14] (Google LLC -> Google Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files (x86)\AVAST Software\Browser\Application\71.0.1037.98\Installer\chrmstp.exe [2019-01-16] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c857ffc1-b553-400e-9fff-a8705e3f2343}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-3595257899-2210446051-2448867403-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
DPF: HKLM-x32 {62789780-B744-11D0-986B-00609731A21D} hxxps://mapa.katasterportal.sk/kapor2/lib/mgaxctrl.cab

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-18] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-11-01] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/"
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default [2019-02-23]
CHR Extension: (Překladač Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-10-19]
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-22]
CHR Extension: (Chrome Media Router) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-10]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-02-17]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-02-23]
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-25]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-25]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-22]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-25]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-13]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-22]
CHR Extension: (Chrome Media Router) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-10]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2 [2019-02-22]
CHR Extension: (Prezentace) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-13]
CHR Extension: (Dokumenty) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13]
CHR Extension: (Disk Google) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-22]
CHR Extension: (YouTube) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-22]
CHR Extension: (Tabulky) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-13]
CHR Extension: (Dokumenty Google offline) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-15]
CHR Extension: (Avast Online Security) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-02-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-08]
CHR Extension: (Gmail) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-22]
CHR Extension: (Chrome Media Router) - C:\Users\MB1\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-11]
CHR Profile: C:\Users\MB1\AppData\Local\Google\Chrome\User Data\System Profile [2018-08-11]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6758976 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [357304 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-05] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files (x86)\AVAST Software\Browser\Application\71.0.1037.98\elevation_service.exe [390552 2019-01-09] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57504 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel(R) pGFX -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R2 SNMP; C:\WINDOWS\System32\snmp.exe [53248 2019-01-26] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3830488 2018-09-15] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [110944 2018-09-15] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37104 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205400 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [225680 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [196072 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblog.sys [320696 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [57960 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [15488 2019-01-08] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [249672 2019-02-13] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42288 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [167304 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [112312 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [87944 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [1034432 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [474456 2019-02-15] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [216784 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [379952 2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
S3 gdrv; C:\WINDOWS\gdrv.sys [25640 2015-12-29] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [605696 2018-09-15] (Microsoft Windows -> Realtek )
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-23 13:12 - 2019-02-23 13:13 - 000018724 _____ C:\Users\MB1\Desktop\FRST.txt
2019-02-23 13:10 - 2019-02-23 13:10 - 002435072 _____ (Farbar) C:\Users\MB1\Desktop\FRST64.exe
2019-02-19 18:39 - 2019-02-19 18:40 - 000545491 _____ C:\Users\MB1\Desktop\Soubor00001.pdf
2019-02-19 18:00 - 2019-02-19 18:00 - 017071876 _____ C:\Users\MB1\Desktop\com.google.android.projection.gearhead_4.0.590424-release-40590424_minAPI21(arm64-v8a)(nodpi)_apkmirror.com.apk
2019-02-19 17:52 - 2019-02-19 17:53 - 000000000 ____D C:\Users\MB1\Desktop\_copy_to_usb
2019-02-19 14:38 - 2019-02-19 14:38 - 000538794 _____ C:\Users\MB1\Desktop\HOMEticket_4677317.pdf
2019-02-19 14:38 - 2019-02-19 14:38 - 000538617 _____ C:\Users\MB1\Desktop\HOMEticket_4681606.pdf
2019-02-18 17:40 - 2019-02-18 17:40 - 000002367 _____ C:\Users\MB1\Desktop\MZD-AIO-TI.lnk
2019-02-18 15:01 - 2019-02-18 15:49 - 000017420 _____ C:\Users\MB1\Desktop\Kartičky.odt
2019-02-18 14:59 - 2019-02-18 14:59 - 000015703 _____ C:\Users\MB1\Desktop\d55c1688-3fcb-4709-bf37-a32cbdb74bda.tmp
2019-02-16 12:38 - 2019-02-16 12:38 - 000538897 _____ C:\Users\MB1\Desktop\HOMEticket_4674809.pdf
2019-02-14 18:30 - 2019-02-14 18:30 - 000045529 _____ C:\Users\MB1\Desktop\co-alarm-co603.pdf
2019-02-13 14:39 - 2019-02-13 14:39 - 026807296 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 023439360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 020812288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 019023872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 009683984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-02-13 14:39 - 2019-02-13 14:39 - 007883776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 007645600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 006540424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 006070272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 004885504 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 004688896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 004627456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 003922944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 003662336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 002927120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 002721280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 002626592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 002469648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 002437552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 002021584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 001969680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 001700864 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 001671864 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 001467560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 001255736 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-02-13 14:39 - 2019-02-13 14:39 - 001050936 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-02-13 14:39 - 2019-02-13 14:39 - 001050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000982576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000982032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000833536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 000765960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000577536 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 000475152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-02-13 14:39 - 2019-02-13 14:39 - 000463672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000421904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000419128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 000402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 000387384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 000090424 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000047136 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-02-13 14:39 - 2019-02-13 14:39 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-02-13 14:39 - 2019-02-13 14:39 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000039304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NtlmShared.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NtlmShared.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2019-02-13 14:39 - 2019-02-13 14:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-02-13 14:39 - 2019-02-13 14:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-02-13 14:39 - 2019-02-13 14:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-02-13 14:39 - 2019-02-13 14:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-02-13 14:39 - 2019-02-13 14:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-02-13 14:39 - 2019-02-13 14:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-02-13 14:39 - 2019-02-13 14:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-02-13 14:39 - 2019-02-13 14:39 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-02-13 14:39 - 2019-02-13 14:39 - 000000072 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2019-02-13 14:32 - 2019-02-13 14:32 - 000249672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2019-02-12 19:40 - 2019-02-12 19:40 - 000570563 _____ C:\Users\MB1\Desktop\T33679743.pdf
2019-02-12 15:27 - 2019-02-12 15:27 - 000000000 ____D C:\Users\MB1\Desktop\speedometerUpdate
2019-02-11 17:50 - 2019-02-11 17:51 - 186410568 _____ (Trevelopment) C:\Users\MB1\Desktop\MZD-AIO-TI_Setup_2.8.3.exe
2019-02-10 20:45 - 2019-02-10 20:44 - 000362888 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2019-02-10 12:27 - 2019-02-10 12:26 - 000486025 _____ C:\Users\MB1\Desktop\Daňové přiznání.pdf
2019-02-10 12:26 - 2019-02-10 12:26 - 000486025 _____ C:\Users\MB1\Desktop\Daňové přiznání 2018.pdf
2019-02-10 07:56 - 2019-02-10 07:56 - 000011708 _____ C:\Users\MB1\Desktop\Bez názvu 1.odt
2019-02-09 19:44 - 2019-02-09 19:44 - 000244455 _____ C:\Users\MB1\Desktop\T33584872.pdf
2019-02-09 19:39 - 2019-02-09 19:39 - 000362948 _____ C:\Users\MB1\Desktop\T33584725.pdf
2019-02-06 18:53 - 2019-02-12 13:01 - 000015136 _____ C:\Users\MB1\Desktop\Výlet.odt
2019-02-03 16:39 - 2019-02-03 16:39 - 000021170 _____ C:\Users\MB1\Desktop\Bi.odt
2019-01-30 16:59 - 2019-01-30 16:59 - 000467961 _____ C:\Users\MB1\Desktop\T33271508.pdf
2019-01-30 16:59 - 2019-01-30 16:59 - 000001509 _____ C:\Users\MB1\Desktop\Zastávka_u_Brna-Luhačovice__Zastávka_u_Brna-Luhačovice__Luhačovice-Zastávka_u_Brna.ics
2019-01-30 16:30 - 2019-01-30 16:30 - 001271672 _____ C:\Users\MB1\Desktop\735371.PDF
2019-01-30 16:29 - 2019-01-30 16:29 - 001271672 _____ C:\Users\MB1\Desktop\eTicket_735371.pdf
2019-01-28 19:39 - 2019-01-28 21:07 - 979993758 _____ C:\Users\MB1\Desktop\Souboj Titánů - Dobrodružný, Fantasy 1981 CZdab (dublsoft).mp4
2019-01-28 15:04 - 2019-01-28 15:04 - 000550409 _____ C:\Users\MB1\Desktop\HOMEticket_4630643.pdf
2019-01-28 15:03 - 2019-01-28 15:03 - 000000000 ___RD C:\Users\MB1\Downloads\Microsoft.SkypeApp_kzf8qxf38zg5c!App
2019-01-26 18:38 - 2019-01-26 18:38 - 000000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2019-01-26 11:40 - 2019-01-26 11:40 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-01-26 11:39 - 2019-02-19 14:40 - 001922382 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-26 11:38 - 2019-02-22 19:06 - 000003356 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3595257899-2210446051-2448867403-1000
2019-01-26 11:38 - 2019-02-21 15:13 - 000004264 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2019-01-26 11:38 - 2019-02-18 19:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-26 11:38 - 2019-02-12 19:02 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-01-26 11:38 - 2019-02-10 20:43 - 000003400 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-01-26 11:38 - 2019-02-10 20:43 - 000003176 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-01-26 11:38 - 2019-02-10 20:43 - 000002988 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-01-26 11:38 - 2019-02-10 20:43 - 000002264 _____ C:\WINDOWS\System32\Tasks\{F4DAFCF2-8E64-4568-B281-BC8A904D3AED}
2019-01-26 11:38 - 2019-02-10 20:43 - 000002220 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-01-26 11:38 - 2019-02-10 20:43 - 000000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2019-01-26 11:38 - 2019-01-26 11:38 - 000003440 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineUA
2019-01-26 11:38 - 2019-01-26 11:38 - 000003216 _____ C:\WINDOWS\System32\Tasks\AvastUpdateTaskMachineCore
2019-01-26 11:38 - 2019-01-26 11:38 - 000000020 ___SH C:\Users\MB1\ntuser.ini
2019-01-26 11:38 - 2019-01-26 11:38 - 000000000 ____D C:\WINDOWS\System32\Tasks\WPD
2019-01-26 11:37 - 2019-01-26 11:38 - 000011433 _____ C:\WINDOWS\diagwrn.xml
2019-01-26 11:37 - 2019-01-26 11:38 - 000011433 _____ C:\WINDOWS\diagerr.xml
2019-01-26 11:33 - 2019-01-26 11:33 - 000001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2019-01-26 11:32 - 2019-02-22 19:06 - 000002385 _____ C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-26 11:32 - 2019-02-19 16:28 - 000000000 ____D C:\Users\DefaultAppPool
2019-01-26 11:32 - 2019-02-18 19:52 - 000000000 ____D C:\Users\MB1
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\MB1\Šablony
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\MB1\Soubory cookie
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\MB1\Poslední
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\MB1\Okolní tiskárny
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\MB1\Okolní síť
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\MB1\Nabídka Start
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\MB1\Dokumenty
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\MB1\Documents\Obrázky
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\MB1\Documents\Hudba
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\MB1\Documents\Filmy
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\MB1\Data aplikací
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\MB1\AppData\Local\Data aplikací
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\DefaultAppPool\Šablony
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\DefaultAppPool\Soubory cookie
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\DefaultAppPool\Poslední
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\DefaultAppPool\Okolní tiskárny
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\DefaultAppPool\Okolní síť
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\DefaultAppPool\Nabídka Start
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\DefaultAppPool\Dokumenty
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Obrázky
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Hudba
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\DefaultAppPool\Documents\Filmy
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\DefaultAppPool\Data aplikací
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2019-01-26 11:32 - 2019-01-26 11:32 - 000000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Data aplikací
2019-01-26 11:32 - 2018-09-15 08:29 - 000001105 _____ C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-01-26 11:31 - 2019-01-26 11:31 - 000000000 ____D C:\ProgramData\USOShared
2019-01-26 11:29 - 2019-02-22 19:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-26 11:29 - 2019-02-14 11:56 - 000294976 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-01-26 11:29 - 2018-09-15 08:28 - 002864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-01-26 11:29 - 2017-10-20 16:43 - 000095216 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2019-01-26 11:29 - 2017-10-20 16:43 - 000091120 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2019-01-26 11:25 - 2019-01-26 11:28 - 000000000 ____D C:\WINDOWS\system32\config\bbimigrate
2019-01-26 11:25 - 2019-01-26 11:25 - 000000000 ____D C:\Program Files\Common Files\SpeechEngines
2019-01-26 11:24 - 2019-01-26 11:25 - 000000000 ____D C:\WINDOWS\ServiceProfiles
2019-01-26 11:24 - 2019-01-26 11:24 - 000008192 _____ C:\WINDOWS\system32\config\userdiff
2019-01-26 11:22 - 2019-01-26 11:22 - 024617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 022111856 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 019284480 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 017520640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 015224832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 012858368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 012151808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 008875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 007897088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 007724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 007685016 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 006925824 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 006306152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 006132736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 005584864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 005565952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 005561856 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 005527552 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 005440008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 005312512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 005205464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 005130752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 005112792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 004991096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 004918784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 004702704 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 004526080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 004298752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 004245280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 004019200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003982848 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003952952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003730352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 003656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003566080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003556352 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003504640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 003427328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003386368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003379000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 003338328 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003270144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003108864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 003092480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002992640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002986352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002942464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002929152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002893312 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002832896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002776920 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002766136 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002702528 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002689024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002654208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002630656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002618880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002594872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002488320 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 002466304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002429752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2019-01-26 11:22 - 2019-01-26 11:22 - 002392576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002278448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002275888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002187264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002185728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002160160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2019-01-26 11:22 - 2019-01-26 11:22 - 002149368 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002085376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002072728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001975296 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001903616 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001899160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001884672 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001863168 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001842600 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001830912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001824768 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001819136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001797128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001783296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001762816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001749504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001720936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001700880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001696936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-01-26 11:22 - 2019-01-26 11:22 - 001688576 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001675712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001671680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001664904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001616384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001604096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001590288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001533440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001520208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001496064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001476096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001467384 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001456736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001446400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001395248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 001387496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001360696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 001341584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-01-26 11:22 - 2019-01-26 11:22 - 001331744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001315840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001309184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001294864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001294848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001289192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001287776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001282640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001279024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 001271608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001259024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-01-26 11:22 - 2019-01-26 11:22 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001249792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 001221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 001212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001209360 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001199104 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001182720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2019-01-26 11:22 - 2019-01-26 11:22 - 001180760 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001178344 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 001168384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001166336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2019-01-26 11:22 - 2019-01-26 11:22 - 001162280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001110528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001073448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001064448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001057976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 001056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001054200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 001051960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001026992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001024920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001018880 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000970256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvstore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000964976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000953856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000947200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000918304 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000913920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000901632 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000897848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000887808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000870400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000865784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000864056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000863752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000854784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000854016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000850968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000836096 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000829440 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000822448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000820736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000818832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000806560 _____ C:\WINDOWS\SysWOW64\locale.nls
2019-01-26 11:22 - 2019-01-26 11:22 - 000806560 _____ C:\WINDOWS\system32\locale.nls
2019-01-26 11:22 - 2019-01-26 11:22 - 000803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000800256 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000799568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000762272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000756640 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000752136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000744960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000742912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000741888 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000726208 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000662528 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Pipeline.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000660496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000652320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000651792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000651304 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000649272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000629576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000612368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000604552 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000604248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000588304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000585728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000582240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000566584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000556544 _____ (Microsoft Corporation) C:\WINDOWS\system32\BTAGService.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000553984 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000535048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000531976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000522312 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000519992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000514112 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000506408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_PCDisplay.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000496872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000481792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000478208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000473616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\coml2.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000454160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000429056 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000424960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\eeprov.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000408800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000402576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000398416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000394752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000375544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000374784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000373768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coml2.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000358400 _____ (Microsoft Corporation) C:\WINDOWS\regedit.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000353488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regedit.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000326144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvcext.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000306704 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasppp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000301096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000300024 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000298296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000294072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000284160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasppp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000277536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000276488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MTF.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000275768 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000262672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000252536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000241680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wisp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prnntfy.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000203280 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000202552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MTF.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000195896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasman.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000178696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000176440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\energyprov.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000175096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPTaskScheduler.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000164344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\spopk.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000157192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasman.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000151872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastingShellExt.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000148480 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000146888 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000140808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000134144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CastingShellExt.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000132104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spopk.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000121872 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000114856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000114344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.HotspotAuthentication.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000102392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000098816 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Broker.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000097592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000095544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storqosflt.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000094224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlahc.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\PktMon.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000091424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcnfs.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\nslookup.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000083472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpci.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nslookup.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SMSRouter.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000074424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WindowsTrustedRT.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdBth.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iscsiwmi.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo-overrides.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdBth.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mmcss.sys
2019-01-26 11:22 - 2019-01-26 11:22 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpkinstall.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnsruprov.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfts.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2019-01-26 11:22 - 2019-01-26 11:22 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\perfts.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\msisip.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msisip.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-01-26 11:21 - 2019-01-26 11:21 - 000000000 ____D C:\WINDOWS\SysWOW64\BestPractices
2019-01-26 11:21 - 2019-01-26 11:21 - 000000000 ____D C:\WINDOWS\system32\msmq
2019-01-26 11:21 - 2019-01-26 11:21 - 000000000 ____D C:\WINDOWS\system32\BestPractices
2019-01-26 11:21 - 2019-01-26 11:21 - 000000000 ____D C:\inetpub
2019-01-26 11:20 - 2019-01-26 11:20 - 006347776 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 005739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 005489664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 002629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 001167960 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000780376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmpsnap.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000126064 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\evntwin.exe
2019-01-26 11:20 - 2019-01-26 11:20 - 000107882 _____ C:\WINDOWS\system32\mib_ii.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000104560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\evntagnt.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2019-01-26 11:20 - 2019-01-26 11:20 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2019-01-26 11:20 - 2019-01-26 11:20 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmp.exe
2019-01-26 11:20 - 2019-01-26 11:20 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\hostmib.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000048593 _____ C:\WINDOWS\system32\hostmib.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\lmmib2.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000036896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2019-01-26 11:20 - 2019-01-26 11:20 - 000035440 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2019-01-26 11:20 - 2019-01-26 11:20 - 000034317 _____ C:\WINDOWS\system32\msiprip2.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000030448 _____ C:\WINDOWS\system32\mcastmib.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\evntcmd.exe
2019-01-26 11:20 - 2019-01-26 11:20 - 000026236 _____ C:\WINDOWS\system32\wins.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000026100 _____ C:\WINDOWS\system32\lmmib2.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000022462 _____ C:\WINDOWS\system32\rfc2571.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000021271 _____ C:\WINDOWS\system32\http.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64mib.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000015799 _____ C:\WINDOWS\system32\ipforwd.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000015032 _____ C:\WINDOWS\system32\authserv.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000014032 _____ C:\WINDOWS\system32\accserv.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000013767 _____ C:\WINDOWS\system32\msipbtp.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmpmib.dll
2019-01-26 11:20 - 2019-01-26 11:20 - 000006179 _____ C:\WINDOWS\system32\ftp.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000004597 _____ C:\WINDOWS\system32\dhcp.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000004411 _____ C:\WINDOWS\system32\smi.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000000698 _____ C:\WINDOWS\system32\inetsrv.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000000581 _____ C:\WINDOWS\system32\msft.mib
2019-01-26 11:20 - 2019-01-26 11:20 - 000000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2019-01-26 11:20 - 2019-01-26 11:20 - 000000000 ____D C:\Program Files\Reference Assemblies
2019-01-26 11:20 - 2019-01-26 11:20 - 000000000 ____D C:\Program Files\MSBuild
2019-01-26 11:20 - 2019-01-26 11:20 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2019-01-26 11:20 - 2019-01-26 11:20 - 000000000 ____D C:\Program Files (x86)\MSBuild
2019-01-24 18:54 - 2019-01-26 11:38 - 000000000 ___DC C:\WINDOWS\Panther

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-02-23 13:12 - 2017-01-21 20:54 - 000000000 ____D C:\FRST
2019-02-23 13:09 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-02-23 12:33 - 2018-06-21 07:23 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-02-23 12:33 - 2015-12-28 14:23 - 000000000 __SHD C:\Users\MB1\IntelGraphicsProfiles
2019-02-23 07:25 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-02-23 07:25 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-02-22 19:06 - 2015-12-28 16:03 - 000000000 ___RD C:\Users\MB1\OneDrive
2019-02-19 18:01 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-02-19 17:53 - 2017-06-25 09:23 - 000000000 ____D C:\Users\MB1\AppData\Roaming\MZD-AIO-TI
2019-02-19 14:40 - 2018-09-15 18:32 - 000781808 _____ C:\WINDOWS\system32\perfh005.dat
2019-02-19 14:40 - 2018-09-15 18:32 - 000172426 _____ C:\WINDOWS\system32\perfc005.dat
2019-02-17 10:58 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-02-17 10:57 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\servicing
2019-02-17 09:54 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-02-15 15:21 - 2018-05-09 15:13 - 000474456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2019-02-14 13:20 - 2015-12-28 14:34 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-02-14 11:56 - 2016-12-22 15:32 - 000000000 ____D C:\Program Files\CCleaner
2019-02-13 20:08 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-02-13 20:08 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-02-13 14:37 - 2015-12-28 14:48 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-02-13 14:36 - 2015-12-28 14:48 - 129330784 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-02-10 20:45 - 2018-09-15 08:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-02-10 20:44 - 2019-01-14 14:39 - 000225680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriver.sys
2019-02-10 20:44 - 2019-01-08 06:22 - 000320696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblog.sys
2019-02-10 20:44 - 2019-01-08 06:22 - 000196072 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsh.sys
2019-02-10 20:44 - 2019-01-08 06:22 - 000057960 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbuniv.sys
2019-02-10 20:44 - 2019-01-08 06:22 - 000037104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArDisk.sys
2019-02-10 20:44 - 2018-10-25 10:26 - 000042288 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2019-02-10 20:44 - 2018-05-09 15:13 - 001034432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2019-02-10 20:44 - 2018-05-09 15:13 - 000379952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2019-02-10 20:44 - 2018-05-09 15:13 - 000216784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2019-02-10 20:44 - 2018-05-09 15:13 - 000205400 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2019-02-10 20:44 - 2018-05-09 15:13 - 000167304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2019-02-10 20:44 - 2018-05-09 15:13 - 000112312 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2019-02-10 20:44 - 2018-05-09 15:13 - 000087944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2019-02-10 19:06 - 2016-11-20 09:06 - 000000000 ____D C:\Program Files (x86)\Steam
2019-02-01 23:31 - 2018-09-15 08:36 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-02-01 23:31 - 2018-09-15 08:36 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-01-27 11:03 - 2018-05-10 15:46 - 000000000 ____D C:\Users\MB1\AppData\Local\PlaceholderTileLogoFolder
2019-01-27 10:00 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\appcompat
2019-01-26 14:05 - 2018-12-24 14:22 - 000000000 ____D C:\Users\MB1\Desktop\Jawa
2019-01-26 11:57 - 2017-12-20 06:47 - 000000000 ____D C:\Users\MB1\AppData\Local\Packages
2019-01-26 11:55 - 2018-07-03 13:44 - 000000000 ____D C:\ProgramData\Packages
2019-01-26 11:40 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Registration
2019-01-26 11:38 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\windows nt
2019-01-26 11:38 - 2017-12-20 06:53 - 000000000 ___RD C:\Users\MB1\3D Objects
2019-01-26 11:38 - 2016-11-26 13:03 - 000000000 ____D C:\Users\MB1\AppData\Local\ConnectedDevicesPlatform
2019-01-26 11:38 - 2015-12-28 16:01 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-01-26 11:36 - 2018-09-15 08:33 - 000000000 __RSD C:\WINDOWS\media
2019-01-26 11:36 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-01-26 11:36 - 2018-04-05 06:40 - 000002498 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-01-26 11:36 - 2015-12-28 15:57 - 000023020 _____ C:\WINDOWS\system32\emptyregdb.dat
2019-01-26 11:33 - 2018-06-09 16:37 - 000000000 ____D C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mazda
2019-01-26 11:33 - 2017-06-25 14:55 - 000000000 ____D C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2019-01-26 11:33 - 2016-09-07 12:24 - 000000000 ____D C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2019-01-26 11:33 - 2016-05-01 17:38 - 000000000 ____D C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2019-01-26 11:33 - 2016-01-27 10:40 - 000000000 ____D C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer
2019-01-26 11:33 - 2015-12-28 17:24 - 000000000 ____D C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-01-26 11:31 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\USOPrivate
2019-01-26 11:29 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ServiceState
2019-01-26 11:29 - 2017-05-14 06:35 - 000000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2019-01-26 11:29 - 2017-05-14 06:35 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2019-01-26 11:28 - 2018-09-15 08:36 - 000000000 ____D C:\WINDOWS\Setup
2019-01-26 11:28 - 2018-09-15 08:33 - 000000000 __SHD C:\Program Files\Windows Sidebar
2019-01-26 11:28 - 2018-09-15 08:33 - 000000000 __SHD C:\Program Files (x86)\Windows Sidebar
2019-01-26 11:28 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\Downloaded Program Files
2019-01-26 11:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2019-01-26 11:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\IME
2019-01-26 11:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-01-26 11:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\spool
2019-01-26 11:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-01-26 11:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-01-26 11:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\IME
2019-01-26 11:28 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\schemas
2019-01-26 11:28 - 2018-09-15 08:33 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-01-26 11:28 - 2018-09-15 08:31 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2019-01-26 11:28 - 2018-07-13 06:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-01-26 11:28 - 2018-04-12 16:51 - 000000000 ____D C:\WINDOWS\SysWOW64\gd-GB
2019-01-26 11:28 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2019-01-26 11:28 - 2017-05-14 06:35 - 000000000 ____D C:\Program Files\Intel
2019-01-26 11:28 - 2017-05-12 13:36 - 000000000 ____D C:\Program Files\UNP
2019-01-26 11:28 - 2016-12-22 15:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-01-26 11:28 - 2016-11-20 09:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2019-01-26 11:28 - 2016-08-13 18:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HappyFoto-Designer
2019-01-26 11:28 - 2016-07-22 16:00 - 000000000 ____D C:\WINDOWS\cs
2019-01-26 11:28 - 2016-07-15 20:34 - 000000000 ____D C:\WINDOWS\SysWOW64\vbox
2019-01-26 11:28 - 2016-07-15 20:34 - 000000000 ____D C:\WINDOWS\system32\vbox
2019-01-26 11:28 - 2015-12-28 17:28 - 000000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2019-01-26 11:28 - 2015-12-28 17:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-01-26 11:28 - 2015-12-28 16:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2019-01-26 11:28 - 2015-12-28 14:29 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2019-01-26 11:27 - 2018-04-12 00:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-01-26 11:26 - 2018-09-15 08:33 - 000000000 __RHD C:\Users\Public\Libraries
2019-01-26 11:25 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-01-26 11:25 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2019-01-26 11:25 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Resources
2019-01-26 11:25 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\Help
2019-01-26 11:25 - 2017-05-14 06:35 - 000000000 ____D C:\Program Files\Realtek
2019-01-26 11:25 - 2016-12-23 12:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2019-01-26 11:25 - 2015-12-28 16:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2019-01-26 11:25 - 2009-07-14 06:32 - 000000000 ____D C:\Program Files\Microsoft Games
2019-01-26 11:23 - 2018-09-15 18:34 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2019-01-26 11:23 - 2018-09-15 18:34 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2019-01-26 11:23 - 2018-09-15 08:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-01-26 11:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\TextInput
2019-01-26 11:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2019-01-26 11:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-01-26 11:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-01-26 11:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-01-26 11:23 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-01-26 11:23 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-01-26 11:20 - 2018-09-15 18:33 - 000000000 ____D C:\WINDOWS\OCR
2019-01-26 11:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\MUI
2019-01-26 11:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2019-01-26 11:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2019-01-26 11:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2019-01-26 11:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-01-26 11:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\MUI
2019-01-26 11:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2019-01-26 11:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2019-01-26 11:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\et-EE
2019-01-26 11:20 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-01-25 17:54 - 2015-12-29 15:13 - 000000000 ____D C:\KMPlayer

==================== Files in the root of some directories =======

2018-06-18 04:54 - 2018-06-18 04:54 - 000029696 _____ () C:\Users\MB1\AppData\Local\MSGBOX.EXE
2017-06-25 09:23 - 2019-02-19 17:50 - 000000756 _____ () C:\Users\MB1\AppData\Local\MZD-AIO-TI.log
2016-03-20 11:45 - 2016-03-20 11:45 - 000000017 _____ () C:\Users\MB1\AppData\Local\resmon.resmoncfg

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

mana008
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 23 črc 2007 11:54

Re: Prosím o kontrolu PC

#2 Příspěvek od mana008 »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20.02.2019 02
Ran by MB1 (23-02-2019 13:13:31)
Running from C:\Users\MB1\Desktop
Windows 10 Home Version 1809 17763.316 (X64) (2019-01-26 10:38:25)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3595257899-2210446051-2448867403-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3595257899-2210446051-2448867403-503 - Limited - Disabled)
Guest (S-1-5-21-3595257899-2210446051-2448867403-501 - Limited - Disabled)
MB1 (S-1-5-21-3595257899-2210446051-2448867403-1000 - Administrator - Enabled) => C:\Users\MB1
WDAGUtilityAccount (S-1-5-21-3595257899-2210446051-2448867403-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Reader XI (11.0.23) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 19.2.2364 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 71.0.1037.98 - Autoři prohlížeče Avast Secure Browser)
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
EBook Codec 1.0.0.1 (HKLM-x32\...\EBook Codec) (Version: 1.0.0.1 - Free Time)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
Epson Software Updater (HKLM-x32\...\{B55DB65D-EF6E-4E04-89D5-B03603BF681B}) (Version: 4.4.5 - SEIKO EPSON CORPORATION)
EPSON SX110 Series Printer Uninstall (HKLM\...\EPSON SX110 Series) (Version: - SEIKO EPSON Corporation)
FormatFactory 4.1.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.1.0.0 - Free Time)
Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 72.0.3626.109 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
HappyFoto-Designer 5.4 (HKLM-x32\...\HappyFoto-Designer_is1) (Version: - )
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.0.4.6 - PandoraTV)
Mazda Toolbox (HKLM-x32\...\Mazda Toolbox) (Version: - )
Microsoft OneDrive (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\OneDriveSetup.exe) (Version: 19.012.0121.0009 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MZD-AIO-TI 2.8.3 (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\34093d1a-b79c-5bd0-8c69-6049d0980230) (Version: 2.8.3 - Trevelopment)
OpenOffice 4.1.2 (HKLM-x32\...\{69D27D4C-36CE-4CB2-A290-C38B0A990955}) (Version: 4.12.9782 - Apache Software Foundation)
Prohlížeč Seznam.cz (HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\...\Seznam Browser) (Version: - Seznam.cz a.s.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.82.317.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
Skype verze 8.36 (HKLM-x32\...\Skype_is1) (Version: 8.36 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
USB Network Joystick (HKLM-x32\...\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}) (Version: V3.70a - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Zoner Photo Studio 18 (HKLM\...\ZonerPhotoStudio18_CZ_is1) (Version: 18.0.1.1 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3595257899-2210446051-2448867403-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\WINDOWS\system32\shell32.dll (Microsoft Windows -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-02-10] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {151B0B88-3193-44AD-B3D8-A3CD764728DA} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {32D7F8AB-3A55-4509-8BD4-AF9827528C17} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {354624B0-D49C-411F-ABF9-786FB959B7B8} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {36A29AED-53B5-4F0E-8F22-D25C0EEE8D4E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {3F07ADE2-59D1-495D-A6A2-D6B08A781BFE} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {414E5E8C-9FF8-47E9-A6DC-5539001C67D8} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4A0DF130-D07D-4378-8DCF-6FE23BAADE7D} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4EFCAA86-4F7E-4E14-808D-5B2DECE6FC95} - System32\Tasks\{F4DAFCF2-8E64-4568-B281-BC8A904D3AED} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\MB1\Desktop\0\autorun.exe -d C:\Users\MB1\Desktop\0
Task: {539BE57D-1B42-4F47-9E1D-842934CCEF49} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {54470729-0C37-48D4-8532-D533A4E391DA} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {547B08EF-A8A7-4C17-AB9D-48BC825D4A57} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {56F94551-0180-4801-9912-F0EDC441AD37} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {5A6B6DB7-650A-4AB9-AD44-9ED867DEB9CA} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {5B39C614-7246-45F6-AC1B-1763C84A565E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5FCA8E5E-1932-4697-A52D-C21B5B9D2CD2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {656F79F9-1E4B-4692-BA8E-4ABD71C4FC7A} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {74582C39-B5F6-4F8A-97A5-52555557C0D6} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {74C0142B-A580-4CF4-86C9-AEF235D24711} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {795C4D65-1481-45C2-B9BF-C9D6DFF7E90A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7BF95FB6-051B-4312-9F5F-BA44950C9A83} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7D520FD7-1B6E-4D76-9544-08ABC2194586} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {944B5D16-ECA8-4C86-9289-08B2CAAFDC68} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A51A254F-27C3-44D8-9120-3D46D7FD90D6} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {A593C16C-F836-486A-8D4E-D8BA24093DC3} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A7A6B1B9-7906-46D4-B0CE-35E1D760DDAA} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AA028E2C-9BC8-4B8C-9100-966A69E7D325} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B08ABFEA-FA57-43E8-A965-E610E6681B71} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {B9F03631-BC7A-44E3-8885-B99381F0CD7A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {C27663E1-48FA-4379-B51D-F684C860D7BA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {C782AF11-4D6D-4D62-B26F-7AA4CC5D4E31} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D8447909-A77D-4ACA-91E8-329FF80F69F0} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E0EE1AFB-5C64-40FE-94DB-F0F05B3D7CE0} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
Task: {E35EDABA-250E-435C-BA01-A119E1C815EB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Ltd -> Piriform Ltd)
Task: {E6FE6004-03DE-4FBA-8DE3-BB5D15A37C59} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {E905B924-D963-4F00-B472-EC618E99EC75} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F42BBDE6-747C-4839-9149-6DC237968D66} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Marian - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\MÁMA - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\MB1\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\První uživatel - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1"

==================== Loaded Modules (Whitelisted) ==============

2017-10-20 16:42 - 2017-10-20 16:42 - 000393200 _____ () C:\WINDOWS\system32\igfxTray.exe
2018-09-15 08:28 - 2018-09-15 08:28 - 000834088 _____ () C:\Windows\System32\InputHost.dll
2018-09-15 08:28 - 2018-09-15 08:28 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2019-01-26 11:22 - 2019-01-26 11:22 - 001740800 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2019-02-22 15:06 - 2019-02-22 15:06 - 007181824 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20453.0_x64__8wekyb3d8bbwe\YourPhone.exe
2019-02-22 15:06 - 2019-02-22 15:06 - 002542592 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20453.0_x64__8wekyb3d8bbwe\YourPhone.AppCore.dll
2019-02-22 15:06 - 2019-02-22 15:06 - 000256000 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20453.0_x64__8wekyb3d8bbwe\AppConfig.dll
2018-10-31 21:02 - 2018-10-31 21:02 - 001004032 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20453.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2019-02-22 15:06 - 2019-02-22 15:06 - 003547136 _____ () C:\Program Files\WindowsApps\Microsoft.YourPhone_1.0.20453.0_x64__8wekyb3d8bbwe\PhoneCommunicationAppService.dll
2018-12-07 12:39 - 2018-12-07 12:39 - 004380232 _____ () C:\Program Files\WindowsApps\Microsoft.UI.Xaml.2.0_2.1810.18004.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2019-02-07 15:07 - 2019-02-07 15:07 - 028028416 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Video.UI.exe
2019-02-07 15:07 - 2019-02-07 15:07 - 000305152 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\SharedUI.dll
2017-12-01 14:42 - 2017-12-01 14:42 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2018-11-29 15:43 - 2018-11-29 15:43 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2019-02-07 15:07 - 2019-02-07 15:07 - 006033408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\EntCommon.dll
2019-02-07 15:07 - 2019-02-07 15:07 - 009338368 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19011.11311.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-10-04 07:40 - 2018-10-04 07:40 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2019-02-22 15:06 - 2019-02-22 15:06 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2019-02-22 15:06 - 2019-02-22 15:06 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2019-02-15 15:19 - 2019-02-15 15:19 - 010541568 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2019-02-15 15:19 - 2019-02-15 15:20 - 002933760 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\skypert.dll
2019-02-15 15:19 - 2019-02-15 15:19 - 000688640 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2019-02-15 15:19 - 2019-02-15 15:19 - 002362096 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\Processing.NDI.Lib.UWP.x64.dll
2019-02-22 15:06 - 2019-02-22 15:06 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.39.222.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2019-01-08 06:22 - 2019-01-08 06:22 - 093695912 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2019-02-10 20:44 - 2019-02-10 20:44 - 000321928 _____ () C:\Program Files\AVAST Software\Avast\serialization.dll
2019-02-10 20:44 - 2019-02-10 20:44 - 000654216 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-05-24 18:51 - 2018-09-10 15:40 - 000085320 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2016-01-23 19:09 - 2008-12-10 11:10 - 000796784 _____ () C:\Windows\USB Vibration\7906\USB Gamepad.exe
2019-01-31 16:19 - 2019-01-31 16:19 - 000282624 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-06 15:31 - 2018-11-06 15:31 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2019-01-31 16:19 - 2019-01-31 16:19 - 001757696 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11811.1001.18.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2019-02-14 13:20 - 2019-02-13 06:14 - 005186032 _____ () C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\libglesv2.dll
2019-02-14 13:20 - 2019-02-13 06:14 - 000117232 _____ () C:\Program Files (x86)\Google\Chrome\Application\72.0.3626.109\libegl.dll
2015-12-28 14:16 - 2013-09-16 12:17 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-01-04 13:52 - 000000753 _____ C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Windows Live\Shared;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3595257899-2210446051-2448867403-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MB1\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (No File)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "USB Gamepad"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{C79FC4A3-82B2-4DE7-A155-DB9D7F89E7EC}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{5D15FF53-9D78-4DBE-82E6-4AB1E7C732D0}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C5E6D6AC-623F-484F-985C-3320D635358B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{219FC7E8-73C4-483F-AC36-EF817E7AC962}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{DC3A96C0-3E8A-4F42-B74C-C9F82717CB0B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{487131F5-3CB3-416E-B737-E0E90910B7A1}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{673ECCD0-69F7-482D-929D-6E8BE4D1813A}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{F6EA039C-049D-4734-BBD1-16F2DBF6216F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{429874FF-B6AD-4039-9D84-559AFA38504B}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{3BFDE18F-9D9A-4B68-9A91-7A7FB34FFC4C}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{35915BFC-5028-40B6-BDB9-4D758DEEDEAC}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [UDP Query User{FF137622-DE73-45BA-9D65-011D1836E20F}C:\program files (x86)\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\formatfactory\formatfactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [TCP Query User{77566F83-77B1-4728-BACF-0324D9EF8604}C:\program files (x86)\formatfactory\formatfactory.exe] => (Allow) C:\program files (x86)\formatfactory\formatfactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{AACE25B1-EF25-428C-B724-E33A7C5F6A30}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{F24F2428-8769-4BA2-BCAE-952E1699C1F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe (Valve -> )
FirewallRules: [{26A22EFE-D02C-4425-B69C-B68CFB747638}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DB938433-08E0-43BB-AF56-E76948F2007A}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{89DF2CCA-67B9-4A96-BE53-0C1C28B1A8AE}] => (Allow) LPort=1900
FirewallRules: [{4FF0D7B9-8E12-4B8B-9E6A-032F6EE85AE3}] => (Allow) LPort=2869
FirewallRules: [{9159E902-1EF2-4F24-A2D5-62ED19A72469}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{72F0EF6A-4612-472C-9CFF-3812B9098141}C:\users\mb1\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mb1\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.)
FirewallRules: [TCP Query User{B2A3D469-C744-4D44-87FB-0E09A80A7767}C:\users\mb1\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\mb1\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.)
FirewallRules: [{ADA5809E-DD2F-4257-8312-3F25EBFE6D82}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe (ZONER software)
FirewallRules: [{E59FA1FC-7CF7-44CB-BD3C-1F4ED85B1DA9}] => (Allow) C:\Program Files\Zoner\Photo Studio 18\Program32\MediaServer.exe (ZONER software)
FirewallRules: [{4AF5773D-E3AC-409F-A22C-7272D1B71DFE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{68E85761-F98E-446F-A0EA-D0F5E8AA161F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe No File
FirewallRules: [{452B4235-C56D-4A48-8C0B-42A543DC9475}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{3E3B83F7-CB73-4250-B67E-B7BF7B498BD4}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software s.r.o. -> AVAST Software)
FirewallRules: [{CD1BF933-8F92-468A-B342-2DEA91369730}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{7C9B8678-E145-4156-A00D-87E2391C50FD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.100.237.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{263B274C-0E15-4EB7-9261-A5E7C119481D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.100.237.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8898E4BB-13EF-44DC-8B74-DCC70AB8C7B9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.100.237.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E3700873-A74A-4764-8CF7-A70203FF6560}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.100.237.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{13E02942-AEA9-4B4B-9179-171D04FD9B97}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.100.237.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B807B38E-8CB7-4910-AAE0-71F585CE107D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.100.237.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4FE6D194-01A5-4AC3-A240-D88208CC7E62}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.100.237.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{307B1ED2-8081-42B1-8B40-ADFF22315222}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.100.237.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/17/2019 09:54:32 AM) (Source: WAS-LA) (EventID: 7005) (User: )
Description: Protokol adaptéru naslouchání msmq.formatname se pokusil komunikovat s aktivační službou procesů systému Windows, ale komunikace se nezdařila. Adaptér naslouchání se nyní nachází ve špatném stavu. Příčina: Důvodem jsou potíže s nedostatkem paměti nebo selhání aktivační služby procesů systému Windows či adaptéru naslouchání. Oprava: Chcete-li tuto podmínku opravit, ukončete adaptér naslouchání, následně zastavte aktivační službu procesů systému Windows, restartujte aktivační službu a nakonec znovu spusťte adaptér naslouchání.

Error: (02/14/2019 11:56:21 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 3432, identifikátor PID ProfSvc: 1340.

Error: (02/12/2019 07:08:49 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files\AVAST Software\Avast\AvastSvc.exe, identifikátor PID: 2484, identifikátor PID ProfSvc: 1272.

Error: (02/11/2019 07:03:17 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Windows\System32\svchost.exe, identifikátor PID: 6040, identifikátor PID ProfSvc: 1272.

Error: (02/11/2019 07:03:17 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: Uživatelský podregistr načetl jiný proces (zámek registru). Název procesu: C:\Program Files\AVAST Software\Avast\AvastSvc.exe, identifikátor PID: 2484, identifikátor PID ProfSvc: 1272.

Error: (02/10/2019 07:06:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_WpnUserService, verze: 10.0.17763.1, časové razítko: 0xb900eeff
Název chybujícího modulu: wpnuserservice.dll, verze: 10.0.17763.1, časové razítko: 0xcb4f608f
Kód výjimky: 0xc0000409
Posun chyby: 0x0000000000008a6d
ID chybujícího procesu: 0x2cd0
Čas spuštění chybující aplikace: 0x01d4c16b64b04529
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: c:\windows\system32\wpnuserservice.dll
ID zprávy: cbc0d080-5c03-41a8-80d3-967417fb1e18
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (02/09/2019 05:57:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SkypeApp.exe, verze: 8.38.0.138, časové razítko: 0x5c4ba74e
Název chybujícího modulu: ntdll.dll, verze: 10.0.17763.292, časové razítko: 0x7ded7809
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000004df23
ID chybujícího procesu: 0xb18
Čas spuštění chybující aplikace: 0x01d4c09700a9554f
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\ntdll.dll
ID zprávy: dbdcd66b-aa17-486a-871b-e0015f0104ee
Úplný název chybujícího balíčku: Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c
ID aplikace související s chybujícím balíčkem: App

Error: (02/01/2019 08:42:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SkypeApp.exe, verze: 8.38.0.138, časové razítko: 0x5c4ba74e
Název chybujícího modulu: twinapi.appcore.dll, verze: 10.0.17763.292, časové razítko: 0x270a22eb
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000000bd588
ID chybujícího procesu: 0x1e4c
Čas spuštění chybující aplikace: 0x01d4ba497b7b98b7
Cesta k chybující aplikaci: C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeApp.exe
Cesta k chybujícímu modulu: C:\WINDOWS\SYSTEM32\twinapi.appcore.dll
ID zprávy: 33bcde33-c351-4ee7-8a2b-92fe702cbb60
Úplný název chybujícího balíčku: Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c
ID aplikace související s chybujícím balíčkem: App


System errors:
=============
Error: (02/23/2019 12:34:44 PM) (Source: DCOM) (EventID: 10016) (User: MB1-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli MB1-PC\MB1 (SID: S-1-5-21-3595257899-2210446051-2448867403-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (02/23/2019 12:33:07 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (02/23/2019 12:33:07 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (02/23/2019 08:38:43 AM) (Source: DCOM) (EventID: 10016) (User: MB1-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli MB1-PC\MB1 (SID: S-1-5-21-3595257899-2210446051-2448867403-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (02/23/2019 07:26:00 AM) (Source: DCOM) (EventID: 10016) (User: MB1-PC)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{2593F8B9-4EAF-457C-B68A-50F6B8EA6B54}
a APPID
{15C20B67-12E7-4BB6-92BB-7AFF07997402}
uživateli MB1-PC\MB1 (SID: S-1-5-21-3595257899-2210446051-2448867403-1000) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (02/23/2019 07:25:26 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (02/23/2019 07:25:26 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
a APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
uživateli NT AUTHORITY\LOCAL SERVICE (SID: S-1-5-19) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (02/22/2019 07:33:26 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80073d02): 9WZDNCRFJ364-MICROSOFT.SKYPEAPP.


CodeIntegrity:
===================================

Date: 2019-02-18 19:52:04.381
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-02-18 19:52:01.055
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-02-18 19:52:00.631
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-02-18 15:00:24.365
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-02-18 15:00:21.326
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-02-17 09:55:05.805
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-02-17 09:55:02.741
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-02-17 09:55:02.327
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU G3260 @ 3.30GHz
Percentage of memory in use: 64%
Total physical RAM: 3995.95 MB
Available physical RAM: 1431.91 MB
Total Virtual: 8091.95 MB
Available Virtual: 5034.5 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.25 GB) (Free:28.29 GB) NTFS
Drive d: (Nový svazek) (Fixed) (Total:698.64 GB) (Free:336.77 GB) NTFS

\\?\Volume{0f50f6c3-ad63-11e5-bd09-806e6f6e6963}\ (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS
\\?\Volume{a25c33b0-0000-0000-0000-60d61b000000}\ () (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 698.6 GB) (Disk ID: 980826B8)
Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15197
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu PC

#3 Příspěvek od JaRon »

Ahoj,
1. Aka je velkost adresara plocha?
2. Preventivne prescanuj s Adwcleanerom
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

mana008
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 23 črc 2007 11:54

Re: Prosím o kontrolu PC

#4 Příspěvek od mana008 »

1. 10Gb
# -------------------------------
# Malwarebytes AdwCleaner 7.2.7.0
# -------------------------------
# Build: 01-30-2019
# Database: 2019-02-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 02-23-2019
# Duration: 00:00:10
# OS: Windows 10 Home
# Scanned: 31818
# Detected: 3


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.Seznam.cz C:\Users\MB1\AppData\Local\Seznam.cz

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Seznam.cz HKCU\Software\Seznam.cz

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

PUP.Optional.Legacy levneucebnice.cz

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.


AdwCleaner[S00].txt - [1253 octets] - [17/06/2018 14:48:40]
AdwCleaner[C00].txt - [1419 octets] - [17/06/2018 14:48:59]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15197
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu PC

#5 Příspěvek od JaRon »

Poupratuj plochu, velkost by nemala presahovat 1GB, spomaluje to PC
+
najdene nechaj odstranit, inac OK
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

mana008
Návštěvník
Návštěvník
Příspěvky: 69
Registrován: 23 črc 2007 11:54

Re: Prosím o kontrolu PC

#6 Příspěvek od mana008 »

Děkuji, plochu vyčistím a už tam nebudu nic ukládat :closed: :worship:

Uživatelský avatar
JaRon
Moderátor
Moderátor
Příspěvky: 15197
Registrován: 29 bře 2005 13:39
Bydliště: BB-SK

Re: Prosím o kontrolu PC

#7 Příspěvek od JaRon »

Rado sa stalo :)
FRST |ADWCleaner |MBAM |CCleaner |AVPTool

V prípade spokojnosti je možné podporiť fórum
https://platba.viry.cz/payment/

Zamčeno